404

SQLite format 3@  O
-�)
��M�2��@YindexpkgIdpackagesM.CREATE INDEX pkgId ON packages (pkgId)KeindexkeychangechangelogJ�CREATE INDEX keychange ON changelog (pkgKey)� /�triggerremove_changelogspackagesCREATE TRIGGER remove_changelogs AFTER DELETE ON packages  BEGIN    DELETE FROM changelog WHERE pkgKey = old.pkgKey;  ENDv�;tablechangelogchangelogCREATE TABLE changelog (  pkgKey INTEGER,  author TEXT,  date INTEGER,  changelog TEXT)^�tablepackagespackagesCREATE TABLE packages (  pkgKey INTEGER PRIMARY KEY,  pkgId TEXT)Q{tabledb_infodb_infoCREATE TABLE db_info (dbversion INTEGER, checksum TEXT)
��E�
e075c2b40e525d4aa752b17e8fbb11f11068a185fa08d55c4fe9ebf0db3508ef�=����'�
֗x
ՋF�7�7��plicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
8;��8�	o�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew�	o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�b	o�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�:	o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re
�5l��D	o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�F	o�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�H	o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
��B��
	q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�		o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server�	o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
��`���Go�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I
o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions�o�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew�o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests
x8x�o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server�o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�Eo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
mvam�o�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skewXoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN�q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
�4j��Eo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�Go�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�Io�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
��@��q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server�o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
u��u�o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleXoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
�4j��E!o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G o�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�Io�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
��@��$q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�#o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server�"o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
u��u�'o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX&oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�%o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
)��)�E*o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G)o�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�B(o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)
��@��-q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�,o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server�+o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
u��u�0o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX/oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�.o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
����2o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B1o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)
x8x�5o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server�4o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E3o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
vaX8oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�7o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN�6q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
����B:o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)�9o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o<o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database�;o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
��@��?q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�>o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server�=o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
u��u�Bo�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleXAoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�@o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
����Do�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�BCo�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)
\\�:Go�	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-5^=Q@- Bump version to 1.3.10.1-5
- Resolves: Bug 1744623 - DB Deadlock on modrdn appears to corrupt database and entry cache(cont)�rFq�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�oEo�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
�j��;Jo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re�-Io�oMark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�A- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)�cHo�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-6^\�@- Bump version to 1.3.10.1-6
- Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1803052 - Memory leak in ACI using IP subject
- Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1809160 - Entry cache contention during base searchplicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
.���.�INo�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions�Mo�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew�Lo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�cKo�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS
n6n�EPo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�GOo�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter
�j��;So�	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re#�-Ro�o	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�A- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)�cQo�[	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-6^\�@- Bump version to 1.3.10.1-6
- Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1803052 - Memory leak in ACI using IP subject
- Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1809160 - Entry cache contention during base searchplicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
.���.�IWo�'	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions�Vo�C	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew�Uo�	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�cTo�[	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS
P6nP�Zo�K	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�EYo�	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�GXo�#	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter
P�$�^o�
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c]o�[
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;\o�
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re'�-[o�o
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�@- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)plicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
�f���Gao�#
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I`o�'
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions�_o�C
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew
x8x�do�S
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-8
- Resolves: Bug 1905450 - Internal unindexed search crashes the server�co�K
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�Ebo�
Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
e^��eXhoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�go�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN�fq�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�eo�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server
����Bjo�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)�io�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����olo�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database�ko�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
=�=�oq�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�Ano�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�rmq�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
u��u�ro�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleXqoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�po�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
����to�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�Bso�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)
�rvq�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�ouo�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
�� �XzoG
Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12�yo�9
Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN�xo�GMark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�Awo�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
����B|o�
Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)�{o�G
Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o~o�s
Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database�}o�?
Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
6�)�6X�oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��o�=
Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��o�G
Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�o�
Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�rq�w
Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
����B�o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o�o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
�
�(���o�=Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��
o�GMark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�	o�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�q�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
IfI��
o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule��m�CThierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype
,�t.��\��D��r,D�
a746522986b0afca052c56bfe30e019392742f4feb4722768d2eb43b4babeac8D
�
231493e830d00be6017e14f2838a22163835ecea8facf688b9769eed88f3c9b2D�
d3229cfb18563fc8a24139a13a8b266e417258f43d36a4a4ac3b372af35d59f8D�
187145d7bfd310c612f73b86a31e75562cbe69306dca7362841fcb038b52fa3bD
�
2952ebf67510a8da5c648a66cb72fb82d02a871b1b805e3fa5d9a1ab8d1377d2D	�
6af757b1f83a00f0551ab69c27a637b1a7fcd95125d64c9146be9158ec4964c4D�
69b46c2053c4fbaa163f2390003a89acba1e45f20c75c06337f18474970f4943D�
8185f310e186803f0af31262808f321254090fced72ee96c77a5b4ecea2ab08cD�
5d1951ec0080791e7902a50f19ea2eab2f07b5ce3efea78f024eb1a197abfb77D�
a4b372b0da7c95c62540dcfd5049d2b4cd05abf59cb373d2a9a94bcdce3472c3D�
8638584ccb7fcde8b4799f13f6a58ef2c129baba95c41aeb504453c5262416a1D�
25d8cb3d83565ead22c4bfc3963acaa10f44a28286e88bfd60ce16ec510a113bD�
47174964aa424317b7623852dab6eb134838bc81b1ecc6687a16e8461523c3c8D�
a6a35e6ed55e101d96fd0ed48dd8267a7e8e10917230172a9de28a796d39490e
,�t.��\��D��r,D�
66236b68ae255104741eb03ff98c372f45d1070837fd9f390037488468b9dd1dD�
6c8904697fe6c2ee66e07070d91ead8cd93c7f2b07461f411e7fbb303c278589D�
5d56166abb7686fc795b62a2d6600a144699caccdbc3ea53b082d1535c2834b0D�
709e283813b0f0f0fdef0e1af87059ea4abce1a31640b490109436fad941d2dbD�
1315433f5602796463c98742b5395f6bc95f0716a4d9322f2131b5bd23a0bcdcD�
e3f5a839e2e8acc1d26bf39b94c2d5f01d99b4c9f59926532da730dd0cc33feaD�
6777f22d398c85f89da0f1efaa40c7fb3d16e1d72eeb8ae99d1e2dc818769d0dD�
2cfc157959dd7203260a2f727d8590878e5ebaf061e1f17210e36684e46916d4D�
18552d6d05e89198db7ddef073bf9f88ff81556cc037c82a133b0eba4e12c71aD�
f8c005d77b5c2074f8f5ecf019407c406d423acd0fddbce4ac8b4efa1be0f808D�
26f9837529ec8886d1314252f193f695e2df988f21ba6cbdef62da935e15848fD�
7f2bca34d66595ea71392f8a9fe4f631679313d883bbc5d48d3d49e1ceb88d8bD�
53bef7d8f496ce93d095af2f28cf9ea690f7d61117266073c87080d1457a56e3D�
27db2cd3bba9e5240c46f94fcd95f8d419bad9f865a7b32e02a98759ed918be2
�����o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

�r�q�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�o�o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
������m�CThierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype��o�=Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��o�GMark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�o�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
�����o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule�M�m�1James Chapman <jachapma@redhat.com> - 1.3.11.1-5f(�@- Bump version to 1.3.11.1-5
- Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
- Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c
�����o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

�r�q�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�o�o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
������m�CThierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype��o�=Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��o�GMark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�o�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
�����c�"o�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�!o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5ReC�M� m�1James Chapman <jachapma@redhat.com> - 1.3.11.1-5f(�@- Bump version to 1.3.11.1-5
- Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
- Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.cplicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
��^���G�&o�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�%o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��$o�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��#o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests
u7u��)o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��(o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�'o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
�un���,o�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��+o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests��*q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
�3h��E�/o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�.o�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�-o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
��>���2q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��1o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��0o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
\���'\�G�7o�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�6o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��5o�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skewX�4oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��3o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
u7u��:o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��9o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�8o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
u_X�=oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��<o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��;q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
K�K�G�@o�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�?o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��>o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
u7u��Co�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��Bo�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�Ao�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
u_X�FoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��Eo�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��Dq�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
����B�Ho�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��Go�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
M5lM��Ko�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�Jo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�Io�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter
a]��aX�OoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��No�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��Mq�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��Lo�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server
����B�Qo�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��Po�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
��E�So�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars��Ro�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
��>���Vq�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��Uo�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��To�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
r��r��Yo�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�XoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��Wo�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
�����[o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�Zo�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)
K
�K��^o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��]o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�o�\o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
u_X�aoGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��`o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��_q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
����B�co�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��bo�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o�eo�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��do�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
e
Le�c�ho�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-6^\�@- Bump version to 1.3.10.1-6
- Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1803052 - Memory leak in ACI using IP subject
- Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1809160 - Entry cache contention during base search�:�go�	Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-5^=Q@- Bump version to 1.3.10.1-5
- Resolves: Bug 1744623 - DB Deadlock on modrdn appears to corrupt database and entry cache(cont)�r�fq�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
O�!��lo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c�ko�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�jo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re]�-�io�oMark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�A- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)plicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
�e���G�oo�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�no�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��mo�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew
P7P�c�qo�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-6^\�@- Bump version to 1.3.10.1-6
- Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1803052 - Memory leak in ACI using IP subject
- Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1809160 - Entry cache contention during base search�E�po�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
O�!��uo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c�to�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�so�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Rea�-�ro�oMark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�A- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)plicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
�e���G�xo�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�wo�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��vo�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew
g7g�-�{o�oMark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�@- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)��zo�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�yo�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped charsplicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
09��0��o�CMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��~o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c�}o�[Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�|o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Red
�3h��E�o�Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�o�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
�>���q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��o�SMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-8
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��o�KMark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
r��r��	o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
�����o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�
o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

�r�
q�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�o�o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
�0��o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��q�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�A�o�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
B��B�B�o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12
����o�o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search

�(��o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��o�GMark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�o�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�q�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
,�t.��\��D��r,D*�
bff0a6adc60eba913218bcccc836d732221469cd7650eb27d199e3f7780373a7D)�
29d3baca7632def182f6a6250f76f26476b491b66dfe819eb6d94008003dfc3dD(�
f9a690e8aa496786b4e27818af37b20bb17b3805bd626de662a2647c04ea6bb1D'�
808bc13d124b864d8dd90f80437bc5d919d6dcdca1ebbd9efcd56e575fbfb500D&�
b957705e340403c636b68ab6ee9c49dd1552eb20220d0175dbbf84f042ac62c4D%�
210a76b6e2c83684ac3c106fff35849b22269be89a5b895625ac4ca5bf489796D$�
9e9a8ce7cbf019108675746a5f67d8ff853fb0b97c72cbd0f4d38b6dad0c96b7D#�
ca73e4d1c2e57869c6e300075fa3bdd65118ee30910c0ed450532b3fd0d7976bD"�
c10b86b4a5c3b1385c04eab748fa24507011e241349fb530ab4df3fbb719f26eD!�
bb1ab36dd4c499189f1a463cc83793aa1e996879aa0fc39e43580add7837b7c9D �
cf900656ad664e99d27fd815261164678b178f186d6fbadf440dbc7ab48fbbfeD�
0f6b2d20fc79acfdc5f930788c81abbec7863d8a4d373229f80a9f4d126d1db8D�
aa0fe451ab8753df55722f121169c9aca26ca19a8b763c4d7f831af3bf826a26D�
e5c8dac0c01ec10e911180046ed350bf3dafcb9bd06121d746055d20b4d55586
B��B�B�o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12
����o�o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
5
�(�5X�#oGThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��"o�=Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��!o�GMark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A� o�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�q�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
����B�%o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��$o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o�'o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��&o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
�
�(���+o�=Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��*o�GMark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�)o�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�(q�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
IfI��-o�GThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule��,m�CThierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype
�����/o�?Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�.o�Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

�r�1q�wMark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�o�0o�sThierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
������5m�CThierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype��4o�=Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��3o�GMark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�2o�Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
�����c�8o�[ Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�7o� Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re{�M�6m�1James Chapman <jachapma@redhat.com> - 1.3.11.1-5f(�@- Bump version to 1.3.11.1-5
- Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
- Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.cplicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
��^���G�<o�# Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�;o�' Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��:o�C Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��9o� Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests
u7u��?o�S Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��>o�K Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�=o� Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
�un���Bo�C!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��Ao�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests��@q�! Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
�3h��E�Eo�!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�Do�#!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�Co�'!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
��>���Hq�!!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��Go�S!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��Fo�K!Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
\���'\�G�Mo�#"Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�Lo�'"Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��Ko�C"Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skewX�JoG!Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��Io�9!Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
u7u��Po�S"Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��Oo�K"Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�No�"Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
u_X�SoG"Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��Ro�9"Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��Qq�!"Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
K�K�G�Vo�##Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�Uo�'#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��To�G"Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
u7u��Yo�S#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��Xo�K#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�Wo�#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
u_X�\oG#Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��[o�9#Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��Zq�!#Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
����B�^o�#Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��]o�G#Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
M5lM��ao�K$Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�`o�$Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�_o�#$Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter
a]��aX�eoG$Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��do�9$Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��cq�!$Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��bo�S$Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server
����B�go�$Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��fo�G$Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
��E�io�%Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars��ho�?$Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
��>���lq�!%Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��ko�S%Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��jo�K%Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
r��r��oo�G%Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�noG%Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��mo�9%Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
�����qo�?%Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�po�%Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)
K
�K��to�S&Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��so�K&Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�o�ro�s%Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
u_X�woG&Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��vo�9&Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��uq�!&Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
����B�yo�&Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��xo�G&Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o�{o�s&Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��zo�?&Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
e
Le�c�~o�['Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-6^\�@- Bump version to 1.3.10.1-6
- Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1803052 - Memory leak in ACI using IP subject
- Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1809160 - Entry cache contention during base search�:�}o�	'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-5^=Q@- Bump version to 1.3.10.1-5
- Resolves: Bug 1744623 - DB Deadlock on modrdn appears to corrupt database and entry cache(cont)�r�|q�w&Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
O�!��o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c�o�['Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re��-�o�o'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�A- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)plicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
�e���G�o�#'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�o�''Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��o�C'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skewts�sx}��������������������������	"',16;@EJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������
	

!$'*-0258:<?BDGJ N!P"S$W%Z&^(a)d*h+j,l-o.r/t0v1z2|3~4�5�6�7�8�
;�<�=�>�?�@�A�B�"D�&E�)F�,G�/H�2I�7J�:K�=L�@M�CN�FO�HP�KQ�OR�QS�ST�VU�YV�[W�^X�aY�cZ�e[�h\�l^�o_�q`�ub�xc�{e�f�g�h�	i�j�
k�l�m�n�p�q�r�#s�%t�'u�+v�-w�/x�1y�5z�8|�<}�?~�B�E��H��M��P��S��Vofflrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������\��^��a��e��g��i��l��o��q��t��w��y��{��~����������������������!��#��&��)��+��/��2��4��9��;��=��A��C��E��G��K��N��R��U��X��[��^��c��f��i��l��o��r��twÃ{ă}ŃƄǄȄɄ
ʄ
˄̄̈́΄Єф҄!Ԅ$Մ'ׄ+؄.ل2ۄ5܄7݄9ބ<߄?�A�E�H�J�O�Q�S�W�Y�[�]�a�g�p�y�����'�1��:��C��L��U��^��g��q��{����
�
P7P�c�o�[(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-6^\�@- Bump version to 1.3.10.1-6
- Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1803052 - Memory leak in ACI using IP subject
- Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1809160 - Entry cache contention during base search�E�o�'Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
O�!��o�(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c�
o�[(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�	o�(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re��-�o�o(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�A- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)plicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
�e���G�o�#(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�
o�'(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��o�C(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew
g7g�-�o�o)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�@- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)��o�K(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�o�(Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped charsplicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
09��0��o�C)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��o�)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c�o�[)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�o�)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re�
�3h��E�o�)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�o�#)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�o�')Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
�>���q�!*Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��o�S*Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��o�S)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-8
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��o�K)Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
r��r��o�G*Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�oG*Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��o�9*Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
�����!o�?*Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B� o�*Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

�r�#q�w*Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�o�"o�s*Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
�0��&o�9+Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��%q�!+Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�A�$o�*Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
,�t.��\��D��r,D8�
7f3bdd324d9659e15f12b5165027a55a0cea71990ff77d978912c84bebe83633D7�
81e77a0ae807ac0a5e4579c4ac44dde54b30b6b5c6ab31d335b8c1bd1836ecb2D6�
af4f36c81584781e9a0b5038c6d887f8d9a95020701f12f3688519038ca47c15D5�
8ad876dd83b3d0a6435b5decb5ebce5c58c33e7d6fe1fd43a96a9f7e6afcb562D4�
fe65f8c1104a49b25deba3a5dd771fe3ef37e4b8efeb398644007101e18a4473D3�
fe57c2235944b61957f96287d962dc8a6f63af33aa9a45b6bff9fc30a34862f5D2�
528e29a03538329527c3f4082c917cb49d0bf14f6f4b401f793a6ea83f341395D1�
373ae4c777d075890ed70569cf89dd0563fc99e76ace4281502f4aed12d4dcf6D0�
30212ff031337cd6d1555e594dd9bb0d28c9a5c7c25257cfe0770146ed77d187D/�
37244afa6bebe0e93a5dcd0ef3ea1ac9a76f734e116ce8c087a5f791ad1136d3D.�
65debf30e942beaf68eeeebb661030f709a1c53b1981536c005e8dddf29b7da6D-�
eef2f7ac436c0d23750d0d428880ec5d58260342fcb7de2587122eea70893429D,�
99549f1842c7801ff61d826ce12f1351ce7f60f836b2dcf51fb46da34c4b3d1eD+�
6471268f8ca47b59f93b0c5a8b8bbf5e9a7d6cfb337f2a89a19b76d82ac5bde2
B��B�B�)o�+Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��(o�G+Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�'oG+Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12
����o�+o�s+Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��*o�?+Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search

�(��/o�9,Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��.o�G+Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�-o�+Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�,q�w+Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
B��B�B�2o�,Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��1o�G,Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�0oG,Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12
����o�4o�s,Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��3o�?,Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
5
�(�5X�9oG-Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��8o�=,Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��7o�G,Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�6o�,Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�5q�w,Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
����B�;o�-Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��:o�G-Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o�=o�s-Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��<o�?-Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
�
�(���Ao�=-Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��@o�G-Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�?o�-Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�>q�w-Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
IfI��Co�G.Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule��Bm�C-Thierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype
�����Eo�?.Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�Do�.Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

�r�Gq�w.Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�o�Fo�s.Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
������Km�C.Thierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype��Jo�=.Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��Io�G.Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�Ho�.Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
�����c�No�[/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�Mo�/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re��M�Lm�1.James Chapman <jachapma@redhat.com> - 1.3.11.1-5f(�@- Bump version to 1.3.11.1-5
- Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
- Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.cplicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
��^���G�Ro�#/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�Qo�'/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��Po�C/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��Oo�/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests
u7u��Uo�S/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��To�K/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�So�/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
�un���Xo�C0Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��Wo�0Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests��Vq�!/Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
�3h��E�[o�0Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�Zo�#0Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�Yo�'0Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
��>���^q�!0Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��]o�S0Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��\o�K0Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
\���'\�G�co�#1Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�bo�'1Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��ao�C1Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skewX�`oG0Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��_o�90Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
u7u��fo�S1Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��eo�K1Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�do�1Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
u_X�ioG1Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��ho�91Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��gq�!1Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
K�K�G�lo�#2Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�ko�'2Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��jo�G1Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
u7u��oo�S2Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��no�K2Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�mo�2Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
u_X�roG2Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��qo�92Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��pq�!2Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
����B�to�2Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��so�G2Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
M5lM��wo�K3Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�vo�3Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�uo�#3Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter
a]��aX�{oG3Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��zo�93Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��yq�!3Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��xo�S3Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server
����B�}o�3Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��|o�G3Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
��E�o�4Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars��~o�?3Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
��>���q�!4Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��o�S4Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��o�K4Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
r��r��o�G4Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�oG4Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��o�94Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
�����o�?4Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�o�4Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)
K
�K��
o�S5Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��	o�K5Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�o�o�s4Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
u_X�
oG5Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��o�95Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��q�!5Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
����B�o�5Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��o�G5Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o�o�s5Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��o�?5Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
e
Le�c�o�[6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-6^\�@- Bump version to 1.3.10.1-6
- Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1803052 - Memory leak in ACI using IP subject
- Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1809160 - Entry cache contention during base search�:�o�	6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-5^=Q@- Bump version to 1.3.10.1-5
- Resolves: Bug 1744623 - DB Deadlock on modrdn appears to corrupt database and entry cache(cont)�r�q�w5Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
O�!��o�6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c�o�[6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�o�6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Reρ-�o�o6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�A- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)plicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
�e���G�o�#6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�o�'6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��o�C6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew
P7P�c�o�[7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-6^\�@- Bump version to 1.3.10.1-6
- Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1803052 - Memory leak in ACI using IP subject
- Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1809160 - Entry cache contention during base search�E�o�6Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
O�!��!o�7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c� o�[7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�o�7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5ReӁ-�o�o7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�A- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)plicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
�e���G�$o�#7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�#o�'7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions��"o�C7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew
g7g�-�'o�o8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.1-7^\�@- Bump version to 1.3.10.1-7
- Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)��&o�K7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication�E�%o�7Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped charsplicaId cant be set to the old value it had before
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
- Resolves: Bug 1762901 - cenotaph errors on modrdn operations
- Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" 
- Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2
- Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group
- Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10
- Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option
- Resolves: Bug 1796558 - Memory leak in ACI using IP subject
- Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments
09��0��+o�C8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-4^�@- Bump version to 1.3.10.2-4
- Resolves: Bug 1837105 - Check for clock errors and time skew��*o�8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-3^��@- Bump version to 1.3.10.2-3
- Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock
- Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests�c�)o�[8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-2^��@- Bump version to  1.3.10.2-2
- Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir
- Resolves: Bug 1801327 - intermittent SSL hang with rhds
- Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted
- Resolves: Bug 1827284 - Memory leak in indirect COS�;�(o�8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-1^oj@- Bump version to  1.3.10.2-1
- Resolves: Bug 1724761 - Entry cache contention during base search
- Resolves: Bug 1515319 - nsDS5Re�
�3h��E�.o�8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-7_�"�- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars�G�-o�#8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-6^��@- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter�I�,o�'8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-5^�?@- Bump version to 1.3.10.2-5
- Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions
�>���2q�!9Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load��1o�S9Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-9
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��0o�S8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-9_���- Bump version to 1.3.10.2-8
- Resolves: Bug 1905450 - Internal unindexed search crashes the server��/o�K8Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-8_��@- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
,�t.��\��D��r,DF�
b15c5bd5d17c47937d82efe2f0ce115cd380671ef484581d4184399c840e2c35DE�
a7b0d2e78f9226d952fd5d798225620b853fb2b0edd6abeda0fcca3095856f7aDD�
cf312b0640aa93a5701862f262416738887b1618922b58eaadfe16d281c1fa7dDC�
d10825f54b07b6022f065b39a4e37c8c89bfdc877a230746fbbc048f9659348aDB�
ef9ae19900dd432de99370f4bb886c82cc0f4b68367dc2be63113d3f3cbd48d1DA�
8b82511897f48ce484e303fe650c32ea1191e71ee0cbd9aff580743fa4f9067cD@�
49941263a7a0309c58b3d3e00ab81c56b1ee1a70b49b873188cc23686f5d3d9bD?�
cae6bd3ac4c68910abe44b5f1d6e48b99b76914d3a6223b9511bde08f8a3e1cdD>�
d98a7567aa18df65a4b612f107387d6f50362fcef232a4c1fe5a246e2d477764D=�
fce742e752f83c91c4d9e2dc4fad5ff1b7affb7363270b752a793df36c00754fD<�
4cae2658d6c984132e253fc1cb8af035251a3acc79acc7957fc3c92111b0f643D;�
6858631f1ec62fd357122548e9196427a27ee3daeb8bc9decbb2919eedf39730D:�
40080eb44ef8aa6b4771bc9e085e56264b9e562822c2bbfbd713b6887b64b41fD9�
7f6f935600e1b0c0b16538a2e5c86c076209ebb973e4d33e6f98c66d85973c9e
r��r��5o�G9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�4oG9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��3o�99Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
�����7o�?9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�6o�9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

�r�9q�w9Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�o�8o�s9Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
�0��<o�9:Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��;q�!:Mark Reynolds <mreynolds@redhat.com> - 1.3.10.2-10`7�@- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load�A�:o�9Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
B��B�B�?o�:Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��>o�G:Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�=oG:Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12
����o�Ao�s:Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��@o�?:Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search

�(��Eo�9;Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-11`���- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN��Do�G:Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�Co�:Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�Bq�w:Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
B��B�B�Ho�;Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��Go�G;Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind ruleX�FoG;Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12
����o�Jo�s;Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��Io�?;Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
5
�(�5X�OoG<Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-12`�+�- Bump version to 1.3.10.2-12��No�=;Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��Mo�G;Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�Lo�;Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�Kq�w;Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
����B�Qo�<Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)��Po�G<Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
����o�So�s<Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database��Ro�?<Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
�
�(���Wo�=<Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��Vo�G<Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�Uo�<Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use�r�Tq�w<Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
IfI��Yo�G=Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13aHw�- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule��Xm�C<Thierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype
�����[o�?=Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15a��- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search�B�Zo�=Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14a{�@- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

�r�]q�w=Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17c6�@- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl�o�\o�s=Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16b�=�- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
������am�C=Thierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4ey��- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype��`o�==Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3d�@- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance��_o�G=Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2dl��- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string�A�^o�=Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1c�@- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
J�A�"�JY�gaW>Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�fa�>Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��ea�Y>Jan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�da�>Jan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�ca{>Jan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)�M�bm�1=James Chapman <jachapma@redhat.com> - 1.3.11.1-5f(�@- Bump version to 1.3.11.1-5
- Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
- Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c
	%�h��.�@�%y�pa�?Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��oa�Y?Jan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�na�?Jan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�ma{?Jan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)e�lcm>Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�kck>Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�jcs>Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�ic7>Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�ha5>Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white images
	7�Y�:�R�7y�ya�@Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��xa�Y@Jan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�wa�@Jan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717e�vcm?Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�uck?Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�tcs?Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�sc7?Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�ra5?Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�qaW?Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)
	`�Y�:��`��a�YAJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�a�AJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717P�cC@Jan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�cm@Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�~ck@Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�}cs@Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�|c7@Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�{a5@Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�zaW@Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)
	d�(��%�Vd��a�YBJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553P�
cCAJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�	cmAJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ckAJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�csAJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�c7AJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5AJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aWAJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�AJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)
	��(��%�V�Q�cEBJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�cCBJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�cmBJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ckBJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�csBJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�c7BJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5BJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�
aWBJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�BJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)
	da��>���dP�cCCJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�cmCJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ckCJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�csCJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�c7CJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5CJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aWCJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�CJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��a�YCJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553

[�0��<�j�[Q�'cEDJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�&cCDJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�%cmDJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�$ckDJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�#csDJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�"c7DJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�!a5DJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY� aWDJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�DJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)Q�cECJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800

Y�.��:�h�YQ�1cEEJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�0cCEJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�/cmEJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�.ckEJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�-csEJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�,c7EJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�+a5EJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�*aWEJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�)a�EJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)S�(cIDJan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211
	B�<��E��Bh�:csFJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�9c7FJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�8a5FJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�7aWFJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�6a�FJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��5a�YFJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�4a�FJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�3a{FJan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)S�2cIEJan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211
	4�1�C�(��4J�Cc7GJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�Ba5GJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�AaWGJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�@a�GJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��?a�YGJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�>a�GJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�=a{GJan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)e�<cmFJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�;ckFJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''
,�t.��\��D��r,DT�
e614cee98b3c2a67c0a489a233ca9a7a574ea6bc8dd166f835f26bca8d3d5f7cDS�
6d4f5821c8a6634679262138e6c634828699fef39bbd22f409c545e572e816bcDR�
572d9ccefce27e99905ba8c221c2216b7ba572949a397e457aeaf3e65ce8b4e4DQ�
fb00ca97e06f7da066e8d05cafb17b9f9680e39f50979090e489d8a1720bb4d4DP�
3fb72ac0367e9afd39874f48b9a0b356b9cbb0b86d41265538358ef72583d32dDO�
5fa6b764fa4d36de1e4b14029d52584b86f65e0020290798aecbd853fb5b4ab5DN�
96954d570d0d25ab837bbc471057f6a90d46ffff9195b1391abb3cbc708c7684DM�
f6a237d150654379162b6b0cb9396c65ec4227bf24e4b01d1dbb5180dc3b28beDL�
342100bd7ce3ca8e951285697781ddb9192c0a02dd56cad55d48bdf20a74bec2DK�
54773bd4792a30ed2a90d50d65778c4d34f672bedec6da03981162ca13109417DJ�
3694e0f350aab4369f5eda09dba8aaf0c4d0128990509c2eab7a69e8a99c5400DI�
208142489b5b939b70a9d0d5242ac84ad700f6bc7f8549c1b26d447993c66b86DH�
3d1f2217dd6b5ed505a6858933c562175be86840b5c6c7328291ec8c31333a56DG�
365ab6c383dd555fe42283836abe7f7014bf20c41b0828d72f1c13ab138cc1d1
	7�.�F�+��7J�Lc7HJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�Ka5HJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�JaWHJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�Ia�HJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��Ha�YHJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�Ga�HJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717e�FcmGJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�EckGJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�DcsGJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflicts
	1�.�s�T�|1H�Ua5IJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�TaWIJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�Sa�IJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��Ra�YIJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�Qa�IJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717P�PcCHJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�OcmHJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�NckHJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�McsHJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflicts
	d�H�y&��dH�^a5JJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�]aWJJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�\a�JJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��[a�YJJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553P�ZcCIJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�YcmIJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�XckIJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�WcsIJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�Vc7IJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68
	[�H�y&�3�[Y�gaWKJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�fa�KJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��ea�YKJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553Q�dcEJJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�ccCJJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�bcmJJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ackJJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�`csJJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�_c7JJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68

d�h��.���dH�qa5LJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�paWLJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�oa�LJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)Q�ncEKJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�mcCKJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�lcmKJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�kckKJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�jcsKJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�ic7KJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�ha5KJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white images

Y�H�y&�|�YH�{a5MJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�zaWMJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�ya�MJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)S�xcILJan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211Q�wcELJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�vcCLJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�ucmLJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�tckLJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�scsLJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�rc7LJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68
	��H�y&�|�}�a�NJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�a{NJan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)S�cIMJan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211Q�cEMJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�cCMJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�cmMJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�~ckMJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�}csMJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�|c7MJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68
	Ia��>���Ik�
a{OJan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)e�cmNJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ckNJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�
csNJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�	c7NJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5NJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aWNJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�NJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��a�YNJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553
	7��e	�q�7e�cmOJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ckOJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�csOJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�c7OJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5OJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aWOJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�OJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��a�YOJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�a�OJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717
	7��e	�q�7e�cmPJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ckPJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�csPJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�c7PJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5PJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aWPJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�PJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��a�YPJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�a�PJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717
	L�-��k�Ld�(ckQJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�'csQJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�&c7QJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�%a5QJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�$aWQJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�#a�QJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��"a�YQJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�!a�QJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717P� cCPJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fix
	d�E�*��6�dd�1ckRJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�0csRJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�/c7RJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�.a5RJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�-aWRJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�,a�RJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��+a�YRJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553P�*cCQJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�)cmQJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 again
	w�E�R�z/�wh�:csSJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�9c7SJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�8a5SJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�7aWSJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�6a�SJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��5a�YSJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553Q�4cERJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�3cCRJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�2cmRJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 again

H�1���g�Hd�DckTJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�CcsTJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�Bc7TJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�Aa5TJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�@aWTJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�?a�TJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)Q�>cESJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�=cCSJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�<cmSJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�;ckSJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''

Y�E���x+�Yd�NckUJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�McsUJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�Lc7UJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�Ka5UJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�JaWUJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�Ia�UJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)S�HcITJan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211Q�GcETJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�FcCTJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�EcmTJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 again
,�t.��\��D��r,Db�
c7663ee5f2439075ade107aa7f0383f301032506d3673446ac4c84d046337418Da�
f27e3d167e8d7cfb2c448d400f034b7443c2e076e94b38a67fddd951a9bf745eD`�
bb05359bb91eb56f0684f800012c621df3fb69caa61349ed4d20292998b1cb0bD_�
4c39fd8baa3677dd6ae1debc1bc8f2bcb012f024717dc7b97179d39ba6e3853fD^�
177ecfa448785c1fa6fae690a5662325ebe3e141bf45117920f280b5a8880a0aD]�
0df91ae3f7e140e17025cfcac0a1bbb8507f665cf4f2ae6e8e6951f0fbc667e5D\�
49ac1322f5ed8d216331f29c35eab930dc5be738f27bf00fca63036fbce5de80D[�
3fa609f1cadb881d127a3eed1c7b8f2fa2ba4efc32cb2e34e025b3d4215af9d1DZ�
e56a5b95dac0bbc46dff9f5743926a4f4bf4883bf7b515cdcd6310771c36a4a8DY�
b095f7fcbb5d718e30c01471ddebc9eca7b0315ab21ba2c286f3e4c44b8bf2b1DX�
d45776ea070dd01bfa5681b3d5be4cd2fdb7fe2baac5c1720ab216221ef7ddf8DW�
c119aff62d5c0644926253cc760d84d4a8fbbb2124668b95f93468f578a85b04DV�
a1ac854d8e90e02d163b93f8f41c02c3b799b35db98f425c835e937468ad058bDU�
f613394ac503882a78ac261fc0ddce0cd6b033530342f31d88f080b4b99f51b0
	6�E��-��6Y�WaWVJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�Va�VJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��Ua�YVJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�Ta�VJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�Sa{VJan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)S�RcIUJan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211Q�QcEUJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�PcCUJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�OcmUJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 again
	%�h��.�@�%y�`a�WJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��_a�YWJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�^a�WJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�]a{WJan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)e�\cmVJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�[ckVJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�ZcsVJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�Yc7VJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�Xa5VJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white images
	7�Y�:�R�7y�ia�XJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��ha�YXJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�ga�XJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717e�fcmWJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�eckWJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�dcsWJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�cc7WJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�ba5WJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aaWWJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)
	`�Y�:��`��ra�YYJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�qa�YJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717P�pcCXJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�ocmXJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�nckXJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�mcsXJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�lc7XJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�ka5XJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�jaWXJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)
	d�(��%�Vd��{a�YZJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553P�zcCYJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�ycmYJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�xckYJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�wcsYJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�vc7YJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�ua5YJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�taWYJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�sa�YJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)
	��(��%�V�Q�cEZJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�cCZJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�cmZJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ckZJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�csZJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�c7ZJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�~a5ZJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�}aWZJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�|a�ZJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)
	da��>���dP�
cC[Jan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�cm[Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ck[Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�
cs[Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�	c7[Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5[Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aW[Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�[Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��a�Y[Jan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553

[�0��<�j�[Q�cE\Jan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�cC\Jan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�cm\Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ck\Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�cs\Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�c7\Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5\Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aW\Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�\Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)Q�cE[Jan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800

Y�.��:�h�YQ�!cE]Jan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P� cC]Jan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�cm]Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�ck]Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�cs]Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�c7]Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�a5]Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�aW]Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�a�]Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)S�cI\Jan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211
	B�<��E��Bh�*cs^Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�)c7^Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�(a5^Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�'aW^Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�&a�^Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��%a�Y^Jan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�$a�^Jan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�#a{^Jan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)S�"cI]Jan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211
	7�1��:��7h�3cs_Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�2c7_Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�1a5_Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�0aW_Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�/a�_Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��.a�Y_Jan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�-a�_Jan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717e�,cm^Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�+ck^Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''
	d�1�?�g�dh�<cs`Jan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�;c7`Jan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�:a5`Jan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�9aW`Jan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�8a�`Jan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��7a�Y`Jan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553P�6cC_Jan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�5cm_Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�4ck_Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''

H�1���g�Hd�FckaJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�EcsaJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�Dc7aJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�Ca5aJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�BaWaJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�Aa�aJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)Q�@cE`Jan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�?cC`Jan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�>cm`Jan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�=ck`Jan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''
	6�E��-��6Y�OaWbJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�Na�bJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��Ma�YbJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�La�bJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717k�Ka{bJan Horak <jhorak@redhat.com> - 6.7.8.9-11V��@- Fixed crash when processing .exr files (rhbz#1303227)S�JcIaJan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211Q�IcEaJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�HcCaJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�GcmaJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 again
	7�h��.��7Y�XaWcJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�Wa�cJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��Va�YcJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553}�Ua�cJan Horak <jhorak@redhat.com> - 6.7.8.9-13W+5�- Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717e�TcmbJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�SckbJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�RcsbJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�Qc7bJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�Pa5bJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white images
,�t.��\��D��r,Dp�
21113ab4dcd135895d98e51d9d540e8be477abdc44e185a460a9a835e382a7c1Do�
a3a98ff12318616c1641d6e0d2dadf6e2f268b6bbc34e65924fe720f0ed2b498Dn�
b59dc7ffbf0ef066ff9a1cf076ed8bff6d49817bed656cf03853d4c14c19563fDm�
c7c905b4d230c3305d7223c1efb2e2c29d90ee0fe667ec5973b84522b52f1b7cDl�
d309a7bec2af466981338b2729711aca0aac30101fc7b53822baf4eca6bf3bf3Dk�
d85c7c7044bb25d459d1d3377a16e6bc25cd16ea3a67985795886527085aca81Dj�
da671c2234ad85d7898dc39cf7cbbe3f81c92f9de8153ed656a948fe022cc14bDi�
b73a625e6724b514380e5393dc8ac1ff68137ee32e63057c82c80eb5439701baDh�
82770f241e9bdc035784ea9189503fbe592d5c29147b6f0860949963afbefbe1Dg�
20385107dd6a4623cd7aaccc57b216a7fd04a22b8f56bf7e874d9fbe49095bf1Df�
53cb4b1814b006d5822769285fafe984c2312ad59f2a1efd65a648bf4d1f6df1De�
af07229f94ef571d7d7fa63fd7b1e5c4feaf193b6302b4faf6e64302611433ceDd�
62f87a828471cada41da0e65515893c663ffb4843c97b49a68ce916292d1f8b2Dc�
4dc1a1327e468460b517ab53ed5f213f2ea0b15a999fc2c3f80d7d5b477118cd
	d�h��.�<�dY�aaWdJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�`a�dJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)��_a�YdJan Horak <jhorak@redhat.com> - 6.7.8.9-15WP�- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
  rhbz#1326834, rhbz#1334188, rhbz#1269553P�^cCcJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�]cmcJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�\ckcJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�[cscJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�Zc7cJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�Ya5cJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white images

d�h��.���dH�ka5eJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white imagesY�jaWeJan Horak <jhorak@redhat.com> - 6.7.8.9-17\4��- Enable lcms2 support (rhbz#1585291)y�ia�eJan Horak <jhorak@redhat.com> - 6.7.8.9-16[�^�- Added fix for long convert under some circumstances (rhbz#1633602)Q�hcEdJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�gcCdJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�fcmdJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�eckdJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�dcsdJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�cc7dJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68H�ba5dJan Horak <jhorak@redhat.com> - 6.7.8.9-18\�,@- Fixed white images

a�H�y&�|�aL�u_?fDaniel Mach <dmach@redhat.com> - 0.14.8-3R�k�- Mass rebuild 2013-12-27h�teqfJon Ciesla <limburgher@gmail.com> - 0.14.8-2Q��- Patch for double free, CVE-2013-2126, BZ 968387.^�se]fJon Ciesla <limburgher@gmail.com> - 0.14.8-1Q��- Latest upstream, fixes gcc 4.8 issues.S�rcIeJan Horak <jhorak@redhat.com> - 6.9.10.68-7e;�- Added fix for CVE-2021-40211Q�qcEeJan Horak <jhorak@redhat.com> - 6.9.10.68-6aK�- Added fix for rhbz#2005800P�pcCeJan Horak <jhorak@redhat.com> - 6.9.10.68-5_ܙ�- Adding CTV-2020-29599 fixe�ocmeJan Horak <jhorak@redhat.com> - 6.9.10.68-4_X@- Build with openjpeg2 to support JPEG2000 againd�nckeJan Horak <jhorak@redhat.com> - 6.9.10.68-3]�M@- Fixing freeze when svg file contains class=''h�mcseJan Horak <jhorak@redhat.com> - 6.9.10.68-2]�@- Fixed ghostscript fonts, fixed multilib conflictsJ�lc7eJan Horak <jhorak@redhat.com> - 6.9.10.68-1]�@�- Rebase to 6.9.10.68
	/s�-�c��/h�~eqgJon Ciesla <limburgher@gmail.com> - 0.14.8-2Q��- Patch for double free, CVE-2013-2126, BZ 968387.^�}e]gJon Ciesla <limburgher@gmail.com> - 0.14.8-1Q��- Latest upstream, fixes gcc 4.8 issues.e�|oafDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-2e6`@- Fix CVE-2021-32142
- Resolves: RHEL-9524b�{o[fDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-1]S��- Update to 0.19.4
- Resolves: #1741274b�zo[fDebarshi Ray <rishi@fedoraproject.org> - 0.19.2-1\,��- Update to 0.19.2
- Resolves: #1543597|�yo�
fDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-2\,��- Remove the samples subpackage from RHEL 7
- Resolves: #1543597b�xo[fDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-1\��- Update to 0.19.1
- Resolves: #1543597_�w�?fDaniel Mach <dmach@redhat.com> - 0.14.8-5.20120830git98d925R�U�- Mass rebuild 2014-01-24�	�v��fDebarshi Ray <rishi@fedoraproject.org> - 0.14.8-4.20120830git98d925R�=�- Fix CVE-2013-1438 and CVE-2013-1439
- Resolves: #1002718
	K�$�]�y�K^�e]hJon Ciesla <limburgher@gmail.com> - 0.14.8-1Q��- Latest upstream, fixes gcc 4.8 issues.e�oagDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-2e6`@- Fix CVE-2021-32142
- Resolves: RHEL-9524b�o[gDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-1]S��- Update to 0.19.4
- Resolves: #1741274b�o[gDebarshi Ray <rishi@fedoraproject.org> - 0.19.2-1\,��- Update to 0.19.2
- Resolves: #1543597|�o�
gDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-2\,��- Remove the samples subpackage from RHEL 7
- Resolves: #1543597b�o[gDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-1\��- Update to 0.19.1
- Resolves: #1543597_��?gDaniel Mach <dmach@redhat.com> - 0.14.8-5.20120830git98d925R�U�- Mass rebuild 2014-01-24�	���gDebarshi Ray <rishi@fedoraproject.org> - 0.14.8-4.20120830git98d925R�=�- Fix CVE-2013-1438 and CVE-2013-1439
- Resolves: #1002718L�_?gDaniel Mach <dmach@redhat.com> - 0.14.8-3R�k�- Mass rebuild 2013-12-27
	A�F�W�s�Ae�oahDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-2e6`@- Fix CVE-2021-32142
- Resolves: RHEL-9524b�o[hDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-1]S��- Update to 0.19.4
- Resolves: #1741274b�o[hDebarshi Ray <rishi@fedoraproject.org> - 0.19.2-1\,��- Update to 0.19.2
- Resolves: #1543597|�
o�
hDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-2\,��- Remove the samples subpackage from RHEL 7
- Resolves: #1543597b�o[hDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-1\��- Update to 0.19.1
- Resolves: #1543597_��?hDaniel Mach <dmach@redhat.com> - 0.14.8-5.20120830git98d925R�U�- Mass rebuild 2014-01-24�	�
��hDebarshi Ray <rishi@fedoraproject.org> - 0.14.8-4.20120830git98d925R�=�- Fix CVE-2013-1438 and CVE-2013-1439
- Resolves: #1002718L�	_?hDaniel Mach <dmach@redhat.com> - 0.14.8-3R�k�- Mass rebuild 2013-12-27h�eqhJon Ciesla <limburgher@gmail.com> - 0.14.8-2Q��- Patch for double free, CVE-2013-2126, BZ 968387.
	H�4�X���Hb�o[iDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-1]S��- Update to 0.19.4
- Resolves: #1741274b�o[iDebarshi Ray <rishi@fedoraproject.org> - 0.19.2-1\,��- Update to 0.19.2
- Resolves: #1543597|�o�
iDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-2\,��- Remove the samples subpackage from RHEL 7
- Resolves: #1543597b�o[iDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-1\��- Update to 0.19.1
- Resolves: #1543597_��?iDaniel Mach <dmach@redhat.com> - 0.14.8-5.20120830git98d925R�U�- Mass rebuild 2014-01-24�	���iDebarshi Ray <rishi@fedoraproject.org> - 0.14.8-4.20120830git98d925R�=�- Fix CVE-2013-1438 and CVE-2013-1439
- Resolves: #1002718L�_?iDaniel Mach <dmach@redhat.com> - 0.14.8-3R�k�- Mass rebuild 2013-12-27h�eqiJon Ciesla <limburgher@gmail.com> - 0.14.8-2Q��- Patch for double free, CVE-2013-2126, BZ 968387.^�e]iJon Ciesla <limburgher@gmail.com> - 0.14.8-1Q��- Latest upstream, fixes gcc 4.8 issues.
	E�7�}��)�Eb�"o[jDebarshi Ray <rishi@fedoraproject.org> - 0.19.2-1\,��- Update to 0.19.2
- Resolves: #1543597|�!o�
jDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-2\,��- Remove the samples subpackage from RHEL 7
- Resolves: #1543597b� o[jDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-1\��- Update to 0.19.1
- Resolves: #1543597_��?jDaniel Mach <dmach@redhat.com> - 0.14.8-5.20120830git98d925R�U�- Mass rebuild 2014-01-24�	���jDebarshi Ray <rishi@fedoraproject.org> - 0.14.8-4.20120830git98d925R�=�- Fix CVE-2013-1438 and CVE-2013-1439
- Resolves: #1002718L�_?jDaniel Mach <dmach@redhat.com> - 0.14.8-3R�k�- Mass rebuild 2013-12-27h�eqjJon Ciesla <limburgher@gmail.com> - 0.14.8-2Q��- Patch for double free, CVE-2013-2126, BZ 968387.^�e]jJon Ciesla <limburgher@gmail.com> - 0.14.8-1Q��- Latest upstream, fixes gcc 4.8 issues.e�oaiDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-2e6`@- Fix CVE-2021-32142
- Resolves: RHEL-9524
	E�3�g�)�E|�+o�
kDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-2\,��- Remove the samples subpackage from RHEL 7
- Resolves: #1543597b�*o[kDebarshi Ray <rishi@fedoraproject.org> - 0.19.1-1\��- Update to 0.19.1
- Resolves: #1543597_�)�?kDaniel Mach <dmach@redhat.com> - 0.14.8-5.20120830git98d925R�U�- Mass rebuild 2014-01-24�	�(��kDebarshi Ray <rishi@fedoraproject.org> - 0.14.8-4.20120830git98d925R�=�- Fix CVE-2013-1438 and CVE-2013-1439
- Resolves: #1002718L�'_?kDaniel Mach <dmach@redhat.com> - 0.14.8-3R�k�- Mass rebuild 2013-12-27h�&eqkJon Ciesla <limburgher@gmail.com> - 0.14.8-2Q��- Patch for double free, CVE-2013-2126, BZ 968387.^�%e]kJon Ciesla <limburgher@gmail.com> - 0.14.8-1Q��- Latest upstream, fixes gcc 4.8 issues.e�$oajDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-2e6`@- Fix CVE-2021-32142
- Resolves: RHEL-9524b�#o[jDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-1]S��- Update to 0.19.4
- Resolves: #1741274
A�6�A�	�/u�!lBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)e�.oakDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-2e6`@- Fix CVE-2021-32142
- Resolves: RHEL-9524b�-o[kDebarshi Ray <rishi@fedoraproject.org> - 0.19.4-1]S��- Update to 0.19.4
- Resolves: #1741274b�,o[kDebarshi Ray <rishi@fedoraproject.org> - 0.19.2-1\,��- Update to 0.19.2
- Resolves: #1543597
 r� ��2u�lBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�1u�lBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�0k�-lThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)ofwflrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|����������������������(�1�:�D�N�W	�`
�i�r�{
��
��!�*�3�<�F�O�X�a�k�u�~����" �+!�/"�2$�7%�9&�<'�A(�C)�F*�K+�M,�P-�U.�W/�Z0�_1�a3�d4�i5�k6�n7�s8�u9�x:�};�<�=�>�	?�@�A�B�C�D�E� F�%G�'H�*I�/J�1K�4L�9M�;N�>O�CP�EQ�HR�MS�OT�RU�WV�YW�\X�aY�cZ�f[�k\�m^�r_�w`�~a�b�c�d�&e�0f�:g�Dh�Ni�Xj�bk�ll�sn�yo�p�q�r�s�t� u�'v�,
.����.�I�7k�+lThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��6u�-lBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�5uSlBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�4k�slThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�3u�AlBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�9u�!mBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�8k�_lThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��<u�mBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�;u�mBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�:k�-mThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�Ak�+mThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��@u�-mBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�?uSmBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�>k�smThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�=u�AmBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�Cu�!nBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�Bk�_mThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��Fu�nBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�Eu�nBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�Dk�-nThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�Kk�+nThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��Ju�-nBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�IuSnBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�Hk�snThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�Gu�AnBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�Mu�!oBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�Lk�_nThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��Pu�oBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�Ou�oBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�Nk�-oThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�Uk�+oThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��Tu�-oBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�SuSoBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�Rk�soThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�Qu�AoBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�Wu�!pBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�Vk�_oThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��Zu�pBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�Yu�pBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�Xk�-pThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�_k�+pThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��^u�-pBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�]uSpBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�\k�spThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�[u�ApBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�au�!qBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�`k�_pThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
,�t.��\��D��r,D~�
8376cfa512fe6b2ff76656a962eb9991e84736e4a697d521ce94ef01b76d8224D}�
96e5936275322903cfbb6baf53a0c7b17d256a8f32f01311f863e027c6f7d955D|�
1eae80c524fc2bc5a90ced35062890a40b5625b866e658c984d2c21a6b84fbdaD{�
0d7ee838bc95b1ca0f6653c7bb6bf7f82fd91bddf5008eb108ab46da2a4a15a4Dz�
bcf2e159d49fe0cc5b342fc05255f862141272c22ce694e38e0133129e1ca198Dy�
6a1e8e996df86eab01a9069d9b5a346d8a727e6c633a9f89b1adef59b208e01dDx�
cbb13427dedac5cf271bc5a5113b736a34f96516510eb972cb3320ae396950fbDw�
80bdac5815e2cb87ffd8f9a1347f373f9a9ced0b8d2fe36ed814bd54f4ef39faDv�
366db37e736f288688e2f7de25a2589d720f57d0ee9d9147989b609d9dfea648Du�
9b6de03afb9e2ed1eb1fe326e14a90ed08a67cee15e148db6d1d484cd4022e4cDt�
d7b21ff17ce56f83ff2000fca6f369f4160b7c039d960862da62ff6aab5c8df3Ds�
3cbf76c62b3dabd78db73ad0e95a34d50022e61f36e7a967aabcc7f9c3f4c6ccDr�
2020ae44e6c85c50fdf7fbfec19d2bbaf6f8395f641b1b48c4743285b9fd8bdcDq�
121ed67b550b9b757c921a1f6eba668e72a8d28d183054b14f8e1d37b81b602b
 r� ��du�qBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�cu�qBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�bk�-qThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�ik�+qThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��hu�-qBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�guSqBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�fk�sqThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�eu�AqBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�ku�!rBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�jk�_qThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��nu�rBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�mu�rBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�lk�-rThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�sk�+rThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��ru�-rBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�quSrBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�pk�srThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�ou�ArBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�uu�!sBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�tk�_rThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��xu�sBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�wu�sBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�vk�-sThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�}k�+sThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��|u�-sBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�{uSsBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�zk�ssThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�yu�AsBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�u�!tBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�~k�_sThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��u�tBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�u�tBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�k�-tThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�k�+tThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��u�-tBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�uStBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�k�stThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�u�AtBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�	u�!uBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�k�_tThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��u�uBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�u�uBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�
k�-uThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�k�+uThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��u�-uBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�uSuBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�k�suThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�
u�AuBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�u�!vBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�k�_uThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��u�vBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�u�vBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�k�-vThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�k�+vThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��u�-vBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�uSvBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�k�svThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�u�AvBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�u�!wBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�k�_vThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� �� u�wBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�u�wBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�k�-wThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�%k�+wThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��$u�-wBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�#uSwBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�"k�swThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�!u�AwBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�'u�!xBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�&k�_wThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��*u�xBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�)u�xBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�(k�-xThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�/k�+xThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��.u�-xBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�-uSxBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�,k�sxThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�+u�AxBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�1u�!yBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�0k�_xThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��4u�yBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�3u�yBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�2k�-yThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�9k�+yThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��8u�-yBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�7uSyBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�6k�syThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�5u�AyBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�;u�!zBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�:k�_yThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��>u�zBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�=u�zBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�<k�-zThomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�Ck�+zThomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��Bu�-zBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�AuSzBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�@k�szThomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�?u�AzBeniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�Eu�!{Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�Dk�_zThomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��Hu�{Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�Gu�{Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�Fk�-{Thomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�Mk�+{Thomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��Lu�-{Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�KuS{Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�Jk�s{Thomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�Iu�A{Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�Ou�!|Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�Nk�_{Thomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��Ru�|Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�Qu�|Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�Pk�-|Thomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�Wk�+|Thomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��Vu�-|Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�UuS|Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�Tk�s|Thomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�Su�A|Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�Yu�!}Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�Xk�_|Thomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��\u�}Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�[u�}Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�Zk�-}Thomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�ak�+}Thomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��`u�-}Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�_uS}Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�^k�s}Thomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�]u�A}Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���	�cu�!~Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.0-6]B�@- core: fix activation of ovs slaves after a service restart (rh #1733709)�c�bk�_}Thomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)
 r� ��fu�~Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-3^[�- ovs: allow changing mac address of bridges and interfaces (rh #1740557)�B�eu�~Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.4-2]�@- dhcp: include conditionals from existing dhclient configuration (rh #1758550)
- core: fix sending ARP announcements (rh #1767681)�
�dk�-~Thomas Haller <thaller@redhat.com> - 1:1.18.4-1]��- Update to 1.18.4 release
- cli: fix bash completion for slave-types (rh #1654062)
- core: improve handling of policy routing rules when restarting daemon (rh #1696881)
- ifcfg-rh: preserve existance of ethernet setting in profile (rh #1703960)
- tui: only add bond options to profile that are supported by tui (rh #1715720)
- cli: fix resetting default value for properties (rh #1715887)
- core: fix detecting parent device by connection's UUID (rh #1716438)
- core: fix setting IPv6 route options and destination (rh #1727193)
- core: support more "arp_validate" bond options (rh #1730793)
.����.�I�kk�+~Thomas Haller <thaller@redhat.com> - 1:1.18.8-1^�@- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.��ju�-~Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-4^��@- ip-tunnel: set cloned-mac-address only for layer2 tunnel devices (rh #1832170)a�iuS~Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-3^���- Update translations (rh #1796852)�-�hk�s~Thomas Haller <thaller@redhat.com> - 1:1.18.6-2^��- vpn: gracefully handle invalid routes from VPN plugins
- workaround g_strtoll() failing with EAGAIN (rh #1797915)�Y�gu�A~Beniamino Galvani <bgalvani@redhat.com> - 1:1.18.6-1^��- Update to 1.18.6 release
- cli: unset "ipv[46].never-default" when setting "ipv[46].gateway" (rh #1785039)
- core: keep MTU of MACsec and MAC-VLAN interfaces in sync with parent (rh #1723690)
- core: forbid autoactivation of parent when it is blocked by user request (rh #1765566)
���`�m[�iSumit Bose <sbose@redhat.com> - 0.8.1-8\��@- Various updates for RHEL-7.7
- many adcli-krb5-????? directories are created /tmp [#1588596]
- adcli exports kerberos ticket with old kvno [#1642546]
- [RFE] Have `adcli join` work without FQDN in `hostname` output [#1595911]
- Improve handling of service principals [#1644311]
- [RFE] adcli command with --unix-* options doesn't update
  values in UnixAttributes Tab for user [#1337489]
- [RFE] adcli join should preserve SPN added by adcli preset-computer [#1630187]
- [RFE] Need an option for adcli command which will show domain join status. [#1622583]�c�lk�_~Thomas Haller <thaller@redhat.com> - 1:1.18.8-2_ts@- Backport OVS related fixes (rh #1871935)
- ovs: support changing the MTU of ovs interfaces (rh #1820052)
- ovs: fix race condition in setting MAC address (rh #1852106)

f�s,��W��;��fD��
3d9697b9d1df6afe1e6f7753c817927e77aab45d8ae4e6b00aab690614c170a3D�
�
27b3a6d5e1c664607297b18087e7b61c8f79281dcd08b501d6a4a98d0f06ccc1D�	�
2eebe28ab1f164eeb8573869c86de47b750d8a043f1b3897566fe0753003f2a4D��
43e5f421e8e3c2fe23f7a93bd002c12ec11faf3194b342d07ee3a9f9fb37a875D��
dc1ec1c4e74af368428ce982615f87d7121b8baea33bec02313d1f3b501a036eD��
892fa4df2150169a5c8680af75e4e63f2ffbf5ca0f9dafb19d1928769a5769b9D��
e291f44f4466940d2b21380d3d68e50016685dad9868bd9563a304233da7eca0D��
da160f160c233fe77d6e2113aad1a189ed766c41fc8254b49f764306d9538dc9D��
b8b4286c072a6e2914a35c1f9d77c2d2f6fc910361424e0fd362363d7d5d74a7D��
82e901dcdc6ecc6088013e726925ea0a208b449014b09f844465ad5d7b305805D��
f7e3acc601ed8b9698fbc58cf297b2ad5a49ead168e515f329e2d95f3cd8083dD��
e00e4e27e76a7ce874a947e6df6282be03c80787552e9101d00197dc467c0182D�
db29a04632a66bb63dd0b015dea1aadce0cd2e22371225ebfeec0ec5dec16c02
-�OV�-��r]�ESumit Bose <sbose@redhat.com> - 0.8.1-13^�@- adcli should be able to Force LDAPS over 636 with AD Access Provider w.r.t sssd [#1786776]��q]�KSumit Bose <sbose@redhat.com> - 0.8.1-12]o�@- adcli info should send netlogin pings to all domain controllers, not only a subset [#1685138]�u�p]�Sumit Bose <sbose@redhat.com> - 0.8.1-11]e@- Fixes and improvements for RHEL-7.8
- Issue is that with arcfour-hmac as first encryption type in the config ... [#1683745]
- adcli update --add-samba-data does not work as expected [#1738573]�#�o]�mSumit Bose <sbose@redhat.com> - 0.8.1-10]QT�- adcli is failing with "Couldn't add keytab entries: FILE:/etc/krb5.keytab:
  Cannot allocate memory" [1665162]��n[�5Sumit Bose <sbose@redhat.com> - 0.8.1-9\��- Fixes for RHEL-7.7 updates
- additional patch for [RFE] adcli join should preserve SPN added by adcli
  preset-computer [#1630187]
- new patches for many adcli-krb5-????? directories are created /tmp [#1588596]
��(���w���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.15.1-5Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildV�vaQSumit Bose <sbose@redhat.com> - 0.8.1-16.1_��A- add missing patch for [#1871436]��u]�+Sumit Bose <sbose@redhat.com> - 0.8.1-16_��@- adcli: couldn't connect to KEYRING:persistent:0:krb_ccache_jgrrBI8 [#1871436]��t]�5Sumit Bose <sbose@redhat.com> - 0.8.1-15^�(@- More fixes for RHEL-7.9
- No longer able to delete computer from AD using adcli [#1840752]
- adcli: presetting $computer in $domain domain failed: Cannot set computer
  password: Authentication error [#1762633]�j�s]�{Sumit Bose <sbose@redhat.com> - 0.8.1-14^�=@- Fixes for RHEL-7.9
- Update' adcli update --add-samba-data ' info under correct section in man adcli [#1774622]
- [abrt] [faf] adcli: raise(): /usr/sbin/adcli killed by 6 [#1802258]
sQ�e�sc�~gc�Radovan Sroka <rsroka@redhat.com> - 0.15.1-12X���- RHEL 7.4 ERRATUM
  Resolves: rhbz#1377215��}m�%�Daniel Kopecek <dkopecek@redhat.com> - 0.15.1-11W�@- Corrected typos in the default configuration file
  Resolves: rhbz#1304334�)�|m�g�Daniel Kopecek <dkopecek@redhat.com> - 0.15.1-10Wm �- Updated the default configuration file. New defaults contributed
  by Steve Grubb.
  Resolves: rhbz#1304334��{k�M�Daniel Kopecek <dkopecek@redhat.com> - 0.15.1-9S�u�- Don't require prelink on aarch64 and ppc64le
  Resolves: rhbz#1078555
  Resolves: rhbz#1125462M�z_?�Daniel Mach <dmach@redhat.com> - 0.15.1-8R�U�- Mass rebuild 2014-01-24M�y_?�Daniel Mach <dmach@redhat.com> - 0.15.1-7R�k�- Mass rebuild 2013-12-27�+�xk�m�Daniel Kopecek <dkopecek@redhat.com> - 0.15.1-6R|�@- warn if processing prelinked binary objects and the prelink binary
  is not available
  Resolves: rbhz#1004826

T�#�m�s�Tb�_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�cq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldapt�e��Radovan Sroka <rsroka@redhat.com> - 0.15.1.1a��@- backported fix for CVE-2021-45417
  resolves: rhbz#2041952c�gc�Radovan Sroka <rsroka@redhat.com> - 0.15.1-13X��@- RHEL 7.4 ERRATUM
  Resolves: rhbz#1400548

I��b��h��Ib�_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�
cq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��
o�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�	]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�cq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��o�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�&_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�%]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�$_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�#[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�"[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�!cq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^� _a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��o�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�0_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�/]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�._u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�-[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�,[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�+cq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�*_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�)[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��(o�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�']?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�:_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�9]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�8_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�7[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�6[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�5cq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�4_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�3[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��2o�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�1]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�D_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�C]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�B_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�A[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�@[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�?cq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�>_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�=[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��<o�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�;]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�N_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�M]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�L_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�K[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�J[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�Icq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�H_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�G[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��Fo�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�E]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�X_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�W]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�V_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�U[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�T[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�Scq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�R_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�Q[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��Po�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�O]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�b_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�a]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�`_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�_[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�^[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�]cq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�\_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�[[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��Zo�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�Y]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

I��b��h��Ib�l_i�Honza Horak <hhorak@redhat.com> - 1.5.2-5R�x@- Rebuild for mariadb-libs
  Related: #1045013L�k]?�Daniel Mach <dmach@redhat.com> - 1.5.2-4R�k�- Mass rebuild 2013-12-27h�j_u�Jan Kaluza <jkaluza@redhat.com> - 1.5.2-3Q���- do not build with freetds when it is not availableF�i[5�Joe Orton <jorton@redhat.com> - 1.5.2-2Qd�- update for aarch64C�h[/�Joe Orton <jorton@redhat.com> - 1.5.2-1Qd�- update to 1.5.2h�gcq�Jon Ciesla <limburgher@gmail.com> - 1.4.1-8Q�@- Apply private patch from Merge Review BZ 225254.^�f_a�Jan Kaluza <jkaluza@redhat.com> - 1.4.1-7P�M@- ensure we use latest libdb5 (not libdb4)R�e[M�Joe Orton <jorton@redhat.com> - 1.4.1-6P�@- use -lldap_r instead of -lldap��do�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�c]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24
����n��r�se��Tomáš Mráz <tmraz@redhat.com> - 3.1.13-20U���- build the package with hardening flags (PIE, full RELRO)s�re��Tomáš Mráz <tmraz@redhat.com> - 3.1.13-18T.��- filter environment variables not acceptable in bash inputN�qa?�Daniel Mach <dmach@redhat.com> - 3.1.13-17R�U�- Mass rebuild 2014-01-24�@�p{��Marcela Mašláňová <mmaslano@redhat.com> - 3.1.13-16RΏ@- the correct solution is remove smp_flags, they don't work properly on ppc with
  the option mpower7
- Related: rhbz#1048745��o{�)�Marcela Mašláňová <mmaslano@redhat.com> - 3.1.13-15Rʚ�- remove old changelogs
- ppc fail to rebuild package
- Resolves: rhbz#1048745��no�=�Luboš Uhliarik <luhliari@redhat.com> - 1.5.2-6.1dZ5�- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
  in the apr_base64L�m]?�Daniel Mach <dmach@redhat.com> - 1.5.2-6R�U�- Mass rebuild 2014-01-24

e�r+��V��:��eD��
552aefa94572e48c27a350e1ef2936db101b0d78eba2ef8d8369a651e1bbd1dfD��
bb6e90b56d4b253121d4d970d8427ccc31a51594a6631e598efd9c3a3c659156D��
cb5931215d156696cbe58219e39202ac72b87128adece13396ffa94ab6dad395D��
586962e501bdd67c2893b8019c9cdcd07d6767b123c3fe8e93e64e94439c832bD��
b05cbfb8155501322d2372a41219a106a3f361ad36d86f1e9fcf2f235dd2e63cD��
328461666a24e217d010ef9c4a1fa1802b6a66e769d41f06e0f36ef5390ce3b5D��
0a712b8f1eda25e3f9a256fe884b8e622404b2f830abfa7cb7a720a164b44109D��
7d5e6120ec65accb2c5c369568085687a5c6a5b1b8a72db4eab223aeff60b971D��
b1fc5ae8c9c372eb9d1971e1612aa3947e2c1b7fb9700813c9c66f35908dd4b3D��
d7f65f5f9fa39de94807feafc132da13d35ac5d5d8864bf8bb7af2099bd8163eD��
56771785cffde9bcf2a1b33447024e6a12a3805c64a69be7e940a45fda1e2824D�
�
73839ad166f5daa6f4e5a2a9b08686fda05962283302afa1963df3b66c4b53e0D��
f9a5378694573063ecf61c516d27731ba3a515cc1b91bfced9a7057634a8d54c
]��U�]��y{�)�Marcela Mašláňová <mmaslano@redhat.com> - 3.1.13-15Rʚ�- remove old changelogs
- ppc fail to rebuild package
- Resolves: rhbz#1048745`�xe_�Jan Staněk <jstanek@redhat.com> - 3.1.13-25b��- re-import selinux support from upstreamO�we=�Tomáš Mráz <tmraz@redhat.com> - 3.1.13-24[W�- log the jobs being run��ve��Tomáš Mráz <tmraz@redhat.com> - 3.1.13-23Y�o@- fix the ownership of the spool directory (#1414228)
- document the -n option of atd (#739870)
- fix handling of the aborted jobs (due to possibly
  temporary conditions) and avoid flooding the syslogh�ueo�Tomáš Mráz <tmraz@redhat.com> - 3.1.13-22WB�- SIGPIPE should not be ignored in atd (#1338039)�e�te�g�Tomáš Mráz <tmraz@redhat.com> - 3.1.13-21Wo@- correct the DST correction when using UTC time specification (#1328832)
- clear non-job files from at dir and test for write error on fclose
  to fix bogus syslog messages
�<�u�h�eo�Tomáš Mráz <tmraz@redhat.com> - 3.1.13-22WB�- SIGPIPE should not be ignored in atd (#1338039)�e�~e�g�Tomáš Mráz <tmraz@redhat.com> - 3.1.13-21Wo@- correct the DST correction when using UTC time specification (#1328832)
- clear non-job files from at dir and test for write error on fclose
  to fix bogus syslog messagesr�}e��Tomáš Mráz <tmraz@redhat.com> - 3.1.13-20U���- build the package with hardening flags (PIE, full RELRO)s�|e��Tomáš Mráz <tmraz@redhat.com> - 3.1.13-18T.��- filter environment variables not acceptable in bash inputN�{a?�Daniel Mach <dmach@redhat.com> - 3.1.13-17R�U�- Mass rebuild 2014-01-24�@�z{��Marcela Mašláňová <mmaslano@redhat.com> - 3.1.13-16RΏ@- the correct solution is remove smp_flags, they don't work properly on ppc with
  the option mpower7
- Related: rhbz#1048745
b��F��bt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode`�e_�Jan Staněk <jstanek@redhat.com> - 3.1.13-25b��- re-import selinux support from upstreamO�e=�Tomáš Mráz <tmraz@redhat.com> - 3.1.13-24[W�- log the jobs being run��e��Tomáš Mráz <tmraz@redhat.com> - 3.1.13-23Y�o@- fix the ownership of the spool directory (#1414228)
- document the -n option of atd (#739870)
- fix handling of the aborted jobs (due to possibly
  temporary conditions) and avoid flooding the syslog
�x���~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��
u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�	u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPS
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�
w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~� w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��'u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�&u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�%uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�$u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��#u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�"uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�!w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�,w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��+u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��*g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�)w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�(ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�4w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�3ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��2u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�1u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�0uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�/u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��.u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�-uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��;u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�:u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�9uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�8u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��7u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�6uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�5w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�@w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��?u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��>g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�=w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�<ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�Hw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Gui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��Fu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Eu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Duw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Cu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Bu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Auw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��Ou��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Nu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Muw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Lu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Ku��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Juw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�Iw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�Tw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��Su�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��Rg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�Qw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Pui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�\w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�[ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��Zu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Yu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Xuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Wu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Vu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Uuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��cu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�bu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�auw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�`u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��_u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�^uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�]w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�hw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��gu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��fg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�ew��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�dui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�pw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�oui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��nu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�mu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�luw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�ku[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��ju��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�iuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor

e�r+��V��:��eD�%�
81673643543357b7e306b0565d82bcd642537fefb2eb0244c2dc8b1dbe481c2bD�$�
7a7b265708dca056a11cfae6ae29db41405f54311ecc3a62636751d2e8044546D�#�
5530c892f1f2952996a03043005582fd05142b2402c3d3ba2d871149e6f6b902D�"�
cb353d5c74471de09be7e0fd09fe8cc300e96b28268cedc2c0c08e286daf5f95D�!�
a1015ebe13614d40e027fbd95e9c012b121af65537d9fa42d84ae37bd4b3f77aD� �
8ce3c00b5ddec20bc2e8b9298da33c7143687fe46bc2765f98f31a35a820ac4dD��
da01a171c185a98e0fc00bd31c919dcde123a4f0d7b42379acae4b7bd481a35aD��
275d7c54ef8b97dfca3a0aeae434bcf2bc9cc690357c78c2944a06043dd90fbeD��
d20149409ae526dab742784b326a5dd70b37681effe645a6221fdfc0adcaf401D��
fdff2f1a1756e0f2d41cfa80f3b32907c40bd0172a470e140d1cb91e3b1dbecaD��
b0fbae2e0eb181380b19d158478bf7d42c9f4424384f6f24d8b1d95b7a9954b9D��
8a6f4b746d5edf5cd1a9c83d8f03ddbe3050f70230be328aa88328d12100ea4bD��
43797987bd1c6a7789711b4d44fcbdd981073b3086621718cadbafddd9a64625
1'�(�H�1��wu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�vu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�tu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��su��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�ruw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�qw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�|w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��{u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��zg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�yw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�xui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��~u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�}uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�
u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�	uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�
w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�$w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��#u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��"g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�!w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm� ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�,w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�+ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��*u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�)u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�(uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�'u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��&u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�%uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��3u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�2u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�1uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�0u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��/u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�.uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�-w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�8w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��7u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��6g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�5w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�4ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�@w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�?ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��>u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�=u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�<uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�;u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��:u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�9uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��Gu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Fu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Euw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Du[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Cu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Buw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�Aw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�Lw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��Ku�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��Jg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�Iw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Hui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�Tw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Sui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��Ru��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Qu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Puw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Ou[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Nu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Muw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��[u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Zu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Yuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Xu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Wu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Vuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�Uw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�`w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��_u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��^g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�]w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�\ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�hw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�gui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��fu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�eu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�duw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�cu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��bu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�auw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��ou��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�nu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�muw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�lu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��ku��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�juw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�iw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�tw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��su�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��rg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�qw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�pui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�2�
40e08209c8de5003d4423a0ad7ed9c6b0f8180f4ac00c11d42d96a7a5069ebdbD�1�
0dafa08f6f467ecca9fd5fafad09fcd5cac9b1f2f050f88329a90f3434c52078D�0�
cfeadf715a776582bc168121a31f85069becc17f2556be2c3ea11c7d6040209dD�/�
6d1d56332454173cddc2595690e7c56c35decdfd2263853829c0fd32e430c247D�.�
3525be93a809d42aa8d6b8563d5762f4fd6f25a1b228b65589656a65c2bbba4aD�-�
e638dd51d9159ae8157653edb26aaf106eb560ae53f15fb80efa319e41e729b6D�,�
29938eb53cc7e9d2d0198a3a51f899d7a6d63659353fc78aac0dd24310a2cd39D�+�
dd33037be3199f5576c54b56155a6558f0ffc24162964a2a3f1e2dd0be0681c8D�*�
a1186ec734eb9834a2715c84b38c55a5efc049d49063deb03d006c6cbc9dd48cD�)�
0ddc672fbbf22b385a04e5922c34037d8950a75fb1cd0527f909bcc1783abb9fD�(�
46604e7e63c82851d300be853fd43bec9f863d6c14a9a404185a9c0fe6b88932D�'�
cfeef0c73c66033047dc4cf15b633dace6008e084cb069e2c95d1c60abffd496D�&�
04c1cb44a333186da972033dd6cf11d36780a1631c165568ae8099544c2c1543
��!�
�~�|w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�{ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��zu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�yu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�xuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�wu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��vu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�~uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�}w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�
u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��
u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�	uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�$w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�#ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��"u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�!u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t� uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��+u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�*u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�)uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�(u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��'u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�&uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�%w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�0w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��/u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��.g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�-w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�,ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�8w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�7ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��6u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�5u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�4uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�3u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��2u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�1uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��?u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�>u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�=uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�<u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��;u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�:uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�9w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�Dw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��Cu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��Bg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�Aw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�@ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�Lw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Kui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��Ju��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Iu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Huw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Gu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Fu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Euw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��Su��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Ru�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Quw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Pu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Ou��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Nuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�Mw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�Xw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��Wu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��Vg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�Uw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Tui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�`w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�_ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��^u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�]u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�\uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�[u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Zu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Yuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��gu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�fu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�euw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�du[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��cu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�buw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�aw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialogof�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������x�;y�@z�H{�O|�T}�\~�c�h��p��w��|������������$��,��3��8��@��G��L��T��[��`��h��o��t��|������������$��+��0��8��?��D��L��S��X��`��g��l��t��{������������#��(��0��7��<��D��K��P��X��_��d��l��s��x��ÏďŏƏ Ǐ(ȏ/ɏ4ʏ<ˏC̏H͏PΏWϏ\ЏdяkҏpӏxՏ֐אِؐېܐ ݐ%ߐ(�-�4�:�A�H�N�U�\�b�i�p�v�}��

���`��U�lw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��ku�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��jg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�iw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�hui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�tw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�sui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��ru��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�qu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�puw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�ou[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��nu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�muw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor

e�r+��V��:��eD�?�
53cf10100297e3ee9624975cc473fc78d64bd6ad2a0106e1e5fd695e76c2ce9cD�>�
334cdf2e5acff8ba4421fc51d46210b1cc6cca7070a3a55c0b71135ea842a3c7D�=�
cda41b361d863ac2471e67f30a37dfa1d776eb1ecdfd24b6d620d454ea726cf4D�<�
e55f24cd7b3be8300c44b260f1159a66b99a1775ff2fe6134024d8c234f14559D�;�
0184b3c53d99c0d7a743fc2eefaec2158d3ccddc254688d6b5fed77bcdaf78d0D�:�
39ac208f2aaeedee724d09ffc9d779294a7721cd83807bbda081d0114bd94acdD�9�
fad6c8c1ae7000eeba2040a8163e5cc4920ac0d48ff08d1634dbe24df69b112dD�8�
5b0b31c3c4aa723f9a677d0ccaea58da6ec37710d6177cb930b490c716240bf8D�7�
be0ce9e4ff4bdfae6a6868243b708bb09deb84a5401d6d59e749b0aa376ff432D�6�
5d2375f20cc25e073efba76f4aeff505ebc4d30019f64ff6c16696cf30c075d2D�5�
11d3ec6a7cbf0f5ab4a611abed3a8e577bdb9e6c35243dff95e929892554069cD�4�
64701408bd6314de93c364f1b1a6d1f58f607d97f62aed713456040f9a7d6a21D�3�
7b8ac8b33b435a9814ec099de17eab143568599d591c4426da4cffcce26808a6
1'�(�H�1��{u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�zu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�yuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�xu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��wu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�vuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�uw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��~g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�}w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�|ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�
uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�
uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�	w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��#u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�"u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�!uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf� u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�(w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��'u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��&g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�%w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�$ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�0w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�/ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��.u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�-u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�,uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�+u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��*u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�)uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��7u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�6u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�5uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�4u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��3u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�2uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�1w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�<w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��;u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��:g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�9w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�8ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�Dw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Cui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��Bu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Au�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�@uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�?u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��>u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�=uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��Ku��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Ju�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Iuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Hu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Gu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Fuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�Ew�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�Pw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��Ou�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��Ng�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�Mw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Lui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�Xw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Wui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��Vu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Uu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Tuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Su[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Ru��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Quw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��_u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�^u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�]uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�\u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��[u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Zuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�Yw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�dw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��cu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��bg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�aw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�`ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�lw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�kui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��ju��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�iu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�huw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�gu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��fu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�euw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��su��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�ru�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�quw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�pu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��ou��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�nuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�mw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�xw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��wu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��vg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�uw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�tui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�L�
fdb3d033e3ca54175fbc3432d0eaabe73a06e7062247eadf1c8f79411c315081D�K�
9888e1c7e5a6ba68fcb281294fab022f976b2e122801da77461f2029f281517bD�J�
b5a2b6df0e41a71f9cfd396eaf57386bb3c21a06e22de723d7391c558e82402fD�I�
327a16cb84103e242030ecfe69ccf4a3d6b745ebcaa6a416efaf9fd6b57dbb18D�H�
cb993c6b41619d0b739c98a53cc2ca52430d470822dc5d7f74a0f2761581971bD�G�
497675cb6d7517ba23fea71659d07fd3761c557cdf9fd151aa544223dbc11237D�F�
ffe6c8fe6239af5ba9b802d1110485c57c37832e367d2ff85fa1252c920e1193D�E�
89c58d30f7f1b409bf2172a4eb140ffdd938bbe72118610420ec4abc9c64eff6D�D�
03a8c1b34a6e0348a56c5f5c1e6d5f586c514da1b01b442feaf2c7dfec629173D�C�
fb0edda86631e065ab929a5645c3c5c9573ef194bf8813617457f152c46177e3D�B�
6814c1585ec14edaecfb3a1c411a60fa17aa216d2f668964f68de8ee908ba367D�A�
bf547b98a8486311d474acce3d85c5eab20067359561488db6243baf1f10d389D�@�
31678e32384951f2d0803f480a17916c8967a20bfa4c0a7b627436b112c717fd
��!�
�~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��~u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�}u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�|uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�{u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��zu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�yuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��
g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�	w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�
uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U� w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�(w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�'ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��&u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�%u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�$uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�#u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��"u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�!uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��/u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�.u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�-uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�,u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��+u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�*uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�)w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�4w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��3u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��2g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�1w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�0ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�<w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�;ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��:u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�9u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�8uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�7u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��6u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�5uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��Cu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Bu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Auw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�@u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��?u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�>uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�=w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�Hw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��Gu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��Fg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�Ew��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Dui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�Pw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Oui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��Nu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Mu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Luw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Ku[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Ju��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Iuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��Wu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�Vu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�Uuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�Tu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��Su��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�Ruw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�Qw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�\w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��[u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��Zg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�Yw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�Xui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�dw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�cui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��bu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�au�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�`uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�_u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��^u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�]uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��ku��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�ju�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�iuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�hu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��gu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�fuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�ew�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�pw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��ou�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��ng�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�mw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�lui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�xw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�wui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��vu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�uu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�tuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�su[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��ru��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�quw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor

e�r+��V��:��eD�Y�
98c4c14b7a0910ce624cb7b36dfb871441e4dc7f083e2dc7b39b52dfce97238fD�X�
f023965895ca396ee7837ef741c80807f3fcd4e941fe9b021ef6476083832b31D�W�
2a3e32785639d588761d6bf2e56e7121d3b1a72e11b62d59b95a594bbfe19836D�V�
ac61f136dfa8ec37083c4218f10c4b90438fde96c223895a6e3d08660c0652f3D�U�
7cf9167bef9413a9b392bca9faff3196f5c05d3ec73a6d3e2429936ca11db4a3D�T�
9fe95cd53733c5ac4fb1ee1e907acf53ce9a1661cc2b2e83a473ca67ae9bfc46D�S�
5c57f76aba32a986317ac294945a789bd49f7cd09491d4a66c8c259b336a13dbD�R�
fbae91cfe9ae73876a8eeb3b715dacaef2f15103aae6c0a6040a7aec6578cc0dD�Q�
3ec6e9340959cede8f65ef85eb65d48800aad8e51db71b9f3bd47bed04cd9c3aD�P�
33aa69d7f9394b9a6d1d03cca5e79975ae42fc6d8a6d1794ebe7bfcf8d3bf01aD�O�
fb3f399c2cd3a00d11861039ba16df58c2d041ebce64824acdef0563df4d8ed8D�N�
a27a74e92715fbe40b9a7d67bedad0e62952307a43ea09eecd25aa1667294bd5D�M�
a93df30801aba8cea190c36d5bfa44f375fde46284080e1a7e93e5873bc75bb9
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�~u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�}uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�|u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��{u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�zuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�yw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
���`��U�w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog��u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
��!�
�~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black��
u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�	u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor
1'�(�H�1��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf�u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U�
w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
������h�[�w�Ian Kent <ikent@redhat.com> - 5.0.7-109][�- bz1728914 - getmntent returns additional "-hosts" entries when
  automounter is used with "hosts" map
  - fix missing initialization of autofs_point flags.
- Related: rhbz#1728914�d�[�o�Ian Kent <ikent@redhat.com> - 5.0.7-108]M`@- bz1728914 - getmntent returns additional "-hosts" eڂ�g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~�w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm�ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is blackntries when
  automounter is used with "hosts" map
  - remove unused function has_fstab_option().
  - remove unused function reverse_mnt_list().
  - remove a couple of old debug messages.
  - fix amd entry memory leak.
  - fix unlink_mount_tree() not umounting mounts.
  - add ignore mount option.
  - use ignore option for offset mounts as well.
  - add config option for "ignore" mount option
  - use bit flags for autofs mount types in mnt_list.
  - use mp instead of path in mnt_list entries.
  - always use PROC_MOUNTS to make mount lists.
  - add glibc getmntent_r().
  - use local getmntent_r in table_is_mounted().
  - refactor unlink_active_mounts() in direct.c.
  - don't use tree_is_mounted() for mounted checks.
  - use single unlink_umount_tree() for both direct and indirect mounts.
  - move unlink_mount_tree() to lib/mounts.c.
  - use local_getmntent_r() for unlink_mount_tree().
  - use local getmntent_r() in get_mnt_list().
  - use local getmntent_r() in tree_make_mnt_list().
- Resolves: rhbz#1728914
N��Q�9�[��Ian Kent <ikent@redhat.com> - 5.0.7-114^��@- bz1847762 - automount program crashes with "malloc(): invalid next size
  (unsorted)
  - initialize struct addrinfo for getaddrinfo() calls.
  - fix quoted string length calc in expandsunent().
  - fix autofs mount options construction.
-Resolves: rhbz#1847762��[�7�Ian Kent <ikent@redhat.com> - 5.0.7-113^��A- Fix changelog revision for previous 2 commits.
- Related: rhbz#1806514 rhbz#1818664�H�[�7�Ian Kent <ikent@redhat.com> - 5.0.7-112^��@- bz1818664 - autofs cannot mount samba/cifs shares that end with a dollar sign
  - fix trailing dollar sun entry expansion.
- Resolves: rhbz#1818664�!�[�i�Ian Kent <ikent@redhat.com> - 5.0.7-111^{G�- bz1806514 - strictexpire option not set for offset mounts
  - fix patch not applied.
- Related: rhbz#1806514�.�[��Ian Kent <ikent@redhat.com> - 5.0.7-110^{G�- bz1806514 - strictexpire option not set for offset mounts
  - also use strictexpire for offsets.
- Resolves: rhbz#1806514
q=Pq�[� i�O�Ian Kent <ikent@redhat.com> - 5.0.7-116el7_9.1c�- bz2107752 - autofs: send FAIL cmd/ioctl mess when encountering problems
  with mount trigger
  - fix kernel mount status notification.
- Resolves: rhbz#2107752�i�[�y�Ian Kent <ikent@redhat.com> - 5.0.7-116_�A- bz1885511 - automount force unlink option (-F) does not work as expected
  on autofs-5.0.7-109.el7
  - fix incorrect logical compare in unlink_mount_tree().
- Related: rhbz#1885511�?�[�%�Ian Kent <ikent@redhat.com> - 5.0.7-115_�@- bz1885511 - automount force unlink option (-F) does not work as expected
  on autofs-5.0.7-109.el7
  - fix direct mount unlink_mount_tree() path.
  - fix unlink mounts umount order.
- bz1858586 - autofs share doesn't mount when using nobind over RDMA where
  nfs-server and nfs-client are the same systems
  - mount_nfs.c fix local rdma share not mounting.
- Resolves: rhbz#1885511 rhbz#1858586
�3��%��!�%[�i�Ian Kent <ikent@redhat.com> - 5.0.7-111^{G�- bz1806514 - strictexpire option not set for offset mounts
  - fix patch not applied.
- Related: rhbz#1806514�.�$[��Ian Kent <ikent@redhat.com> - 5.0.7-110^{G�- bz1806514 - strictexpire option not set for offset mounts
  - also use strictexpire for offsets.
- Resolves: rhbz#1806514�h�#[�w�Ian Kent <ikent@redhat.com> - 5.0.7-109][�- bz1728914 - getmntent returns additional "-hosts" entries when
  automounter is used with "hosts" map
  - fix missing initialization of autofs_point flags.
- Related: rhbz#1728914�d�"[�o�Ian Kent <ikent@redhat.com> - 5.0.7-108]M`@- bz1728914 - getmntent returns additional "-hosts" eށI�![�9�Ian Kent <ikent@redhat.com> - 5.0.7-107]@1@- bz1734057 - automount segfaults if a bad hosts entry is added
  in /etc/auto.master
  - fix reset flex scan buffer on init.
- Resolves: rhbz#1734057ntries when
  automounter is used with "hosts" map
  - remove unused function has_fstab_option().
  - remove unused function reverse_mnt_list().
  - remove a couple of old debug messages.
  - fix amd entry memory leak.
  - fix unlink_mount_tree() not umounting mounts.
  - add ignore mount option.
  - use ignore option for offset mounts as well.
  - add config option for "ignore" mount option
  - use bit flags for autofs mount types in mnt_list.
  - use mp instead of path in mnt_list entries.
  - always use PROC_MOUNTS to make mount lists.
  - add glibc getmntent_r().
  - use local getmntent_r in table_is_mounted().
  - refactor unlink_active_mounts() in direct.c.
  - don't use tree_is_mounted() for mounted checks.
  - use single unlink_umount_tree() for both direct and indirect mounts.
  - move unlink_mount_tree() to lib/mounts.c.
  - use local_getmntent_r() for unlink_mount_tree().
  - use local getmntent_r() in get_mnt_list().
  - use local getmntent_r() in tree_make_mnt_list().
- Resolves: rhbz#1728914
k4�k�9�([��Ian Kent <ikent@redhat.com> - 5.0.7-114^��@- bz1847762 - automount program crashes with "malloc(): invalid next size
  (unsorted)
  - initialize struct addrinfo for getaddrinfo() calls.
  - fix quoted string length calc in expandsunent().
  - fix autofs mount options construction.
-Resolves: rhbz#1847762��'[�7�Ian Kent <ikent@redhat.com> - 5.0.7-113^��A- Fix changelog revision for previous 2 commits.
- Related: rhbz#1806514 rhbz#1818664�H�&[�7�Ian Kent <ikent@redhat.com> - 5.0.7-112^��@- bz1818664 - autofs cannot mount samba/cifs shares that end with a dollar sign
  - fix trailing dollar sun entry expansion.
- Resolves: rhbz#1818664
4=P��4]�-�5�Fabio Alessandro Locati <fale@fedoraproject.org> - 1.11.109-1YJ_�- Update to 1.11.109[�,�3�Fabio Alessandro Locati <fale@fedoraproject.org> - 1.11.90-1Y$$@- Update to 1.11.90[�+�3�Fabio Alessandro Locati <fale@fedoraproject.org> - 1.11.63-1X�,�- Update to 1.11.63�i�*[�y�Ian Kent <ikent@redhat.com> - 5.0.7-116_�A- bz1885511 - automount force unlink option (-F) does not work as expected
  on autofs-5.0.7-109.el7
  - fix incorrect logical compare in unlink_mount_tree().
- Related: rhbz#1885511�?�)[�%�Ian Kent <ikent@redhat.com> - 5.0.7-115_�@- bz1885511 - automount force unlink option (-F) does not work as expected
  on autofs-5.0.7-109.el7
  - fix direct mount unlink_mount_tree() path.
  - fix unlink mounts umount order.
- bz1858586 - autofs share doesn't mount when using nobind over RDMA where
  nfs-server and nfs-client are the same systems
  - mount_nfs.c fix local rdma share not mounting.
- Resolves: rhbz#1885511 rhbz#1858586
Q����Q�
�4u�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 1.23.2-1.1bq@- Rebase to 1.23.2 to fix issues with upgraded libs

  Resolves: rhbz#2073979�5�3s�y�Oyvind Albrigtsen <oalbrigt@redhat.com> - 1.14.28-5Z���- Append python-botocore and python-jmespath bundled directory to
  search path where needed

  Resolves: rhbz#1509434p�2sq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 1.14.28-4Zz�@- Bundle python-colorama

  Resolves: rhbz#1509434��1s�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 1.14.28-1Za�- Update to 1.14.28
- Replace python-rsa with python-cryptography

  Resolves: rhbz#1509434]�0�5�Fabio Alessandro Locati <fale@fedoraproject.org> - 1.11.133-1Y�?@- Update to 1.11.133��/���Fedora Release Engineering <releng@fedoraproject.org> - 1.11.109-3Yx�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild[�.�1�Fabio Alessandro Locati <fale@fedoraproject.org> - 1.11.109-2YJ_�- Forgot to update
�^�.�"���:w��Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-31[@- Append '/' while tab completing directory names
  Resolves: #1495398��9w��Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-30Y��- Check for multibyte characters in commands
  Resolves: #1487615��8w��Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-29Y�@- Fix a pipe fd leak in process substitution
  Resolves: #1473245��7a�A�Kamil Dudka <kdudka@redhat.com - 4.2.46-28X���- CVE-2016-9401 - Fix crash when '-' is passed as second sign to popd
  Resolves: #1429838��6a�Q�Kamil Dudka <kdudka@redhat.com - 4.2.46-27X� @- CVE-2016-7543: Fix for arbitrary code execution via SHELLOPTS+PS4 variables
  Resolves: #1426026��5w�G�Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-26X�Y�- CVE-2016-0634: Fix for arbitrary code execution via malicious hostname
  Resolves: #1379237
i�[�L���Aa�A�Kamil Dudka <kdudka@redhat.com - 4.2.46-28X���- CVE-2016-9401 - Fix crash when '-' is passed as second sign to popd
  Resolves: #1429838��@a�Q�Kamil Dudka <kdudka@redhat.com - 4.2.46-27X� @- CVE-2016-7543: Fix for arbitrary code execution via SHELLOPTS+PS4 variables
  Resolves: #1426026��?w�G�Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-26X�Y�- CVE-2016-0634: Fix for arbitrary code execution via malicious hostname
  Resolves: #1379237j�>wa�Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-35an�@- Bump version number
  Resolves: #2015565��=w�!�Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-34]V��- BASH_CMD should not be writable in restricted shell
  Resolves: #1693181|�<w��Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-33\��- Add support for bracketed paste mode
  Resolves: #1573901��;w�1�Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-32\�@- Add configuration option for logging bash history to syslog
  Resolves: #1160482
Wz�i�S�Wj�Hwa�Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-35an�@- Bump version number
  Resolves: #2015565��Gw�!�Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-34]V��- BASH_CMD should not be writable in restricted shell
  Resolves: #1693181|�Fw��Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-33\��- Add support for bracketed paste mode
  Resolves: #1573901��Ew�1�Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-32\�@- Add configuration option for logging bash history to syslog
  Resolves: #1160482��Dw��Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-31[@- Append '/' while tab completing directory names
  Resolves: #1495398��Cw��Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-30Y��- Check for multibyte characters in commands
  Resolves: #1487615��Bw��Siteshwar Vashisht <svashisht@redhat.com> - 4.2.46-29Y�@- Fix a pipe fd leak in process substitution
  Resolves: #1473245
p?�M]p��N���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0:5.2-15Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildO�Mm5�Tom Callaway <spot@fedoraproject.org> - 0:5.2-14P�6@- Package NOTICE.txt�l�L]�}�Andy Grimm <agrimm@gmail.com> - 0:5.2-13P3x@- This package should not own _mavendepmapfragdir (RHBZ#850005)
- Build with maven, and clean up deprecated spec constructs
- Fix pom file (See http://jira.codehaus.org/browse/MEV-592)��K���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0:5.2-12P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildT�Jq;�Gerard Ryan <galileo@fedoraproject.org> - 0:5.2-11O�@- Inject OSGI Manifest.�=�Ii��Ville Skyttä <ville.skytta@iki.fi> - 0:5.2-10O
y�- Specify explicit source encoding to fix build with Java 7.
- Install jar and javadocs unversioned.
- Crosslink with JDK javadocs.
If���;�I��U���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0:5.2-12P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildT�Tq;�Gerard Ryan <galileo@fedoraproject.org> - 0:5.2-11O�@- Inject OSGI Manifest.�=�Si��Ville Skyttä <ville.skytta@iki.fi> - 0:5.2-10O
y�- Specify explicit source encoding to fix build with Java 7.
- Install jar and javadocs unversioned.
- Crosslink with JDK javadocs.��Ro�9�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:5.2-19c��@- Fix arbitrary bytecode produced via out-of-bounds writing
- Resolves: CVE-2022-42920L�Q]?�Daniel Mach <dmach@redhat.com> - 05.2-18R�k�- Mass rebuild 2013-12-27��Po��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:5.2-17Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571��Oo�?�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:5.2-16Q��- Complete spec file rewrite
- Build with Maven instead of Ant
- Remove manual subpackage
�#����\o�9�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:5.2-19c��@- Fix arbitrary bytecode produced via out-of-bounds writing
- Resolves: CVE-2022-42920L�[]?�Daniel Mach <dmach@redhat.com> - 05.2-18R�k�- Mass rebuild 2013-12-27��Zo��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:5.2-17Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571��Yo�?�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:5.2-16Q��- Complete spec file rewrite
- Build with Maven instead of Ant
- Remove manual subpackage��X���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0:5.2-15Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildO�Wm5�Tom Callaway <spot@fedoraproject.org> - 0:5.2-14P�6@- Package NOTICE.txt�l�V]�}�Andy Grimm <agrimm@gmail.com> - 0:5.2-13P3x@- This package should not own _mavendepmapfragdir (RHBZ#850005)
- Build with maven, and clean up deprecated spec constructs
- Fix pom file (See http://jira.codehaus.org/browse/MEV-592)
��$����b{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��a{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��`{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�_wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�^wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�]{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
���5���i{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��h{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��g{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�f}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��e{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�d{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�c{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
������p}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�o}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��n}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�m}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��l{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�k{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�j{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf��?�v}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��u{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�t{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�s{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��r{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��q{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
bb�]�F�bm�}{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�|{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��zq��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��y}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�x}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��w}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)

e�r+��V��:��eD�f�
664e7cfa4c02ab9121f80adbb03b0b47bb258e1ff0c45161da3208d48bf6750aD�e�
d6069d49f727f500878d2326ae170486edd57be2ead8d6aa3454e528b9d0cad7D�d�
efe7ae6b25e582508f3ba41e0017ca4b0ffbec80692919abd79c1b54bbb43465D�c�
18b2663b932253d1cd4199938857bde269a7f2c90665ff7782c334d88b68f7b7D�b�
42b68ad1d87236d5de03de1b7d591b6a993c1067b4bb54558ceaa48a68fff9e1D�a�
ecbe95651dc59d12d773005ad0f00df91c1b689c1ad0402467603a9ab799c2fbD�`�
7200ad28455e7f8044a9521a187ff712e7d782e9a38db84d1c18e9b54e7a9a28D�_�
1e67462d537e085a22099169bfc37a18a1e6f210a61839b9e0b229fcde3add6eD�^�
1edd338d1d20b130c1a107ea59652842ef0a8167393745468301105b2a59ca6dD�]�
76f7044e7f7cf0b257e3f983a0bb8457ed7e60c7c386096fd844e8a43f3614acD�\�
10a06eabffcd2d73d1de3fa1821108cbfe10fb4977603c9f495854984a91542bD�[�
958d635feece68e98a7942fb734aa2b1c79c887db56e57df5884c0a90afa291fD�Z�
e6f4e61f30e26ae0718f9ae0753c408d47f937201175fa1753774f9139b55f1c
xd���x��s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��~{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
r���/�p�
}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��	}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
�n�Z�x�w}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers�
�
s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)
~z��y�~g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
b��b�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
V���2�Vr�#wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�"wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�!wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z� {�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase
{��t�y{�z�){�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�({W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�'{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�&wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�%w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�$w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�0{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�/wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�.w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�-w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��,{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�+wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�*wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
L��!�2�L[�7wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��6{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��5{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�4wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�3wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�2{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�1{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
o�)���>{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��={��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�<wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�;wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�:{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�9{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�8{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
#n�i��#d�EwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Dwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�C{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�B{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�A{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�@{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��?{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
x�^�zg�K{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�J{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�I{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��H{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��G{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��F{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
��$����Q{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��P{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��O{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�NwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Mwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�L{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������X{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�WwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Vwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�U{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��T{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�S{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�R{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rf���_{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�^}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��]{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�\{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�[{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��Z{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��Y{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
�x�rf��?�e}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��d{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�c{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�b{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��a{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��`{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
_b�]�C�_m�l{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�k{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��j{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��i{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��h}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�g}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��f}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��rq��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��q}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�p}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��o}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�n}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��m{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
n���+�p�y}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��x}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�w}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��v{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�u{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�t{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��s{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
n�Z�v��?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�~{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�}{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�|s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��{s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��z}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)

e�r+��V��:��eD�s�
01af8dbfbd06ab846b1473d9c0c02a8f51af1a47c8d92957ff4e5508b3d647daD�r�
334b38af49e56e5f0435be05785e022ac744d9fb66965fc0b8baeec1fbc47653D�q�
d1092d59f303a24817bad40a23bbaac2dcc1d56beef54c5d1c3d42e225090212D�p�
12356c5566012c75f7cff8722dced224c1aa54d1c80a99482b0c3ec180432929D�o�
4b10b467e7f7d3c03d65a1978142de23e7d3b60c9c6729496eac6cd915d2e83cD�n�
42ff9328e94163ac1555369afb66d510954eee171420041d8a4d8bcf504fe3f8D�m�
89bf5b84dc71e5ad5f0d9d9867283539d89d67b1aa0c88f54a59c8766c3d2351D�l�
ae6ecf30bc0a1b8e2c0c2d8702e3eaf7db4864987e02a301446311ff1594d050D�k�
58d55e76b88d088f5d397d7b1d908c6ffc3f06ec1ee82d97c1383fb167104aabD�j�
1a87cf953d16581b70a51f9c131f6f714e364e0a57dee8b2856b43aad7d89104D�i�
87690efabf1c1904d1640276e18c4a1568f33f6688bfde4c8352defdd62b25d4D�h�
3f9569f5e76f2c85ea0b8843abaa2fe4d295bef235b8e3c6c65588c40bfbaad2D�g�
badfc32e957614210eda392b71e458da964b3e66c2b8b1d7b457703c93fb8070
Ib�]�I�
�s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�
w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�	wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�w}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�
{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
#o�)�#{�%w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��${��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�#wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�"wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�!{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g� {W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
P�a���d�,wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�+wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�*{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�){W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�({�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�'wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�&w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�3wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�2{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�1{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�0{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�/wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��.{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��-{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
�������g�:{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�9{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�8{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��7{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��6{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��5{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�4wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����@{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��?{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��>{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�=wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�<wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�;{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��G{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�FwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Ewu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�D{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�C{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�B{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�A{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
hx�rfh�z�M{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��L{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�K{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�J{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��I{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��H{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��"���m�T{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�S{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��R{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��Q{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��P{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�OwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Nwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
=d��,�=��Z{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�YwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Xwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�W{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)�?�V}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��U{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
x�rf���a{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�`}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��_{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�^{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�]{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��\{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��[{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
�x�rf��?�g}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��f{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�e{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�d{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��c{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��b{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
Gb�]�M�Gq�n{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��m{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��l{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��k{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)��j}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�i}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��h}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
���1� ���t}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�s}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��r}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�q}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��p{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�o{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�x�rf��?�z}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��y{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�x{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�w{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��v{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��u{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
Jb�]�P�Jq�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��~q��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�|}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��{}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)

e�r+��V��:��eD��
9c36a1622791ce03d6ac94ea9fa499f523998938199fdd4b31677374da4a1118D��
c19e37c8595f0a36840e5ffde24ba2022e36425cc814639db070930027e078abD�~�
5bc7e489f2286aea26973b124918a70b6f8f29e9936508ee68e5fa89b453002bD�}�
ee52c09ab7dca8a8e11fe87c0855b1ce38df1fdaef899e8ce50d80b72009b62bD�|�
5ea154c824570a42b00ec0dd66ecba1eb3ba53a7d8875b374a32bfc093aea76fD�{�
e27571469712e3c2e9c26aebde7261eee92c600cc19e6d3f6b1bc172f0234ab4D�z�
5171be56dca06ca1e7da429b0b918c643f00522f432cfaa4d67aeea0ee796306D�y�
f82ec6b5a321f21916898763958f2f66aa27af989f717611ee77da7475cd01dbD�x�
9440248086b43cdef2b59af7d4689cf4358b9549a0e882439813dcc84f72e359D�w�
5d5eaf30c36d5edff16d10d59883fcd24b4d915f4f6a332fd0a4498d47a9abe2D�v�
f41e3da0ff09a0dfcee4669524a544896ae845227cd61f6da9cf4fac362b2c63D�u�
e69d6d87e87eca926adc10baf1eeb4125ba0103b79977c638b305b870f7d2110D�t�
fd7c147bd421d47e6afa077b39fee3edde95b7c1ad7a4371b4271f0aaea8ca13
���1� ���}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�{�ui��?�
}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�
{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��	{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��q��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)
Cb�]�I�Cq�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)�
�s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
���1� ���}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�z�xl��?� }��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)
Ib�]�I�
�%s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��$s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��#}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�"}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��!}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
q�@�4q�?�*}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��){�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�({c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�'{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�H�&s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
Ib�]�I�
�/s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��.s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��-}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�,}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��+}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�4w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�3wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��2w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�1w}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�0s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headersoffflrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|������������������������#�)��0��7��>��E��K��Q��X��_��e��l��r�y���
����%	�,
�3�:�@
�G�M�T�Z�a�g�n�t�z���
��� �%�*�/ �4"�:#�A$�G%�N&�U'�\(�c)�i*�p+�w,�~-�/�
0�1�2� 3�&4�-5�36�97�?8�F9�L:�R;�Y<�`=�f>�m?�s@�yA�B�D�E�F�G�H�$I�)J�.K�4L�;M�AN�HO�OP�VQ�]R�cS�jT�qU�xV�W�Y�
Z�[�\� ]�'^�-_�3`�:a�@b�Fc�Md�Te�[
�P�a���t�:wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�9{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�8{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�7{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�6wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�5w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
m���\�m�
�A{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�@wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�?w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�>w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�=wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��<w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�;w}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)
���!�&�{�Gw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Fwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Ew��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�Dwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�C{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�B{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�NwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Mwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�L{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�K{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�J{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�IwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Hw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�U{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�T{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�SwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Rw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Qw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Pwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Ow��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�\wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�[w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Zw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Ywq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�XwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Wwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�V{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
,o�)�,r�cwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��b{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�awU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�`wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�_{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�^{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�]{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
{��t�y{�z�i{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�h{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�g{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�fwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�ew�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�dw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�p{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�owC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�nw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�mw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��l{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�kwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�jwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
,��!�2�,{�ww�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��v{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��u{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�twU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�swu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�r{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�q{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�~wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�}wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�|{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�z{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�ywCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�xw�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)

e�r+��V��:��eD�
�
af6f8cc2f0f6c25b367a6731610bc84784ff7ff2b8355c606556d449c930b965D��
a09beb8f5ef98b4539f6e145b9e6318297e4159b1e5234b77768dd9c5b344039D��
13955770f0ef1cb7ca5e13e21afb4cd0cce8b0b1d8181ffddb7f3fd4fad797e1D�
�
2eeaafbd3cb22d15a16eddd840a62f042636325ea6009b82fbb72f520fc834b2D�	�
ad66c6e64486ef32978fa8bc2e30651674507fed936596d70705e9e334965f98D��
7a8a2950c90f28d4e41ed775b9ba97a61e78927e387a936edd2bb1ccadd3bdc7D��
e024eb4fe098b64e9e4de794efbaffc32240faa47afbd2335907c1f6f78cb52bD��
7e64442436c5c1978be36615d69bc4f59a79cef4c9a5819e922bc16f290cdc13D��
1039cd93e11117af53816432e691fa32ce9f5c6aef8a37f44ed3c7b1291ba097D��
b7454eacf95c0a09d97a1463029b82bc777116a9ed468c5edd4c0e8ec75006e6D��
1cd733c69fed61cd28bbf528bf31510db3dbaaa4cbc45ab7ed8a654264b298aaD��
337b3b492087333d675bf644cd7cab27fad998fd2eb5f3f1064b766e5fbf85c1D��
dfe4993ac8d4d097c4e5e97fc006d27039a6a3d4cc79f87f4d56c9e79afd3a86
*����%�*g�
{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebaseq�
{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��	{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rqg� {WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)m�{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����&{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��%{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��${�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�#wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�"wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�!{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��-{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�,wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�+wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�*{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�){WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�({cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�'{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf�g�3{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers��2{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�1{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�0{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��/{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��.{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����9{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��8{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��7{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�6wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�5wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�4{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
2��z2�D�?a�)Tomas Krizek <tkrizek@redhat.com> - 11.1-1X�,�- update to letest upstream version
- resolves: #1393889 Rebase to bind-dyndb-ldap 11+
- resolves: #1165796 bind-dyndb-ldap crashes if server is shutting down and connection to LDAP is down
- resolves: #1413805 bind-dyndb-ldap default schema is shipped with syntax error��>_�)Petr Spacek <pspacek@redhat.com> - 10.0-5W�v@- resolves: #1376851 Unable to set named_write_master_zones boolean on upgrade|�=_�Petr Spacek <pspacek@redhat.com> - 10.0-4W�@- resolves: #1366565 Deletion of DNS root zone breaks global forwarding��<{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�;{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�:{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
H��]�H|�F_�Stepan Broz <sbroz@redhat.com> - 11.1-7.1fM�@- Rebuild required for BIND changes for KeyTrap change (CVE-2023-50387)��Em�9Alexander Bokovoy <abokovoy@redhat.com> - 11.1-7]o�@- Fix attribute templating in case of a missing default value
- Resolves: rhbz#1748904�=�De�Petr Menšík <pemensik@redhat.com> - 11.1-6\b�@- Bump BIND version and fix library dependecies
- Rebuild for bind 9.11.3. Minor tweaks to compile.
- Support for bind 9.11.5 headersn�Ce{Petr Menšík <pemensik@redhat.com> - 11.1-5[�@- Resolves: #1580389 depend on bind with writeable home��Ba�#Tomas Krizek <tkrizek@redhat.com> - 11.1-4Yf@- Resolves: #1469563 required bind version doesn't have the dyndb interface�
�Aa�;Tomas Krizek <tkrizek@redhat.com> - 11.1-3Y��- resolves: #1436268 crash when server_id is not present in named.conf
- coverity fixesX�@aSTomas Krizek <tkrizek@redhat.com> - 11.1-2X�,�- bump NVR to fix bind dependencies
��$����L{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��K{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��J{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�IwUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�HwuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�G{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
H����Ht�Rwu	Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�Q{�{	Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)�?�P}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��O{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�N{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�M{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
w����w��Y{�7	Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�X{c	Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�W{k	Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��V{�#	Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��U{�	Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��T{�	Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�SwU	Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
=�-�'���`{�7
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�_{c
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�^{k
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��]{�#
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��\{�
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��[{�
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�Z}�	Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
�=�,����f{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��e{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)��d}�!
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�c}g
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��b}�9
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�a}�
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
n���+�p�m}gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��l}�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�k}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��j{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�i{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�h{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��g{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
�n�T�p���s{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�r{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�q{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��p{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��o{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��n}�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)
�=�,����y{�
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��xq�Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��w}�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�v}gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��u}�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�t}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
n���+�p�}g
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�~}�
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��}{�7
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�|{c
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{{k
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��z{�#
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
�n�W�s���{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��q�
Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!
Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)

e�r+��V��:��eD��
620e6945f7639eacc1508005775c37d66e64ae3f5ec915e87d132a17a45d3999D��
84515e054cf47fee3e466382e25e19eb92f6f9947741105ea5f6071f7fe18185D��
b7958e30f90b1219e2202114385b2a92aa2271e3064f4b5e46ba9f99c2beeef9D��
a9b560ad84f4c4da2302f2f1c1581df4d699c0e0f9cf0754e125b2bab6ea4795D��
28d32718cac59baf9c4162573d291af2345e664d16de912661fa18de7157ca63D��
e0386a64a095ddfdf29e498080b5d77f7bb681d49c55cf461188e3263c1ab429D��
94b92924f85680ecbc45ab163f775966e4511c2f9885c4c80f5e90d414a6b7edD��
92aef4b8e3ee011c2535abd3662b5231c16dfc9b45c3e7649a1a6b3355518f1bD��
7a15e89049ae929f16d7970980522d53b696c61a5d5ce15d47c614ac40e4e05cD��
69c9b42984d2a52a135360b34ce4482f7f1f7c83bcdc685dbc6cc7db28136840D��
472dfbe984defab2da4d391865a8dad49409470d075bba14d4c3b8ed3ece9e0dD��
43e92b9290406137c9b3c56768f3269a089b338a410de4e2879c249fd794ac2bD��
330b8ae0aa3720eeebeb9d9321a83a407e356101f5d7cb524b333e0a138ceb96
�=�,���
�s�#Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��
}�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�	}gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
n���+�p�}gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��
{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
n�Z�v��?�}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�s�#Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)
Ib�]�I�
�s�#Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
q�@�4q�?�$}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��#{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�"{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�!{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�H� s�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
Ib�]�I�
�)s�#Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��(s�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��'}�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�&}gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��%}�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�.w�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�-wqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��,w�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�+w}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�*s�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�4wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�3{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�2{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�1{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�0wCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�/w�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
m���\�m�
�;{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�:wCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�9w�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�8w�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�7wqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��6w�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�5w}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)
���!�&�{�Aw�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�@wqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��?w�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�>wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�={�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�<{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�HwUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�GwuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�F{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�E{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�D{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�CwCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Bw�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�O{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�N{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�MwCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Lw�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Kw�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�JwqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Iw�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�VwCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Uw�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Tw�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�SwqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�RwUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�QwuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�P{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
,o�)�,r�]wqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��\{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�[wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�ZwuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�Y{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�X{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�W{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
{��t�y{�z�c{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�b{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�a{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�`wCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�_w�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�^w�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�j{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�iwCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�hw�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�gw�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��f{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�ewUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�dwuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
,��!�2�,{�qw�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��p{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��o{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�nwUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�mwuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�l{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�k{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�xwUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wwuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�v{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�u{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�t{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�swCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�rw�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�~{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�}{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�|{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�{wCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��z{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��y{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
*����%�*g�{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebaseq�{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)

e�r+��V��:��eD�'�
9a5fa14360c626a157114ece6ad7b3186a9d13ffe35b54f68fab1678618a929dD�&�
b822a9890f5063ab0234ba6cf91bd64b1adc0c4e2f854176b9b00a76b414ca7eD�%�
5b81f0de16b9e09141c5ea31f902a18f54277c2e168b86007146e71b8f29b163D�$�
36ae65670b57a81f320f0e21426f30d359715f401c51ab27568393a36e6d75aaD�#�
60b33a8a989840613908660e2204def7a4fe9b0d9cbcdf16e46b65bfc1c9bb2cD�"�
f3e24a8285c55480cfef6e63c976be0f143c1010b3511cdb0c8f2bc86dd82ef4D�!�
b9d806c4557aff349da1d626e32967c4202becbc72147a2c93ba8a440c08995cD� �
ef26f87d833891a36ec1eeac1cbd5de9be6729295a8243544f11a26a7e28373aD��
bd09bb37e73e22a5b20339a2eafaa7a10698dd1ebf5a8bf4c187d59b68d06a60D��
56cdf3051f5fd87ff809ab1843192abe235c6093bc0a83213f73bb7ebe2a0f2aD��
e87be7552176482fd5e981021e62d2dab6c7950108f44af47af3d68b9fa442a8D��
e8843e39d98b4c77a9cab62b23793b825c2c78175ae84da344250acedf05778eD��
ddbc53b44a7ec6dd175840df4ba96e8440a167aca06195e38f9ce8e768f82f30
��$����
{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�
wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�	wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rqg�{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)m�{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$���� {�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��'{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�&wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�%wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�${�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�#{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�"{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�!{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf�g�-{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers��,{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�+{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�*{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��){�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��({�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����3{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��2{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��1{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�0wUTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�/wuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�.{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������:{� Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�9wU Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�8wu Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�7{�{ Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��6{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�5{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�4{kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf��?�@}� Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��?{�7 Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�>{c Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�={k Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��<{�# Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��;{� Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����F{�#!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��E{�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��D{�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�CwU!Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Bwu!Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�A{�{!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
���5���M{�#"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��L{�"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��K{�"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�J}�!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��I{�7!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�H{c!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�G{k!Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
������T}�!"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�S}g"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��R}�9"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�Q}�"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��P{�7"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�O{c"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�N{k"Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�^�z��?�[}�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��Z{�7#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�Y{c#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�X{k#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��W{�##Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��V{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��U{�#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
_b�]�C�_m�b{c$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�a{k$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��`{�#$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��_{�$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��^}�!#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�]}g#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��\}�9#Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��hq�$Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��g}�!$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�f}g$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��e}�9$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�d}�$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��c{�7$Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�x�rf��?�n}�%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��m{�7%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�l{c%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�k{k%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��j{�#%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��i{�%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
bb�]�F�bm�u{c&Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�t{k&Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��s{�#&Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��rq�%Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��q}�!%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�p}g%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��o}�9%Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
xd���x��{s�&Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��z}�!&Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�y}g&Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��x}�9&Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�w}�&Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��v{�7&Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�r�l�`��?�}�'Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7'Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c'Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�~{k'Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��}{�#'Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)�
�|s�#&Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
eb�]�I�em�{c(Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k(Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�s�#'Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s�'Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!'Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g'Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9'Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)

e�r+��V��:��eD�4�
e08149c8f4894437d1cb9d2b60f6771c7922cc3b83c5f92705e75f509b048115D�3�
5af6b82a47585513d5a6a8ccc974d524ebc2a67fba642652aa75b566045b004cD�2�
d1270ff691bc97bc9a737c8556081408a04f2a325ffb0db2fb561a7add15d0e6D�1�
64c82c743b0aa34d2ad89724607562e8cf196bdaec58dcfd940a8f728ce9c754D�0�
e9c3f41aecb56447424691a9aedff1c7449cb17f5a1e759c6f7c7c089b2d1adfD�/�
6df17149302a2cb98a128880ea6df6fe1092d0cd169dda5bd470cf1dc5c73494D�.�
f23ad28777ef3020a0b4c72141bc0d367c9a60a8eca144eafcef471df349d126D�-�
0f6bed5732bc76bfe3e0c85d59ade8d7716ebb9113974ea0d93511212d1907dfD�,�
f9112352a12b79f2772b0d357f993f93cfbadb96eb79b1c1b7ea2072dad1e32aD�+�
80e8a702983be224224c674404dfed4b8a89aa2c699a0bb3c32dc8c20f0219c9D�*�
6cb04e523ff2e6b8d60ef0c4e8df263d8d56af10fd076b4510daa749d0d1b65dD�)�
28f3f06dbb75d2a2fd58b0494a47a36def1dde4acad9dde4faf9ec2d6f7c9321D�(�
fbdf0d211089d0219b49949e4bac45457c7c0de563ac494e01584ec1c65eb69d
xd���x��s�(Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��
}�!(Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g(Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9(Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�
}�(Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��	{�7(Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�r&�B���{�7)Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c)Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k)Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�H�s�(Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers�
�s�#(Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
�=�,���
�s�#)Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s�)Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!)Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g)Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9)Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}�)Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
��9�>�{�w�*Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq*Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w�*Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�w}*Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�s�)Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�$wu*Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�#{�{*Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�"{W*Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�!{�!*Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[� wC*Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c*Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
m���\�m�
�+{�!+Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�*wC+Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�)w�c+Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�(w�+Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�'wq+Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��&w�+Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�%w}+Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)
���!�&�{�1w�,Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�0wq,Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��/w�,Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�.wu+Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�-{�{+Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�,{W+Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�8wU,Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�7wu,Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�6{�{,Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�5{W,Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�4{�!,Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�3wC,Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�2w�c,Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�?{W-Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�>{�!-Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�=wC-Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�<w�c-Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�;w�-Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�:wq-Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��9w�-Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�FwC.Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Ew�c.Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Dw�.Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Cwq.Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�BwU-Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Awu-Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�@{�{-Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
,o�)�,r�Mwq/Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��L{�.Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�KwU.Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Jwu.Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�I{�{.Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�H{W.Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�G{�!.Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
{��t�y{�z�S{�{/Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�R{W/Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�Q{�!/Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�PwC/Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Ow�c/Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Nw�/Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�Z{�!0Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�YwC0Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Xw�c0Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Ww�0Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��V{�/Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�UwU/Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Twu/Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
,��!�2�,{�aw�1Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��`{�0Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��_{�0Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�^wU0Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�]wu0Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�\{�{0Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�[{W0Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�hwU1Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�gwu1Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�f{�{1Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�e{W1Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�d{�!1Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�cwC1Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�bw�c1Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�owu2Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�n{�{2Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�m{W2Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�l{�!2Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�kwC2Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��j{�1Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��i{�1Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
*����%�*g�w{W3Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�v{�!3Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�uwC3Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebaseq�t{k2Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��s{�#2Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��r{�2Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��q{�2Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�pwU2Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����}{�#3Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��|{�3Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{{�3Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�zwU3Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�ywu3Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�x{�{3Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��{�4Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU4Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu4Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{4Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W4Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!4Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�~{k3Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rqg�
{W5Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�	{�!5Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)m�{c4Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k4Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#4Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�4Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)

e�r+��V��:��eD�A�
911c67bf8be2e9d6a8d64cffde6ace72707962e5ee3df52066dc91049cea2aa1D�@�
d3c2e1e27a400829f10a9833f70edf0886d63ded954c2aca900c1d63fd6cb984D�?�
0304822e8138a928f86fc2b725ede94f0fe7ad348c85d005729fc71bac0ba3b2D�>�
4dc25e03c0a0a30babb3b4e2d1e9e2f11733686d656dc393fa7d1a62fc9f6fc3D�=�
05e34813e9daef9255f5e02eb2c3753c5308d070ffe9608abf8367fedeff8e2dD�<�
1aa586cd752451a887e64054c0eda881403fbc6b7e9c6079ce1e356a839fd225D�;�
defc20ca4fb42304e9222b189cd76864191e45eb95df7eb3cb3ba3efd335419fD�:�
f292ac03827b0d517e0873201d36bd5f7899da820fe99fba7955de328d3e2773D�9�
6335456bae4a6531a1e5a588c09b5fa47d70ef61f6374951aca147a452b4eb02D�8�
b3204ebd71ad924147ec931e26a4e2b1126596abc3c240218c3fa6304427d289D�7�
33233f04e60e9c664a7bf40da5737db125bcf521206e43d06261d80d1b4babe3D�6�
ebf8758838f5dc246c98cc6f76706eafa07a5083df17f4fbfa2489df5db98458D�5�
9840fc5d69627a908ae29e24dc640f83ad9be6b88a9779079293c46cd56d1fa5
��$����{�#5Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�5Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�5Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�
wU5Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu5Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{5Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��{�6Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU6Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu6Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{6Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W6Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�{c5Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k5Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf�g�{W7Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers��{�76Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c6Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k6Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#6Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�6Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����#{�#7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��"{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��!{�7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d� wU7Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu7Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������*{�8Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�)wU8Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�(wu8Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�'{�{8Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��&{�77Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�%{c7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�${k7Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf��?�0}�8Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��/{�78Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�.{c8Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�-{k8Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��,{�#8Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��+{�8Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����6{�#9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��5{�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��4{�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�3wU9Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�2wu9Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�1{�{9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
���5���={�#:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��<{�:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��;{�:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�:}�9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��9{�79Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�8{c9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�7{k9Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
������D}�!:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�C}g:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��B}�9:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�A}�:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��@{�7:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�?{c:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�>{k:Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�^�z��?�K}�;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��J{�7;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�I{c;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�H{k;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��G{�#;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��F{�;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��E{�;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
_b�]�C�_m�R{c<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�Q{k<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��P{�#<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��O{�<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��N}�!;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�M}g;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��L}�9;Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��Xq�<Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��W}�!<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�V}g<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��U}�9<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�T}�<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��S{�7<Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�x�rf��?�^}�=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��]{�7=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�\{c=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�[{k=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��Z{�#=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��Y{�=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
bb�]�F�bm�e{c>Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�d{k>Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��c{�#>Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��bq�=Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��a}�!=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�`}g=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��_}�9=Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
xd���x��ks�>Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��j}�!>Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�i}g>Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��h}�9>Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�g}�>Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��f{�7>Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�r�l�`��?�q}�?Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��p{�7?Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�o{c?Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�n{k?Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��m{�#?Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)�
�ls�#>Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
eb�]�I�em�x{c@Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�w{k@Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�vs�#?Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��us�?Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��t}�!?Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�s}g?Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��r}�9?Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
xd���x��~s�@Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}}�!@Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�|}g@Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��{}�9@Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�z}�@Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��y{�7@Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�r&�B���{�7APetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cAPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kAPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�H�s�@Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers�
�s�#@Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
�=�,���
�	s�#AStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s�AStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!APetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}gAPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9APetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}�APetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)of�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������g�hh�ni�uj�{k�l�n�o�p�q�r�$s�+t�1u�8v�?w�Fx�My�Sz�Z{�a|�h}�o~�w�}����
��������#��*��0��6��=��D��K��R��X��^��e��k��q��x��~����	��������!��(��/��6��=��C��J��Q��X��_��g��m��t��z������
������ ��&��-��4��;��B��H��N��U��[��a��h��n��s��y��~����ěśƛ&Ǜ-ț3ɛ:ʛA˛H̛O͛WΛ]ϛdЛjћpқwӛ}Ԝ՜
֜؜ٜڜ$ۜ+ܜ2
��9�>�{�w�BPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�
wqBPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w�BPetr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�w}BPetr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�
s�AStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers

e�r+��V��:��eD�N�
dca184c57d0913cdde1f9f39c446f2cad1f8daa197d290e0f0ee296dc3b345daD�M�
3c96054de3771395180ce2ef6da4dfcd565ee2d14573da0adad58ff76b63d77aD�L�
31deb0ef8475cdf1766d7273df81d1e80842c260ddc7eac34364361b4b00b974D�K�
2c72fd0a8014e13440ebde0c0ae037cea29cc8aa567b3723619486dc2040f9e5D�J�
fc93fa73ee589349b26030b1fd56173975859786d624ddeaf826606e99c8b4f3D�I�
0f79393bd746c2a784972b1db928fdca74d0c0324e00a1859ceede81d1af8b93D�H�
8e85466eac6dba299f3f8211333d50827e103a67a8296884c3d1d1a87ce8a828D�G�
43570d8e293bd93001cb8c4cac3e4b2045b3024b7f3e08f4449735bfb9d206c6D�F�
c779ed4a8b7cd8df613f47c214050d61ac25927ab97381ffb59944fb998585ffD�E�
c9392783583e0597ccdfaf17dae6fee1b00c3d8da0cb91842328276045fb62a5D�D�
7b3d8994d78928ac66011137e013e2d788ecc7712d592ce7c08306cfd1728489D�C�
90290c5f2092315060a14a82b7d692c91c1f7a1b307ffd574420dbe3936b6177D�B�
df8d2506c03d24e1a590d6879a32d25fc08c64674c5b3363908407344377e1dd
�P�a���t�wuBTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{BPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{WBArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!BArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wCBPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�cBPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
m���\�m�
�{�!CArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wCCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�cCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w�CPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wqCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w�CPetr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�w}CPetr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)
���!�&�{�!w�DPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r� wqDPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w�DPetr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�wuCTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{CPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{WCArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�(wUDTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�'wuDTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�&{�{DPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�%{WDArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�${�!DArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�#wCDPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�"w�cDPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�/{WEArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�.{�!EArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�-wCEPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�,w�cEPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�+w�EPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�*wqEPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��)w�EPetr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�6wCFPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�5w�cFPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�4w�FPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�3wqFPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�2wUETomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�1wuETomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�0{�{EPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
,o�)�,r�=wqGPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��<{�FPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�;wUFTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�:wuFTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�9{�{FPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�8{WFArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�7{�!FArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
{��t�y{�z�C{�{GPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�B{WGArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�A{�!GArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�@wCGPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�?w�cGPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�>w�GPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�J{�!HArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�IwCHPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Hw�cHPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Gw�HPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��F{�GPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�EwUGTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�DwuGTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
,��!�2�,{�Qw�IPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��P{�HPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��O{�HPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�NwUHTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�MwuHTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�L{�{HPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�K{WHArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�XwUITomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�WwuITomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�V{�{IPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�U{WIArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�T{�!IArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�SwCIPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Rw�cIPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�_wuJTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�^{�{JPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�]{WJArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�\{�!JArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�[wCJPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��Z{�IPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��Y{�IPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
*����%�*g�g{WKArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�f{�!KArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�ewCKPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebaseq�d{kJPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��c{�#JPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��b{�JPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��a{�JPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�`wUJTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����m{�#KPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��l{�KPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��k{�KPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�jwUKTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�iwuKTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�h{�{KPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��t{�LPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�swULTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�rwuLTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�q{�{LPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�p{WLArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�o{�!LArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�n{kKPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rqg�z{WMArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�y{�!MArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)m�x{cLPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�w{kLPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��v{�#LPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��u{�LPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����{�#MPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�MPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��~{�MPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�}wUMTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�|wuMTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{{�{MPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��{�NPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUNTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wuNTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{NPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{WNArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�{cMPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kMPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf�g�
{WOArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers��{�7NPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cNPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�
{kNPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��	{�#NPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�NPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)

e�r+��V��:��eD�[�
6164453fc73f06d895ca8df581d46682883daa8322bdf6c511c25bd367caea15D�Z�
808073e5962f5fd81e0f89ce66bccad77dea549a509cf522580257f973f2dbe4D�Y�
f5d02c79227db8a83ef923f005bb223131cc21a7d230cd462aa73916b2da8a5aD�X�
0ce460c4fec36484894f526d04090272961a86fa1cadfc07b79bf7eb7f0095f6D�W�
e72e7e5054cec7dd0b5f52acc7183ddfcb107875c50ad6ef52f07a3785689966D�V�
1c21a4bf7dd0a9330e1d0f9859575f2ab5436413cea65a4a73f0b1991f3dd1ceD�U�
72ab9b204a4a984bb758843741ab139089f24553cac0336f08a7b1d1029030aeD�T�
9339fa8d6974fa8dfc8e28dbe75760c7c49d355183c0f71b2e5d7d7ea2db67dcD�S�
f48ce4d917bdd2d6d5ec5a6aa18216b99e980b86d7308d6e535eafb38aa0fbfcD�R�
f13d76a0cbcea5bf7f05f28bbb2ad0ca59d71e977f1c3f3c544f403d4f947794D�Q�
a1b74be1d5a4cc7822e76a9f4d891bbacc535194cb8b1f766c6b04f42b2e443aD�P�
e7ad03734c0fc0d4d420d177cc82478f12f8c7fcb1b49294d3f686e186915e9bD�O�
3d75be4567f3055d6aa45834620c4fdab40240d0eac958aa3b5401832cf284bb
��$����{�#OPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�OPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�OPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUOTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wuOTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{OPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������{�PPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUPTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wuPTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{PPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��{�7OPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cOPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kOPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf��?� }�PPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7PPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cPPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kPPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#PPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�PPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����&{�#QPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��%{�QPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��${�QPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�#wUQTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�"wuQTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�!{�{QPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
���5���-{�#RPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��,{�RPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��+{�RPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�*}�QPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��){�7QPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�({cQPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�'{kQPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
������4}�!RPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�3}gRPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��2}�9RPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�1}�RPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��0{�7RPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�/{cRPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�.{kRPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�^�z��?�;}�SPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��:{�7SPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�9{cSPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�8{kSPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��7{�#SPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��6{�SPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��5{�SPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
_b�]�C�_m�B{cTPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�A{kTPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��@{�#TPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��?{�TPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��>}�!SPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�=}gSPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��<}�9SPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��Hq�TStepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��G}�!TPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�F}gTPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��E}�9TPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�D}�TPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��C{�7TPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�x�rf��?�N}�UPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��M{�7UPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�L{cUPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�K{kUPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��J{�#UPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��I{�UPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
bb�]�F�bm�U{cVPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�T{kVPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��S{�#VPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��Rq�UStepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��Q}�!UPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�P}gUPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��O}�9UPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
xd���x��[s�VStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��Z}�!VPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�Y}gVPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��X}�9VPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�W}�VPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��V{�7VPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�r�l�`��?�a}�WPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��`{�7WPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�_{cWPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�^{kWPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��]{�#WPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)�
�\s�#VStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
eb�]�I�em�h{cXPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�g{kXPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�fs�#WStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��es�WStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��d}�!WPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�c}gWPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��b}�9WPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
xd���x��ns�XStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��m}�!XPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�l}gXPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��k}�9XPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�j}�XPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��i{�7XPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�r&�B���s{�7YPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�r{cYPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�q{kYPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�H�ps�XStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers�
�os�#XStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
�=�,���
�ys�#YStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��xs�YStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��w}�!YPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�v}gYPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��u}�9YPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�t}�YPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
��9�>�{�~w�ZPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�}wqZPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��|w�ZPetr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�{w}ZPetr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�zs�YStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�wuZTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{ZPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{WZArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!ZArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wCZPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�cZPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
m���\�m�
�{�![Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�
wC[Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�	w�c[Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w�[Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq[Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w�[Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�w}[Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)
���!�&�{�w�\Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq\Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w�\Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�wu[Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�
{�{[Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W[Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers

e�r+��V��:��eD�h�
c5debfa2df24c434430b601b89c524d821308d5207f350610e556a17360391b5D�g�
46f776adf7f88106a8e818889463dd616d261bb3462ec68346857a126aee742eD�f�
5105577688287233ec925ee639d92524c00f6f7490e2c5501c49eeb0f07cd511D�e�
802a7e88deb752607d0e6f0f44f099a1dfee4747bd86101389d25eccf2a9ebe8D�d�
7d49e6164c17d7539dfdc7b2354026cb06b6ee0a32b0c9218ac3d8960f348534D�c�
f9e741d7af4fbcb102cf759697c858701bf8839ced08a5f62c9415ac5de9dda3D�b�
23886775cbbf0f0b980d7e700a1fa3cce9ae8149522a191554e770fe0acf1813D�a�
0d291da8585bc5dc3d72a81e494c64767eb04ba5a938f0847121edded2bcbdecD�`�
2974a1f35f8a1dbd3f46361c76fee7876402f098199e8208407a59471c892340D�_�
5380ad090ba99c100379b2fc1cf54a62f85cdfe390b04b6e5e0fe4c213aa4661D�^�
43a8791d748c2ca3cb5e8c1b6682319313b8373bb0e84e9e545ba09dc9e093bbD�]�
012bfa8eacdc2cdef0742df38d48737a13ab8171afc5020ef127dc81084a68b5D�\�
ffa04ef798ab2e5815f659306b1ff16a316bf5e5501788e7e0bdda2800e8afd0
P�a���d�wU\Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu\Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{\Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W\Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!\Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC\Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c\Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�{W]Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!]Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC]Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c]Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w�]Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq]Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w�]Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�&wC^Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�%w�c^Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�$w�^Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�#wq^Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�"wU]Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�!wu]Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z� {�{]Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
,o�)�,r�-wq_Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��,{�^Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�+wU^Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�*wu^Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�){�{^Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�({W^Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�'{�!^Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
{��t�y{�z�3{�{_Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�2{W_Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�1{�!_Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�0wC_Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�/w�c_Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�.w�_Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�:{�!`Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�9wC`Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�8w�c`Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�7w�`Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��6{�_Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�5wU_Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�4wu_Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
,��!�2�,{�Aw�aPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��@{�`Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��?{�`Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�>wU`Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�=wu`Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�<{�{`Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�;{W`Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�HwUaTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�GwuaTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�F{�{aPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�E{WaArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�D{�!aArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�CwCaPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Bw�caPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�OwubTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�N{�{bPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�M{WbArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�L{�!bArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�KwCbPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��J{�aPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��I{�aPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
*����%�*g�W{WcArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�V{�!cArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�UwCcPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebaseq�T{kbPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��S{�#bPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��R{�bPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��Q{�bPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�PwUbTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����]{�#cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��\{�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��[{�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�ZwUcTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�YwucTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�X{�{cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��d{�dPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�cwUdTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�bwudTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�a{�{dPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�`{WdArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�_{�!dArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�^{kcPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rqg�j{WeArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�i{�!eArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)m�h{cdPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�g{kdPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��f{�#dPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��e{�dPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����p{�#ePetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��o{�ePetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��n{�ePetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�mwUeTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�lwueTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�k{�{ePetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��w{�fPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�vwUfTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�uwufTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�t{�{fPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�s{WfArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�r{cePetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�q{kePetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf�g�}{WgArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers��|{�7fPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{{cfPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�z{kfPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��y{�#fPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��x{�fPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����{�#gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUgTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wugTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�~{�{gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������
{�hPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�	wUhTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wuhTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{hPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��{�7gPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cgPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kgPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rf���{�iPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�}�hPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7hPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{chPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�
{khPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#hPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�hPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)

e�r+��V��:��eD�u�
7266766000b531cf157295f474f17dcfde3f6c02dca1c64d75e027774c33560fD�t�
5b90034629bafae7fc40e3688bcd096834f9ce5de48a7f47ccb507c4f1c06c93D�s�
ef23d81c590cbf657f32525eaf60a72a65cac4272b7cfa37677546ee5204deb1D�r�
44e365718f57aa02dbc0e6c0f884b3e6dd15e03acd28ab5154d917184b1d05ceD�q�
417df6c01f4373a219da10ea1df04e2565b5b27e4710818aa6718065c174f25fD�p�
fad06e13ad887025495d47068294bf443e6c6209bbb16324fa1b3eb9ef5a885eD�o�
4cfa5141393a1004bc9d7885fee9a606293ee21216066238700f933afd5e4598D�n�
9339296f633515808554bf8032f56569d2f34d4c9a34b1d71f968cd560dfc9e2D�m�
64d39cb55589918f3c7cc7eebfd7ff6020fe1f126e87eb124bd3399e6a321938D�l�
d39ddef78717bb9c60b1a73d0b5bd7070471daf3610288379a07921135392492D�k�
ed2d48ef1a3e3a6e64fd20780277157eee5875df3e41cf640f9569e3437be284D�j�
8f9c62b62ee309f73ecbf3c62a51cb3d3b553a7505e51047083926355d41e0cdD�i�
898a882b2bfc15fc532825fa940804005432ab222c1efaacec472c1c18aa8c66
�x�rf��?�}�iPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7iPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{ciPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kiPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#iPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�iPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
_b�]�C�_m�{cjPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kjPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#jPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�jPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��}�!iPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}giPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9iPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��$q�jStepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��#}�!jPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�"}gjPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��!}�9jPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?� }�jPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7jPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
n���+�p�+}gkPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��*}�9kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�)}�kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��({�7kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�'{ckPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�&{kkPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��%{�#kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
n�Z�v��?�2}�lPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��1{�7lPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�0{clPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�/{klPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�.s�#kStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��-s�kStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��,}�!kPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)
Ib�]�I�
�7s�#lStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��6s�lStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��5}�!lPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�4}glPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��3}�9lPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�<w�mPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�;wqmPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��:w�mPetr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�9w}mPetr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�8s�lStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�BwumTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�A{�{mPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�@{WmArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�?{�!mArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�>wCmPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�=w�cmPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�I{WnArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�H{�!nArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�GwCnPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Fw�cnPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Ew�nPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�DwqnPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Cw�nPetr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�PwCoPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Ow�coPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Nw�oPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�MwqoPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�LwUnTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�KwunTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�J{�{nPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
#o�)�#{�Ww�pPetr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��V{�oPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�UwUoTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�TwuoTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�S{�{oPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�R{WoArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�Q{�!oArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
P�a���d�^wUpTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�]wupTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�\{�{pPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�[{WpArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�Z{�!pArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�YwCpPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Xw�cpPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�ewuqTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�d{�{qPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�c{WqArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�b{�!qArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�awCqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��`{�pPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��_{�pPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
�������g�l{WrArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�k{�!rArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�j{kqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��i{�#qPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��h{�qPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��g{�qPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�fwUqTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����r{�#rPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��q{�rPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��p{�rPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�owUrTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�nwurTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�m{�{rPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��y{�sPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�xwUsTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wwusTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�v{�{sPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�u{WsArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�t{crPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�s{krPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
hx�rfh�z�{�{tPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��~{�7sPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�}{csPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�|{ksPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{{�#sPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��z{�sPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��"���m�{ctPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{ktPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#tPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�tPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�tPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUtTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wutTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
=d��,�=��{�uPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wUuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�
wuuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�	{�{uPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)�?�}�tPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7tPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
x�rf���{�vPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�}�uPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7uPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cuPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kuPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#uPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��
{�uPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)

e�r+��V��:��eD��
d97cd106cf9572dc73237ecabf174c9e7fd63f1831ecd180582edfe2ee993409D��
29afed10faa9e050e9b84ade3202f51f3836b8d12289ddbf91099a716ea0838cD��
8b2f892532b5441db04bb9a1d3ad5ae901202de8ca4725355c38b6ac842c3f60D��
1a86cce369d4fa519dc82e79409e0ff8f027575c7dd5f588f2c3ca8ed78e840bD�~�
ec694ed3c68742fc4ff18e183f1eb03790bcac0cf47880b2b25ad5ac15c207f6D�}�
b1c8c2c11e1df4cb77d96713a2285d4a6059f60b0d4baf4e2122da1910d62f6fD�|�
6277ccdddce2fa5ee1ecc12615c107ef3a280e1716b89c5bb60d515fecf84416D�{�
f985f476bdedc2f9a31dcd4fddfea63520d50b7d0201272e1df3ec06366409a3D�z�
cbc4ea12d67dbb0aec7f99363fd0094c3b67059cbe632d6140c54b02128a4520D�y�
014f5bd144904dc6d27a7fe4b1819401d5f70ea084c8f04cf734fc30dd3fcfacD�x�
68dca12ceecda33b2f945d88f466ab32954ff89b462395ef6346d95a47ea375eD�w�
3f67c1b26c1f278f9f7675269681e617b83498e50e541a04d9a936a563d20506D�v�
4ff754e3b0277c5062fbf7116cde18b1ff4c39ef530dd4fecc189d221739fe28
�x�rf��?�}�vPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7vPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{cvPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{kvPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#vPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�vPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
Gb�]�M�Gq� {kwPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#wPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{�wPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{�wPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)��}�!vPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}gvPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9vPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
���1� ���&}�!wPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�%}gwPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��$}�9wPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�#}�wPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��"{�7wPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�!{cwPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�x�rf��?�,}�xPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��+{�7xPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�*{cxPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�){kxPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��({�#xPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��'{�xPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
Jb�]�P�Jq�3{kyPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��2{�#yPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��1{�yPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��0q�xStepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��/}�!xPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�.}gxPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��-}�9xPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
���1� ���9}�!yPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�8}gyPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��7}�9yPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�6}�yPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��5{�7yPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�4{cyPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�{�ui��?�?}�zPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��>{�7zPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�={czPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�<{kzPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��;{�#zPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��:q�yStepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)
Cb�]�I�Cq�F{k{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��E{�#{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)�
�Ds�#zStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��Cs�zStepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��B}�!zPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�A}gzPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��@}�9zPetr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
���1� ���L}�!{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�K}g{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��J}�9{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�I}�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��H{�7{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�G{c{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�z�xl��?�R}�|Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��Q{�7|Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�P{c|Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�O{k|Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�Ns�#{Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��Ms�{Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)
Ib�]�I�
�Ws�#|Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��Vs�|Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��U}�!|Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�T}g|Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��S}�9|Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
q�@�4q�?�\}�}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��[{�7}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�Z{c}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�Y{k}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�H�Xs�|Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
Ib�]�I�
�as�#}Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��`s�}Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��_}�!}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�^}g}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��]}�9}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�fw�~Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�ewq~Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��dw�~Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�cw}~Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�bs�}Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�lwu~Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�k{�{~Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�j{W~Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�i{�!~Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�hwC~Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�gw�c~Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
m���\�m�
�s{�!Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�rwCPetr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�qw�cPetr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�pw�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�owqPetr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��nw�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�mw}Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)
���!�&�{�yw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�xwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��ww��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�vwuTomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�u{�{Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�t{WArtem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�~{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�}{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�|{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�{wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�zw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�
w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�
wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�	wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
,o�)�,r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)

e�r+��V��:��eD��
61925baba4d4105a8e0a3e4da4f567f21fe8f341492cc4f0d809f774ead1a48bD��
5acc0609a41df6553c86c09d5b59189c6442930ac603ef8674a29954ae4a3fd3D�
�
d6562a8f4c336171a1c63516de07f7e1ff14168c67b6aa0b7065c624836896f7D��
8e8d874e43fcfca807986a24918c2f7b0c82f04d8a0ca32bc0d9523000380ae8D��
f59dc733e2e61cc262d571504ef9b62561aab27935f5cc432e2109e165936dacD�
�
3997f8bf7bec69e2b9fc0ff0a33790347a77cd30140b40f7b9a36ae91591d36eD�	�
f9eddb4d96fec5e873cef47d5028d8ef2534235e25948f0010a17f3da79f7835D��
b2b7af7c6537a7e10965b0b999532c5684afc0b6d255efc2b50da0c38e3f168aD��
9744361dc7129978289b5a40fcacd9f52369b57774ec2256bc3c078d4d6e8f03D��
f0c0b3f210497c3d560f42df97307f09afe0cd687c2e08ebc1cb7b03e28b8319D��
54904b5dad92e58cb221e767835398cc72621bab301b2d3964a854595d9e6d60D��
f4a5bde79d6cee985d2f0ff8727b2428ec15fbdd03adaa9733b09f7b173c01c7D��
87c1a04fd7037d13c6be98a8a975ef7a41eec66aa9031b781b61eabe9107ce9b
{��t�y{�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�"{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�!wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,� w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
,��!�2�,{�)w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��({��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��'{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�&wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�%wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�${�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�#{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�0wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�/wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�.{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�-{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�,{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�+wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�*w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�7wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�6{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�5{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�4{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�3wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��2{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��1{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
*����%�*g�?{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�>{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�=wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebaseq�<{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��;{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��:{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��9{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�8wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����E{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��D{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��C{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�BwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Awu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�@{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��L{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�KwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Jwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�I{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�H{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�G{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�F{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rqg�R{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�Q{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)m�P{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�O{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��N{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��M{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����X{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��W{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��V{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�UwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Twu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�S{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��_{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�^wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�]wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�\{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�[{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�Z{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�Y{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistakeofSflrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������ޜ<ߜB�I�P�W�^�e�l�r�y������ �&�,�3�9�?�F��L��R��W��\��a��f��l��s��y��������"�)�0�7�?	�E
�L�R�X
�_�e�k�r�y�������$�*�1�8�?�F �M!�T"�Z#�a$�g%�n&�t'�{(�)�*�+�,�.�!/�'0�.1�42�:3�?4�D5�I6�N7�T8�[9�a:�h;�o<�v=�}>�?�
@�A�B�D�'E�-F�4G�:H�@I�GJ�MK�SL�ZM�`N�fO�mP�tQ�{R�
�x�rf�g�e{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers��d{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�c{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�b{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��a{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��`{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����k{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��j{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��i{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�hwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�gwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�f{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������r{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�qwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�pwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�o{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��n{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�m{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�l{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rf���y{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�x}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��w{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�v{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�u{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��t{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��s{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
�x�rf��?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��~{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�}{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�|{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��z{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
_b�]�C�_m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��q��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�
}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��	}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
n���+�p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��
{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
n�Z�v��?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)

e�r+��V��:��eD��
5cbb74a2688de09192fd42f0956329cbe2c77efa2ec5ed4d5dd90ffcdd07f898D��
5fe18b0b420aaf810ed5edcf1e1fd4fa93b6639632315bdd9348ecd11d6dac60D��
4f490fc935e1622edd8f29833cff99546eda921facd62b71d30c95acefada869D��
e9c57b29838349dee4d11ec1d130cd0d7b3fb5df669721f178440fd42a507752D��
5272f52e8e18d2702e48f4c1ff860fc6d052acf1543d9556f54efa55bbe31535D��
913377ddeda7e9a87688016fb775cfe7ac678ed7b17cab277996497a766e6c67D��
bd2c5200554793773e752c3edacd8567d9f6db98bf2bc3399bb18086f6b771e8D��
4d2dbd65fa67b8c23648a188f830340cc1da72b5dbc71795229022de0ff9720dD��
b524427963041d0c49036598caa6da026b76085863c14fdbec1466146a3b137aD��
8df89d78d785928efa5b8d059e96ce33ffe0c9356663c9acb50ce3ec8c660d92D��
0a8d2dafb528818f6b019015fbaf8cdd2fe3b6535d85da90f6a1db984b828e8eD��
9e6c9b4224affd5105ee5ffe4355eb2e09681fde2148ce946769e1c4583a360bD��
bd0b8c4bd642bf2ddec4f60168cf63044086bf8e861160721a1ffb61a553229a
Ib�]�I�
�s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�$w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�#wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��"w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�!w}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H� s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�*wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�){�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�({W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�'{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�&wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�%w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�1{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�0{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�/wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�.w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�-w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�,wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��+w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�8wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�7w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�6w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�5wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�4wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�3wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�2{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
#o�)�#{�?w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��>{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�=wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�<wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�;{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�:{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�9{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
P�a���d�FwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Ewu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�D{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�C{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�B{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�AwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�@w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�Mwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�L{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�K{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�J{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�IwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��H{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��G{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
�������g�T{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�S{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�R{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��Q{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��P{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��O{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�NwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����Z{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��Y{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��X{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�WwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Vwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�U{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��a{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�`wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�_wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�^{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�]{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�\{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�[{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
hx�rfh�z�g{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��f{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�e{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�d{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��c{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��b{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��"���m�n{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�m{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��l{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��k{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��j{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�iwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�hwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
=d��,�=��t{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�swU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�rwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�q{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)�?�p}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��o{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
x�rf���{{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�z}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��y{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�x{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�w{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��v{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��u{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
�x�rf��?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�~{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��}{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��|{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
Gb�]�M�Gq�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
���1� ���}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�
}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��
{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�	{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�x�rf��?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
Jb�]�P�Jq�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��q��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)

e�r+��V��:��eD�)�
afda0e4a1bc46470df4a4993f659a23e39c688752ccd5958b18e448a2d51f8d1D�(�
2eb85e9cbd29bebc8ce3cd107af06c6ae0f59fcc9a1056aa9226b8201c309a26D�'�
1612a4f04271f95f905580cfc4cc94695b1a11ade17803d000750d518bc0e3acD�&�
f5a544c1c54d159d63ecf02b66555411db8230d7164937c969ee12412a7b3426D�%�
3f11637118683c18d64ab08e86467d90916b689368a1c29e9b095c9b7c8e2633D�$�
26e0a18b1adcde25239343e4537dc1023fada0ed64e1d72e8b7a98ac795d90deD�#�
1b0d419b8d0ecbbebdaf88198d39462c8f0babefb9b711f46865cfaaf19e8ad2D�"�
ffc1d3cbc957771182427d3972e83824283b43b4272f105619d32ec0195171ceD�!�
b1efb67b99edebdc9042e5a1fc8376aaaf9c18620d6efda4ea95ea1b1ebc91c5D� �
3059b560a681189650e415ad7288004812bfd2e3c70a86249b7a9650f86f646eD��
e9972fdb7ca4cc3ff44e4f3ed37bfc724bfa5d7006592b775660808adeaacd37D��
02e583fec180896fabf3422f69975545e3bd8d8460665b7044a186d0d5a4f817D��
c9ec93a5f3a15917b5ceeb7e19b67519e6e4ed8b7b2df39dc7999cf6d9f4c5e5
���1� ���!}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p� }g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�{�ui��?�'}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��&{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�%{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�${k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��#{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��"q��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)
Cb�]�I�Cq�.{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��-{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)�
�,s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��+s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��*}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�)}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��(}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
���1� ���4}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�3}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��2}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�1}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��0{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�/{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)
�z�xl��?�:}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��9{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�8{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�7{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�6s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��5s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)
Ib�]�I�
�?s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��>s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��=}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�<}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��;}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
q�@�4q�?�D}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��C{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�B{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�A{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�H�@s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
Ib�]�I�
�Is�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��Hs��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��G}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�F}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��E}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�Nw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Mwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Lw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�Kw}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�Js��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�Twu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�S{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�R{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�Q{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�PwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Ow�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
m���\�m�
�[{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�ZwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Yw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Xw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Wwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Vw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�Uw}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)
���!�&�{�aw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�`wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��_w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�^wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�]{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�\{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�hwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�gwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�f{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�e{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�d{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�cwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�bw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�o{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�n{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�mwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�lw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�kw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�jwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��iw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�vwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�uw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�tw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�swq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�rwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�qwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�p{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
,o�)�,r�}wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��|{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�{wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�zwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�y{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�x{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�w{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
{��t�y{�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�~w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�
{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�	wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
,��!�2�,{�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�
wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)

e�r+��V��:��eD�6�
05ba725d5c869c501d11a5e7d8127d0ad80d328b3e6147d560401baf1810497bD�5�
516201be4c2a553028eb1f983417912a1b05f800b8989fcd30a55f89623a57b6D�4�
1f800a61ea4b98c012916d84ad280573560d18bf31af0e459b43494dbf907a0dD�3�
edfa799d5c426dea0808d52912a4ed39b1534c8e7a5d3dc0a96937be66990f1cD�2�
9ed16457c6de56bbd64bcca2285bd78861c098822395446cc3a1c693ffb69c77D�1�
bc1b8404e2707eba59addc78201595f614f7350f97cf87e924e6f6dbac90b3c3D�0�
2953e2a9ba9042a9c5ebb93523d595d91f7367d8b83dc5b40a473e85572478b2D�/�
0f0f20e5079748f9103ff3e0068108043ec9079822de5e46263c2c1f09b6dc0dD�.�
c0a3bcd41e5beba5e539861177a8ed67f9626d4b21b11ab1b621770a53bf3137D�-�
43e8db14504b7b1b92c33224717880dd9e4ea6101787efd5f0da89bc9bf2d7a0D�,�
ebbfadfcdd945e3b5ae40adb51fb4d444facc09bdd9f9cc989542bfed2cdee60D�+�
5ca5234e59243cc5ced75e11bc9ad434a82d86c5fa5eab71a130bd3c3ae49334D�*�
d4718c0bcf9365bfcd07e9c307952a12ae32802cbc6bde5707222c30c90cbb85
*����%�*g�'{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�&{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�%wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebaseq�${k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��#{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��"{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��!{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d� wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����-{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��,{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��+{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�*wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�)wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�({�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��4{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�3wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�2wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�1{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�0{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�/{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�.{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rqg�:{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�9{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)m�8{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�7{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��6{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��5{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����@{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��?{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��>{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�=wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�<wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�;{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��G{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�FwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Ewu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�D{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�C{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�B{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�A{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf�g�M{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers��L{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�K{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�J{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��I{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��H{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����S{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��R{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��Q{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�PwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Owu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�N{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������Z{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�YwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Xwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�W{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��V{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�U{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�T{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf��?�`}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��_{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�^{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�]{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��\{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��[{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����f{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��e{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��d{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�cwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�bwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�a{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
���5���m{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��l{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��k{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�j}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��i{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�h{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�g{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
������t}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�s}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��r}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�q}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��p{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�o{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�n{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�^�z��?�{}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��z{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�y{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�x{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��w{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��v{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��u{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
_b�]�C�_m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��~}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��|}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��q��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�x�rf��?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��
{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��
{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��	{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
bb�]�F�bm�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��q��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
xd���x��s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�r�l�`��?�!}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)�� {�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)�
�s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)

e�r+��V��:��eD�C�
32f0185e8d6a9ab586922827519f1f38fb921fcaff260385904d3e61dd029d44D�B�
3d4d0d965fc073d950dd63507c1b1287648ef59c103d02cf09891c04bd99e930D�A�
d0428b24d84b75519bce64c115f13b151f065712ac094dcd035dc9b63bbdc664D�@�
0d953611a4ac63b86ca9bbf1ca0f35e9ef53094123f9e581e16919ed0393c690D�?�
40ceb41cf108321fdafc40bff1168cbc4f3e85a9ec271d6b55e946ed83697fb7D�>�
86d0b148abfa317696a046ac187cb479b242ea3f9ec769e6891130395ea172a9D�=�
b3e23051f12c034b848268c08321e17a519c484640546a3ae90e7f99b36e7174D�<�
9ea26fb857c06b7e275a794a125b7880359b3911861019696cd35074ee1063d3D�;�
ba3bba99a83841a7ef214b159627a5734756196a37510565d94c55e374ab6dc9D�:�
6c557f44383a709d2f0b400c2b77b432a965e5b7d4507ed1ecaf15fd92b55760D�9�
932e0ad4e24e0525ba464544c1e8e10938e5fe172b6f926e51a12e6e2874b3edD�8�
98cb7a80b5609722e12d6cd1a4562d0177f0672359013887fde3560ec9647c8fD�7�
83e71037aa03cb56d8e5d9d0d2f0e410673cb723d0cf4f81dff15ea65830fd59
eb�]�I�em�({c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�'{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�&s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��%s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��$}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�#}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��"}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
xd���x��.s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��-}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�,}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��+}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�*}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��){�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
�r&�B���3{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�2{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�1{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�H�0s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers�
�/s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
�=�,���
�9s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��8s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��7}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�6}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��5}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�4}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
��9�>�{�>w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�=wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��<w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�;w}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�:s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�Dwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�C{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�B{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�A{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�@wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�?w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
m���\�m�
�K{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�JwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Iw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�Hw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Gwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Fw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�Ew}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)
���!�&�{�Qw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Pwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Ow��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�Nwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�M{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�L{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�XwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Wwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�V{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�U{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�T{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�SwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�Rw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�_{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�^{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�]wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�\w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�[w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�Zwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��Yw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�fwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�ew�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�dw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�cwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�bwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�awu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�`{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
,o�)�,r�mwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��l{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�kwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�jwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�i{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�h{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�g{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
{��t�y{�z�s{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�r{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�q{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�pwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�ow�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�nw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�z{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�ywC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�xw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�ww��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��v{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�uwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�twu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
,��!�2�,{�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�~wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�}wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�|{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
P�a���d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�
{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��
{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��	{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
*����%�*g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebaseq�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��${��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�#wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�"wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�!{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g� {W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake

e�r+��V��:��eD�P�
566646f7e600ab8480640215904fa6db201c8d068ab3d6f8b7e348bf1ad1fd34D�O�
b97a0e1f72d3fb43f706975f8e02ff0c130ef35fc6b4763eb18db88980fcde25D�N�
922e0899bd8cf38bf10d752a0549435a450f968969520194880a2484c23f16dfD�M�
61a1892c950bfc4a208064a4e1d8a4d65876ca4891cc730ee2b045f0f37f7794D�L�
9a717dd3b5eb02f5b812a44d5dde08db1964e2500b23bb7518df5c5083372f36D�K�
72e5967a31cc0ef1edc116fd15578c5e906edd2f9c5485a13dfaf37b191efb7cD�J�
07ef29e54e22c90b43aa4eb7133046f805b01fd91030eafee283ca4db4b35173D�I�
b09f1f08469f4eb7a40b74f2e3cd25fa408b93d9213c6bdbc7ef21b1ee1ac8a9D�H�
1a1a8ca0b3ee1af1eea431740811a8a48d9564e81093de7dc250d46e47d3383fD�G�
1c0761e63af4f982fec4bf5ddbda7da44c1f6472883839db48386eaaac902785D�F�
9e951fe6f09cc5cf1402211e1232a2a92d029d66404daf66003bfc285052a41dD�E�
27e369dd165f3e4ff6b99227422febe5eb07cd10c6962ce831eade5566e16b91D�D�
22eb2233053a534b388c3ed8e39dfa1b4901d5e8b1e278a8c843c301c9db2488
x�rqg�*{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�){�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)m�({c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�'{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��&{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��%{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����0{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��/{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��.{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�-wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�,wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�+{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��7{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�6wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�5wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�4{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�3{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�2{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�1{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf�g�={W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers��<{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�;{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�:{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��9{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��8{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��$����C{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��B{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��A{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�@wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�?wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�>{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������J{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�IwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�Hwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�G{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��F{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�E{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�D{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rf���Q{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�P}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��O{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�N{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�M{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��L{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��K{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
�x�rf��?�W}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��V{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�U{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�T{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��S{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��R{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
_b�]�C�_m�^{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�]{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��\{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��[{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��Z}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�Y}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��X}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��dq��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��c}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�b}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��a}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�`}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��_{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
n���+�p�k}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��j}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�i}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��h{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�g{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�f{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��e{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
n�Z�v��?�r}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��q{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�p{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�o{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�ns�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��ms��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��l}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)
Ib�]�I�
�ws�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��vs��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��u}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�t}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��s}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�|w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�{wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��zw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�yw}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�xs��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�~wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�}w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�	{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�
wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�
{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
#o�)�#{�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
P�a���d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�%wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�${�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�#{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�"{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�!wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�� {��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)

e�r+��V��:��eD�]�
ca5ee1ff2a858d3eaf6bbed3a7c0421519183d99018689b9d2bfb4f8b2bdb122D�\�
02b9f36207f55eecbaed6219e76bf38881875be99f49e0eca71ec75e6d3a7aa3D�[�
235100bdba26a1af51c7f66f533d9318837d01dafa0c5e822245c8e0e5469978D�Z�
1efc77004111254487934c32f189a3b3fc8b1baf00a6e8350558183281f3855dD�Y�
f6274f5c3cd73beb54d94229fd5b93b99b525f50921dae06b852ca0ada18b5b9D�X�
955704fe8de0bbcec645e44f2b204e4b12ce8b7bd2c8bfaba5e8968ee76f0568D�W�
74f4bb31b79790aa5a646612520c06cdd181b6e3e39b90a65dfc2634c1821260D�V�
cf810cc7447c597839d02d5738646b8afcdb25edddcbd9cfbd3173d5a01cf3a3D�U�
089b94f213c170e875e90bb476e333d4b7d2491e323f4692f8e1513f78b4203eD�T�
8724fc26052010a537fbffaecee3413ede14b44646e26a456c4c8695f5f259c0D�S�
11e7a9eb9ad854ce3901deb76ff9ab3e462f87d56766b9cda133c1fbcc89d812D�R�
1a7fc39e7d481badbe2fe10dd40d290dcdefdeb4f572a8affee7880a751d5805D�Q�
f7789c32ac34827df4b6c180e845361bb70aa1fcbc165a6c2a533559f2bc3f76
�������g�,{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�+{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�*{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��){�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��({��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��'{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�&wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����2{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��1{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��0{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�/wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�.wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�-{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)of�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������T�U�V�W�!Y�(Z�.[�3\�9]�>^�D_�K`�Qa�Xb�_c�fd�me�sf�zg�h�i�j�k�l�$n�*o�0p�7q�=r�Cs�Jt�Qu�Wv�^w�dx�ky�rz�w{�||�}�	~������%��,��2��9��?��F��M��S��Z��`��f��m��s��y������������!��(��/��6��<��C��J��P��W��]��d��i��p��v��}����
��������%��+��2��9��?��F��L��S��Z��_��d��j��q��x������
������!��(§.ç4ħ:ŧAƧHǧOȧVɧZ
N���=�N��9{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�8wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�7wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�6{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�5{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�4{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�3{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
hx�rfh�z�?{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��>{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�={c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�<{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��;{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��:{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
��"���m�F{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�E{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��D{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��C{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��B{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�AwU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�@wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
d����m�M{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�L{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��K{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��J{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��I{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�H}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��G{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
vd���v��S{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��R}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�Q}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��P}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�O}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��N{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
n���+�p�Z}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��Y}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�X}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��W{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�V{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�U{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��T{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
�n�W�s���`{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�_{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�^{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��]{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��\q��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��[}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)
�=�,���
�fs�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��es��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��d}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�c}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��b}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�a}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)
������m}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�l}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��k}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�j}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��i{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�h{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�g{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
*z��%�*r�swq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��rw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�qw}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�ps��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers�
�os�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��ns��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)
{��t�y{�z�y{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�x{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�w{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�vwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�uw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�tw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
q��`q�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�~w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�}w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�|wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��{w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�zwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
��!�E��,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
C���2�C��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�
wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�
{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�	{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase
{��t�y{�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
��"��#�g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
��$����!{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)�� {��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
-�����-��({��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�'wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�&wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�%{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�${W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�#{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�"{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake

e�r+��V��:��eD�j�
32af5400af5619a7e1f0c43f574170ae98cfd7cdc7e831f572b8d05530bd8913D�i�
850be6d438290af4b3c31805a40c2f8a88e4e751bafa1bb02b6b884736f80ef2D�h�
8317594c4733bc6fd9c13e0001d962d14e7bffb83ed66e6337f6b8a490067ea9D�g�
a191bcc40fb33d21a6109e116756d8999e60adb5535583f65d05f51ff3047463D�f�
f43e7c1792d357cd5fb1ac5a13e744a5ba50e7309444d7ab7d0149227755b575D�e�
f6c854fef6008f3f063c3ed1c4f6a2e51821b5fe057282702dfcd15b7783bd41D�d�
87d3a6a27aa6179e43d778cec0765e166b68510a391d6eea5236b2e70d6d746bD�c�
fdb600cfe62d10fb9b78089a4daae03dd3010232a321c952510faa95723d5a60D�b�
dd3bfb74354db34116d2bb2b298b233f3d005acdb7709c1ea17dd9dede2e0566D�a�
d1870d7298e93c62411f7b0b728df981e13f75ca9fdac1fb117b0e2d50d3b71fD�`�
2924951f311fafa5d17831ab4e1bd85bee2bd6d9ed591445149b5fd70152d077D�_�
4552c0e9031fc5f990a165feb17e2cd243461f760cb80e75769c837d1052f193D�^�
8908f58fb71fd39056da9b792dd69e358735856d43352a085ffea8b4b8f2039e
#x�r��#t�/wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�.{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�-{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�,{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�+{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��*{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��){��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
w����w��6{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�5{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�4{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��3{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��2{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��1{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�0wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����<{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��;{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��:{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�9wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�8wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�7{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
���5���C{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��B{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��A{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�@}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��?{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�>{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�={k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
������J}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�I}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��H}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�G}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��F{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�E{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�D{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
�x�rf��?�P}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��O{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�N{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�M{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��L{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��K{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
bb�]�F�bm�W{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�V{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��U{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��Tq��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��S}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�R}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��Q}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
xd���x��]s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��\}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�[}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��Z}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�Y}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��X{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
r���/�p�d}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��c}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�b}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��a{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�`{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�_{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�^s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)
�n�Z�x�iw}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�hs��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers�
�gs�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��fs��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��e}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)
~z��y�~g�p{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�o{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�nwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�mw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�lw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�kwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��jw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
b��b�,�vw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�uw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�twq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��sw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)t�rwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�q{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
V���2�Vr�}wq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�|wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�{wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�z{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�y{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�x{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase
{��t�y{�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�~w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)
}�"�l}�
�
{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�	wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)
L��!�2�L[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�
wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers
o�)���{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
#n�i��#d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
x�^�zg�%{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�${c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�#{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��"{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��!{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)�� {��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)

e�r+��V��:��eD�w�
ad525efce24792177db9c59af54a5822206dc0ec6f5b18770062ca07e51ac4caD�v�
f2cbc4c0d7d808554f9689174450c43f80db727c186bd3a1980494886a25212aD�u�
0834c02bc349eaabe64a4015d07ee7cbcf7776a68766e81cd93be0a58c7d5465D�t�
43f50cb7c44309253c847a258d592992e250678cda19887c482849bd67b447e3D�s�
461bf2c4280e37fa28f8577583cf56315e10dc6a8898497da766b5dffbdb1a56D�r�
797abce4232e5ed3353b7d0733cce5d5aea1134edf9acaa37b6028ef6bcfbc3dD�q�
6c2a1f394c23865716bd975554c638950ef8bb2b3efd23074290f41ebd724f20D�p�
2c9324974a8a0cabc911ea21fe71581d404b5d397c0c010f06880df10520bbf3D�o�
a6c934448f1ad13c105abb9c4606317935bd853ff0ba1a80735013b194ee0643D�n�
41923a544cdeeda959457ff656dfdd7e871d90f2d4f234055c2bb0f1f3996609D�m�
4f2f74c8de47efbfeea14ccb4e01899a829a67121a6963532b82205d11eaea8bD�l�
f59ceed71d088a420b5ecc67bc4a13df798f7d3d12556a27285fb4dfd594850eD�k�
74038c223561306541466c5407569dcc8055567f3cc9a56e7ec106015d2df942
��$����+{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��*{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��){��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�(wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�'wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�&{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
������2{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�1wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�0wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�/{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)��.{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�-{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�,{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
x�rf���9{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)�?�8}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��7{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�6{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�5{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��4{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��3{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
�x�rf��?�?}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��>{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�={c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�<{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��;{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��:{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)
_b�]�C�_m�F{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�E{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��D{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��C{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��B}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�A}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��@}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
yd���y��Lq��Stepan Broz <sbroz@redhat.com> - 2:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��K}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�J}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��I}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�H}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��G{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)
n���+�p�S}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��R}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)�?�Q}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��P{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�O{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�N{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��M{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)
n�Z�v��?�Z}��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.10c,N@- Fix memory leak in ECDSA verify processing (CVE-2022-38177)
- Fix memory leak in EdDSA verify processing (CVE-2022-38178)��Y{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�X{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�W{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake�
�Vs�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��Us��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��T}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)
Ib�]�I�
�_s�#�Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.15ev@- Limit the amount of recursion possible in control channel (CVE-2023-3341)��^s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.14d��@- Prevent the cache going over the configured limit (CVE-2023-2828)��]}�!�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.13c���- Tighten cache protection against record from forwarders (CVE-2021-25220)p�\}g�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.12c���- Include test of forwarders (CVE-2021-25220)��[}�9�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.11c5��- Prevent excessive resource use while processing large delegations.
  (CVE-2022-2795)
��9�>�{�dw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�cwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��bw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)x�aw}�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-19.P2^h�- Allow conflicting zone files with a warning (#1744081)�H�`s��Stepan Broz <sbroz@redhat.com> - 32:9.11.4-26.P2.16fh@- Prevent increased CPU consumption in DNSSEC validator (CVE-2023-50387
  CVE-2023-50868)
- Add missing design by contract tests to dns_catz*
- Speed up parsing of DNS messages with many different names (CVE-2023-4408)
- Do not use header_prev in expire_lru_headers
�P�a���t�jwu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�i{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�h{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�g{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�fwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�ew�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
~z��y�~g�q{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�p{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�owC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�nw�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�mw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�lwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)��kw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-20.P2^ku�- Do not crash when nsupdate with GSS terminated early (#1300636)
#�$�1�#[�xwC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�ww�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617){�vw��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)r�uwq�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-21.P2^oj@- Disable atomic operations also on ppc (#1779589)d�twU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�swu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�r{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
#o�)�#{�w��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-22.P2^r
@- Solve often priming queries on some forwarder (#1756201)��~{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�}wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�|wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�z{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�y{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)
P�a���d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase�,�w�c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-23.P2^�x�- Limit number of queries triggered by a request (CVE-2020-8616)
- Fix invalid tsig request (CVE-2020-8617)
"x����"t�
wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�
{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)[�	wC�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-24.P2^Ǿ�- Add CVE tests to codebase��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)
�������g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken servers�
�{�!�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-25.P2^��- rebinding protection for forwarding DNS server upstream patch (#1832812)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)
��$����{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)��{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d�wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)
N���=�N��!{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.4`*b@- Fix off-by-one bug in ISC SPNEGO implementation (CVE-2020-8625)d� wU�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.3_�:�- Fix inline re-signing (#rh1889902)t�wu�Tomas Korbar <tkorbar@redhat.com> - 32:9.11.4-26.P2.2_w@- Fix unsupported algorithms validation (#rh1769876)�z�{�{�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.1_FN�- Fix tsig-request verify (CVE-2020-8622)
- Prevent PKCS11 daemon crash on crafted packet (CVE-2020-8623)
- Correct update-policy type subdomain to match documentation (CVE-2020-8624)g�{W�Artem Egorenkov <aegorenk@redhat.com> - 32:9.11.4-26.P2^�@- Fix EDNS512 loops on broken serversm�{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�{k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake
Ux�rf�U��(g�9�Nick Clifton  <nickc@redhat.com> 2.27-36.base\4��- Prevent resource exhaustion attacks on libiberty's name demangling code.  (#1598561){�'g��Nick Clifton  <nickc@redhat.com> 2.27-35.base\4��- Stop strip crashing when removing .comment sections.  (#1644632)��&{�7�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.9a�- Fix possible assertion failure isc_refcount_current == 0 in free_rbtdb
  (#1935152)m�%{c�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.8ah�- Prevent a race after zone load (#2011220)q�${k�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.7`�@- Apply again patch 172, got removed by mistake��#{�#�Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.6`�Z�- Insufficient IXFR checks could lead to assertion failure (CVE-2021-25214)��"{��Petr Menšík <pemensik@redhat.com> - 32:9.11.4-26.P2.5`���- Possible assertion failure on DNAME processing (CVE-2021-25215)

e�r+��V��:��eD��
8e35267d29e2ee8a7d9678927b89dd4a07137e32a7f920844428b1f94aaf2c97D��
0f2b2ab9e05c1447b23d28c2912f8057c494168f4eed17e7d868e5970436722dD��
580edd83e305e9b58fb0cceca959a21a8c59ccd3bc075f075211019108f73863D��
ebf604edce00a3a3778207eeaac06a3de226dbf62bfb987ed00584aa8d736ea1D��
d9c97d1412cfdb3b24b2aca08bec9bed63be4db9461f19ba0eef840ad48dc19eD��
9e472e05a5fca129f0efc2c81b7fc14f5daa96935b5c693cead447474422f17fD�~�
6f1a8e6e9202d70c194d4aaed3c034d719a85eb53ac63f8c6235756a9646a2faD�}�
e51d2de57b856312d8eb1bbf6ee6b7ac8f910ebf5d7e0b516012d5d9c31c7853D�|�
64ec5a21e706505bd67ed2ff5da8b90fcfb71ea07550d90a777323f49c8ee5d9D�{�
f17b58dd383483f1592c8c3c0bf814ed80d208d19a254620ec541a14c9f5f144D�z�
20887cda88d458e236a1d13d68fb01b10056907594d573f0342d40b9bd677d37D�y�
b88c8339f9ad90d0855cda0072a67860549759e8870cc9abc61555e4d4ef4f61D�x�
db4dac1347f0a7c37ce54b990ae4be455c6c016e54d0a315f1e2cbefcefd3073
��zy���.g�W�Nick Clifton  <nickc@redhat.com> 2.27-42.base]w�@- Stop the BFD library from complaining about sections with multiple sets of relocations.  (#1749085)��-g�?�Nick Clifton  <nickc@redhat.com> 2.27-41.base\�r@- Fix up some linker tests that fail because of the R_x86_64_GOTPCRELX patch.  (#1699745)h�,gm�Nick Clifton  <nickc@redhat.com> 2.27-40.base\N�- Enable gold for PowerPC and s390x.  (#1670014)��+g�7�Nick Clifton  <nickc@redhat.com> 2.27-39.base\<y�- Fix a potential illegal memory access triggered by an integer overflow.  (#1665884)s�*g��Nick Clifton  <nickc@redhat.com> 2.27-38.base\4��- Disable optimizations of x06_64 PLT entries.  (#1624779){�)g��Nick Clifton  <nickc@redhat.com> 2.27-37.base\4��- Add the .attach-to-group pseudo-op to the assembler.  (#1652587)
��	v��s�4g��Nick Clifton  <nickc@redhat.com> 2.27-38.base\4��- Disable optimizations of x06_64 PLT entries.  (#1624779){�3g��Nick Clifton  <nickc@redhat.com> 2.27-37.base\4��- Add the .attach-to-group pseudo-op to the assembler.  (#1652587)��2g�9�Nick Clifton  <nickc@redhat.com> 2.27-36.base\4��- Prevent resource exhaustion attacks on libiberty's name demangling code.  (#1598561){�1g��Nick Clifton  <nickc@redhat.com> 2.27-35.base\4��- Stop strip crashing when removing .comment sections.  (#1644632)��0o��Nick Clifton  <nickc@redhat.com> - 2.27-44.base.1ar��- Add ability to control the display of unicode characters.  (#2009168)�m�/g�u�Nick Clifton  <nickc@redhat.com> 2.27-44.base^E:@- Allow the BFD library to handle the copying of files which contain secondary reloc sections.  (#1785294)
- Implement assembler workaround for Intel JCC microcode bug.  (#1778892)
Rnm��R��:o��Nick Clifton  <nickc@redhat.com> - 2.27-44.base.1ar��- Add ability to control the display of unicode characters.  (#2009168)�m�9g�u�Nick Clifton  <nickc@redhat.com> 2.27-44.base^E:@- Allow the BFD library to handle the copying of files which contain secondary reloc sections.  (#1785294)
- Implement assembler workaround for Intel JCC microcode bug.  (#1778892)��8g�W�Nick Clifton  <nickc@redhat.com> 2.27-42.base]w�@- Stop the BFD library from complaining about sections with multiple sets of relocations.  (#1749085)��7g�?�Nick Clifton  <nickc@redhat.com> 2.27-41.base\�r@- Fix up some linker tests that fail because of the R_x86_64_GOTPCRELX patch.  (#1699745)h�6gm�Nick Clifton  <nickc@redhat.com> 2.27-40.base\N�- Enable gold for PowerPC and s390x.  (#1670014)��5g�7�Nick Clifton  <nickc@redhat.com> 2.27-39.base\<y�- Fix a potential illegal memory access triggered by an integer overflow.  (#1665884)
h��q�i�h��Ag�?�Nick Clifton  <nickc@redhat.com> 2.27-41.base\�r@- Fix up some linker tests that fail because of the R_x86_64_GOTPCRELX patch.  (#1699745)h�@gm�Nick Clifton  <nickc@redhat.com> 2.27-40.base\N�- Enable gold for PowerPC and s390x.  (#1670014)��?g�7�Nick Clifton  <nickc@redhat.com> 2.27-39.base\<y�- Fix a potential illegal memory access triggered by an integer overflow.  (#1665884)s�>g��Nick Clifton  <nickc@redhat.com> 2.27-38.base\4��- Disable optimizations of x06_64 PLT entries.  (#1624779){�=g��Nick Clifton  <nickc@redhat.com> 2.27-37.base\4��- Add the .attach-to-group pseudo-op to the assembler.  (#1652587)��<g�9�Nick Clifton  <nickc@redhat.com> 2.27-36.base\4��- Prevent resource exhaustion attacks on libiberty's name demangling code.  (#1598561){�;g��Nick Clifton  <nickc@redhat.com> 2.27-35.base\4��- Stop strip crashing when removing .comment sections.  (#1644632)
+^m��.�+W�HeM�Josef Ridky <jridky@redhat.com> - 0:1.8.18-4X�+�- Fix RPMDiff issues and rebuild�%�Ge�g�Josef Ridky <jridky@redhat.com> - 0:1.8.18-3X��@- Fix issues with warning: dereferencing type-punned pointer 
  will break strict-aliasing rules from RPMDiffR�FeC�Josef Ridky <jridky@redhat.com> - 0:1.8.18-2X���- Fix issue in file sources_�Ee]�Josef Ridky <jridky@redhat.com> - 0:1.8.18-1X�@- New upstream release 1.8.18 (#1398658)��Do��Nick Clifton  <nickc@redhat.com> - 2.27-44.base.1ar��- Add ability to control the display of unicode characters.  (#2009168)�m�Cg�u�Nick Clifton  <nickc@redhat.com> 2.27-44.base^E:@- Allow the BFD library to handle the copying of files which contain secondary reloc sections.  (#1785294)
- Implement assembler workaround for Intel JCC microcode bug.  (#1778892)��Bg�W�Nick Clifton  <nickc@redhat.com> 2.27-42.base]w�@- Stop the BFD library from complaining about sections with multiple sets of relocations.  (#1749085)
D���'��DR�OeC�Josef Ridky <jridky@redhat.com> - 0:1.8.18-2X���- Fix issue in file sources��Nk�S�Pavel Cahyna <pcahyna@redhat.com> - 0:1.8.18-10a�{�- Protect against negative values to memmove that caused
  "ipmitool sol activate" to crash against an IBM DataPower appliance
  (#1951480) and IP-131 Dayton blades in a SGI ICE-X (#2025519)
  Cherry-picked from upstream PR#78.i�Msc�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-9^_�@- Disable -fstrict-aliasing (RPMDiff issue)^�LsM�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-8^^F�- Backport fix for CVE-2020-5208o�Ke}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-7Zy��- Remove debug prints shown without -v option (#1483163)��Je�=�Josef Ridky <jridky@redhat.com> - 0:1.8.18-6Y�{�- Hide unrequested verbose output (#1483163)
- Fix doc for check input values (#1495098)o�Ie}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-5X�s�- Remove RPMDiff fix file (#1439269) related to #1398658
�W����$�i�Vsc�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-9^_�@- Disable -fstrict-aliasing (RPMDiff issue)^�UsM�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-8^^F�- Backport fix for CVE-2020-5208o�Te}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-7Zy��- Remove debug prints shown without -v option (#1483163)��Se�=�Josef Ridky <jridky@redhat.com> - 0:1.8.18-6Y�{�- Hide unrequested verbose output (#1483163)
- Fix doc for check input values (#1495098)o�Re}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-5X�s�- Remove RPMDiff fix file (#1439269) related to #1398658W�QeM�Josef Ridky <jridky@redhat.com> - 0:1.8.18-4X�+�- Fix RPMDiff issues and rebuild�%�Pe�g�Josef Ridky <jridky@redhat.com> - 0:1.8.18-3X��@- Fix issues with warning: dereferencing type-punned pointer 
  will break strict-aliasing rules from RPMDiff
����<�Z��w�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}��Y��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�w�Xg�	�Pavel Cahyna <pcahyna@redhat.com> - 1.8.18-11d��- Add upstream ipmievd patch to check received msg id against expectation
  Fixes problem where SEL response is not recognized correctly
  when SEL request times out
  Resolves: rhbz#2224569��Wk�S�Pavel Cahyna <pcahyna@redhat.com> - 0:1.8.18-10a�{�- Protect against negative values to memmove that caused
  "ipmitool sol activate" to crash against an IBM DataPower appliance
  (#1951480) and IP-131 Dayton blades in a SGI ICE-X (#2025519)
  Cherry-picked from upstream PR#78.
�I��K�\}��Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3�[��e�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]
�t�^��g�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i�]��Q�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-�`��W�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M�_���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
?��?�K�c}��Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]��b��9�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L�a���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]
�t�e��g�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i�d��Q�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-�g��W�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M�f���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
�����i��9�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L�h���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�2���k��1�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_fԃJ�j���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�=��M�m���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?�l��{�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�O��L�o���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-�n��W�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
�����r��1�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f؃J�q���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)��p��9�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
==�?�s��{�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d�t��E�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
r-r�7�v��k�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O�u���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P�x��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol݅^�w��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
;;�9�z��oAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow�t�y��eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
{�{��|��7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�X�{��-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f�}��IAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
pp��~��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}


�o���YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]
�q���]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d���ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
r-rr�|���uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7���kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Z�}���wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"���ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
#��#�?�
��{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4�	��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^���9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
Z�B�
��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"���ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|���uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}���wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4���eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^���9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b���ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~���yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
(o�(�"���ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]����7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�
����}���wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4���eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^���9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b���ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~���yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
o��+��	�MRadomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]����7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
������7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�
�f� ��IAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
pp��!��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}


�o�"��YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]
�q�#��]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
/�/�R�%��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE��^�$��7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
--�O�&��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�(���(��1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T�'��#Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]

e�r+��V��:��eD��
6652fd59e1328ff5e8f2141d6e091685a4e2cb80366a0f729537fb40a17779b8D��
168cb87176ec6a7a6805dcccc50c34a22945c1ebfd027164ff0028a1a140a637D��
388ece9ac8d1f44fa207868af7af9df39a1479ce72301c159bfb9ed3f436fd61D��
f2dc09932d5afec99bdc35c39f858385a06e600f3b989133d348ed00959ba429D�
�
19575eb2feb5e29ed339c078e462e2a4ac7a44f0888328185fc248a30681b82eD��
5b19e42e03ab5ffdc24e71ec6c71dd0d4c8a557e482b142cb58bd7eaf529174aD��
e07580dc20cee29ddae2c26b7d4782a6e7671477d7f4ae210d2cef6cc71555cbD�
�
8b60c6a9194e57ad101ad2a28015f644b915aa5c958a5f8b0e68def14394fa13D�	�
479b38bee7280885a7df789a1472c2d43e1a0103f8607f0e6d3fb26c2ae13423D��
bfe191b783a11c70daf05fb86e81e2e36d80b7dec5eb2243fa223700ce330824D��
a6119606e76fc09a37585914c2063026064b1b979d9cffcf71712c2218b4c3c2D��
d8f18b1da519f3d475ad00269e3908ecb8abedc91f0754a3a8a6aa8b624b04ddD��
f1ba2741b87027c8c0f29b9262bb396c142986c3ad3c68f88e90f34cb028b6de
C�C��*s�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check �J�)s�#Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
E
E�D�,s�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o�+s�mJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
eh�e�j�/s�cJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]��.s�1Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []��-s�7Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
6��1��+Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F�0s�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
����3s�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check �^�2��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]ofUflrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������̧^ͧ`ΧcЧeѧgҧiӧkէm֧oקr٧sڧtۧvܧxߧz�|�}�~������
�
������������� ��!��"��#��%��&��(�*�,�/�1�3	�5
�8�:�;
�=�?�A�B�C�D�E�F�H�I�J�K�L�M �O!�Q#�R$�S%�T&�U(�V)�X*�Y+�Z,�\-�].�_/�a0�b1�c2�d3�e4�f5�g6�h8�j9�l:�n<�p=�r>�s?�t@�uA�wB�yC�zD�{E�|F�}G�H�I�J�K�L�	M�
O�P�
Q�R�T�to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
E
E�D�5s�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o�4s�mJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
eh�e�j�8s�cJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]��7s�1Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []��6s�7Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
6��:��+Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F�9s�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^�;��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
y�y�^�=��7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!�<��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O�?��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R�>��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE
A(A�[�A��1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797�T�@��#Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b�B��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4�C��cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
22�J�D��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
22�J�E��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
����F��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend
A(A�[�H��1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797�T�G��#Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b�I��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4�J��cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
22�J�K��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
22�J�L��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
����M��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend
M�M�/�O��YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|�N��sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
bIb�[�Q��1	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797"�3�P��aAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b�R��?	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4�S��c	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
22�J�T��	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
22�J�U��	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
����V��	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend'
M�M�/�X��Y	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|�W��s	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
II�3�Y��a	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
BB�:�Z��o	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
M�M�/�\��Y
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|�[��s
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
II�3�]��a
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
6B6��_��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:�^��o
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
1�1��a��	
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@�`��{
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
>>�>�b��w
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
����c��#
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
//�M�d��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
uu��e��	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
>>�>�f��wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
����g��#Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
//�M�h��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
,��j��'Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H�i��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP 7
U{U�"�l��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]��k��}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
.�.��n��-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1�m��]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
,��p��'Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H�o��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP ;
U{U�"�r��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]��q��}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1�s��]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
����t��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
����u��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
0�0�2�w��_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]��v��'Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�]���y��}
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]��x��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"�z��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1�{��]
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
����|��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
����}��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
0�0�2���_
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]��~��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
]�����9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"���?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]����9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
������Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
������Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
0�0�2���_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]����'Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
]���	��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"���?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]����9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
33�I�
��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
nn����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348N
pp��
��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i���QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Z�����9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"���?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
33�I���
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
nn����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348S
�i���QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_���=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
EE�7���mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
 � �!���ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7���mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
nn����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348Y
�i���QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_���=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
EE�7���mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
 � �!���ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7���mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
rfr�p���_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]����+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
"���!��+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n� ��[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_iga�Z���3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]bet() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush cif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rdeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�.��n�$��[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_igf�Z�#��3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p�"��_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]get() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush hif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rieform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
d}d�
�&��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060k��%��}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�@���(��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<�'��wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
&�S�&��,s�1Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []��+s�7Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%�*��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]��)��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}

e�r+��V��:��eD��
766b6de38798e8e6035b4c0b18df36607cccc2e988be356ea2d9eb9c21de9b6cD��
ce3a408dfe9ac91c4e9fefe4168ef2cbd9d6d18a92f2dfd2e36b2b7af8c8b103D��
e2dd1e90386216ad54e0f6e9509f96a4314819f96abc9b8ea88ffbb03f05dd03D��
a8d4bf67c5aec05b8881b57f4ec80fbc832c77a1fabb65bb68b376c269b759d3D��
85de1b747c97e7d16a742f3f0789c4d8761e3b44c28ff437bc8b47499a9132adD��
61a258f5eb7c2c013c4eeb36791fdc7dc8b813c04b4ae5b0d1a31faa435a58acD��
04b4fe240bbb7def555afa21959f623f37179a6993d0e6a57f592f05ab3f531bD��
66cc35a05dd83f4129f6b3bb4f774d59fc607704c381b660b909ab3e3776ab96D��
7284d6fec357299a1772944305ca58f5d48637a3031733bcdd30849ec50f7a98D��
e9db6345b34c115b15bd297bcda0f0680ee1a37cf51adeb1477e16e232d6f289D��
81df5804e78ba7e49ce4ceb11f4b7c514d4f06d0ad146b950993c6cb77e58dfaD��
0dac2946a3cac243477b0ac6573b491a15bcd751bbfaa32b92535f850f10cf3fD��
2d58b75f307b928bfae35e0818fe5449c542ed611f46c2ba4663d50f304c0295
����F�.s�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j�-s�cJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
����/��+Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P�1��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_holr�^�0��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
;;�9�3��oAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] powu�t�2��eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_commandserpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
5�5�n�5��[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_igw�X�4��-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}xet() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush yif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rzeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
d}d�
�7��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060|��6��}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�@���9��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<�8��wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
S�S�%�;��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]��:��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\�<��7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT
QQ�+�=��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
))�S�>��%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�vr��%�A��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]��@��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}��?��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\�B��7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT�
QQ�+�C��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
))�S�D��%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
s�Ds�M�G��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%�F��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}��E��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
88�D�H��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
))�S�I��%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
s�Ds�M�L��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%�K��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}��J��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
88�D�M��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
'w'�L�O��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]��N��	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�e���
�R��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]��Q��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]��P��-Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
'w'�L�T��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]��S��	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�e����&�X��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
�W��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]��V��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]��U��-Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
zz��Z��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l�Y��WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T�[��'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
7_Q'7�l�_��WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&�^��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
�]��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]��\��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
jj��`��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T�a��'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
I_I��c��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]��b��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�Q*��B�f��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]��e��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+�d��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
P��P��i��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l�h��WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&�g��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]offlrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������V�W�X�Z�[�\�]�^�_�`�!e�$j�&l�(m�,o�.p�/q�1t�3v�5{�7}�9~�;��<��=��>��A��B��C��D��G��H��I��L��M��O��R��T��X��Z��[��_��`��a��c��f��i��j��l��o��q��r��t��w��x��y��{��}��~������ªêĪŪ	ƪȪɪʪ˪ͪΪЪѪ!Ҫ$Ӫ'Ԫ)֪+ת.ܪ0ު2ߪ5�<�F�P�Z�d�n�v�{���
��� �#�&�)��*��+�-�.�1	�2
�3�5�6�7�>�Dcpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T�j��'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
I_I��l��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]��k��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�Q*��B�o��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]��n��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+�m��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���q��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L�p��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T�r��'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
I_I��t��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]��s��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�Q*��B�w��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]��v��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+�u��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L�x��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
''�U�y��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
�����{��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825���z��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
j�j�L�}��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B�|��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
''�U�~��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i���QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
<<�@���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�c��7���mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�����1Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
y�y�L���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3���eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
''�U���)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i���QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
<<�@�	��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�c��7���mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcǅ�
��1Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
H�+H�_���=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]��
��3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3���eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i���QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
<<�@���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�c��7���mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc̅���1Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��+H�����7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_���=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]����3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3���eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
Y�Y����1Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�=h��_���=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]����3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3���eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7���mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�
�`VK��<�!��wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�� ��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]����7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�If���$��7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_�#��=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3�"��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
+��+�<�'��wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}��&��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]��%��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�I��K�)}�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3�(��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]
�t�+��gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i�*��QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����.s�Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Dronoڊ	�-s�!Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do cleanقM�,��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}

e�r+��V��:��eD�+�
d56f208cb0a3f9404c7aa65a34d04ff637f76d4517d2f68c4c63ec940a0806a5D�*�
04dce9028a87d078c3036031ae186db04fd35a585bd35d7aa2fcc7c8300830edD�)�
a99bb11d5187d473fbf1ceddf45f95459a860863d190605924743cdb4f34261bD�(�
7c67eafa7cee5c39a41ff1aeb7d5cd4d764c1967ad0cc0795ad34e1d63727f0eD�'�
58d8a7b6d0fdb9777df76fd29a92c1c249ab8fe602e217d454e4b89dd8a82452D�&�
d30f35b56aec811e1b348312a8f58d2e793a4c89f8e25ac9155a5e74a0d04b90D�%�
1b927fc58d94ad45dc78d0926b1fb83cae72958110a6ebfa24f75a5d5a9a4b4dD�$�
37c1fc32da75405bdcca093c9fce198c021c7868450f7b272aed38def708857dD�#�
518ebaac264e510836e723892b0b9982787bf6b242d9843e5ab09ecc5c9f642aD�"�
4857df90d4f9aa3520255aef6c5bdbe887f7cdaae0d006c15b15db7c418b372fD�!�
ad182b2b1a28f50e4030294d1ad1de624300da1440a08ecc9180070cc3c2b076D� �
149c020747f7a669eb88245d5064fa806ac7462e9cdd3a6c05414ff08bdd43e7D��
86101a94927cf01319d801575aa4ea26e63efa577a5431856e0329f06a994596up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}�v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
C�C��0s�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ݆J�/s�#Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
E
E�D�2s�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o�1s�mJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
eh�e�j�5s�cJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]��4s�1Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []��3s�7Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
6�w(�vZ�<iO Peter Robinson <pbrobinson@redhat.com> 3.8.0-8S��- Fix dependencies on own libraryL�;]? Daniel Mach <dmach@redhat.com> - 3.8.0-7R�U�- Mass rebuild 2014-01-24`�:_e Zeeshan Ali <zeenix@redhat.com> - 3.8.0-6R��@- Add dep on own library (related: #1045140)L�9]? Daniel Mach <dmach@redhat.com> - 3.8.0-5R�k�- Mass rebuild 2013-12-27_�8_c Zeeshan Ali <zeenix@redhat.com> - 3.8.0-4R�j�- Complete translations (related: #1030319)Z�7_Y Zeeshan Ali <zeenix@redhat.com> - 3.8.0-3R{��- Fix ISRC handling (related: #861191)�F�6s�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]

f�?��&�u�fZ�FiO!Peter Robinson <pbrobinson@redhat.com> 3.8.0-8S��- Fix dependencies on own libraryL�E]?!Daniel Mach <dmach@redhat.com> - 3.8.0-7R�U�- Mass rebuild 2014-01-24`�D_e!Zeeshan Ali <zeenix@redhat.com> - 3.8.0-6R��@- Add dep on own library (related: #1045140)L�C]?!Daniel Mach <dmach@redhat.com> - 3.8.0-5R�k�- Mass rebuild 2013-12-27_�B_c!Zeeshan Ali <zeenix@redhat.com> - 3.8.0-4R�j�- Complete translations (related: #1030319)Z�A_Y!Zeeshan Ali <zeenix@redhat.com> - 3.8.0-3R{��- Fix ISRC handling (related: #861191)V�@aO David King <dking@redhat.com> - 3.12.2-5.1aTU@- Fix BD-R media flags (#2053594)`�?i[ Richard Hughes <rhughes@redhat.com> - 3.12.2-5[)�- Update to 3.12.2
- Resolves: #1569810[�>]] David King <dking@redhat.com> - 3.12.1-2U[%�- Rebuild for totem-pl-parser (#1222884)`�=i[ Richard Hughes <rhughes@redhat.com> - 3.12.1-1UG_@- Update to 3.12.1
- Resolves: #1174577

f�?��&�u�fZ�PiO"Peter Robinson <pbrobinson@redhat.com> 3.8.0-8S��- Fix dependencies on own libraryL�O]?"Daniel Mach <dmach@redhat.com> - 3.8.0-7R�U�- Mass rebuild 2014-01-24`�N_e"Zeeshan Ali <zeenix@redhat.com> - 3.8.0-6R��@- Add dep on own library (related: #1045140)L�M]?"Daniel Mach <dmach@redhat.com> - 3.8.0-5R�k�- Mass rebuild 2013-12-27_�L_c"Zeeshan Ali <zeenix@redhat.com> - 3.8.0-4R�j�- Complete translations (related: #1030319)Z�K_Y"Zeeshan Ali <zeenix@redhat.com> - 3.8.0-3R{��- Fix ISRC handling (related: #861191)V�JaO!David King <dking@redhat.com> - 3.12.2-5.1aTU@- Fix BD-R media flags (#2053594)`�Ii[!Richard Hughes <rhughes@redhat.com> - 3.12.2-5[)�- Update to 3.12.2
- Resolves: #1569810[�H]]!David King <dking@redhat.com> - 3.12.1-2U[%�- Rebuild for totem-pl-parser (#1222884)`�Gi[!Richard Hughes <rhughes@redhat.com> - 3.12.1-1UG_@- Update to 3.12.1
- Resolves: #1174577

f�?��&�u�fZ�ZiO#Peter Robinson <pbrobinson@redhat.com> 3.8.0-8S��- Fix dependencies on own libraryL�Y]?#Daniel Mach <dmach@redhat.com> - 3.8.0-7R�U�- Mass rebuild 2014-01-24`�X_e#Zeeshan Ali <zeenix@redhat.com> - 3.8.0-6R��@- Add dep on own library (related: #1045140)L�W]?#Daniel Mach <dmach@redhat.com> - 3.8.0-5R�k�- Mass rebuild 2013-12-27_�V_c#Zeeshan Ali <zeenix@redhat.com> - 3.8.0-4R�j�- Complete translations (related: #1030319)Z�U_Y#Zeeshan Ali <zeenix@redhat.com> - 3.8.0-3R{��- Fix ISRC handling (related: #861191)V�TaO"David King <dking@redhat.com> - 3.12.2-5.1aTU@- Fix BD-R media flags (#2053594)`�Si["Richard Hughes <rhughes@redhat.com> - 3.12.2-5[)�- Update to 3.12.2
- Resolves: #1569810[�R]]"David King <dking@redhat.com> - 3.12.1-2U[%�- Rebuild for totem-pl-parser (#1222884)`�Qi["Richard Hughes <rhughes@redhat.com> - 3.12.1-1UG_@- Update to 3.12.1
- Resolves: #1174577

f�?��&�u�fZ�diO$Peter Robinson <pbrobinson@redhat.com> 3.8.0-8S��- Fix dependencies on own libraryL�c]?$Daniel Mach <dmach@redhat.com> - 3.8.0-7R�U�- Mass rebuild 2014-01-24`�b_e$Zeeshan Ali <zeenix@redhat.com> - 3.8.0-6R��@- Add dep on own library (related: #1045140)L�a]?$Daniel Mach <dmach@redhat.com> - 3.8.0-5R�k�- Mass rebuild 2013-12-27_�`_c$Zeeshan Ali <zeenix@redhat.com> - 3.8.0-4R�j�- Complete translations (related: #1030319)Z�__Y$Zeeshan Ali <zeenix@redhat.com> - 3.8.0-3R{��- Fix ISRC handling (related: #861191)V�^aO#David King <dking@redhat.com> - 3.12.2-5.1aTU@- Fix BD-R media flags (#2053594)`�]i[#Richard Hughes <rhughes@redhat.com> - 3.12.2-5[)�- Update to 3.12.2
- Resolves: #1569810[�\]]#David King <dking@redhat.com> - 3.12.1-2U[%�- Rebuild for totem-pl-parser (#1222884)`�[i[#Richard Hughes <rhughes@redhat.com> - 3.12.1-1UG_@- Update to 3.12.1
- Resolves: #1174577

f�?��&�u�fZ�niO%Peter Robinson <pbrobinson@redhat.com> 3.8.0-8S��- Fix dependencies on own libraryL�m]?%Daniel Mach <dmach@redhat.com> - 3.8.0-7R�U�- Mass rebuild 2014-01-24`�l_e%Zeeshan Ali <zeenix@redhat.com> - 3.8.0-6R��@- Add dep on own library (related: #1045140)L�k]?%Daniel Mach <dmach@redhat.com> - 3.8.0-5R�k�- Mass rebuild 2013-12-27_�j_c%Zeeshan Ali <zeenix@redhat.com> - 3.8.0-4R�j�- Complete translations (related: #1030319)Z�i_Y%Zeeshan Ali <zeenix@redhat.com> - 3.8.0-3R{��- Fix ISRC handling (related: #861191)V�haO$David King <dking@redhat.com> - 3.12.2-5.1aTU@- Fix BD-R media flags (#2053594)`�gi[$Richard Hughes <rhughes@redhat.com> - 3.12.2-5[)�- Update to 3.12.2
- Resolves: #1569810[�f]]$David King <dking@redhat.com> - 3.12.1-2U[%�- Rebuild for totem-pl-parser (#1222884)`�ei[$Richard Hughes <rhughes@redhat.com> - 3.12.1-1UG_@- Update to 3.12.1
- Resolves: #1174577
��?��5�A���v��&Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildW�ucO&Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-3P"T�- Include URL to the license text��t��&Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-2P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildK�sk/&Tom Callaway <spot@fedoraproject.org> - 1.9.1-1O�R�- update to 1.9.1V�raO%David King <dking@redhat.com> - 3.12.2-5.1aTU@- Fix BD-R media flags (#2053594)`�qi[%Richard Hughes <rhughes@redhat.com> - 3.12.2-5[)�- Update to 3.12.2
- Resolves: #1569810[�p]]%David King <dking@redhat.com> - 3.12.1-2U[%�- Rebuild for totem-pl-parser (#1222884)`�oi[%Richard Hughes <rhughes@redhat.com> - 3.12.1-1UG_@- Update to 3.12.1
- Resolves: #1174577
��F&��M�{_?&Daniel Mach <dmach@redhat.com> - 1.10.0-3R�U�- Mass rebuild 2014-01-24M�z_?&Daniel Mach <dmach@redhat.com> - 1.10.0-2R�k�- Mass rebuild 2013-12-27��ye�U&Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-1Q��- New upstream release 1.10
- Obsolete upstreamed patches
- Amend the multilib patch, there's no need to patch configure since we
  are running autoreconf anyways
- https://raw.github.com/bagder/c-ares/cares-1_10_0/RELEASE-NOTES��xc�%&Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-6Qf��- Apply an upstream patch to override AC_CONFIG_MACRO_DIR only conditionally�/�wc�}&Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-5Qf��- Apply a patch by Stephen Gallagher to patch autoconf, not configure to
  allow optflags to be passed in by build environment
- Run autoreconf before configure
- git rm obsolete patches
- Apply upstream patch to stop overriding AC_CONFIG_MACRO_DIR
L[
sL�/�c�}'Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-5Qf��- Apply a patch by Stephen Gallagher to patch autoconf, not configure to
  allow optflags to be passed in by build environment
- Run autoreconf before configure
- git rm obsolete patches
- Apply upstream patch to stop overriding AC_CONFIG_MACRO_DIR����'Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildW�cO'Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-3P"T�- Include URL to the license text��~��'Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-2P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildK�}k/'Tom Callaway <spot@fedoraproject.org> - 1.9.1-1O�R�- update to 1.9.1�!�|q�S&Alexey Tikhonov <atikhono@redhat.com> - 1.10.0-3.1d��@- Resolves: rhbz#2209503 - CVE-2023-32067 c-ares: 0-byte UDP payload Denial of Service [rhel-7.9.z]
,yY	��,����(Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-2P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildK�k/(Tom Callaway <spot@fedoraproject.org> - 1.9.1-1O�R�- update to 1.9.1�!�q�S'Alexey Tikhonov <atikhono@redhat.com> - 1.10.0-3.1d��@- Resolves: rhbz#2209503 - CVE-2023-32067 c-ares: 0-byte UDP payload Denial of Service [rhel-7.9.z]M�_?'Daniel Mach <dmach@redhat.com> - 1.10.0-3R�U�- Mass rebuild 2014-01-24M�_?'Daniel Mach <dmach@redhat.com> - 1.10.0-2R�k�- Mass rebuild 2013-12-27��e�U'Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-1Q��- New upstream release 1.10
- Obsolete upstreamed patches
- Amend the multilib patch, there's no need to patch configure since we
  are running autoreconf anyways
- https://raw.github.com/bagder/c-ares/cares-1_10_0/RELEASE-NOTES��c�%'Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-6Qf��- Apply an upstream patch to override AC_CONFIG_MACRO_DIR only conditionally
2��R2��
e�U(Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-1Q��- New upstream release 1.10
- Obsolete upstreamed patches
- Amend the multilib patch, there's no need to patch configure since we
  are running autoreconf anyways
- https://raw.github.com/bagder/c-ares/cares-1_10_0/RELEASE-NOTES��c�%(Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-6Qf��- Apply an upstream patch to override AC_CONFIG_MACRO_DIR only conditionally�/�c�}(Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-5Qf��- Apply a patch by Stephen Gallagher to patch autoconf, not configure to
  allow optflags to be passed in by build environment
- Run autoreconf before configure
- git rm obsolete patches
- Apply upstream patch to stop overriding AC_CONFIG_MACRO_DIR��
��(Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildW�	cO(Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-3P"T�- Include URL to the license text
��`�m�y�����)Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildW�cO)Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-3P"T�- Include URL to the license text����)Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-2P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildK�k/)Tom Callaway <spot@fedoraproject.org> - 1.9.1-1O�R�- update to 1.9.1�!�q�S(Alexey Tikhonov <atikhono@redhat.com> - 1.10.0-3.1d��@- Resolves: rhbz#2209503 - CVE-2023-32067 c-ares: 0-byte UDP payload Denial of Service [rhel-7.9.z]M�_?(Daniel Mach <dmach@redhat.com> - 1.10.0-3R�U�- Mass rebuild 2014-01-24M�_?(Daniel Mach <dmach@redhat.com> - 1.10.0-2R�k�- Mass rebuild 2013-12-27
��F&��M�_?)Daniel Mach <dmach@redhat.com> - 1.10.0-3R�U�- Mass rebuild 2014-01-24M�_?)Daniel Mach <dmach@redhat.com> - 1.10.0-2R�k�- Mass rebuild 2013-12-27��e�U)Jakub Hrozek <jhrozek@redhat.com> - 1.10.1-1Q��- New upstream release 1.10
- Obsolete upstreamed patches
- Amend the multilib patch, there's no need to patch configure since we
  are running autoreconf anyways
- https://raw.github.com/bagder/c-ares/cares-1_10_0/RELEASE-NOTES��c�%)Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-6Qf��- Apply an upstream patch to override AC_CONFIG_MACRO_DIR only conditionally�/�c�})Jakub Hrozek <jhrozek@redhat.com> - 1.9.1-5Qf��- Apply a patch by Stephen Gallagher to patch autoconf, not configure to
  allow optflags to be passed in by build environment
- Run autoreconf before configure
- git rm obsolete patches
- Apply upstream patch to stop overriding AC_CONFIG_MACRO_DIR
z[�:�wz�� i�?*Bob Relyea <rrelyea@redhat.com> - 2019.2.32-76]�- Update to CKBI 2.32 from NSS 3.44
-   Removing:
-   # Certificate "Visa eCommerce Root"
-  �[�gS*Kai Engert <kaie@redhat.com> - 2018.2.22-70.0Z��- Update to CKBI 2.22 from NSS 3.35[�cW*Kai Engert <kaie@redhat.com> - 2017.2.20-71Z�@- Update to CKBI 2.20 from NSS 3.34.1b�ce*Kai Engert <kaie@redhat.com> - 2017.2.18-71Y��@- Update to CKBI 2.18 (pre-release snapshot)�?�c�*Kai Engert <kaie@redhat.com> - 2017.2.16-71Y�A@- Update to CKBI 2.16 from NSS 3.32. In addition to removals/additions,
  Mozilla removed code signing trust from all CAs (rhbz#1472933)[�cW*Kai Engert <kaie@redhat.com> - 2017.2.14-71Y.�- Update to CKBI 2.14 from NSS 3.30.2�!�q�S)Alexey Tikhonov <atikhono@redhat.com> - 1.10.0-3.1d��@- Resolves: rhbz#2209503 - CVE-2023-32067 c-ares: 0-byte UDP payload Denial of Service [rhel-7.9.z] # Certificate "AC Raiz Certicamara S.A."
-   # Certificate "TC TrustCenter Class 3 CA II"
-   # Certificate "ComSign CA"
-   # Certificate "S-TRUST Universal Root CA"
-   # Certificate "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H5"
-   # Certificate "Certplus Root CA G1"
-   # Certificate "Certplus Root CA G2"
-   # Certificate "OpenTrust Root CA G1"
-   # Certificate "OpenTrust Root CA G2"
-   # Certificate "OpenTrust Root CA G3"
-  Adding:
-   # Certificate "GlobalSign Root CA - R6"
-   # Certificate "OISTE WISeKey Global Root GC CA"
-   # Certificate "GTS Root R1"
-   # Certificate "GTS Root R2"
-   # Certificate "GTS Root R3"
-   # Certificate "GTS Root R4"
-   # Certificate "UCA Global G2 Root"
-   # Certificate "UCA Extended Validation Root"
-   # Certificate "Certigna Root CA"
-   # Certificate "emSign Root CA - G1"
-   # Certificate "emSign ECC Root CA - G3"
-   # Certificate "emSign Root CA - C1"
-   # Certificate "emSign ECC Root CA - C3"
-   # Certificate "Hongkong Post Root CA 3"
9��9}�#i�*Bob Relyea <rrelyea@redhat.com> - 2021.2.50-71`��- Update to CKBI 2.50 from NSS 3.67
   - version number update only�N�"i�5*Bob Relyea <rrelyea@redhat.com> - 2021.2.48-71`�P@- Update to CKBI 2.48 from NSS 3.66
-    Removing:
-     # Certificate "Verisign Class 3 Public Primary Certification Authority - G3"
-     # Certificate "G�e�!i�c*Bob Relyea <rrelyea@redhat.com> - 2020.2.41-79^�y�- Update to CKBI 2.41 from NSS 3.53.0
-    Removing:
-     # Certificate "AddTrust Low-Value Services Root"
-     # Certificate "AddTrust External Root"
-     # Certificate "UTN USERFirst Email Root CA"
-     # Certificate "Certplus Class 2 Primary CA"
-     # Certificate "Deutsche Telekom Root CA 2"
-     # Certificate "Staat der Nederlanden Root CA - G2"
-     # Certificate "Swisscom Root CA 2"
-     # Certificate "Certinomis - Root CA"
-    Adding:
-     # Certificate "Entrust Root Certification Authority - G4"
- fix permissions on ghosted files.�eoTrust Global CA"
-     # Certificate "GeoTrust Universal CA"
-     # Certificate "GeoTrust Universal CA 2"
-     # Certificate "QuoVadis Root CA"
-     # Certificate "Sonera Class 2 Root CA"
-     # Certificate "Taiwan GRCA"
-     # Certificate "GeoTrust Primary Certification Authority"
-     # Certificate "thawte Primary Root CA"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G5"
-     # Certificate "GeoTrust Primary Certification Authority - G3"
-     # Certificate "thawte Primary Root CA - G2"
-     # Certificate "thawte Primary Root CA - G3"
-     # Certificate "GeoTrust Primary Certification Authority - G2"
-     # Certificate "VeriSign Universal Root Certification Authority"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G4"
-     # Certificate "Trustis FPS Root CA"
-     # Certificate "EE Certification Centre Root CA"
-     # Certificate "LuxTrust Global Root 2"
-     # Certificate "Symantec Class 1 Public Primary Certification Authority - G4"
-     # Certificate "Symantec Class 2 Public Primary Certification Authority - G4"
-    Adding:
-     # Certificate "Microsoft ECC Root Certificate Authority 2017"
-     # Certificate "Microsoft RSA Root Certificate Authority 2017"
-     # Certificate "e-Szigno Root CA 2017"
-     # Certificate "certSIGN Root CA G2"
-     # Certificate "Trustwave Global Certification Authority"
-     # Certificate "Trustwave Global ECC P256 Certification Authority"
-     # Certificate "Trustwave Global ECC P384 Certification Authority"
-     # Certificate "NAVER Global Root Certification Authority"
-     # Certificate "AC RAIZ FNMT-RCM SERVIDORES SEGUROS"
-     # Certificate "GlobalSign Secure Mail Root R45"
-     # Certificate "GlobalSign Secure Mail Root E45"
-     # Certificate "GlobalSign Root R46"
-     # Certificate "GlobalSign Root E46"
-     # Certificate "GLOBALTRUST 2020"
-     # Certificate "ANF Secure Server Root CA"
-     # Certificate "Certum EC-384 CA"
-     # Certificate "Certum Trusted Root CA"
wtw��&i�?+Bob Relyea <rrelyea@redhat.com> - 2019.2.32-76]�- Update to CKBI 2.32 from NSS 3.44
-   Removing:
-   # Certificate "Visa eCommerce Root"
-  �[�%gS+Kai Engert <kaie@redhat.com> - 2018.2.22-70.0Z��- Update to CKBI 2.22 from NSS 3.35��$i�)*Bob Relyea <rrelyea@redhat.com> - 2021.2.50-72a@��- Fix expired certificate.
-    Removing:
-     # Certificate "DST Root CA X3" # Certificate "AC Raiz Certicamara S.A."
-   # Certificate "TC TrustCenter Class 3 CA II"
-   # Certificate "ComSign CA"
-   # Certificate "S-TRUST Universal Root CA"
-   # Certificate "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H5"
-   # Certificate "Certplus Root CA G1"
-   # Certificate "Certplus Root CA G2"
-   # Certificate "OpenTrust Root CA G1"
-   # Certificate "OpenTrust Root CA G2"
-   # Certificate "OpenTrust Root CA G3"
-  Adding:
-   # Certificate "GlobalSign Root CA - R6"
-   # Certificate "OISTE WISeKey Global Root GC CA"
-   # Certificate "GTS Root R1"
-   # Certificate "GTS Root R2"
-   # Certificate "GTS Root R3"
-   # Certificate "GTS Root R4"
-   # Certificate "UCA Global G2 Root"
-   # Certificate "UCA Extended Validation Root"
-   # Certificate "Certigna Root CA"
-   # Certificate "emSign Root CA - G1"
-   # Certificate "emSign ECC Root CA - G3"
-   # Certificate "emSign Root CA - C1"
-   # Certificate "emSign ECC Root CA - C3"
-   # Certificate "Hongkong Post Root CA 3"
9��9}�)i�+Bob Relyea <rrelyea@redhat.com> - 2021.2.50-71`��- Update to CKBI 2.50 from NSS 3.67
   - version number update only�N�(i�5+Bob Relyea <rrelyea@redhat.com> - 2021.2.48-71`�P@- Update to CKBI 2.48 from NSS 3.66
-    Removing:
-     # Certificate "Verisign Class 3 Public Primary Certification Authority - G3"
-     # Certificate "G��e�'i�c+Bob Relyea <rrelyea@redhat.com> - 2020.2.41-79^�y�- Update to CKBI 2.41 from NSS 3.53.0
-    Removing:
-     # Certificate "AddTrust Low-Value Services Root"
-     # Certificate "AddTrust External Root"
-     # Certificate "UTN USERFirst Email Root CA"
-     # Certificate "Certplus Class 2 Primary CA"
-     # Certificate "Deutsche Telekom Root CA 2"
-     # Certificate "Staat der Nederlanden Root CA - G2"
-     # Certificate "Swisscom Root CA 2"
-     # Certificate "Certinomis - Root CA"
-    Adding:
-     # Certificate "Entrust Root Certification Authority - G4"
- fix permissions on ghosted files.�eoTrust Global CA"
-     # Certificate "GeoTrust Universal CA"
-     # Certificate "GeoTrust Universal CA 2"
-     # Certificate "QuoVadis Root CA"
-     # Certificate "Sonera Class 2 Root CA"
-     # Certificate "Taiwan GRCA"
-     # Certificate "GeoTrust Primary Certification Authority"
-     # Certificate "thawte Primary Root CA"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G5"
-     # Certificate "GeoTrust Primary Certification Authority - G3"
-     # Certificate "thawte Primary Root CA - G2"
-     # Certificate "thawte Primary Root CA - G3"
-     # Certificate "GeoTrust Primary Certification Authority - G2"
-     # Certificate "VeriSign Universal Root Certification Authority"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G4"
-     # Certificate "Trustis FPS Root CA"
-     # Certificate "EE Certification Centre Root CA"
-     # Certificate "LuxTrust Global Root 2"
-     # Certificate "Symantec Class 1 Public Primary Certification Authority - G4"
-     # Certificate "Symantec Class 2 Public Primary Certification Authority - G4"
-    Adding:
-     # Certificate "Microsoft ECC Root Certificate Authority 2017"
-     # Certificate "Microsoft RSA Root Certificate Authority 2017"
-     # Certificate "e-Szigno Root CA 2017"
-     # Certificate "certSIGN Root CA G2"
-     # Certificate "Trustwave Global Certification Authority"
-     # Certificate "Trustwave Global ECC P256 Certification Authority"
-     # Certificate "Trustwave Global ECC P384 Certification Authority"
-     # Certificate "NAVER Global Root Certification Authority"
-     # Certificate "AC RAIZ FNMT-RCM SERVIDORES SEGUROS"
-     # Certificate "GlobalSign Secure Mail Root R45"
-     # Certificate "GlobalSign Secure Mail Root E45"
-     # Certificate "GlobalSign Root R46"
-     # Certificate "GlobalSign Root E46"
-     # Certificate "GLOBALTRUST 2020"
-     # Certificate "ANF Secure Server Root CA"
-     # Certificate "Certum EC-384 CA"
-     # Certificate "Certum Trusted Root CA"
tt��*i�)+Bob Relyea <rrelyea@redhat.com> - 2021.2.50-72a@��- Fix expired certificate.
-    Removing:
-     # Certificate "DST Root CA X3"
�}�+i�+Bob Relyea <rrelyea@redhat.com> - 2022.2.54-71b��- Update to CKBI 2.54 from NSS 3.79
-    Removing:
-     # Certificate "GlobalSign Root CA - R2"
-     # Certificate "Cybertrust Global Root"
-     # Certificate "Explicitly Distrusted DigiNotar PKIoverheid G2"
-    Adding:
-     # Certificate "TunTrust Root CA"
-     # Certificate "HARICA TLS RSA Root CA 2021"
-     # Certificate "HARICA TLS ECC Root CA 2021"
-     # Certificate "HARICA Client RSA Root CA 2021"
-     # Certificate "HARICA Client ECC Root CA 2021"
-     # Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068"
-     # Certificate "vTrus ECC Root CA"
-     # Certificate "vTrus Root CA"
-     # Certificate "ISRG Root X2"
-     # Certificate "HiPKI Root CA - G1"
-     # Certificate "Telia Root CA v2"
-     # Certificate "D-TRUST BR Root CA 1 2020"
-     # Certificate "D-TRUST EV Root CA 1 2020"�t Root CA G2"
-     # Certificate "OpenTrust Root CA G3"
-     # Certificate "Certplus Root CA G1"
-     # Certificate "Certplus Root CA G2"
-     # Certificate "Government Root Certification Authority"
-     # Certificate "A-Trust-Qual-02"
-     # Certificate "Thailand National Root Certification Authority - G1"
-     # Certificate "TrustCor ECA-1"
-     # Certificate "TrustCor RootCert CA-2"
-     # Certificate "TrustCor RootCert CA-1"
-     # Certificate "Certification Authority of WoSign"
-     # Certificate "CA 沃通根证书"
-     # Certificate "SSC GDL CA Root B"
-     # Certificate "SAPO Class 2 Root CA"
-     # Certificate "SAPO Class 3 Root CA"
-     # Certificate "SAPO Class 4 Root CA"
-     # Certificate "CA Disig Root R1"
-     # Certificate "Autoridad Certificadora Raíz Nacional de Uruguay"
-     # Certificate "ApplicationCA2 Root"
-     # Certificate "GlobalSign"
-     # Certificate "Symantec Class 3 Public Primary Certification Authority - G6"
-     # Certificate "Symantec Class 3 Publi�c Primary Certification Authority - G4"
-     # Certificate "Halcom Root CA"
-     # Certificate "Swisscom Root EV CA 2"
-     # Certificate "CFCA GT CA"
-     # Certificate "Digidentity L3 Root CA - G2"
-     # Certificate "SITHS Root CA v1"
-     # Certificate "Macao Post eSignTrust Root Certification Authority (G02)"
-     # Certificate "Autoridade Certificadora Raiz Brasileira v2"
-     # Certificate "Swisscom Root CA 2"
-     # Certificate "IGC/A AC racine Etat francais"
-     # Certificate "PersonalID Trustworthy RootCA 2011"
-     # Certificate "Swedish Government Root Authority v1"
-     # Certificate "Swiss Government Root CA II"
-     # Certificate "Swiss Government Root CA I"
-     # Certificate "Network Solutions Certificate Authority"
-     # Certificate "COMODO Certification Authority"
-     # Certificate "LuxTrust Global Root"
-     # Certificate "AC1 RAIZ MTIN"
-     # Certificate "Microsoft Root Certificate Authority 2011"
-     # Certificate "CCA India 2011"
-     # Certificate "ANCERT C�ertificados Notariales V2"
-     # Certificate "ANCERT Certificados CGN V2"
-     # Certificate "EE Certification Centre Root CA"
-     # Certificate "DigiNotar Root CA G2"
-     # Certificate "Federal Common Policy CA"
-     # Certificate "Autoridad de Certificacion Raiz del Estado Venezolano"
-     # Certificate "Autoridad de Certificacion Raiz del Estado Venezolano"
-     # Certificate "China Internet Network Information Center EV Certificates Root"
-     # Certificate "Verizon Global Root CA"
-     # Certificate "SwissSign Silver Root CA - G3"
-     # Certificate "SwissSign Platinum Root CA - G3"
-     # Certificate "SwissSign Gold Root CA - G3"
-     # Certificate "Microsec e-Szigno Root CA 2009"
-     # Certificate "SITHS CA v3"
-     # Certificate "Certinomis - Autorité Racine"
-     # Certificate "ANF Server CA"
-     # Certificate "Thawte Premium Server CA"
-     # Certificate "Thawte Server CA"
-     # Certificate "TC TrustCenter Universal CA III"
-     # Certificate "KEYNECTIS ROOT CA"
-     #� Certificate "I.CA - Standard Certification Authority, 09/2009"
-     # Certificate "I.CA - Qualified Certification Authority, 09/2009"
-     # Certificate "VI Registru Centras RCSC (RootCA)"
-     # Certificate "CCA India 2007"
-     # Certificate "Autoridade Certificadora Raiz Brasileira v1"
-     # Certificate "ipsCA Global CA Root"
-     # Certificate "ipsCA Main CA Root"
-     # Certificate "Actalis Authentication CA G1"
-     # Certificate "A-Trust-Qual-03"
-     # Certificate "AddTrust External CA Root"
-     # Certificate "ECRaizEstado"
-     # Certificate "Configuration"
-     # Certificate "FNMT-RCM"
-     # Certificate "StartCom Certification Authority"
-     # Certificate "TWCA Root Certification Authority"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G4"
-     # Certificate "thawte Primary Root CA - G2"
-     # Certificate "GeoTrust Primary Certification Authority - G2"
-     # Certificate "VeriSign Universal Root Certification Authority"
-     # Certificate �"thawte Primary Root CA - G3"
-     # Certificate "GeoTrust Primary Certification Authority - G3"
-     # Certificate "E-ME SSI (RCA)"
-     # Certificate "ACEDICOM Root"
-     # Certificate "Autoridad Certificadora Raiz de la Secretaria de Economia"
-     # Certificate "Correo Uruguayo - Root CA"
-     # Certificate "CNNIC ROOT"
-     # Certificate "Common Policy"
-     # Certificate "Macao Post eSignTrust Root Certification Authority"
-     # Certificate "Staat der Nederlanden Root CA - G2"
-     # Certificate "NetLock Platina (Class Platinum) Főtanúsítvány"
-     # Certificate "AC Raíz Certicámara S.A."
-     # Certificate "Cisco Root CA 2048"
-     # Certificate "CA Disig"
-     # Certificate "InfoNotary CSP Root"
-     # Certificate "UCA Global Root"
-     # Certificate "UCA Root"
-     # Certificate "DigiNotar Root CA"
-     # Certificate "Starfield Services Root Certificate Authority"
-     # Certificate "I.CA - Qualified root certificate"
-     # Certificate "I.CA - Standard root certificate�"
-     # Certificate "e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi"
-     # Certificate "Japanese Government"
-     # Certificate "AdminCA-CD-T01"
-     # Certificate "Admin-Root-CA"
-     # Certificate "Izenpe.com"
-     # Certificate "TÜBİTAK UEKAE Kök Sertifika Hizmet Sağlayıcısı - Sürüm 3"
-     # Certificate "Halcom CA FO"
-     # Certificate "Halcom CA PO 2"
-     # Certificate "Root CA"
-     # Certificate "GPKIRootCA"
-     # Certificate "ACNLB"
-     # Certificate "state-institutions"
-     # Certificate "state-institutions"
-     # Certificate "SECOM Trust Systems CO.,LTD."
-     # Certificate "D-TRUST Qualified Root CA 1 2007:PN"
-     # Certificate "D-TRUST Root Class 2 CA 2007"
-     # Certificate "D-TRUST Root Class 3 CA 2007"
-     # Certificate "SSC Root CA A"
-     # Certificate "SSC Root CA B"
-     # Certificate "SSC Root CA C"
-     # Certificate "Autoridad de Certificacion de la Abogacia"
-     # Certificate "Root CA Generalitat Valenciana"
-     # Certificate "VAS Latvijas Pasts SSI(RCA)"
-     # Certificate "ANCERT Certificados CGN"
-     # Certificate "ANCERT Certificados Notariales"
-     # Certificate "ANCERT Corporaciones de Derecho Publico"
-     # Certificate "GLOBALTRUST"
-     # Certificate "Certipost E-Trust TOP Root CA"
-     # Certificate "Certipost E-Trust Primary Qualified CA"
-     # Certificate "Certipost E-Trust Primary Normalised CA"
-     # Certificate "Cybertrust Global Root"
-     # Certificate "GlobalSign"
-     # Certificate "IGC/A"
-     # Certificate "S-TRUST Authentication and Encryption Root CA 2005:PN"
-     # Certificate "TC TrustCenter Universal CA I"
-     # Certificate "TC TrustCenter Universal CA II"
-     # Certificate "TC TrustCenter Class 2 CA II"
-     # Certificate "TC TrustCenter Class 4 CA II"
-     # Certificate "Swisscom Root CA 1"
-     # Certificate "Microsec e-Szigno Root CA"
-     # Certificate "LGPKI"
-     # Certificate "AC RAIZ DNIE"
-     # Certificate "Common Policy"
-     # Certificate "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı"
-     # Certificate "A-Trust-nQual-03"
-     # Certificate "A-Trust-nQual-03"
-     # Certificate "CertRSA01"
-     # Certificate "KISA RootCA 1"
-     # Certificate "KISA RootCA 3"
-     # Certificate "NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado"
-     # Certificate "A-CERT ADVANCED"
-     # Certificate "A-Trust-Qual-01"
-     # Certificate "A-Trust-nQual-01"
-     # Certificate "A-Trust-Qual-02"
-     # Certificate "Staat der Nederlanden Root CA"
-     # Certificate "Serasa Certificate Authority II"
-     # Certificate "TDC Internet"
-     # Certificate "America Online Root Certification Authority 2"
-     # Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068"
-     # Certificate "Government Root Certification Authority"
-     # Certificate "RSA Security Inc"
-     # Certificate "Public Notary Root"
-     # Certificate "GeoTrust Global CA"
-     # Certificate "GeoTrust Global CA 2"
-     # Certificate "GeoTrust Universal CA"
-     # Certificate "GeoTrust Universal CA 2"
-     # Certificate "QuoVadis Root Certification Authority"
-     # Certificate "Autoridade Certificadora Raiz Brasileira"
-     # Certificate "Post.Trust Root CA"
-     # Certificate "Microsoft Root Authority"
-     # Certificate "Microsoft Root Certificate Authority"
-     # Certificate "Microsoft Root Certificate Authority 2010"
-     # Certificate "Entrust.net Secure Server Certification Authority"
-     # Certificate "UTN-USERFirst-Object"
-     # Certificate "BYTE Root Certification Authority 001"
-     # Certificate "CISRCA1"
-     # Certificate "ePKI Root Certification Authority - G2"
-     # Certificate "ePKI EV SSL Certification Authority - G1"
-     # Certificate "AC Raíz Certicámara S.A."
-     # Certificate "SSL.com EV Root Certification Authority RSA"
-     # Certificate "LuxTrust Global Root 2"
-     # Certificate "ACA ROOT"
-     # Certificate "Security Communication ECC RootCA1"
-     # Certificate "Security Communication RootCA3"
-     # Certificate "CHAMBERS OF COMMERCE ROOT - 2016"
-     # Certificate "Network Solutions RSA Certificate Authority"
-     # Certificate "Network Solutions ECC Certificate Authority"
-     # Certificate "Australian Defence Public Root CA"
-     # Certificate "SI-TRUST Root"
-     # Certificate "Halcom Root Certificate Authority"
-     # Certificate "Application CA G3 Root"
-     # Certificate "GLOBALTRUST 2015"
-     # Certificate "Microsoft ECC Product Root Certificate Authority 2018"
-     # Certificate "emSign Root CA - G2"
-     # Certificate "emSign Root CA - C2"
-     # Certificate "Microsoft ECC TS Root Certificate Authority 2018"
-     # Certificate "DigiCert CS ECC P384 Root G5"
-     # Certificate "DigiCert CS RSA4096 Root G5"
-     # Certificate "DigiCert RSA4096 Root G5"
-     # Certificate "DigiCert ECC P384 Root G5"
-     # Certificate "HARICA Code Signing RSA Root CA 2021"
-     # Certificate "HARICA Code Signing ECC Root CA 2021"
-     # Certificate "Microsoft Identity Verification Root Certificate Authority 2020"
o\�-iS+Bob Relyea <rrelyea@redhat.com> - 2022.2.54-73b�(�- Update to CKBI 2.54 from NSS 3.79�a�,i��Y+Bob Relyea <rrelyea@redhat.com> - 2022.2.54-72b�V�- Update to CKBI 2.54 from NSS 3.79
-    Adding:
-     # Certificate "CAEDICOM Root"
-     # Certificate "I.CA Root CA/RSA"
-     # Certificate "MULTICERT Root Certification Authority 01"
-     # Certificate "Certification Authority of WoSign G2"
-     # Certificate "CA WoSign ECC Root"
-     # Certificate "CCA India 2015 SPL"
-     # Certificate "Swedish Government Root Authority v3"
-     # Certificate "Swedish Government Root Authority v2"
-     # Certificate "Tunisian Root Certificate Authority - TunRootCA2"
-     # Certificate "OpenTrust Root CA G1"
-     # Certificate "OpenTrus�
JJ�2�.i�}+Bob Relyea <rrelyea@redhat.com> - 2022.2.54-74b�z@- Update to CKBI 2.54 from NSS 3.79
-    Removing:
-     # Certificate "TrustCor ECA-1"
-     # Certificate "TrustCor RootCert CA-2"
-     # Certificate "TrustCor RootCert CA-1"
-     # Certificate "Network Solutions Certificate Authority"
-     # Certificate "COMODO Certification Authority"
-     # Certificate "Autoridad de Certificacion Raiz del Estado Venezolano"
-     # Certificate "Microsec e-Szigno Root CA 2009"
-     # Certificate "TWCA Root Certification Authority"
-     # Certificate "Izenpe.com"
-     # Certificate "state-institutions"
-     # Certificate "GlobalSign"
-     # Certificate "Common Policy"
-     # Certificate "A-Trust-nQual-03"
-     # Certificate "A-Trust-Qual-02"
-     # Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068"
-     # Certificate "Government Root Certification Authority"
-     # Certificate "AC Raíz Certicámara S.A."

e�r+��V��:��eD�8�
71f20a3e8a0bfe010564d4b6ff77d4b2647ba8383e62e64a557c131359fff889D�7�
78f9c4332b1d2f19135c616b66d43dfc85165cfc47974524516f8cfde4bb9665D�6�
bbe893457383d81228467a2e58df9d5f1d18cbfd30d4cd35b2c717dc660133b7D�5�
744a4dba649fc88cac73b711d32a121916093d5d15e77ef286faaedeb4a66167D�4�
a0771a63bfd2ad4fc5390775761741924acb2e2a6d6fea5e21306d97e0c18190D�3�
24f07a4fe7e067974796688aef2936d4d3134d870c6f53a7327a664da0d20893D�2�
dc1bf06608a791a1bc05682c7a5dd37ff4776553816b5359923260fb02f0c9e2D�1�
71f02e63578770de15752f8dd63988ac82d645cc84914639679034beaf9f4136D�0�
cad56706d665a1639372b33e26f5e8b2d45d262ba181a414599688a30272bffdD�/�
2b5152401ce98d5b3a93e430dbe5819aed3a19a15ef5104214f16d8171c990feD�.�
aa50cc92809002bfd1b3255057b176376353bd9a36274c4d200209a0ec0861d3D�-�
b1b4503ca199a88ac8a81a7fa75f6487ef746fd58e4bf8d079e879b4ad3596cbD�,�
e3a24b7d3f533aea4ed0f3d9388b2f7d72febbb435d58e7be4020cdbc47107e6
9��9}�1i�,Bob Relyea <rrelyea@redhat.com> - 2021.2.50-71`��- Update to CKBI 2.50 from NSS 3.67
   - version number update only�N�0i�5,Bob Relyea <rrelyea@redhat.com> - 2021.2.48-71`�P@- Update to CKBI 2.48 from NSS 3.66
-    Removing:
-     # Certificate "Verisign Class 3 Public Primary Certification Authority - G3"
-     # Certificate "G�e�/i�c,Bob Relyea <rrelyea@redhat.com> - 2020.2.41-79^�y�- Update to CKBI 2.41 from NSS 3.53.0
-    Removing:
-     # Certificate "AddTrust Low-Value Services Root"
-     # Certificate "AddTrust External Root"
-     # Certificate "UTN USERFirst Email Root CA"
-     # Certificate "Certplus Class 2 Primary CA"
-     # Certificate "Deutsche Telekom Root CA 2"
-     # Certificate "Staat der Nederlanden Root CA - G2"
-     # Certificate "Swisscom Root CA 2"
-     # Certificate "Certinomis - Root CA"
-    Adding:
-     # Certificate "Entrust Root Certification Authority - G4"
- fix permissions on ghosted files.eoTrust Global CA"
-     # Certificate "GeoTrust Universal CA"
-     # Certificate "GeoTrust Universal CA 2"
-     # Certificate "QuoVadis Root CA"
-     # Certificate "Sonera Class 2 Root CA"
-     # Certificate "Taiwan GRCA"
-     # Certificate "GeoTrust Primary Certification Authority"
-     # Certificate "thawte Primary Root CA"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G5"
-     # Certificate "GeoTrust Primary Certification Authority - G3"
-     # Certificate "thawte Primary Root CA - G2"
-     # Certificate "thawte Primary Root CA - G3"
-     # Certificate "GeoTrust Primary Certification Authority - G2"
-     # Certificate "VeriSign Universal Root Certification Authority"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G4"
-     # Certificate "Trustis FPS Root CA"
-     # Certificate "EE Certification Centre Root CA"
-     # Certificate "LuxTrust Global Root 2"
-     # Certificate "Symantec Class 1 Public Primary Certification Authority - G4"
-     # Certificate "Symantec Class 2 Public Primary Certification Authority - G4"
-    Adding:
-     # Certificate "Microsoft ECC Root Certificate Authority 2017"
-     # Certificate "Microsoft RSA Root Certificate Authority 2017"
-     # Certificate "e-Szigno Root CA 2017"
-     # Certificate "certSIGN Root CA G2"
-     # Certificate "Trustwave Global Certification Authority"
-     # Certificate "Trustwave Global ECC P256 Certification Authority"
-     # Certificate "Trustwave Global ECC P384 Certification Authority"
-     # Certificate "NAVER Global Root Certification Authority"
-     # Certificate "AC RAIZ FNMT-RCM SERVIDORES SEGUROS"
-     # Certificate "GlobalSign Secure Mail Root R45"
-     # Certificate "GlobalSign Secure Mail Root E45"
-     # Certificate "GlobalSign Root R46"
-     # Certificate "GlobalSign Root E46"
-     # Certificate "GLOBALTRUST 2020"
-     # Certificate "ANF Secure Server Root CA"
-     # Certificate "Certum EC-384 CA"
-     # Certificate "Certum Trusted Root CA"
tt��2i�),Bob Relyea <rrelyea@redhat.com> - 2021.2.50-72a@��- Fix expired certificate.
-    Removing:
-     # Certificate "DST Root CA X3"
�}�3i�,Bob Relyea <rrelyea@redhat.com> - 2022.2.54-71b��- Update to CKBI 2.54 from NSS 3.79
-    Removing:
-     # Certificate "GlobalSign Root CA - R2"
-     # Certificate "Cybertrust Global Root"
-     # Certificate "Explicitly Distrusted DigiNotar PKIoverheid G2"
-    Adding:
-     # Certificate "TunTrust Root CA"
-     # Certificate "HARICA TLS RSA Root CA 2021"
-     # Certificate "HARICA TLS ECC Root CA 2021"
-     # Certificate "HARICA Client RSA Root CA 2021"
-     # Certificate "HARICA Client ECC Root CA 2021"
-     # Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068"
-     # Certificate "vTrus ECC Root CA"
-     # Certificate "vTrus Root CA"
-     # Certificate "ISRG Root X2"
-     # Certificate "HiPKI Root CA - G1"
-     # Certificate "Telia Root CA v2"
-     # Certificate "D-TRUST BR Root CA 1 2020"
-     # Certificate "D-TRUST EV Root CA 1 2020"t Root CA G2"
-     # Certificate "OpenTrust Root CA G3"
-     # Certificate "Certplus Root CA G1"
-     # Certificate "Certplus Root CA G2"
-     # Certificate "Government Root Certification Authority"
-     # Certificate "A-Trust-Qual-02"
-     # Certificate "Thailand National Root Certification Authority - G1"
-     # Certificate "TrustCor ECA-1"
-     # Certificate "TrustCor RootCert CA-2"
-     # Certificate "TrustCor RootCert CA-1"
-     # Certificate "Certification Authority of WoSign"
-     # Certificate "CA 沃通根证书"
-     # Certificate "SSC GDL CA Root B"
-     # Certificate "SAPO Class 2 Root CA"
-     # Certificate "SAPO Class 3 Root CA"
-     # Certificate "SAPO Class 4 Root CA"
-     # Certificate "CA Disig Root R1"
-     # Certificate "Autoridad Certificadora Raíz Nacional de Uruguay"
-     # Certificate "ApplicationCA2 Root"
-     # Certificate "GlobalSign"
-     # Certificate "Symantec Class 3 Public Primary Certification Authority - G6"
-     # Certificate "Symantec Class 3 Publi
c Primary Certification Authority - G4"
-     # Certificate "Halcom Root CA"
-     # Certificate "Swisscom Root EV CA 2"
-     # Certificate "CFCA GT CA"
-     # Certificate "Digidentity L3 Root CA - G2"
-     # Certificate "SITHS Root CA v1"
-     # Certificate "Macao Post eSignTrust Root Certification Authority (G02)"
-     # Certificate "Autoridade Certificadora Raiz Brasileira v2"
-     # Certificate "Swisscom Root CA 2"
-     # Certificate "IGC/A AC racine Etat francais"
-     # Certificate "PersonalID Trustworthy RootCA 2011"
-     # Certificate "Swedish Government Root Authority v1"
-     # Certificate "Swiss Government Root CA II"
-     # Certificate "Swiss Government Root CA I"
-     # Certificate "Network Solutions Certificate Authority"
-     # Certificate "COMODO Certification Authority"
-     # Certificate "LuxTrust Global Root"
-     # Certificate "AC1 RAIZ MTIN"
-     # Certificate "Microsoft Root Certificate Authority 2011"
-     # Certificate "CCA India 2011"
-     # Certificate "ANCERT Certificados Notariales V2"
-     # Certificate "ANCERT Certificados CGN V2"
-     # Certificate "EE Certification Centre Root CA"
-     # Certificate "DigiNotar Root CA G2"
-     # Certificate "Federal Common Policy CA"
-     # Certificate "Autoridad de Certificacion Raiz del Estado Venezolano"
-     # Certificate "Autoridad de Certificacion Raiz del Estado Venezolano"
-     # Certificate "China Internet Network Information Center EV Certificates Root"
-     # Certificate "Verizon Global Root CA"
-     # Certificate "SwissSign Silver Root CA - G3"
-     # Certificate "SwissSign Platinum Root CA - G3"
-     # Certificate "SwissSign Gold Root CA - G3"
-     # Certificate "Microsec e-Szigno Root CA 2009"
-     # Certificate "SITHS CA v3"
-     # Certificate "Certinomis - Autorité Racine"
-     # Certificate "ANF Server CA"
-     # Certificate "Thawte Premium Server CA"
-     # Certificate "Thawte Server CA"
-     # Certificate "TC TrustCenter Universal CA III"
-     # Certificate "KEYNECTIS ROOT CA"
-     # Certificate "I.CA - Standard Certification Authority, 09/2009"
-     # Certificate "I.CA - Qualified Certification Authority, 09/2009"
-     # Certificate "VI Registru Centras RCSC (RootCA)"
-     # Certificate "CCA India 2007"
-     # Certificate "Autoridade Certificadora Raiz Brasileira v1"
-     # Certificate "ipsCA Global CA Root"
-     # Certificate "ipsCA Main CA Root"
-     # Certificate "Actalis Authentication CA G1"
-     # Certificate "A-Trust-Qual-03"
-     # Certificate "AddTrust External CA Root"
-     # Certificate "ECRaizEstado"
-     # Certificate "Configuration"
-     # Certificate "FNMT-RCM"
-     # Certificate "StartCom Certification Authority"
-     # Certificate "TWCA Root Certification Authority"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G4"
-     # Certificate "thawte Primary Root CA - G2"
-     # Certificate "GeoTrust Primary Certification Authority - G2"
-     # Certificate "VeriSign Universal Root Certification Authority"
-     # Certificate "thawte Primary Root CA - G3"
-     # Certificate "GeoTrust Primary Certification Authority - G3"
-     # Certificate "E-ME SSI (RCA)"
-     # Certificate "ACEDICOM Root"
-     # Certificate "Autoridad Certificadora Raiz de la Secretaria de Economia"
-     # Certificate "Correo Uruguayo - Root CA"
-     # Certificate "CNNIC ROOT"
-     # Certificate "Common Policy"
-     # Certificate "Macao Post eSignTrust Root Certification Authority"
-     # Certificate "Staat der Nederlanden Root CA - G2"
-     # Certificate "NetLock Platina (Class Platinum) Főtanúsítvány"
-     # Certificate "AC Raíz Certicámara S.A."
-     # Certificate "Cisco Root CA 2048"
-     # Certificate "CA Disig"
-     # Certificate "InfoNotary CSP Root"
-     # Certificate "UCA Global Root"
-     # Certificate "UCA Root"
-     # Certificate "DigiNotar Root CA"
-     # Certificate "Starfield Services Root Certificate Authority"
-     # Certificate "I.CA - Qualified root certificate"
-     # Certificate "I.CA - Standard root certificate"
-     # Certificate "e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi"
-     # Certificate "Japanese Government"
-     # Certificate "AdminCA-CD-T01"
-     # Certificate "Admin-Root-CA"
-     # Certificate "Izenpe.com"
-     # Certificate "TÜBİTAK UEKAE Kök Sertifika Hizmet Sağlayıcısı - Sürüm 3"
-     # Certificate "Halcom CA FO"
-     # Certificate "Halcom CA PO 2"
-     # Certificate "Root CA"
-     # Certificate "GPKIRootCA"
-     # Certificate "ACNLB"
-     # Certificate "state-institutions"
-     # Certificate "state-institutions"
-     # Certificate "SECOM Trust Systems CO.,LTD."
-     # Certificate "D-TRUST Qualified Root CA 1 2007:PN"
-     # Certificate "D-TRUST Root Class 2 CA 2007"
-     # Certificate "D-TRUST Root Class 3 CA 2007"
-     # Certificate "SSC Root CA A"
-     # Certificate "SSC Root CA B"
-     # Certificate "SSC Root CA C"
-     # Certificate "Autoridad de Certificacion de la Abogacia"
-     # Certificate "Root CA Generalitat Valenciana"
-     # Certificate "VAS Latvijas Pasts SSI(RCA)"
-     # Certificate "ANCERT Certificados CGN"
-     # Certificate "ANCERT Certificados Notariales"
-     # Certificate "ANCERT Corporaciones de Derecho Publico"
-     # Certificate "GLOBALTRUST"
-     # Certificate "Certipost E-Trust TOP Root CA"
-     # Certificate "Certipost E-Trust Primary Qualified CA"
-     # Certificate "Certipost E-Trust Primary Normalised CA"
-     # Certificate "Cybertrust Global Root"
-     # Certificate "GlobalSign"
-     # Certificate "IGC/A"
-     # Certificate "S-TRUST Authentication and Encryption Root CA 2005:PN"
-     # Certificate "TC TrustCenter Universal CA I"
-     # Certificate "TC TrustCenter Universal CA II"
-     # Certificate "TC TrustCenter Class 2 CA II"
-     # Certificate "TC TrustCenter Class 4 CA II"
-     # Certificate "Swisscom Root CA 1"
-     # Certificate "Microsec e-Szigno Root CA"
-     # Certificate "LGPKI"
-     # Certificate "AC RAIZ DNIE"
-     # Certificate "Common Policy"
-     # Certificate "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı"
-     # Certificate "A-Trust-nQual-03"
-     # Certificate "A-Trust-nQual-03"
-     # Certificate "CertRSA01"
-     # Certificate "KISA RootCA 1"
-     # Certificate "KISA RootCA 3"
-     # Certificate "NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado"
-     # Certificate "A-CERT ADVANCED"
-     # Certificate "A-Trust-Qual-01"
-     # Certificate "A-Trust-nQual-01"
-     # Certificate "A-Trust-Qual-02"
-     # Certificate "Staat der Nederlanden Root CA"
-     # Certificate "Serasa Certificate Authority II"
-     # Certificate "TDC Internet"
-     # Certificate "America Online Root Certification Authority 2"
-     # Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068"
-     # Certificate "Government Root Certification Authority"
-     # Certificate "RSA Security Inc"
-     # Certificate "Public Notary Root"
-     # Certificate "GeoTrust Global CA"
-     # Certificate "GeoTrust Global CA 2"
-     # Certificate "GeoTrust Universal CA"
-     # Certificate "GeoTrust Universal CA 2"
-     # Certificate "QuoVadis Root Certification Authority"
-     # Certificate "Autoridade Certificadora Raiz Brasileira"
-     # Certificate "Post.Trust Root CA"
-     # Certificate "Microsoft Root Authority"
-     # Certificate "Microsoft Root Certificate Authority"
-     # Certificate "Microsoft Root Certificate Authority 2010"
-     # Certificate "Entrust.net Secure Server Certification Authority"
-     # Certificate "UTN-USERFirst-Object"
-     # Certificate "BYTE Root Certification Authority 001"
-     # Certificate "CISRCA1"
-     # Certificate "ePKI Root Certification Authority - G2"
-     # Certificate "ePKI EV SSL Certification Authority - G1"
-     # Certificate "AC Raíz Certicámara S.A."
-     # Certificate "SSL.com EV Root Certification Authority RSA"
-     # Certificate "LuxTrust Global Root 2"
-     # Certificate "ACA ROOT"
-     # Certificate "Security Communication ECC RootCA1"
-     # Certificate "Security Communication RootCA3"
-     # Certificate "CHAMBERS OF COMMERCE ROOT - 2016"
-     # Certificate "Network Solutions RSA Certificate Authority"
-     # Certificate "Network Solutions ECC Certificate Authority"
-     # Certificate "Australian Defence Public Root CA"
-     # Certificate "SI-TRUST Root"
-     # Certificate "Halcom Root Certificate Authority"
-     # Certificate "Application CA G3 Root"
-     # Certificate "GLOBALTRUST 2015"
-     # Certificate "Microsoft ECC Product Root Certificate Authority 2018"
-     # Certificate "emSign Root CA - G2"
-     # Certificate "emSign Root CA - C2"
-     # Certificate "Microsoft ECC TS Root Certificate Authority 2018"
-     # Certificate "DigiCert CS ECC P384 Root G5"
-     # Certificate "DigiCert CS RSA4096 Root G5"
-     # Certificate "DigiCert RSA4096 Root G5"
-     # Certificate "DigiCert ECC P384 Root G5"
-     # Certificate "HARICA Code Signing RSA Root CA 2021"
-     # Certificate "HARICA Code Signing ECC Root CA 2021"
-     # Certificate "Microsoft Identity Verification Root Certificate Authority 2020"
o\�5iS,Bob Relyea <rrelyea@redhat.com> - 2022.2.54-73b�(�- Update to CKBI 2.54 from NSS 3.79�a�4i��Y,Bob Relyea <rrelyea@redhat.com> - 2022.2.54-72b�V�- Update to CKBI 2.54 from NSS 3.79
-    Adding:
-     # Certificate "CAEDICOM Root"
-     # Certificate "I.CA Root CA/RSA"
-     # Certificate "MULTICERT Root Certification Authority 01"
-     # Certificate "Certification Authority of WoSign G2"
-     # Certificate "CA WoSign ECC Root"
-     # Certificate "CCA India 2015 SPL"
-     # Certificate "Swedish Government Root Authority v3"
-     # Certificate "Swedish Government Root Authority v2"
-     # Certificate "Tunisian Root Certificate Authority - TunRootCA2"
-     # Certificate "OpenTrust Root CA G1"
-     # Certificate "OpenTrus
JJ�2�6i�},Bob Relyea <rrelyea@redhat.com> - 2022.2.54-74b�z@- Update to CKBI 2.54 from NSS 3.79
-    Removing:
-     # Certificate "TrustCor ECA-1"
-     # Certificate "TrustCor RootCert CA-2"
-     # Certificate "TrustCor RootCert CA-1"
-     # Certificate "Network Solutions Certificate Authority"
-     # Certificate "COMODO Certification Authority"
-     # Certificate "Autoridad de Certificacion Raiz del Estado Venezolano"
-     # Certificate "Microsec e-Szigno Root CA 2009"
-     # Certificate "TWCA Root Certification Authority"
-     # Certificate "Izenpe.com"
-     # Certificate "state-institutions"
-     # Certificate "GlobalSign"
-     # Certificate "Common Policy"
-     # Certificate "A-Trust-nQual-03"
-     # Certificate "A-Trust-Qual-02"
-     # Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068"
-     # Certificate "Government Root Certification Authority"
-     # Certificate "AC Raíz Certicámara S.A.""
-     # Certificate "GPKIRootCA"
-     # Certificate "D-TRUST Qualified Root CA 1 2007:PN"
-     # Certificate "TC TrustCenter Universal CA I"
-     # Certificate "TC TrustCenter Universal CA II"
-     # Certificate "TC TrustCenter Class 2 CA II"
-     # Certificate "TC TrustCenter Class 4 CA II"
-     # Certificate "TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı"
-     # Certificate "CertRSA01"
-     # Certificate "KISA RootCA 3"
-     # Certificate "A-CERT ADVANCED"
-     # Certificate "A-Trust-Qual-01"
-     # Certificate "A-Trust-nQual-01"
-     # Certificate "Serasa Certificate Authority II"
-     # Certificate "TDC Internet"
-     # Certificate "America Online Root Certification Authority 2"
-     # Certificate "RSA Security Inc"
-     # Certificate "Public Notary Root"
-     # Certificate "Autoridade Certificadora Raiz Brasileira"
-     # Certificate "Post.Trust Root CA"
-     # Certificate "Entrust.net Secure Server Certification Authority"
-     # Certificate "ePKI EV SSL Certification Authority - G1"
-    Adding:
-     # Certificate "DigiCert TLS ECC P384 Root G5"
-     # Certificate "DigiCert TLS RSA4096 Root G5"
-     # Certificate "DigiCert SMIME ECC P384 Root G5"
-     # Certificate "DigiCert SMIME RSA4096 Root G5"
-     # Certificate "Certainly Root R1"
-     # Certificate "Certainly Root E1"
-     # Certificate "E-Tugra Global Root CA RSA v3"
-     # Certificate "E-Tugra Global Root CA ECC v3"
-     # Certificate "DIGITALSIGN GLOBAL ROOT RSA CA"
-     # Certificate "DIGITALSIGN GLOBAL ROOT ECDSA CA"
-     # Certificate "BJCA Global Root CA1"
-     # Certificate "BJCA Global Root CA2"
-     # Certificate "Symantec Enterprise Mobile Root for Microsoft"
-     # Certificate "A-Trust-Root-05"
-     # Certificate "ADOCA02"
-     # Certificate "StartCom Certification Authority G2"
-     # Certificate "ATHEX Root CA"
-     # Certificate "EBG Elektronik Sertifika Hizmet Sağlayıcısı"
-     # Certificate "GeoTrust Primary Certification Authority"
-     # Certificate "thawte Primary Root CA"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G5"
-     # Certificate "America Online Root Certification Authority 1"
-     # Certificate "Juur-SK"
-     # Certificate "ComSign CA"
-     # Certificate "ComSign Secured CA"
-     # Certificate "ComSign Advanced Security CA"
-     # Certificate "Global Chambersign Root"
-     # Certificate "Sonera Class2 CA"
-     # Certificate "VeriSign Class 3 Public Primary Certification Authority - G3"
-     # Certificate "VeriSign, Inc."
-     # Certificate "GTE CyberTrust Global Root"
-     # Certificate "Equifax Secure Global eBusiness CA-1"
-     # Certificate "Equifax"
-     # Certificate "Class 1 Primary CA"
-     # Certificate "Swiss Government Root CA III"
-     # Certificate "Application CA G4 Root"
-     # Certificate "SSC GDL CA Root A"
-     # Certificate "GlobalSign Code Signing Root E45"
-     # Certificate "GlobalSign Code Signing Root R45"
-     # Certificate "Entrust Code Signing Root Certification Authority - CSBR1"
���
�7��,Robert Relyea <rrelyea@redhat.com> - 2023.2.60_v7.0.306-71d��- Update to CKBI 2.60_v7.0.306 from NSS 3.91
-    Removing:
-     # Certificate "Camerfirma Global Chambersign Root"
-     # Certificate "Staat der Nederlanden EV Root CA"
-     # Certificate "OpenTrust Root CA G1"
-     # Certificate "Swedish Government Root Authority v1"
-     # Certificate "DigiNotar Root CA G2"
-     # Certificate "Federal Common Policy CA"
-     # Certificate "TC TrustCenter Universal CA III"
-     # Certificate "CCA India 2007"
-     # Certificate "ipsCA Global CA Root"
-     # Certificate "ipsCA Main CA Root"
-     # Certificate "Macao Post eSignTrust Root Certification Authority"
-     # Certificate "InfoNotary CSP Root"
-     # Certificate "DigiNotar Root CA"
-     # Certificate "Root CA
�"�[�]��P�>UO-Pablo Greco <pablo@fliagreco.com.ar>[��- Update to 7.6
- Fix vault reposp�=]�-Anssi Johansson <avij@centosproject.org>[�@- Point AltArch URLs to mirrorlist.c.o instead of mirror.c.o~�<U�)-Pablo Greco <pablo@fliagreco.com.ar>[l,�- Enable ostree-remount in presets
- Include power9 as a separate ppc64le archz�;U�!-Pablo Greco <pablo@fliagreco.com.ar>[dC�- Unified tarball for all arches, so it can be built from the same src.rpmz�:U�!-Pablo Greco <pablo@fliagreco.com.ar>[b�A- Sync version and fixes with centos-release
- Unified spec for all archesG�9OC-Johnny Hughes <johnny@centos.org>[b�@- Post Trans for contentdir�Z�8��3,Robert Relyea <rrelyea@redhat.com> - 2023.2.60_v7.0.306-72d�i�- hand merge the two 'GlobalSign ECC Root CA R4' certs together and the two 'AC RAIZ FNMT-RCM' certs together to keep p11kit from getting confused.
o��4�oG�DOC.Johnny Hughes <johnny@centos.org>[b�@- Post Trans for contentdirx�CU�.Pablo Greco <pablo@fliagreco.com.ar>Z�K@- armhfp: Require extlinux-bootloader now that update-boot was obsoletedP�BYK-Pablo Greco <pgreco@centosproject.org>_��@- Fix reference to 7.8 upstream@�AY+-Pablo Greco <pgreco@centosproject.org>_��@- Update to 7.9�>�@Y�%-Pablo Greco <pgreco@centosproject.org>^��- Add rootfs-expand to aarch64
- Create generic kvariant in aarch64 if it doesn't exist (for new kernel repos)
- Own kvariant var in armhfp and aarch64
- Backport move of /etc/os-release to /usr/lib/os-release (ngompa)
- Spec file cleanup (carlwgeorge)
- Update to 7.8�p�?Y�	-Pablo Greco <pgreco@centosproject.org>]m@- Own yum vars
- Generate yum vars at build time
- Remove dist_suffix
- Fix autorelabel preset
- Fix tuned profile in system-release-cpe
- Set aarch64 tuned profile to server
- Update to 7.7
������p�JY�	.Pablo Greco <pgreco@centosproject.org>]m@- Own yum vars
- Generate yum vars at build time
- Remove dist_suffix
- Fix autorelabel preset
- Fix tuned profile in system-release-cpe
- Set aarch64 tuned profile to server
- Update to 7.7P�IUO.Pablo Greco <pablo@fliagreco.com.ar>[��- Update to 7.6
- Fix vault reposp�H]�.Anssi Johansson <avij@centosproject.org>[�@- Point AltArch URLs to mirrorlist.c.o instead of mirror.c.o~�GU�).Pablo Greco <pablo@fliagreco.com.ar>[l,�- Enable ostree-remount in presets
- Include power9 as a separate ppc64le archz�FU�!.Pablo Greco <pablo@fliagreco.com.ar>[dC�- Unified tarball for all arches, so it can be built from the same src.rpmz�EU�!.Pablo Greco <pablo@fliagreco.com.ar>[b�A- Sync version and fixes with centos-release
- Unified spec for all arches
��\�l��$�Ok�_/Rob Crittenden <rcritten@redhat.com> - 0.78.4-8[M�A- Disable iterate-10 test which fails intermitently (#1596161)
- Add BuildRequires for running autoreconf�
�Nk�1/Rob Crittenden <rcritten@redhat.com> - 0.78.4-7[M�@- Pass _PROXY, _proxy, LANG and LC_* environment variables to
  helpers (#1596161)\�MkQ/Rob Crittenden <rcritten@redhat.com> - 0.78.4-6[
@�- Remove reference to unused patch_�LOs.Johnny Hughes <johnny@centos.org>dcp@- Update for 7.9.2009 and EOL
- EOL is 30 June 2024�>�KY�%.Pablo Greco <pgreco@centosproject.org>^��- Add rootfs-expand to aarch64
- Create generic kvariant in aarch64 if it doesn't exist (for new kernel repos)
- Own kvariant var in armhfp and aarch64
- Backport move of /etc/os-release to /usr/lib/os-release (ngompa)
- Spec file cleanup (carlwgeorge)
- Update to 7.8
>�
�{�Tm�/Rob Crittenden <rcritten@redhat.com> - 0.78.4-13^�@- Ensure that files read in have a trailing new-line (#1814976)�x�Sm�/Rob Crittenden <rcritten@redhat.com> - 0.78.4-12]A��- Add documentation for the '-N' option to the dogtag-ipa-renew-agent-submit
  man page (#1651368)
- SCEP: Don't set message=<ca ident> with GetCaps and GetCACert (#1608781)
- SCEP operation GetCAChain is not valid. Should be GetCACertChain (#1590727)
- Document owner and permission parameters to getcert (#1549585)��Rm�9/Rob Crittenden <rcritten@redhat.com> - 0.78.4-11\b�@- Increase SCEP spec compliance, set more secure default cipher and hash.
  (#1533216)��Qm�C/Rob Crittenden <rcritten@redhat.com> - 0.78.4-10[�@- Backport patches to add support for the MS Certificate Template V2
  extension (#1622184)�>�Pk�/Rob Crittenden <rcritten@redhat.com> - 0.78.4-9[qr�- Remove patch to pass _PROXY, _proxy, LANG and LC_* environment
  variables to helpers. The root cause was a bug in IPA (#1596161)
Wx�\��W��Zm�C0Rob Crittenden <rcritten@redhat.com> - 0.78.4-10[�@- Backport patches to add support for the MS Certificate Template V2
  extension (#1622184)�>�Yk�0Rob Crittenden <rcritten@redhat.com> - 0.78.4-9[qr�- Remove patch to pass _PROXY, _proxy, LANG and LC_* environment
  variables to helpers. The root cause was a bug in IPA (#1596161)�$�Xk�_0Rob Crittenden <rcritten@redhat.com> - 0.78.4-8[M�A- Disable iterate-10 test which fails intermitently (#1596161)
- Add BuildRequires for running autoreconf�
�Wk�10Rob Crittenden <rcritten@redhat.com> - 0.78.4-7[M�@- Pass _PROXY, _proxy, LANG and LC_* environment variables to
  helpers (#1596161)��Vm�#/Rob Crittenden <rcritten@redhat.com> - 0.78.4-15`��@- Don't report spurious error if no SCEP pkiMessage is ready yet (#1969854)��Um�/Rob Crittenden <rcritten@redhat.com> - 0.78.4-14^Ǿ�- Include &message=CA-IDENT with GetCACaps/GetCACert requests (#1839181)
]j�p�]��_m�#0Rob Crittenden <rcritten@redhat.com> - 0.78.4-15`��@- Don't report spurious error if no SCEP pkiMessage is ready yet (#1969854)��^m�0Rob Crittenden <rcritten@redhat.com> - 0.78.4-14^Ǿ�- Include &message=CA-IDENT with GetCACaps/GetCACert requests (#1839181){�]m�0Rob Crittenden <rcritten@redhat.com> - 0.78.4-13^�@- Ensure that files read in have a trailing new-line (#1814976)�x�\m�0Rob Crittenden <rcritten@redhat.com> - 0.78.4-12]A��- Add documentation for the '-N' option to the dogtag-ipa-renew-agent-submit
  man page (#1651368)
- SCEP: Don't set message=<ca ident> with GetCaps and GetCACert (#1608781)
- SCEP operation GetCAChain is not valid. Should be GetCACertChain (#1590727)
- Document owner and permission parameters to getcert (#1549585)��[m�90Rob Crittenden <rcritten@redhat.com> - 0.78.4-11\b�@- Increase SCEP spec compliance, set more secure default cipher and hash.
  (#1533216)
���}���dm�91Rob Crittenden <rcritten@redhat.com> - 0.78.4-11\b�@- Increase SCEP spec compliance, set more secure default cipher and hash.
  (#1533216)��cm�C1Rob Crittenden <rcritten@redhat.com> - 0.78.4-10[�@- Backport patches to add support for the MS Certificate Template V2
  extension (#1622184)�>�bk�1Rob Crittenden <rcritten@redhat.com> - 0.78.4-9[qr�- Remove patch to pass _PROXY, _proxy, LANG and LC_* environment
  variables to helpers. The root cause was a bug in IPA (#1596161)�$�ak�_1Rob Crittenden <rcritten@redhat.com> - 0.78.4-8[M�@- Disable iterate-10 test which fails intermitently (#1596161)
- Add BuildRequires for running autoreconf{�`m�0Rob Crittenden <rcritten@redhat.com> - 0.78.4-16aHw�- Fix file descriptor leak when executing CA helpers (#1992439)
u�~�u{�im�1Rob Crittenden <rcritten@redhat.com> - 0.78.4-16aHw�- Fix file descriptor leak when executing CA helpers (#1992439)��hm�#1Rob Crittenden <rcritten@redhat.com> - 0.78.4-15`��@- Don't report spurious error if no SCEP pkiMessage is ready yet (#1969854)��gm�1Rob Crittenden <rcritten@redhat.com> - 0.78.4-14^Ǿ�- Include &message=CA-IDENT with GetCACaps/GetCACert requests (#1839181){�fm�1Rob Crittenden <rcritten@redhat.com> - 0.78.4-13^�@- Ensure that files read in have a trailing new-line (#1814976)�x�em�1Rob Crittenden <rcritten@redhat.com> - 0.78.4-12]A��- Add documentation for the '-N' option to the dogtag-ipa-renew-agent-submit
  man page (#1651368)
- SCEP: Don't set message=<ca ident> with GetCaps and GetCACert (#1608781)
- SCEP operation GetCAChain is not valid. Should be GetCACertChain (#1590727)
- Document owner and permission parameters to getcert (#1549585)
XXWh�X�z�nu�2Miroslav Rezanina <mrezanin@redhat.com> - 19.4-2.el7^s^�- ci-Removing-cloud-user-from-wheel.pat%��mu�G2Miroslav Rezanina <mrezanin@redhat.com> - 19.4-1.el7^p��- Rebase to 19.4 [bz#1803094]
- Resolves: bz#1803094
  ([RHEL-7.9] cloud-init rebase to 19.4)�k�lu�c2Miroslav Rezanina <mrezanin@redhat.com> - 18.5-6.el7]��@- ci-util-json.dumps-on-python-2.7-will-handle-UnicodeDec.patch [bz#1744526]
- Resolves: bz#1744526
  ([cloud-init][OpenStack] cloud-init can't persist instance-data.json)�}�ku�2Miroslav Rezanina <mrezanin@redhat.com> - 18.5-5.el7]w�@- ci-Fix-for-network-configuration-not-persisting-after-r.patch [bz#1593010]
- Resolves: bz#1593010
  ([cloud-init][RHVM]cloud-init network configuration does not persist reboot [RHEL 7.8])�$�jm�]1Rob Crittenden <rcritten@redhat.com> - 0.78.4-17an�@- certmonger creates CSRs with invalid DER syntax for X509v3 extensions
  with critical=FALSE (#2015511)ch [bz#1549638]
- ci-Remove-race-condition-between-cloud-init-and-Network.patch [bz#1748015]
- ci-cc_set_password-increase-random-pwlength-from-9-to-2.patch [bz#1812170]
- ci-utils-use-SystemRandom-when-generating-random-passwo.patch [bz#1812173]
- ci-Enable-ssh_deletekeys-by-default.patch [bz#1574338]
- Resolves: bz#1549638
  ([RHEL7]cloud-user added to wheel group and sudoers.d causes 'sudo -v' prompts for passphrase)
- Resolves: bz#1574338
  (CVE-2018-10896 cloud-init: SSH host keys are not regenerated for the new instances [rhel-7])
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1812170
  (CVE-2020-8632 cloud-init: Too short random password length in cc_set_password in config/cc_set_passwords.py [rhel-7])
- Resolves: bz#1812173
  (CVE-2020-8631 cloud-init: Use of random.choice when generating random password [rhel-7])
+��+�@�qu�
2Miroslav Rezanina <mrezanin@redhat.com> - 19.4-5.el7^��@- ci-Remove-race-condition-between-cloud-init-and-Network-v2.patch [bz#1748015]
- ci-cc_mounts-fix-incorrect-format-specifiers-316.patch [bz#1772505]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)��pu�2Miroslav Rezanina <mrezanin@redhat.com> - 19.4-4.el7^��@- ci-swap-file-size-being-used-before-checked-if-str-315.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)��ou�2Miroslav Rezanina <mrezanin@redhat.com> - 19.4-3.el7^��@- ci-Do-not-use-fallocate-in-swap-file-creation-on-xfs.-7.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)
qYq�d�su�U2Miroslav Rezanina <mrezanin@redhat.com> - 19.4-7.el7^��- ci-ec2-only-redact-token-request-headers-in-logs-avoid-.patch [bz#1821999]
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)�#�ru�S2Miroslav Rezanina <mrezanin@redhat.com> - 19.4-6.el7^�>@- ci-Use-reload-or-try-restart-instead-of-try-reload-or-r.patch [bz#1748015]
- ci-ec2-Do-not-log-IMDSv2-token-values-instead-use-REDAC.patch [bz#1821999]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)
��W��z�vu�3Miroslav Rezanina <mrezanin@redhat.com> - 19.4-2.el7^s^�- ci-Removing-cloud-user-from-wheel.pat)��uu�G3Miroslav Rezanina <mrezanin@redhat.com> - 19.4-1.el7^p��- Rebase to 19.4 [bz#1803094]
- Resolves: bz#1803094
  ([RHEL-7.9] cloud-init rebase to 19.4)��ti�!2Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.2_��- ci-When-tools.conf-does-not-exist-running-cmd-vmware-to.patch [bz#1839619]
- ci-Changing-notation-of-subp-call.patch [bz#1839619]
- ci-DHCP-sandboxing-failing-on-noexec-mounted-var-tmp-52.patch [bz#1871916]
- Resolves: bz#1839619
  ([ESXi][RHEL7.9][cloud-init]ERROR log in cloud-init.log after clone VM on ESXi platform [rhel-7.9.z])
- Resolves: bz#1871916
  ([Azure][RHEL 7.9] cloud-init Permission denied with the use of mount option noexec [rhel-7.9.z])ch [bz#1549638]
- ci-Remove-race-condition-between-cloud-init-and-Network.patch [bz#1748015]
- ci-cc_set_password-increase-random-pwlength-from-9-to-2.patch [bz#1812170]
- ci-utils-use-SystemRandom-when-generating-random-passwo.patch [bz#1812173]
- ci-Enable-ssh_deletekeys-by-default.patch [bz#1574338]
- Resolves: bz#1549638
  ([RHEL7]cloud-user added to wheel group and sudoers.d causes 'sudo -v' prompts for passphrase)
- Resolves: bz#1574338
  (CVE-2018-10896 cloud-init: SSH host keys are not regenerated for the new instances [rhel-7])
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1812170
  (CVE-2020-8632 cloud-init: Too short random password length in cc_set_password in config/cc_set_passwords.py [rhel-7])
- Resolves: bz#1812173
  (CVE-2020-8631 cloud-init: Use of random.choice when generating random password [rhel-7])
+��+�@�yu�
3Miroslav Rezanina <mrezanin@redhat.com> - 19.4-5.el7^��@- ci-Remove-race-condition-between-cloud-init-and-Network-v2.patch [bz#1748015]
- ci-cc_mounts-fix-incorrect-format-specifiers-316.patch [bz#1772505]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)��xu�3Miroslav Rezanina <mrezanin@redhat.com> - 19.4-4.el7^��@- ci-swap-file-size-being-used-before-checked-if-str-315.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)��wu�3Miroslav Rezanina <mrezanin@redhat.com> - 19.4-3.el7^��@- ci-Do-not-use-fallocate-in-swap-file-creation-on-xfs.-7.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)
qYq�d�{u�U3Miroslav Rezanina <mrezanin@redhat.com> - 19.4-7.el7^��- ci-ec2-only-redact-token-request-headers-in-logs-avoid-.patch [bz#1821999]
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)�#�zu�S3Miroslav Rezanina <mrezanin@redhat.com> - 19.4-6.el7^�>@- ci-Use-reload-or-try-restart-instead-of-try-reload-or-r.patch [bz#1748015]
- ci-ec2-Do-not-log-IMDSv2-token-values-instead-use-REDAC.patch [bz#1821999]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)
����#�}i�_3Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.3_���- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
- ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])��|i�!3Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.2_��- ci-When-tools.conf-does-not-exist-running-cmd-vmware-to.patch [bz#1839619]
- ci-Changing-notation-of-subp-call.patch [bz#1839619]
- ci-DHCP-sandboxing-failing-on-noexec-mounted-var-tmp-52.patch [bz#1871916]
- Resolves: bz#1839619
  ([ESXi][RHEL7.9][cloud-init]ERROR log in cloud-init.log after clone VM on ESXi platform [rhel-7.9.z])
- Resolves: bz#1871916
  ([Azure][RHEL 7.9] cloud-init Permission denied with the use of mount option noexec [rhel-7.9.z])
Y�jaY��u�4Miroslav Rezanina <mrezanin@redhat.com> - 19.4-4.el7^��@- ci-swap-file-size-being-used-before-checked-if-str-315.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)��u�4Miroslav Rezanina <mrezanin@redhat.com> - 19.4-3.el7^��@- ci-Do-not-use-fallocate-in-swap-file-creation-on-xfs.-7.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)�z�u�4Miroslav Rezanina <mrezanin@redhat.com> - 19.4-2.el7^s^�- ci-Removing-cloud-user-from-wheel.pat.�#�~i�_3Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.3_���- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
  ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])ch [bz#1549638]
- ci-Remove-race-condition-between-cloud-init-and-Network.patch [bz#1748015]
- ci-cc_set_password-increase-random-pwlength-from-9-to-2.patch [bz#1812170]
- ci-utils-use-SystemRandom-when-generating-random-passwo.patch [bz#1812173]
- ci-Enable-ssh_deletekeys-by-default.patch [bz#1574338]
- Resolves: bz#1549638
  ([RHEL7]cloud-user added to wheel group and sudoers.d causes 'sudo -v' prompts for passphrase)
- Resolves: bz#1574338
  (CVE-2018-10896 cloud-init: SSH host keys are not regenerated for the new instances [rhel-7])
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1812170
  (CVE-2020-8632 cloud-init: Too short random password length in cc_set_password in config/cc_set_passwords.py [rhel-7])
- Resolves: bz#1812173
  (CVE-2020-8631 cloud-init: Use of random.choice when generating random password [rhel-7])
�<��#�u�S4Miroslav Rezanina <mrezanin@redhat.com> - 19.4-6.el7^�>@- ci-Use-reload-or-try-restart-instead-of-try-reload-or-r.patch [bz#1748015]
- ci-ec2-Do-not-log-IMDSv2-token-values-instead-use-REDAC.patch [bz#1821999]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)�@�u�
4Miroslav Rezanina <mrezanin@redhat.com> - 19.4-5.el7^��@- ci-Remove-race-condition-between-cloud-init-and-Network-v2.patch [bz#1748015]
- ci-cc_mounts-fix-incorrect-format-specifiers-316.patch [bz#1772505]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)
��i�!4Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.2_��- ci-When-tools.conf-does-not-exist-running-cmd-vmware-to.patch [bz#1839619]
- ci-Changing-notation-of-subp-call.patch [bz#1839619]
- ci-DHCP-sandboxing-failing-on-noexec-mounted-var-tmp-52.patch [bz#1871916]
- Resolves: bz#1839619
  ([ESXi][RHEL7.9][cloud-init]ERROR log in cloud-init.log after clone VM on ESXi platform [rhel-7.9.z])
- Resolves: bz#1871916
  ([Azure][RHEL 7.9] cloud-init Permission denied with the use of mount option noexec [rhel-7.9.z])�d�u�U4Miroslav Rezanina <mrezanin@redhat.com> - 19.4-7.el7^��- ci-ec2-only-redact-token-request-headers-in-logs-avoid-.patch [bz#1821999]
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)
�����F�i�%4Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.4`+��- ci-DataSourceAzure-update-password-for-defuser-if-exist.patch [bz#1900807]
- Resolves: bz#1900807
  (Update existing user password RHEL7x)�#�i�_4Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.3_���- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
  ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])�#�i�_4Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.3_���- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
- ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])
+��+�@�u�
5Miroslav Rezanina <mrezanin@redhat.com> - 19.4-5.el7^��@- ci-Remove-race-condition-between-cloud-init-and-Network-v2.patch [bz#1748015]
- ci-cc_mounts-fix-incorrect-format-specifiers-316.patch [bz#1772505]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)��
u�5Miroslav Rezanina <mrezanin@redhat.com> - 19.4-4.el7^��@- ci-swap-file-size-being-used-before-checked-if-str-315.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)��	u�5Miroslav Rezanina <mrezanin@redhat.com> - 19.4-3.el7^��@- ci-Do-not-use-fallocate-in-swap-file-creation-on-xfs.-7.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)
qYq�d�
u�U5Miroslav Rezanina <mrezanin@redhat.com> - 19.4-7.el7^��- ci-ec2-only-redact-token-request-headers-in-logs-avoid-.patch [bz#1821999]
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)�#�u�S5Miroslav Rezanina <mrezanin@redhat.com> - 19.4-6.el7^�>@- ci-Use-reload-or-try-restart-instead-of-try-reload-or-r.patch [bz#1748015]
- ci-ec2-Do-not-log-IMDSv2-token-values-instead-use-REDAC.patch [bz#1821999]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)
����#�i�_5Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.3_���- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
- ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])��i�!5Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.2_��- ci-When-tools.conf-does-not-exist-running-cmd-vmware-to.patch [bz#1839619]
- ci-Changing-notation-of-subp-call.patch [bz#1839619]
- ci-DHCP-sandboxing-failing-on-noexec-mounted-var-tmp-52.patch [bz#1871916]
- Resolves: bz#1839619
  ([ESXi][RHEL7.9][cloud-init]ERROR log in cloud-init.log after clone VM on ESXi platform [rhel-7.9.z])
- Resolves: bz#1871916
  ([Azure][RHEL 7.9] cloud-init Permission denied with the use of mount option noexec [rhel-7.9.z])
���u�6Miroslav Rezanina <mrezanin@redhat.com> - 19.4-4.el7^��@- ci-swap-file-size-being-used-before-checked-if-str-315.patch [bz#1772505]
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)�n�}�a5Miroslav Rezanina <mrezanin@redhat.com> - 19.4-7.el7_9.5`�@- ci-Fix-unit-failure-of-cloud-final.service-if-NetworkMa.patch [bz#1897616]
- Resolves: bz#1897616
  ([rhel-7]cloud-final.service fails if NetworkManager not installed.)�F�i�%5Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.4`+��- ci-DataSourceAzure-update-password-for-defuser-if-exist.patch [bz#1900807]
- Resolves: bz#1900807
  (Update existing user password RHEL7x)�#�i�_5Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.3_���- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
  ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])
�<��#�u�S6Miroslav Rezanina <mrezanin@redhat.com> - 19.4-6.el7^�>@- ci-Use-reload-or-try-restart-instead-of-try-reload-or-r.patch [bz#1748015]
- ci-ec2-Do-not-log-IMDSv2-token-values-instead-use-REDAC.patch [bz#1821999]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)�@�u�
6Miroslav Rezanina <mrezanin@redhat.com> - 19.4-5.el7^��@- ci-Remove-race-condition-between-cloud-init-and-Network-v2.patch [bz#1748015]
- ci-cc_mounts-fix-incorrect-format-specifiers-316.patch [bz#1772505]
- Resolves: bz#1748015
  ([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1772505
  ([RHEL7] swapon fails with "swapfile has holes" when created on a xfs filesystem by cloud-init)
��i�!6Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.2_��- ci-When-tools.conf-does-not-exist-running-cmd-vmware-to.patch [bz#1839619]
- ci-Changing-notation-of-subp-call.patch [bz#1839619]
- ci-DHCP-sandboxing-failing-on-noexec-mounted-var-tmp-52.patch [bz#1871916]
- Resolves: bz#1839619
  ([ESXi][RHEL7.9][cloud-init]ERROR log in cloud-init.log after clone VM on ESXi platform [rhel-7.9.z])
- Resolves: bz#1871916
  ([Azure][RHEL 7.9] cloud-init Permission denied with the use of mount option noexec [rhel-7.9.z])�d�u�U6Miroslav Rezanina <mrezanin@redhat.com> - 19.4-7.el7^��- ci-ec2-only-redact-token-request-headers-in-logs-avoid-.patch [bz#1821999]
- Resolves: bz#1821999
  ([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)
�����F�i�%6Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.4`+��- ci-DataSourceAzure-update-password-for-defuser-if-exist.patch [bz#1900807]
- Resolves: bz#1900807
  (Update existing user password RHEL7x)�#�i�_6Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.3_���- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
  ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])�#�i�_6Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.3_���- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
- ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])
{�{��s�I7Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�su7Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��Y7Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�	�i�+6Jon Maloy <jmaloy@redhat.com> - 19.4-7.el7_9.6a�- ci-cloudinit-net-handle-two-different-routes-for-the-sa.patch [bz#2003231]
- Resolves: bz#2003231
  (anything above 19.2 of cloud init it fails to assign default route and connect to the meta data service)�n�}�a6Miroslav Rezanina <mrezanin@redhat.com> - 19.4-7.el7_9.5`�@- ci-Fix-unit-failure-of-cloud-final.service-if-NetworkMa.patch [bz#1897616]
- Resolves: bz#1897616
  ([rhel-7]cloud-final.service fails if NetworkManager not installed.)
�s�t�[��Q�%��7Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��$��7Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�#s�#7Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�"sW7Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��!s�97Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	� s�!7Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.
Br�\�6�B�
�,s�#8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�+sW8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��*s�98Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�)s�!8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��(s�I8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�'su8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
�&��7Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.
mu���m�	�2s�!9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��1s�I9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t�0�g8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�/��8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�.��8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��-��8Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.

e�r+��V��:��eD�E�
298ea0c2efac5573e322e25503e2c30d52bb589fa8ef1cc0df2ba4f2bbbfd3c3D�D�
c5fc7f37feaeaf11068007f084d0a7046d1674006226de685b890730ee95e3c5D�C�
5f7f4b24a0e71345d5407d27b3ec2dba93f549f3873d99c73c1a6b6d5527120bD�B�
69d4fb9319ca5a9e4cae9e47996216cc1f227003389290e9e68c05911af73d15D�A�
f3f69f58e04b244b740beae57319f782363f8a8bfaacea37bca6ed2cb7d1cd2eD�@�
1cb1df73a2743fe17a9ccf9a82ba1339ff309d7912d173c10e2a3e8ef400fcffD�?�
2009ebe5d0c47032c5784190a92c5dfb2abdff45270eabce812d7641915b2fb6D�>�
88829e504b63e6f7b3b0f74d257ab87d6d2ac4c04e4220a90e33576fdc11d02fD�=�
6a71d3f89673ae6444441f6f1e25eb47a4347ba95f13345e2fcfcdfda313670bD�<�
8c4048ad0a30efd78b835e73ee590a52730bf658e4ee011dd963e908a4dbad81D�;�
6489c51c51e8202231b1a3e24f6328463bbd952da0cbdede7cfd828112422e18D�:�
c7607cfa2a4a5dcba948ec0c8b744a7f05d5113920dcbe14a16acdc6a14166b7D�9�
7fe1420aaf46d2b3e38efd53645a2803c75ef85aa2e51400cf062745f1a1e9ca
�gs���
�8��9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�7��9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��6��9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�5s�#9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�4sW9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��3s�99Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
W��F�u�W�
�?e�7:Kalev Lember <klember@redhat.com> - 3.28.1-4[�s�- Backport two additional upstream patches for thunderbolt panel
- Resolves: #1594880�	�>m�':Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-3[(�@- Remove outdated soft hyphens from Japanese translation
- Resolves: #1519109m�=qm:Christian Kellner <ckellner@redhat.com> - 3.28.1-2[d@- Include thunderbolt panel
- Resolves: #1567179^�<e[:Kalev Lember <klember@redhat.com> - 3.28.1-1Z�n�- Update to 3.28.1
- Resolves: #1567179y�;m�:Carlos Garnacho <cgarnach@redhat.com> - 3.26.2-9Z��- Add support for Wacom Pro Pen 3D styli
  Resolves: #1557256�C�:��9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t�9�g9Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
>��y��>m�Gqm;Christian Kellner <ckellner@redhat.com> - 3.28.1-2[d@- Include thunderbolt panel
- Resolves: #1567179^�Fe[;Kalev Lember <klember@redhat.com> - 3.28.1-1Z�n�- Update to 3.28.1
- Resolves: #1567179y�Em�;Carlos Garnacho <cgarnach@redhat.com> - 3.26.2-9Z��- Add support for Wacom Pro Pen 3D styli
  Resolves: #1557256r�Dyo:Michael Catanzaro <mcatanzaro@redhat.com> - 3.28.1-8.1b�@- Remove timezone boundaries
  Resolves: #2098262v�Ca�
:Marek Kasik <mkasik@redhat.com> - 3.28.1-8`KW�- Enable Printers panel in all environments
- Resolves: #1559431z�Bm�	:Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7^��- Categorize Infiniband devices correctly
  Resolves: #1630154��Am�;:Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]L�- Calculate better extents for the configured displays arrangement
  Resolves: #1591643p�@mw:Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]J�@- Fix crash in thunderbolt panel
  Resolves: #1672289
ms�o�[�mr�Nyo;Michael Catanzaro <mcatanzaro@redhat.com> - 3.28.1-8.1b�@- Remove timezone boundaries
  Resolves: #2098262v�Ma�
;Marek Kasik <mkasik@redhat.com> - 3.28.1-8`KW�- Enable Printers panel in all environments
- Resolves: #1559431z�Lm�	;Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7^��- Categorize Infiniband devices correctly
  Resolves: #1630154��Km�;;Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]L�- Calculate better extents for the configured displays arrangement
  Resolves: #1591643p�Jmw;Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]J�@- Fix crash in thunderbolt panel
  Resolves: #1672289�
�Ie�7;Kalev Lember <klember@redhat.com> - 3.28.1-4[�s�- Backport two additional upstream patches for thunderbolt panel
- Resolves: #1594880�	�Hm�';Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-3[(�@- Remove outdated soft hyphens from Japanese translation
- Resolves: #1519109
Y7�Z�]�Yp�Umw<Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]J�@- Fix crash in thunderbolt panel
  Resolves: #1672289�
�Te�7<Kalev Lember <klember@redhat.com> - 3.28.1-4[�s�- Backport two additional upstream patches for thunderbolt panel
- Resolves: #1594880�	�Sm�'<Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-3[(�@- Remove outdated soft hyphens from Japanese translation
- Resolves: #1519109m�Rqm<Christian Kellner <ckellner@redhat.com> - 3.28.1-2[d@- Include thunderbolt panel
- Resolves: #1567179^�Qe[<Kalev Lember <klember@redhat.com> - 3.28.1-1Z�n�- Update to 3.28.1
- Resolves: #1567179y�Pm�<Carlos Garnacho <cgarnach@redhat.com> - 3.26.2-9Z��- Add support for Wacom Pro Pen 3D styli
  Resolves: #1557256�E�Oi�#<Bastien Nocera <bnocera@redhat.com> - 3.26.2-8Z�
�+ control-center-3.26.2-8
- Fix Wi-Fi networks not getting updated
- Show "Wi-Fi disabled" page when Wi-Fi is disabled
- Resolves: #1545713
]i�s�.�]m�\qm=Christian Kellner <ckellner@redhat.com> - 3.28.1-2[d@- Include thunderbolt panel
- Resolves: #1567179^�[e[=Kalev Lember <klember@redhat.com> - 3.28.1-1Z�n�- Update to 3.28.1
- Resolves: #1567179y�Zm�=Carlos Garnacho <cgarnach@redhat.com> - 3.26.2-9Z��- Add support for Wacom Pro Pen 3D styli
  Resolves: #1557256�E�Yi�#=Bastien Nocera <bnocera@redhat.com> - 3.26.2-8Z�
�+ control-center-3.26.2-8
- Fix Wi-Fi networks not getting updated
- Show "Wi-Fi disabled" page when Wi-Fi is disabled
- Resolves: #1545713v�Xa�
<Marek Kasik <mkasik@redhat.com> - 3.28.1-8`KW�- Enable Printers panel in all environments
- Resolves: #1559431z�Wm�	<Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7^��- Categorize Infiniband devices correctly
  Resolves: #1630154��Vm�;<Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]L�- Calculate better extents for the configured displays arrangement
  Resolves: #1591643
fs�o�[�fy�cm�>Carlos Garnacho <cgarnach@redhat.com> - 3.26.2-9Z��- Add support for Wacom Pro Pen 3D styli
  Resolves: #1557256v�ba�
=Marek Kasik <mkasik@redhat.com> - 3.28.1-8`KW�- Enable Printers panel in all environments
- Resolves: #1559431z�am�	=Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7^��- Categorize Infiniband devices correctly
  Resolves: #1630154��`m�;=Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]L�- Calculate better extents for the configured displays arrangement
  Resolves: #1591643p�_mw=Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]J�@- Fix crash in thunderbolt panel
  Resolves: #1672289�
�^e�7=Kalev Lember <klember@redhat.com> - 3.28.1-4[�s�- Backport two additional upstream patches for thunderbolt panel
- Resolves: #1594880�	�]m�'=Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-3[(�@- Remove outdated soft hyphens from Japanese translation
- Resolves: #1519109
��/���z�jm�	>Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7^��- Categorize Infiniband devices correctly
  Resolves: #1630154��im�;>Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]L�- Calculate better extents for the configured displays arrangement
  Resolves: #1591643p�hmw>Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]J�@- Fix crash in thunderbolt panel
  Resolves: #1672289�
�ge�7>Kalev Lember <klember@redhat.com> - 3.28.1-4[�s�- Backport two additional upstream patches for thunderbolt panel
- Resolves: #1594880�	�fm�'>Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-3[(�@- Remove outdated soft hyphens from Japanese translation
- Resolves: #1519109m�eqm>Christian Kellner <ckellner@redhat.com> - 3.28.1-2[d@- Include thunderbolt panel
- Resolves: #1567179^�de[>Kalev Lember <klember@redhat.com> - 3.28.1-1Z�n�- Update to 3.28.1
- Resolves: #1567179
o�I�l�o�	�qm�'?Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-3[(�@- Remove outdated soft hyphens from Japanese translation
- Resolves: #1519109m�pqm?Christian Kellner <ckellner@redhat.com> - 3.28.1-2[d@- Include thunderbolt panel
- Resolves: #1567179^�oe[?Kalev Lember <klember@redhat.com> - 3.28.1-1Z�n�- Update to 3.28.1
- Resolves: #1567179y�nm�?Carlos Garnacho <cgarnach@redhat.com> - 3.26.2-9Z��- Add support for Wacom Pro Pen 3D styli
  Resolves: #1557256�E�mi�#?Bastien Nocera <bnocera@redhat.com> - 3.26.2-8Z�
�+ control-center-3.26.2-8
- Fix Wi-Fi networks not getting updated
- Show "Wi-Fi disabled" page when Wi-Fi is disabled
- Resolves: #1545713r�lyo>Michael Catanzaro <mcatanzaro@redhat.com> - 3.28.1-8.1b�@- Remove timezone boundaries
  Resolves: #2098262v�ka�
>Marek Kasik <mkasik@redhat.com> - 3.28.1-8`KW�- Enable Printers panel in all environments
- Resolves: #1559431
Lo�e�o�Lx�xY�@Jiri Vanek <jvanek@redhat.com> - 1.2-1W��- updated to 1,3 which fixing nss minor issue
- Resolves: rhbz#1296430�$�wY�q@Jiri Vanek <jvanek@redhat.com> - 1.1-5W��- posttrans silenced, the error is appearing only in state, when there is nothing to copy
- Resolves: rhbz#1296430v�va�
?Marek Kasik <mkasik@redhat.com> - 3.28.1-8`KW�- Enable Printers panel in all environments
- Resolves: #1559431z�um�	?Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7^��- Categorize Infiniband devices correctly
  Resolves: #1630154��tm�;?Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]L�- Calculate better extents for the configured displays arrangement
  Resolves: #1591643p�smw?Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]J�@- Fix crash in thunderbolt panel
  Resolves: #1672289�
�re�7?Kalev Lember <klember@redhat.com> - 3.28.1-4[�s�- Backport two additional upstream patches for thunderbolt panel
- Resolves: #1594880
UqJ�n�U��~Y�/@Jiri Vanek <jvanek@redhat.com> - 3.3-3Z�m�- fixes issue when java.security for openjdk7 was erased
- Resolves: rhbz#1571854��}Y�E@Jiri Vanek <jvanek@redhat.com> - 3.3-2Y�ZA- added another subdirs for policies files
- Resolves: rhbz#1503647
- Resolves: rhbz#1503668t�|Y�@Jiri Vanek <jvanek@redhat.com> - 3.3-1Y�Z@- updated to 3.3
- Resolves: rhbz#1503647
- Resolves: rhbz#1503668b�{Yo@Jiri Vanek <jvanek@redhat.com> - 2.2-3YG��- updated to latest head
- Resolves: rhbz#1427463�#�zY�o@Jiri Vanek <jvanek@redhat.com> - 2.2-1Y?�- added "jre/lib/security/blacklisted.certs" to cared files
- moved to newest release 2.1
- moved to new upstream at pagure.io
- added new script of copy_jdk_configs_fixFiles.sh 
- copy_jdk_configs.lua  aligned to it
- Resolves: rhbz#1427463��yY�?@Jiri Vanek <jvanek@redhat.com> - 1.3-1X@�- updated to upstream 1.3 (adding jre/lib/security/cacerts file)
- Resolves: rhbz#1399719
1�
�1�g�a�oAOndrej Vasik <ovasik@redhat.com> - 8.22-18Wv[@- fix xfs build failure in chrooted environment (#1263341)
- update filesystem lists for stat and tail from latest upstream
  (#1327881, #1280357) 
- disable id/setgid.sh test(missing chroot feature), fix 
  cp-a-selinux test (#1266500,#1266501)
- colorls.sh - change detection of interactive shell for ksh
  compatibility (#1321648)
- fix date --date crash with empty or invalid TZ envvar (#1325786)
- df -l: do not hang on a dead autofs mount point (#1309247)
- sort -h: fix functionality of human readable numeric sort for other
  than first field (#1328360)n�aAOndrej Vasik <ovasik@redhat.com> - 8.22-16VU��- cp: prevent potential sparse file corruption (#1284906)~�[�#@Jiri Vanek <jvanek@redhat.com> - 3.3-11[�R@- Fixing deletation ofemtpy dirs via rogue symlink
- Resolves: rhbz#2100617o�[�@Jiri Vanek <jvanek@redhat.com> - 3.3-10Z�@- added javaws.policy and blacklist
- Resolves: rhbz#1571854
�����>�_�AKamil Dudka <kdudka@redhat.com> - 8.22-23[#�@- update description of the -a/--all option in df.1 man page (#1553212)
- sort -M: fix memory leak when using multibyte locale (#1540059)h�_uAKamil Dudka <kdudka@redhat.com> - 8.22-22Zhu@- mv -n: do not overwrite the destination (#1526265)r�_�AKamil Dudka <kdudka@redhat.com> - 8.22-21Z%8�- timeout: revert the last fix for a possible race (#1439465)��_�%AKamil Dudka <kdudka@redhat.com> - 8.22-20Z�@- df: do not stat file systems that do not satisfy the -t/-x args (#1511947)�p�_�AKamil Dudka <kdudka@redhat.com> - 8.22-19Yé�- timeout: fix race possibly terminating wrong process (#1439465)
- ls: allow interruption when reading slow directories (#1421802)
- fold: preserve new-lines in mutlibyte text (#1418505)
��!�d�
o]AKamil Dudka <kdudka@redhat.com> - 8.22-24.el7_9.2_�- sync: fix open fallback bug (#1850682)r�	oyAKamil Dudka <kdudka@redhat.com> - 8.22-24.el7_9.1^��- sync: support syncing specified arguments (#1850682)�f�_�oAKamil Dudka <kdudka@redhat.com> - 8.22-24\���- doc: improve description of the --kibibytes option of ls (#1527391)
- doc: fix typo in date example (#1620624)
- stat,tail: sync the list of file systems with coreutils-8.31 (#1659530)
- df: avoid stat() for dummy file systems with -l (#1668137)
- df: prioritize mounts nearer the device root (#1042840)
S\�S��
_�YBJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�_sBJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage� �_�cBJan Friesse <jfriesse@redhat.com> 2.4.3-5\�|�- Resolves: rhbz#1376819
- Resolves: rhbz#1634710

- configure: add --with-initconfigdir option (rhbz#1376819)
- merge upstream commit c0d8af0c7b247df16a90850b0edab4f978cb8192 (rhbz#1376819)
- Use RuntimeDirectory instead of tmpfiles.d (rhbz#1376819)
- merge upstream commit fde7fa0c6408709ccdd090aa9064e6a78232498a (rhbz#1376819)
- totemcrypto: Fix importing of the private key (rhbz#1634710)
- merge upstream commit 3f3e6b62719a263cb221c19a06d9a2c570234caa (rhbz#1634710)
- qnetd: Check existence of NSS DB dir before fork (rhbz#1376819)
- merge upstream commit eac28dffdf7f060f41f2b2e95bb0f4c6c033425d (rhbz#1376819)
&sj�cuBJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�c�}BJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�_�OBJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)
v�v�j�_�wBJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��_�SBJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
a#D�;a�V�_�OCJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)��_�YCJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�_sCJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage�[�c�UBJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�_�UBJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)of�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|����������������������O�T �Z!�_"�d#�i$�n&�q'�s(�v*�y+�{,�}-�/�0�1�2�3�
4�5�6�7�8�9�:�%;�,<�2>�8?�?@�GA�NB�UC�\D�cE�jF�qG�xH�~I�J�K�
L�
M�N�O�Q�R�S�!T�$U�&V�+W�.X�2Z�5[�8\�:]�?^�B_�F`�Ia�Lb�Nc�Pd�Se�Vf�Xg�]h�`i�dj�ik�kl�nm�qn�to�vp�xq�{r�~s�t�u�v�w�x�y�z�{�#|�)}�/~�5��:��?��E��J��P��U��[��a��f��k��q��u��y��~����	��������
�M����_�SCJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)j�cuCJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�c�}CJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition
>���>��c�GCJan Friesse <jfriesse@redhat.com> 2.4.5-7.2av�@- Resolves: rhbz#2001969

- totem: Add cancel_hold_on_retransmit config option (rhbz#2001969)�[�c�UCJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�_�UCJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)�j�_�wCJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)
S\�S��!_�YDJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g� _sDJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage� �_�cDJan Friesse <jfriesse@redhat.com> 2.4.3-5\�|�- Resolves: rhbz#1376819
- Resolves: rhbz#1634710

- configure: add --with-initconfigdir option (rhbz#1376819)
- merge upstream commit c0d8af0c7b247df16a90850b0edab4f978cb8192 (rhbz#1376819)
- Use RuntimeDirectory instead of tmpfiles.d (rhbz#1376819)
- merge upstream commit fde7fa0c6408709ccdd090aa9064e6a78232498a (rhbz#1376819)
- totemcrypto: Fix importing of the private key (rhbz#1634710)
- merge upstream commit 3f3e6b62719a263cb221c19a06d9a2c570234caa (rhbz#1634710)
- qnetd: Check existence of NSS DB dir before fork (rhbz#1376819)
- merge upstream commit eac28dffdf7f060f41f2b2e95bb0f4c6c033425d (rhbz#1376819)
&sj�$cuDJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�#c�}DJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�"_�ODJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)
v�v�j�&_�wDJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��%_�SDJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
a#D�;a�V�+_�OEJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)��*_�YEJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�)_sEJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage�[�(c�UDJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�'_�UDJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
�M����._�SEJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)j�-cuEJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�,c�}EJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition
>���>��2c�GEJan Friesse <jfriesse@redhat.com> 2.4.5-7.2av�@- Resolves: rhbz#2001969

- totem: Add cancel_hold_on_retransmit config option (rhbz#2001969)�[�1c�UEJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�0_�UEJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)�j�/_�wEJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)

e�r+��V��:��eD�R�
f19ef75ad99fd28a32063032985acd16eed69a49de7940fe80fe25a45d7b20d5D�Q�
9b1fd6f75c44990182608f11437d29610a09c14eef6cd15e358d8dc204c067a6D�P�
21cd1d5d48d73a90f3072f23c5e4e21283dbd047dba314b528013a884054068eD�O�
8a874d1a0c3f0dce30ef48f0095dafcb59e864b2b89528a61ee1b1d0a5dcfb7fD�N�
68ee3d48388315e955a81bc549710f8201b486ea8413b2e63a516ea8d40e5534D�M�
d413e9756d3b6aece12ea946151d51900d80c7fc73dbaac617ca6d4212d49e38D�L�
26c0bf18af70ee3cb9525c40bdea17bad250aa0b3b0200dd8132b995dc4081a9D�K�
547e7d5fe595fcb6ed9634585475a0cdf56327add42e4ccd74358d8c4a27b140D�J�
e5654c00b989b0595c553eaf073114c219aec1d06fb9571ebdcebbdfef5a90d5D�I�
99812ac04e29b031870c5675a4888ceb7ec75a205bace3fe8e9339e91f0e8109D�H�
adf023be78972d5813085a5facdbea98c19687e2f35459fa6060b6c2fded31a9D�G�
c6c5c2f11ff4c5bdd22deb3a88852ae012482664acb196d328e4b290495979edD�F�
2bf6c6071be41d65c91d31c9399563bd6d9298e9a9911c2cfff1bae35d4209fe
S\�S��5_�YFJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�4_sFJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage� �3_�cFJan Friesse <jfriesse@redhat.com> 2.4.3-5\�|�- Resolves: rhbz#1376819
- Resolves: rhbz#1634710

- configure: add --with-initconfigdir option (rhbz#1376819)
- merge upstream commit c0d8af0c7b247df16a90850b0edab4f978cb8192 (rhbz#1376819)
- Use RuntimeDirectory instead of tmpfiles.d (rhbz#1376819)
- merge upstream commit fde7fa0c6408709ccdd090aa9064e6a78232498a (rhbz#1376819)
- totemcrypto: Fix importing of the private key (rhbz#1634710)
- merge upstream commit 3f3e6b62719a263cb221c19a06d9a2c570234caa (rhbz#1634710)
- qnetd: Check existence of NSS DB dir before fork (rhbz#1376819)
- merge upstream commit eac28dffdf7f060f41f2b2e95bb0f4c6c033425d (rhbz#1376819)
&sj�8cuFJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�7c�}FJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�6_�OFJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)
v�v�j�:_�wFJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��9_�SFJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
a#D�;a�V�?_�OGJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)��>_�YGJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�=_sGJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage�[�<c�UFJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�;_�UFJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
�M����B_�SGJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)j�AcuGJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�@c�}GJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition
>���>��Fc�GGJan Friesse <jfriesse@redhat.com> 2.4.5-7.2av�@- Resolves: rhbz#2001969

- totem: Add cancel_hold_on_retransmit config option (rhbz#2001969)�[�Ec�UGJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�D_�UGJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)�j�C_�wGJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)
S\�S��I_�YHJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�H_sHJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage� �G_�cHJan Friesse <jfriesse@redhat.com> 2.4.3-5\�|�- Resolves: rhbz#1376819
- Resolves: rhbz#1634710

- configure: add --with-initconfigdir option (rhbz#1376819)
- merge upstream commit c0d8af0c7b247df16a90850b0edab4f978cb8192 (rhbz#1376819)
- Use RuntimeDirectory instead of tmpfiles.d (rhbz#1376819)
- merge upstream commit fde7fa0c6408709ccdd090aa9064e6a78232498a (rhbz#1376819)
- totemcrypto: Fix importing of the private key (rhbz#1634710)
- merge upstream commit 3f3e6b62719a263cb221c19a06d9a2c570234caa (rhbz#1634710)
- qnetd: Check existence of NSS DB dir before fork (rhbz#1376819)
- merge upstream commit eac28dffdf7f060f41f2b2e95bb0f4c6c033425d (rhbz#1376819)
&sj�LcuHJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�Kc�}HJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�J_�OHJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)
v�v�j�N_�wHJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��M_�SHJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
D#D�[�Pc�UHJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�O_�UHJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
S\�S��S_�YIJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�R_sIJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage� �Q_�cIJan Friesse <jfriesse@redhat.com> 2.4.3-5\�|�- Resolves: rhbz#1376819
- Resolves: rhbz#1634710

- configure: add --with-initconfigdir option (rhbz#1376819)
- merge upstream commit c0d8af0c7b247df16a90850b0edab4f978cb8192 (rhbz#1376819)
- Use RuntimeDirectory instead of tmpfiles.d (rhbz#1376819)
- merge upstream commit fde7fa0c6408709ccdd090aa9064e6a78232498a (rhbz#1376819)
- totemcrypto: Fix importing of the private key (rhbz#1634710)
- merge upstream commit 3f3e6b62719a263cb221c19a06d9a2c570234caa (rhbz#1634710)
- qnetd: Check existence of NSS DB dir before fork (rhbz#1376819)
- merge upstream commit eac28dffdf7f060f41f2b2e95bb0f4c6c033425d (rhbz#1376819)
&sj�VcuIJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�Uc�}IJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�T_�OIJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)
v�v�j�X_�wIJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��W_�SIJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
a#D�;a�V�]_�OJJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)��\_�YJJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�[_sJJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage�[�Zc�UIJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�Y_�UIJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
�M����`_�SJJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)j�_cuJJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�^c�}JJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition
>���>��dc�GJJan Friesse <jfriesse@redhat.com> 2.4.5-7.2av�@- Resolves: rhbz#2001969

- totem: Add cancel_hold_on_retransmit config option (rhbz#2001969)�[�cc�UJJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�b_�UJJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)�j�a_�wJJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)
���j�j�icuKJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�hc�}KJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�g_�OKJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)��f_�YKJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�e_sKJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage
v�v�j�k_�wKJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��j_�SKJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
�#D���nc�GKJan Friesse <jfriesse@redhat.com> 2.4.5-7.2av�@- Resolves: rhbz#2001969

- totem: Add cancel_hold_on_retransmit config option (rhbz#2001969)�[�mc�UKJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�l_�UKJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
S\�S��q_�YLJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�p_sLJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage� �o_�cLJan Friesse <jfriesse@redhat.com> 2.4.3-5\�|�- Resolves: rhbz#1376819
- Resolves: rhbz#1634710

- configure: add --with-initconfigdir option (rhbz#1376819)
- merge upstream commit c0d8af0c7b247df16a90850b0edab4f978cb8192 (rhbz#1376819)
- Use RuntimeDirectory instead of tmpfiles.d (rhbz#1376819)
- merge upstream commit fde7fa0c6408709ccdd090aa9064e6a78232498a (rhbz#1376819)
- totemcrypto: Fix importing of the private key (rhbz#1634710)
- merge upstream commit 3f3e6b62719a263cb221c19a06d9a2c570234caa (rhbz#1634710)
- qnetd: Check existence of NSS DB dir before fork (rhbz#1376819)
- merge upstream commit eac28dffdf7f060f41f2b2e95bb0f4c6c033425d (rhbz#1376819)
&sj�tcuLJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�sc�}LJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�r_�OLJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)
v�v�j�v_�wLJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��u_�SLJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
D#D�[�xc�ULJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�w_�ULJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
S\�S��{_�YMJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�z_sMJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage� �y_�cMJan Friesse <jfriesse@redhat.com> 2.4.3-5\�|�- Resolves: rhbz#1376819
- Resolves: rhbz#1634710

- configure: add --with-initconfigdir option (rhbz#1376819)
- merge upstream commit c0d8af0c7b247df16a90850b0edab4f978cb8192 (rhbz#1376819)
- Use RuntimeDirectory instead of tmpfiles.d (rhbz#1376819)
- merge upstream commit fde7fa0c6408709ccdd090aa9064e6a78232498a (rhbz#1376819)
- totemcrypto: Fix importing of the private key (rhbz#1634710)
- merge upstream commit 3f3e6b62719a263cb221c19a06d9a2c570234caa (rhbz#1634710)
- qnetd: Check existence of NSS DB dir before fork (rhbz#1376819)
- merge upstream commit eac28dffdf7f060f41f2b2e95bb0f4c6c033425d (rhbz#1376819)
&sj�~cuMJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�}c�}MJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�|_�OMJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)
v�v�j�_�wMJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��_�SMJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
a#D�;a�V�_�ONJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)��_�YNJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�_sNJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage�[�c�UMJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�_�UMJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
�M����_�SNJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)j�cuNJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�c�}NJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition
>���>��c�GNJan Friesse <jfriesse@redhat.com> 2.4.5-7.2av�@- Resolves: rhbz#2001969

- totem: Add cancel_hold_on_retransmit config option (rhbz#2001969)�[�c�UNJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�
_�UNJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)�j�	_�wNJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)
���j�j�cuOJan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/�c�}OJan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V�_�OOJan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)��_�YOJan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g�
_sOJan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage
v�v�j�_�wOJan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)��_�SOJan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
�#D�&�k�gsPDave Anderson <anderson@redhat.com> - 7.2.3-4[5A- Fix bpf.c covscan issues
  Resolves: rhbz#1559758��g�PDave Anderson <anderson@redhat.com> - 7.2.3-3[5@- Rebase to github commits a6cd8408 to da49e201 
  Resolves: rhbz#1559460��c�GOJan Friesse <jfriesse@redhat.com> 2.4.5-7.2av�@- Resolves: rhbz#2001969

- totem: Add cancel_hold_on_retransmit config option (rhbz#2001969)�[�c�UOJan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y�_�UOJan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
�9��D��:�g�PDave Anderson <anderson@redhat.com> - 7.2.3-9\,��- Alternate list loop detection option
  Resolves: rhbz#1595389
- Readline library tab completion plugin
  Resolves: rhbz#1656165�&�g�gPDave Anderson <anderson@redhat.com> - 7.2.3-8[��@- Fix ppc64 "bt" command failure reporting invalid NIP value for a user-space task. 
  Resolves: rhbz#1617936�1�g�}PDave Anderson <anderson@redhat.com> - 7.2.3-7[�Q@- Support ppc64 increased VA range
- Fix ppc64 "bt" command failure reporting invalid NIP value
  Resolves: rhbz#1617936��g�?PDave Anderson <anderson@redhat.com> - 7.2.3-6[?Y�- Fix for RHEL7 kernel's eBPF support that uses old IDR facility
  Resolves: rhbz#1559758�C�g�!PDave Anderson <anderson@redhat.com> - 7.2.3-5[d@- Rebase to github commits b9d76838 to c79a11fa
  Resolves: rhbz#1559460
- Fix ppc64/ppc6le stacksize calculation
  Resolves: rhbz#1589685
|��7�C|�C�#g�!QDave Anderson <anderson@redhat.com> - 7.2.3-5[d@- Rebase to github commits b9d76838 to c79a11fa
  Resolves: rhbz#1559460
- Fix ppc64/ppc6le stacksize calculation
  Resolves: rhbz#1589685k�"gsQDave Anderson <anderson@redhat.com> - 7.2.3-4[5A- Fix bpf.c covscan issues
  Resolves: rhbz#1559758��!g�QDave Anderson <anderson@redhat.com> - 7.2.3-3[5@- Rebase to github commits a6cd8408 to da49e201 
  Resolves: rhbz#1559460�8� o�PBhupesh Sharma <bhsharma@redhat.com> - 7.2.3-11.1_k8�- crash/sadump, kaslr: fix failure of calculating kaslr_offset due to an sadump format restriction
  Resolves: rhbz#1854016��i�5PDave Anderson <anderson@redhat.com> - 7.2.3-11\���- Fix to prevent display of invalid "timer" command entries
  Resolves: rhbz#1818084x�i�	PDave Anderson <anderson@redhat.com> - 7.2.3-10\4��- Restrict command line to 1500 bytes
  Resolves: rhbz#1663792
@j�M�@��)i�5QDave Anderson <anderson@redhat.com> - 7.2.3-11\���- Fix to prevent display of invalid "timer" command entries
  Resolves: rhbz#1818084x�(i�	QDave Anderson <anderson@redhat.com> - 7.2.3-10\4��- Restrict command line to 1500 bytes
  Resolves: rhbz#1663792�:�'g�QDave Anderson <anderson@redhat.com> - 7.2.3-9\,��- Alternate list loop detection option
  Resolves: rhbz#1595389
- Readline library tab completion plugin
  Resolves: rhbz#1656165�&�&g�gQDave Anderson <anderson@redhat.com> - 7.2.3-8[��@- Fix ppc64 "bt" command failure reporting invalid NIP value for a user-space task. 
  Resolves: rhbz#1617936�1�%g�}QDave Anderson <anderson@redhat.com> - 7.2.3-7[�Q@- Support ppc64 increased VA range
- Fix ppc64 "bt" command failure reporting invalid NIP value
  Resolves: rhbz#1617936��$g�?QDave Anderson <anderson@redhat.com> - 7.2.3-6[?Y�- Fix for RHEL7 kernel's eBPF support that uses old IDR facility
  Resolves: rhbz#1559758
>D�P��>�1�/g�}RDave Anderson <anderson@redhat.com> - 7.2.3-7[�Q@- Support ppc64 increased VA range
- Fix ppc64 "bt" command failure reporting invalid NIP value
  Resolves: rhbz#1617936��.g�?RDave Anderson <anderson@redhat.com> - 7.2.3-6[?Y�- Fix for RHEL7 kernel's eBPF support that uses old IDR facility
  Resolves: rhbz#1559758�C�-g�!RDave Anderson <anderson@redhat.com> - 7.2.3-5[d@- Rebase to github commits b9d76838 to c79a11fa
  Resolves: rhbz#1559460
- Fix ppc64/ppc6le stacksize calculation
  Resolves: rhbz#1589685k�,gsRDave Anderson <anderson@redhat.com> - 7.2.3-4[5A- Fix bpf.c covscan issues
  Resolves: rhbz#1559758��+g�RDave Anderson <anderson@redhat.com> - 7.2.3-3[5@- Rebase to github commits a6cd8408 to da49e201 
  Resolves: rhbz#1559460�8�*o�QBhupesh Sharma <bhsharma@redhat.com> - 7.2.3-11.1_k8�- crash/sadump, kaslr: fix failure of calculating kaslr_offset due to an sadump format restriction
  Resolves: rhbz#1854016
YV���Ys�5e�STomáš Mráz <tmraz@redhat.com> - 1.4.11-15V�I�- crontab: use temporary filename properly ignored by crond�8�4o�RBhupesh Sharma <bhsharma@redhat.com> - 7.2.3-11.1_k8�- crash/sadump, kaslr: fix failure of calculating kaslr_offset due to an sadump format restriction
  Resolves: rhbz#1854016��3i�5RDave Anderson <anderson@redhat.com> - 7.2.3-11\���- Fix to prevent display of invalid "timer" command entries
  Resolves: rhbz#1818084x�2i�	RDave Anderson <anderson@redhat.com> - 7.2.3-10\4��- Restrict command line to 1500 bytes
  Resolves: rhbz#1663792�:�1g�RDave Anderson <anderson@redhat.com> - 7.2.3-9\,��- Alternate list loop detection option
  Resolves: rhbz#1595389
- Readline library tab completion plugin
  Resolves: rhbz#1656165�&�0g�gRDave Anderson <anderson@redhat.com> - 7.2.3-8[��@- Fix ppc64 "bt" command failure reporting invalid NIP value for a user-space task. 
  Resolves: rhbz#1617936

e�r+��V��:��eD�_�
964701bf20ea9285610ce775b493e6d79bf2f27999d29ccbdc6ac91eb4261ce9D�^�
801be54b282724d9d09516d698bc641c19471a40f11821cbf51804f40228e59aD�]�
902507007b4e5ee04bd47f98345b605b7cce177b0569460eb0efb299a91918e5D�\�
e4bb7031f520b296dbe56b80bca148b9f8409329cef2007dd5a06e4548e780d3D�[�
9e8882a42b481017ad43c670ac8c75a3a878d804f43f7716f685798813397a3fD�Z�
44ab9339bd5d854867709f046ee7265cdf470dcab6e44935238e9d85f50a3ffbD�Y�
891dab92096ecafec7121bace38c5d802443f838cef21422beb6a451c0e0892dD�X�
8c0e209a9b3e465d9d43e1e9e5585d8222d61a73748d1a2e8ce486e8b2b25715D�W�
d97cce4820b6ef5656963548218f0d4ff9ef7c504f16623dd12d6b73c7cf2e2fD�V�
93e5893e2543f24cc6076a35548745fc96be00bd8f9960f8645d41100dcf0c3aD�U�
87818b04247bfad1a3a5ad6b7d4ba90f571e7df0d267da4a66fd5e1e17409c65D�T�
596130fb4480b497134f1ceee905500a7718c15559963c2786a784a511011077D�S�
64c5a32d35ccc6312c43d89cfee42872bacebecc43ec10e09f90916daedb80da
s�D�*s�3�:a�SMarcel Plch <mplch@redhat.com> - 1.4.11-20[�
@- Fix race condition when crontab is modified the same second
  before and after reading the crontab
- Resolves: rhbz#1638691i�9eqSTomáš Mráz <tmraz@redhat.com> - 1.4.11-19Y�@- fix URL and source URL of the package (#1501726)�*�8e�qSTomáš Mráz <tmraz@redhat.com> - 1.4.11-18Y���- fix regression - spurious PAM log message from crontab (#1479064)
- allow empty variables in crontabs (#1439217)��7e�[STomáš Mráz <tmraz@redhat.com> - 1.4.11-17Xۡ�- make anacron not to contradict itself in syslog
  (job output does not have to be necessarily mailed)��6e�GSTomáš Mráz <tmraz@redhat.com> - 1.4.11-16X���- disable mail from anacron with empty MAILTO
- crontab: do not block access with PAM when running as root
- improve the crontab man page
- do not hardcode system_u selinux user but use the user from
  the current context
t��r�t��?e�GTTomáš Mráz <tmraz@redhat.com> - 1.4.11-16X���- disable mail from anacron with empty MAILTO
- crontab: do not block access with PAM when running as root
- improve the crontab man page
- do not hardcode system_u selinux user but use the user from
  the current context�a�>e�_SJan Staněk <jstanek@redhat.com> - 1.4.11-24a���- Limit memory allocated for file descriptors
  Backports https://github.com/cronie-crond/cronie/commit/584911514ce6aa2f16e1d79431bac816ea62cb2c
  Resolves: rhbz#2026289n�=aSMarcel Plch <mplch@redhat.com> - 1.4.11-23\d�- Make cronie restart on failure
- Resolves: rhbz#1651730��<a�WSMarcel Plch <mplch@redhat.com> - 1.4.11-22\l@- Backport upstream patch to fix cron failing on
  smart card authentication
- Resolves: rhbz#1650314{�;a�SMarcel Plch <mplch@redhat.com> - 1.4.11-21[��- Backport upstream patch to fix -P behavior
- Resolves: rhbz#1536111
o]�C�o��Ea�WTMarcel Plch <mplch@redhat.com> - 1.4.11-22\l@- Backport upstream patch to fix cron failing on
  smart card authentication
- Resolves: rhbz#1650314{�Da�TMarcel Plch <mplch@redhat.com> - 1.4.11-21[��- Backport upstream patch to fix -P behavior
- Resolves: rhbz#1536111�3�Ca�TMarcel Plch <mplch@redhat.com> - 1.4.11-20[�
@- Fix race condition when crontab is modified the same second
  before and after reading the crontab
- Resolves: rhbz#1638691i�BeqTTomáš Mráz <tmraz@redhat.com> - 1.4.11-19Y�@- fix URL and source URL of the package (#1501726)�*�Ae�qTTomáš Mráz <tmraz@redhat.com> - 1.4.11-18Y���- fix regression - spurious PAM log message from crontab (#1479064)
- allow empty variables in crontabs (#1439217)��@e�[TTomáš Mráz <tmraz@redhat.com> - 1.4.11-17Xۡ�- make anacron not to contradict itself in syslog
  (job output does not have to be necessarily mailed)
{��
�{��Je�GUTomáš Mráz <tmraz@redhat.com> - 1.4.11-16X���- disable mail from anacron with empty MAILTO
- crontab: do not block access with PAM when running as root
- improve the crontab man page
- do not hardcode system_u selinux user but use the user from
  the current contexts�Ie�UTomáš Mráz <tmraz@redhat.com> - 1.4.11-15V�I�- crontab: use temporary filename properly ignored by crond��Hy�ATOndřej Pohořelský <opohorel@redhat.com> - 1.4.11-25d@- Set 'missingok' for /etc/cron.deny to not recreate it on update
- Resolves: rhbz#2059479�a�Ge�_TJan Staněk <jstanek@redhat.com> - 1.4.11-24a���- Limit memory allocated for file descriptors
  Backports https://github.com/cronie-crond/cronie/commit/584911514ce6aa2f16e1d79431bac816ea62cb2c
  Resolves: rhbz#2026289n�FaTMarcel Plch <mplch@redhat.com> - 1.4.11-23\d�- Make cronie restart on failure
- Resolves: rhbz#1651730
o]�C�o��Pa�WUMarcel Plch <mplch@redhat.com> - 1.4.11-22\l@- Backport upstream patch to fix cron failing on
  smart card authentication
- Resolves: rhbz#1650314{�Oa�UMarcel Plch <mplch@redhat.com> - 1.4.11-21[��- Backport upstream patch to fix -P behavior
- Resolves: rhbz#1536111�3�Na�UMarcel Plch <mplch@redhat.com> - 1.4.11-20[�
@- Fix race condition when crontab is modified the same second
  before and after reading the crontab
- Resolves: rhbz#1638691i�MeqUTomáš Mráz <tmraz@redhat.com> - 1.4.11-19Y�@- fix URL and source URL of the package (#1501726)�*�Le�qUTomáš Mráz <tmraz@redhat.com> - 1.4.11-18Y���- fix regression - spurious PAM log message from crontab (#1479064)
- allow empty variables in crontabs (#1439217)��Ke�[UTomáš Mráz <tmraz@redhat.com> - 1.4.11-17Xۡ�- make anacron not to contradict itself in syslog
  (job output does not have to be necessarily mailed)
@����@�*�Ue�qVTomáš Mráz <tmraz@redhat.com> - 1.4.11-18Y���- fix regression - spurious PAM log message from crontab (#1479064)
- allow empty variables in crontabs (#1439217)��Te�[VTomáš Mráz <tmraz@redhat.com> - 1.4.11-17Xۡ�- make anacron not to contradict itself in syslog
  (job output does not have to be necessarily mailed)��Se�GVTomáš Mráz <tmraz@redhat.com> - 1.4.11-16X���- disable mail from anacron with empty MAILTO
- crontab: do not block access with PAM when running as root
- improve the crontab man page
- do not hardcode system_u selinux user but use the user from
  the current context�a�Re�_UJan Staněk <jstanek@redhat.com> - 1.4.11-24a���- Limit memory allocated for file descriptors
  Backports https://github.com/cronie-crond/cronie/commit/584911514ce6aa2f16e1d79431bac816ea62cb2c
  Resolves: rhbz#2026289n�QaUMarcel Plch <mplch@redhat.com> - 1.4.11-23\d�- Make cronie restart on failure
- Resolves: rhbz#1651730
j��_�Oj�a�[e�_VJan Staněk <jstanek@redhat.com> - 1.4.11-24a���- Limit memory allocated for file descriptors
  Backports https://github.com/cronie-crond/cronie/commit/584911514ce6aa2f16e1d79431bac816ea62cb2c
  Resolves: rhbz#2026289n�ZaVMarcel Plch <mplch@redhat.com> - 1.4.11-23\d�- Make cronie restart on failure
- Resolves: rhbz#1651730��Ya�WVMarcel Plch <mplch@redhat.com> - 1.4.11-22\l@- Backport upstream patch to fix cron failing on
  smart card authentication
- Resolves: rhbz#1650314{�Xa�VMarcel Plch <mplch@redhat.com> - 1.4.11-21[��- Backport upstream patch to fix -P behavior
- Resolves: rhbz#1536111�3�Wa�VMarcel Plch <mplch@redhat.com> - 1.4.11-20[�
@- Fix race condition when crontab is modified the same second
  before and after reading the crontab
- Resolves: rhbz#1638691i�VeqVTomáš Mráz <tmraz@redhat.com> - 1.4.11-19Y�@- fix URL and source URL of the package (#1501726)
`��.�i�aeqWTomáš Mráz <tmraz@redhat.com> - 1.4.11-19Y�@- fix URL and source URL of the package (#1501726)�*�`e�qWTomáš Mráz <tmraz@redhat.com> - 1.4.11-18Y���- fix regression - spurious PAM log message from crontab (#1479064)
- allow empty variables in crontabs (#1439217)��_e�[WTomáš Mráz <tmraz@redhat.com> - 1.4.11-17Xۡ�- make anacron not to contradict itself in syslog
  (job output does not have to be necessarily mailed)��^e�GWTomáš Mráz <tmraz@redhat.com> - 1.4.11-16X���- disable mail from anacron with empty MAILTO
- crontab: do not block access with PAM when running as root
- improve the crontab man page
- do not hardcode system_u selinux user but use the user from
  the current contexts�]e�WTomáš Mráz <tmraz@redhat.com> - 1.4.11-15V�I�- crontab: use temporary filename properly ignored by crond��\y�AVOndřej Pohořelský <opohorel@redhat.com> - 1.4.11-25d@- Set 'missingok' for /etc/cron.deny to not recreate it on update
- Resolves: rhbz#2059479
�I�,���a�fe�_WJan Staněk <jstanek@redhat.com> - 1.4.11-24a���- Limit memory allocated for file descriptors
  Backports https://github.com/cronie-crond/cronie/commit/584911514ce6aa2f16e1d79431bac816ea62cb2c
  Resolves: rhbz#2026289n�eaWMarcel Plch <mplch@redhat.com> - 1.4.11-23\d�- Make cronie restart on failure
- Resolves: rhbz#1651730��da�WWMarcel Plch <mplch@redhat.com> - 1.4.11-22\l@- Backport upstream patch to fix cron failing on
  smart card authentication
- Resolves: rhbz#1650314{�ca�WMarcel Plch <mplch@redhat.com> - 1.4.11-21[��- Backport upstream patch to fix -P behavior
- Resolves: rhbz#1536111�3�ba�WMarcel Plch <mplch@redhat.com> - 1.4.11-20[�
@- Fix race condition when crontab is modified the same second
  before and after reading the crontab
- Resolves: rhbz#1638691
s�D�*s�3�ka�XMarcel Plch <mplch@redhat.com> - 1.4.11-20[�
@- Fix race condition when crontab is modified the same second
  before and after reading the crontab
- Resolves: rhbz#1638691i�jeqXTomáš Mráz <tmraz@redhat.com> - 1.4.11-19Y�@- fix URL and source URL of the package (#1501726)�*�ie�qXTomáš Mráz <tmraz@redhat.com> - 1.4.11-18Y���- fix regression - spurious PAM log message from crontab (#1479064)
- allow empty variables in crontabs (#1439217)��he�[XTomáš Mráz <tmraz@redhat.com> - 1.4.11-17Xۡ�- make anacron not to contradict itself in syslog
  (job output does not have to be necessarily mailed)��ge�GXTomáš Mráz <tmraz@redhat.com> - 1.4.11-16X���- disable mail from anacron with empty MAILTO
- crontab: do not block access with PAM when running as root
- improve the crontab man page
- do not hardcode system_u selinux user but use the user from
  the current context
���r���h�qikYAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16��py�AXOndřej Pohořelský <opohorel@redhat.com> - 1.4.11-25d@- Set 'missingok' for /etc/cron.deny to not recreate it on update
- Resolves: rhbz#2059479�a�oe�_XJan Staněk <jstanek@redhat.com> - 1.4.11-24a���- Limit memory allocated for file descriptors
  Backports https://github.com/cronie-crond/cronie/commit/584911514ce6aa2f16e1d79431bac816ea62cb2c
  Resolves: rhbz#2026289n�naXMarcel Plch <mplch@redhat.com> - 1.4.11-23\d�- Make cronie restart on failure
- Resolves: rhbz#1651730��ma�WXMarcel Plch <mplch@redhat.com> - 1.4.11-22\l@- Backport upstream patch to fix cron failing on
  smart card authentication
- Resolves: rhbz#1650314{�la�XMarcel Plch <mplch@redhat.com> - 1.4.11-21[��- Backport upstream patch to fix -P behavior
- Resolves: rhbz#1536111
�I�f�w�uk�YIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv�tk�YIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg�siiYAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3�rk�}YIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
�����yk�YAndreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��xk�%YAndreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�wiqYAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p�vi�yYAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
*{�*�p�~i�yZAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew�}k�ZIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv�|k�ZIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg�{iiZAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires��zk�YAndreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
(����(w�k�[Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc�k_ZAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�k�wZAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��k�ZAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��k�ZAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��k�%ZAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�iqZAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����	k�[Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��k�%[Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�iq[Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p�i�y[Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�{�!M�z�k�[Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�
k�7[Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�k_[Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�k�w[Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��
k�[Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�����k�\Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��k�%\Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�iq\Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p�i�y\Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�{�!M�z�k�\Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�k�7\Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�k_\Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�k�w\Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��k�\Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�]Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��k�]Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��k�%]Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�iq]Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{�k�
\Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
V��UV�{�!k�
]Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z� k�]Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�k�7]Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�k_]Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�k�w]Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
WG�6��Wc�'k_^Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�&k�w^Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��%k�^Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��$k�^Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��#k�%^Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5�"k�]Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
�,����q�,k{^Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5�+k�^Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{�*k�
^Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z�)k�^Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�(k�7^Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�{�!M�z�1k�_Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�0k�7_Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�/k__Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�.k�w_Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��-k�_Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�H�n�z�6k�_Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c�5k__Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q�4k{_Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5�3k�_Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{�2k�
_Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142

e�r+��V��:��eD�l�
88400b854d053822b230b8e0402132b7559ddccd811a7abcedeb1406f7bd8cbdD�k�
3f56b1a9c01d9d56c7c61e5e85f89f379f66270b55c609f84ba58194ac11e489D�j�
7b215997f9c81095863133061f447c80e870ef64f74f3d78e13b7f9cbe749027D�i�
efa403ad1b6d2564bce0ec54cef3ee401c15f4282733a928d75bb703119161b5D�h�
56345477656cfcf05709f7ed9a7e36814bd7eda39a49f2d5fc436d774aef8e06D�g�
b6282c4c1e703d703b92a52a9f3959b4a6412072b5923853674734d4920eb1eeD�f�
650ecdc0d3c0f2d221347461dc47da74b9aeb8041326a30662c310db8452c289D�e�
d12d34da150d926afed7f5810b9ebdc562f483d0100cdce78091fd464612301dD�d�
fbcc3e564c6dca446a39edd03f346e88b9881d9d18050e89024d0ff48b46240aD�c�
030d403b90d83c7791ba3ea26cc659f709c596898fbfbd5d5f6e4b737a1293faD�b�
4fa63e9cbed9669fb646f612b5c9371ba7bd3f11e6ce5059f28af1cdc7da0780D�a�
80bfd0e65eafbe59f9079ccbd7a8c303269a333e10aaddfce933c3cc81907c66D�`�
435acde66414134bd505e6658dda39972f87e643ec0169c1f4c59a938280fa39
V��UV�{�;k�
`Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z�:k�`Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�9k�7`Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�8k_`Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�7k�w`Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
�G�m�{��v�Ai�aAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr�@k}`Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z�?k�`Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c�>k_`Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q�=k{`Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5�<k�`Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
H�)�M�+�Hv�Ik�aIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg�HiiaAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3�Gk�}aIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh�FikaAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m�EiuaAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi�DimaAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU�CiEaAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|�Bk�aIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
M�.�R�0�Mv�Qk�bIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg�PiibAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3�Ok�}bIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh�NikbAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m�MiubAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi�LimbAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU�KiEbAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w�Jk�aIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���$�h�UikcAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k�TiqbAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p�Si�ybAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew�Rk�bIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�I�f�w�Yk�cIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv�Xk�cIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg�WiicAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3�Vk�}cIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
�����]k�cAndreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��\k�%cAndreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�[iqcAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p�Zi�ycAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
*{�*�p�bi�ydAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew�ak�dIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv�`k�dIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg�_iidAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires��^k�cAndreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
(����(w�ik�eIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc�hk_dAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�gk�wdAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��fk�dAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��ek�dAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��dk�%dAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�ciqdAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����mk�eAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��lk�%eAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�kiqeAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p�ji�yeAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�{�!M�z�rk�eAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�qk�7eAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�pk_eAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�ok�weAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��nk�eAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�����vk�fAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��uk�%fAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�tiqfAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p�si�yfAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�{�!M�z�{k�fAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�zk�7fAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�yk_fAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�xk�wfAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��wk�fAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�gAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��k�gAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��~k�%gAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�}iqgAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{�|k�
fAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
V��UV�{�k�
gAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z�k�gAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�k�7gAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�k_gAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�k�wgAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
WG�6��Wc�k_hAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�
k�whAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��	k�hAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��k�hAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��k�%hAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5�k�gAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
�,����q�k{hAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5�k�hAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{�k�
hAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z�
k�hAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�k�7hAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�{�!M�z�k�iAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�k�7iAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�k_iAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�k�wiAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��k�iAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�H�n�z�k�iAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c�k_iAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q�k{iAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5�k�iAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{�k�
iAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
V��UV�{�k�
jAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z�k�jAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�k�7jAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc�k_jAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�k�wjAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
�G�m�{��v�%i�kAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr�$k}jAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z�#k�jAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c�"k_jAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q�!k{jAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5� k�jAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
H�)�M�+�Hv�-k�kIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg�,iikAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3�+k�}kIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh�*ikkAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m�)iukAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi�(imkAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU�'iEkAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|�&k�kIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
M�.�R�0�Mv�5k�lIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg�4iilAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3�3k�}lIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh�2iklAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m�1iulAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi�0imlAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU�/iElAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w�.k�kIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���$���9i�/mTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormallyk�8iqlAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p�7i�ylAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew�6k�lIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag

e�r+��V��:��eD�y�
fa6421de2c15921a2e6fedbf4185a77ea6ccb46658a05d2002f389b7e2a8b60eD�x�
a9a856900d5a29d9cf94b7fdac8c07e41ad87194e1b959095cdaa6019f30d4c6D�w�
4613273bfc2c11c9816fb2825af9aeec01ebd5785d69700793afafb364fdfa5bD�v�
7e50ed884e06e8b99632be1537d095f84b2961978088e061936f9dc699a523b1D�u�
ae5e89ffdb193ba77fff5f91338b3087497c816b899809d1d303e53d659e4ea3D�t�
438a67adb5128df187df7f5745a6afe2d244d1571ecaf4159b03356b32a60436D�s�
36577f1cf5cefd40798e73d112856b462b3290fa90abd70553c107f45542a070D�r�
589706b3e3179980b4ac5c2328bf6ff3d88a995174ce4fa64d0ad480965e67c2D�q�
7ac7d7acc2695d1247889b192c63a490c516efb9b8c1309543008402c549f1ebD�p�
73fc0c87cb3098d277406335ceeb029508b87e5d4f5c7d1cc89eeffaf0bc4009D�o�
3da43cb47b5ad18f1ce3f3b8c4d77981a8aeebe7eeafb778c043bdf4d7883d0eD�n�
50988ba783fc21f380b1867ef9c2f3753fc650d74ce1e24f4f3f94a5284b4dbfD�m�
34171e7570b3702011ad6135ba344acf87732fde15fa9714876fa317e1cfd747
N�b��Nk�?komZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212]�>kSmZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��=k�?mZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created�*�<k�kmZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue]�;kSmZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460�:�:k�mZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used
+u�X��+]�EkSnZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460�:�Dk�nZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used��Ci�/nTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormally��Be�#mBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation��Ak�;mZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��@k�%mZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /var
DR�Z�a�D��Le�#nBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation��Kk�;nZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��Jk�%nZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /vark�IkonZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212]�HkSnZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��Gk�?nZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created�*�Fk�knZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue
-q3�%�-]�RkSoZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��Qk�?oZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created�*�Pk�koZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue]�OkSoZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460�:�Nk�oZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used��Mi�/oTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormally
�q�[�:�Xk�pZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used��Wi�/pTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormally��Ve�#oBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation��Uk�;oZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��Tk�%oZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /vark�SkooZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212
k��Z��k��_k�;pZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��^k�%pZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /vark�]kopZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212]�\kSpZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��[k�?pZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created�*�Zk�kpZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue]�YkSpZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460
�y��L��*�dk�kqZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue]�ckSqZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460�:�bk�qZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used��ai�/qTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormally��`e�#pBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation
Uh�y�U��k_�UrTim Waugh <twaugh@redhat.com> - 1.0.35-21U�b@- Fix heap-based buffer overflow in texttopdf filter (bug #1241242,
  CVE-2015-3258, CVE-2015-3279).��je�#qBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation��ik�;qZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��hk�%qZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /vark�gkoqZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212]�fkSqZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��ek�?qZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created
Yw�w�u�Y�!�ri�[rZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^x��- 1816109 - Queues are not cleaned up after stopping cups-browsed
- 1811190 - cups-browsed leaks memoryt�qi�rZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-27]��@- 1775776 - Updated cups-browsed in RHEL 7.7 leaks socketso�piyrZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-26\��@- 1508018 - man pages: wrong links in man cups-browsed��oi�1rZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-25\�@- 1700333 - [abrt] [faf] cups-filters: raise(): /usr/sbin/cups-browsed killed by 6u�ni�rZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-24\��@- fixing covscan issues, backported from upstream - 1485502��mi�!rZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-23\mA@- 1485502 - Rebase cups-browsed to latest version in upstream cups-filters��li�#rZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-22X�	@- 1427690 - /usr/lib/cups/filter/pstopdf: line 17: which: command not found
=��V�E�=��yi�1sZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-25\�@- 1700333 - [abrt] [faf] cups-filters: raise(): /usr/sbin/cups-browsed killed by 6u�xi�sZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-24\��@- fixing covscan issues, backported from upstream - 1485502��wi�!sZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-23\mA@- 1485502 - Rebase cups-browsed to latest version in upstream cups-filters��vi�#sZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-22X�	@- 1427690 - /usr/lib/cups/filter/pstopdf: line 17: which: command not found��u_�UsTim Waugh <twaugh@redhat.com> - 1.0.35-21U�b@- Fix heap-based buffer overflow in texttopdf filter (bug #1241242,
  CVE-2015-3258, CVE-2015-3279).��ti�CrZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-29b��@- 1894301 - cups-browsed segfaults when accessing freed master queue in print queue clusterq�si}rZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^y�@- 1812635 - RHEL 7.7. cups-browsed segfaults on shutdown
?�r�e�?��i�#tZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-22X�	@- 1427690 - /usr/lib/cups/filter/pstopdf: line 17: which: command not found��_�UtTim Waugh <twaugh@redhat.com> - 1.0.35-21U�b@- Fix heap-based buffer overflow in texttopdf filter (bug #1241242,
  CVE-2015-3258, CVE-2015-3279).��~i�CsZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-29b��@- 1894301 - cups-browsed segfaults when accessing freed master queue in print queue clusterq�}i}sZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^y�@- 1812635 - RHEL 7.7. cups-browsed segfaults on shutdown�!�|i�[sZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^x��- 1816109 - Queues are not cleaned up after stopping cups-browsed
- 1811190 - cups-browsed leaks memoryt�{i�sZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-27]��@- 1775776 - Updated cups-browsed in RHEL 7.7 leaks socketso�ziysZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-26\��@- 1508018 - man pages: wrong links in man cups-browsed
nxp���nq�i}tZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^y�@- 1812635 - RHEL 7.7. cups-browsed segfaults on shutdown�!�i�[tZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^x��- 1816109 - Queues are not cleaned up after stopping cups-browsed
- 1811190 - cups-browsed leaks memoryt�i�tZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-27]��@- 1775776 - Updated cups-browsed in RHEL 7.7 leaks socketso�iytZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-26\��@- 1508018 - man pages: wrong links in man cups-browsed��i�1tZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-25\�@- 1700333 - [abrt] [faf] cups-filters: raise(): /usr/sbin/cups-browsed killed by 6u�i�tZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-24\��@- fixing covscan issues, backported from upstream - 1485502��i�!tZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-23\mA@- 1485502 - Rebase cups-browsed to latest version in upstream cups-filters
?g�A�A�?o�iyuZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-26\��@- 1508018 - man pages: wrong links in man cups-browsed��
i�1uZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-25\�@- 1700333 - [abrt] [faf] cups-filters: raise(): /usr/sbin/cups-browsed killed by 6u�i�uZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-24\��@- fixing covscan issues, backported from upstream - 1485502��i�!uZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-23\mA@- 1485502 - Rebase cups-browsed to latest version in upstream cups-filters��
i�#uZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-22X�	@- 1427690 - /usr/lib/cups/filter/pstopdf: line 17: which: command not found��	_�UuTim Waugh <twaugh@redhat.com> - 1.0.35-21U�b@- Fix heap-based buffer overflow in texttopdf filter (bug #1241242,
  CVE-2015-3258, CVE-2015-3279).��i�CtZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-29b��@- 1894301 - cups-browsed segfaults when accessing freed master queue in print queue cluster
)��p�:�)��i�!vZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-23\mA@- 1485502 - Rebase cups-browsed to latest version in upstream cups-filters��i�#vZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-22X�	@- 1427690 - /usr/lib/cups/filter/pstopdf: line 17: which: command not found��_�UvTim Waugh <twaugh@redhat.com> - 1.0.35-21U�b@- Fix heap-based buffer overflow in texttopdf filter (bug #1241242,
  CVE-2015-3258, CVE-2015-3279).��i�CuZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-29b��@- 1894301 - cups-browsed segfaults when accessing freed master queue in print queue clusterq�i}uZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^y�@- 1812635 - RHEL 7.7. cups-browsed segfaults on shutdown�!�i�[uZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^x��- 1816109 - Queues are not cleaned up after stopping cups-browsed
- 1811190 - cups-browsed leaks memoryt�i�uZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-27]��@- 1775776 - Updated cups-browsed in RHEL 7.7 leaks sockets
]���j�]��i�CvZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-29b��@- 1894301 - cups-browsed segfaults when accessing freed master queue in print queue clusterq�i}vZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^y�@- 1812635 - RHEL 7.7. cups-browsed segfaults on shutdown�!�i�[vZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-28^x��- 1816109 - Queues are not cleaned up after stopping cups-browsed
- 1811190 - cups-browsed leaks memoryt�i�vZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-27]��@- 1775776 - Updated cups-browsed in RHEL 7.7 leaks socketso�iyvZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-26\��@- 1508018 - man pages: wrong links in man cups-browsed��i�1vZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-25\�@- 1700333 - [abrt] [faf] cups-filters: raise(): /usr/sbin/cups-browsed killed by 6u�i�vZdenek Dohnal <zdohnal@redhat.com> - 1.0.35-24\��@- fixing covscan issues, backported from upstream - 1485502
-q3�%�-]�"kSwZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��!k�?wZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created�*� k�kwZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue]�kSwZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460�:�k�wZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used��i�/wTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormally
�q�[�:�(k�xZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used��'i�/xTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormally��&e�#wBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation��%k�;wZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��$k�%wZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /vark�#kowZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212
k��Z��k��/k�;xZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��.k�%xZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /vark�-koxZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212]�,kSxZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��+k�?xZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created�*�*k�kxZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue]�)kSxZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460of
flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������'��,��1��6��;��A��I��Q��U��Y��]��b��i��m��r��v��{����������������%��-��5��9��?��E��L��R��X��_��d��k��r��y����������±"ñ(ı/Ʊ4Ǳ;ɱAʱF˱ṈTͱ[α`ϱeбjѱoұtӱyԱ~ղֲײ
زٲڲ۲!ܲ&ݲ+޲0߲5�:�?�D�I�N�S�X�]�b�g�l�q�v�{���
�������#��(��-��2��8��<��A��E��J�N�T�X�^�b�h�o�v�|	�
�y��L��*�4k�kyZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue]�3kSyZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460�:�2k�yZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used��1i�/yTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormally��0e�#xBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation
ch�y�c��;i�/zTomas Korbar <tkorbar@redhat.com> - 1:1.6.3-43]L�- 1687571 - cupsd doesn't clean tmp files if client conn is terminated abnormally��:e�#yBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation��9k�;yZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��8k�%yZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /vark�7koyZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212]�6kSyZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��5k�?yZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created

e�r+��V��:��eD��
4a53adae3dd3a8d933f2ec113b7303ce7d9c782edd612d17b8d3badf4c04167eD��
46ac94286722fc2f6f68ec4c0e70152b3d1ff6fac6001d2155f8228d91126574D��
816c816facf8421458376b99f244ef91c147063ed4f4955fd0e8dae62eccaeb8D��
c75dd0b94b1e1300b04edfbfa5a3739573a6f83dc0737110d2f8cfedfc5ab7a2D��
da2b0ffc968803d239f38444842e6792e85494901ff8d0075652f6c2d7aa1800D��
46f713cd31041330e2739c5a644e4f598536096f3e39d6c667a6d044eaa87893D��
b2e43341cc469f66b5495139b62a419c0c671b19535efcdc79df055cc43686e5D��
cf7edef3f54d6a2816515812d2f679ae21bbfb26767bf64e34b73d19a3bce3aeD�~�
8180d23815951b3c5be397846577728116502dad35bbc2dd67b7c4188244e465D�}�
5a07757ffcab76dc74eef1e1537c4ea823f723bae2c05ab1dd29679d95478db1D�|�
a979b1653b72f0551faf8fa54eed42be4d51511d962ed09d02ece63f2402d5f7D�{�
dfc95bdd8057839d4b45153318acb4e09f4da257afee1c57c07781870a68ecefD�z�
c9fd3024d128c4accf8a1b5a9b3207e10e714a336f6fe04b88a1d557e2bc7a24
N�b��Nk�AkozZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-49^F��- more covscan issues raised from the fix 1672212]�@kSzZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-48^F��- fixing covscan issue from 1672212��?k�?zZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-47^F��- 1672212 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created�*�>k�kzZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-46^B�@- 1715907 - CUPS- client: cupsGetPPD3() function tries to load PPD from IPP printer and not from the CUPS queue]�=kSzZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-45^;��- fixing covscan issue from 1774460�:�<k�zZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-44^8@- 1774460 - CVE-2019-8696 cups: stack-buffer-overflow in libcups's asn1_get_packed function [rhel-7]
- 1774461 - CVE-2019-8675 cups: stack-buffer-overflow in libcups's asn1_get_type function [rhel-7]
- 1753809 - Settings in ~/.cups/client.conf aren't used
Au�X�A�	�Fc�1{Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)��Ec�+{Kamil Dudka <kdudka@redhat.com> - 7.29.0-51[j�@- require a new enough version of nss-pem to avoid regression in yum (#1610998)��De�#zBryan Mason <bmason@redhat.com> - 1:1.6.3-52d�h�- CVE-2023-32360 cups: Information leak through Cups-Get-Document operation��Ck�;zZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-51^���- 1823758 - CVE-2017-18190 cups: DNS rebinding attacks via incorrect whitelist [rhel-7]��Bk�%zZdenek Dohnal <zdohnal@redhat.com> - 1:1.6.3-50^{G�- 1813413 - [RHEL 7.7] segfault in cupsdSaveJob() caused by no space in /var
6��)�7�6v�Ns}{Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)��Mc�'{Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)��Lc�%{Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)h�Kcq{Kamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|�Jc�{Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h�Icq{Kamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j�Hcu{Kamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}�Gc�{Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)
1s���1h�Tcq|Kamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|�Sc�|Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h�Rcq|Kamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j�Qcu|Kamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}�Pc�|Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)�	�Oc�1|Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)
�y�x�j�N�[a?}Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�Zci}Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�Yio}Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)��Xw�E|Jacek Migacz <jmigacz@redhat.com> - 7.29.0-59.el7_9.2eJ&�- fix HTTP proxy deny use after free (CVE-2022-43552)
- rebuild certs with 2048-bit RSA keysv�Ws}|Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)��Vc�'|Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)��Uc�%|Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)
*�s��*n�`c}}Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�_cc}Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�^_�}Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��]c�#}Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��\_�)}Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�ea?~Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�dci~Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�cio~Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�b]o}Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�acg}Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�jc}~Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�icc~Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�h_�~Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��gc�#~Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��f_�)~Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�oa?Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�nciHonza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�mioPetr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�l]o~Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�kcg~Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�tc}Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�sccJakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�r_�Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��qc�#Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��p_�)Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�ya?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�xci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�wio�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�v]oSimo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�ucgJakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�~c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�}cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�|_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��{c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��z_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�
a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�
]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�	cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�!a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d� ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�&c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�%cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�$_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��#c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��"_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�+a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�*ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�)io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�(]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�'cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�0c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�/cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�._��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��-c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��,_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�5a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�4ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�3io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�2]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�1cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�:c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�9cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�8_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��7c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��6_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�?a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�>ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�=io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�<]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�;cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)

e�r+��V��:��eD��
d008be734234764be6a4c1b2f1c97cad53b746ecc9d1086444715833c6eb8450D��
9fc8f4ae81c019b16a882823948eff561fe0f6ad38be509f514a5c287a60d121D��
b1fa72dca82442418098746eaa9881ac7e92678c41e6786a458c28d77235fd5eD��
4fc0e17577976ecf2487198134b9f2656bdc36caf8e27c75efb6aff14204088eD��
925078e3fe326e7212b074bf495287d0fafc0395d9657b439a01b27d1539037eD��
c960158be24b783ab7fb4a317899b83f806692c1e48426fe46c6bee909357ee5D�
�
5a42bda7621305ca3bcd588a0c84aac743aba372ea8ee558945564b62173e3f3D��
995c318e872c57fa7ce17355320c34d3fdd0774343e691cc23d9e9215ad53931D��
94d6c80d9b08af719fa8a5e007bf753a3f13406d99bcd8411d914c6115c3b571D�
�
c92bf980488dff6128c5564f2f75712ccb2a9a0f859f4667af435f967eef4c45D�	�
ffcf7016d990141a16d89aca74ebc89f797e93581bb8c97a08c83f5bf4ae47e4D��
e1d065bfaef705d407c6134352d1afc64ecf26a5970a0e5282f6dda745483db8D��
4579c7a7925097881dd33b28c72cce227a024a5f071fa4cd0c5bb09cd76d8ec0
*�s��*n�Dc}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�Ccc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�B_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��Ac�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��@_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�Ia?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�Hci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�Gio�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�F]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�Ecg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�Nc}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�Mcc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�L_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��Kc�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��J_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�Sa?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�Rci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�Qio�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�P]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�Ocg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�Xc}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�Wcc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�V_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��Uc�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��T_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�]a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�\ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�[io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�Z]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�Ycg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�bc}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�acc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�`_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��_c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��^_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�ga?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�fci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�eio�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�d]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�ccg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�lc}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�kcc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�j_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��ic�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��h_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�qa?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�pci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�oio�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�n]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�mcg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�vc}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�ucc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�t_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��sc�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��r_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�{a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�zci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�yio�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�x]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�wcg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�~_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��}c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��|_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�
c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�	cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�
io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�#a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�"ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�!io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d� ]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�(c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�'cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�&_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��%c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��$_�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
�3�_N�-a?�Daniel Mach <dmach@redhat.com> - 2.1.26-17R�U�- Mass rebuild 2014-01-24d�,ci�Honza Horak <hhorak@redhat.com> - 2.1.26-16R�x@- Rebuild for mariadb-libs
  Related: #1045013j�+io�Petr Lautrbach <plautrba@redhat.com> 2.1.26-15R�&�- compile cyrus-sasl with -O3 on ppc64 (#1051063)d�*]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�)cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
*�s��*n�2c}�Jakub Jelen <jjelen@redhat.com> - 2.1.26-22Yé�- Allow cyrus sasl to get the ssf from gssapi (#1431586)a�1cc�Jakub Jelen <jjelen@redhat.com> - 2.1.26-21X�O@- support proper SASL GSS-SPNEGO (#1421663)q�0_��Jakub Jelen <jjelen@redhat.com> 2.1.26-20Va�@- GSSAPI: Use per-connection mutex where possible (#1263017)��/c�#�Jakub Jelen <jjelen@redhat.com> 2.1.26-19.2U���- Revert tmpfiles.d and use new systemd feature RuntimeDirectory (#1188065)��._�)�Jakub Jelen <jjelen@redhat.com> 2.1.26-18U\w@- Revert updated GSSAPI flags as in RFC 4752 to restore backward compatibility (#1154566)
- Add and document ability to run saslauth as non-root user (#1188065)
- Support AIX SASL GSSAPI (#1174322)
- Update client library to be thread safe (#1147659)
- Fix problem, that parsing short prefix matches the whole mechanism name (#1089267)
- Don't use unnecessary quotes around user description (#1082564)
- Fix confusing message when config file has typo (#1022479)
K�3���K�	�8[�9�Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348�?�7[�%�Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441�)�6W�}�Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h�5[y�Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320d�4]o�Simo Sorce <simo@redhat.com> - 2.1.26-24b8�- Fix for CVE-2022-24407
- Resolves: rhbz#2055842c�3cg�Jakub Jelen <jjelen@redhat.com> - 2.1.26-23Zf�- Avoid undefined symbols on s390x (#1516193)
C^��C��<_�9�Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383�4�;_��Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405�P�:_�C�Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153��9_�_�Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481
���c��?�A[�%�Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441�)�@W�}�Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h�?[y�Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320��>_�#�Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~�=_��Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199

e�r+��V��:��eD� �
917535cc1bccdcfa4383143cc52d13f8fd161a5ec8f1037f606123737f818acfD��
39c70285432c56fe5dd79f0d155069d48956d10fcdcac838a4590c4a44b0b521D��
88e796afa3934d3cefb09a6a575714bdc8aede8ee6a3c6b7be0bb59a130d5efdD��
cab18530e297449d292d630ec6e205013f25a4889616836298778283e58c4646D��
e5b4fe58bfeb115113e7edd7fb472941f60801137b90d42e57b06b22865ac47dD��
a18e979a837324a9730fc3e5b08e4f228f22d46c20c0a6445f7147444b8449c3D��
2ed2fcd8e79d8a62a374c054083792b657cb4d4668e39188deeb1ad3d72c948fD��
d7480f6ca0e1f89838274cae938826c82a1a691a1f3fa5dc9b3eda6662d64f7bD��
dd427ef9920f27966d5b507f154c88d80a03bc944b494a89f98eae387f25e950D��
b063de6c9fdc361af76d98bb3d3b31fd5ee05e120f1dc64f9ddfe77217c012c6D��
3f1d1aaf2ad1912b72db538da9e7a824ec1beb3f7eceb8da6ab8b296c810b913D��
8c8d68b411cf4b1553f6d61ec9e5e792aab640f1b6ce5645df2f4da01896ad23D��
8e01728503e8663cde52ff2eb87bcbcd9a04b60fa17e1729dc2658f1cce309dc
Es��E�4�E_��Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405�P�D_�C�Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153��C_�_�Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481�	�B[�9�Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348
�q�l��)�JW�}�Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h�I[y�Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320��H_�#�Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~�G_��Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199��F_�9�Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383
:=�:�P�N_�C�Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153��M_�_�Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481�	�L[�9�Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348�?�K[�%�Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441
H�8�I�)�TW�}�Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h�S[y�Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320��R_�#�Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~�Q_��Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199��P_�9�Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383�4�O_��Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405
:=�:�P�X_�C�Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153��W_�_�Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481�	�V[�9�Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348�?�U[�%�Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441
H�8�I�)�^W�}�Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h�][y�Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320��\_�#�Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~�[_��Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199��Z_�9�Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383�4�Y_��Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405
:=�:�P�b_�C�Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153��a_�_�Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481�	�`[�9�Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348�?�_[�%�Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441
'H�8��'��h{��David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 9.49.46-1[�@- ifup-post: fix incorrect condition for RESOLV_MODS (bug #1610411)��g{��David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 9.49.45-1[W�- network: parsing of /proc/mounts returned (bug #1572659)
- netconsole: LSB header added (bug #1508489)
- ifdown-eth: no longer needed 'pidof -x dhclient' condition removed (bug #1559384)��f_�#�Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~�e_��Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199��d_�9�Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383�4�c_��Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405
+���&�+c�oai�Jan Macku <jamacku@redhat.com> - 9.49.53-1^Ǿ�- rwtab: Add support for chrony (bug #1838260)��na�C�Jan Macku <jamacku@redhat.con> - 9.49.52-1^�x�- ifup-eth: Switch to bc utility, which supports floating point computations (bug #1609687)Z�maW�Jan Macku <jamacku@redhat.com> - 9.49.51-1^r
@- Fix inline comment - (bug #1773798)��la�C�Jan Macku <jamacku@redhat.com> - 9.49.50-1^h�- Wait for scope link addresses as well as for scope global addresses - ipv6 (bug #1773798)��ka�]�Jan Macku <jamacku@redhat.com> - 9.49.49-1]Z�@- ifup-eth: Check that device name is set (bug #1741830)
- Add option for IPv6 GRE tunnel (bug #1691552)�a�ja�c�Jan Macku <jamacku@redhat.com> - 9.49.48-1]Ik�- network: don't fail with IFDOWN_ON_SHUTDOWN (bug #1693977)
- Configure autorelabel service to output to journal and to console if set (bug #1634661)
- Fix changelog typo^�ia_�Jan Macku <jamacku@redhat.com> - 9.49.47-1\��- Fix file permissions for /var/log/dmesg
}��	|�}c�vsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��us�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�ts�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��ss�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�rsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m�q�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.n�pqo�Jan Macku <jamacku@redhat.com> - 9.49.53-1.el7_9.1_���- rwtab: Allow updating mlocate.db (bug #1880095)
nr��n��|s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�{su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
�z���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�y���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��x���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�ws�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.
�s�t�[��Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��~s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�}s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.
@r�Z�4�@�
�	s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t��g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.
du���dm��Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t�
�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��
���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.
E��]�^�E�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.
�+�-���	�s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�gs���
�"���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�!���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.�� ���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
E��]�^�E��)���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�(s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�'sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��&s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�%s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��$s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�#su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.
�+�&���	�/s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��.s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�-su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.t�,�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�+���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�*���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�gs���
�5���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�4���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��3���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�2s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�1sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��0s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
C��[�\�C��<���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�;s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�:sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��9s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�8s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��7s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t�6�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
1+�&_�1�	�Bs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��As�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.�C�@���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t�?�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�>���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�=���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.

e�r+��V��:��eD�-�
12fb546150a8175c1aa95419a75e512972cb4c6c8eea1ade84e3319b1cfadaeaD�,�
c8f7c98bcb2f070e4421790cc39453b0046912b5c8325ad6660342177869da6eD�+�
e3048df9af89b5496455f0ad788ff0b492712c8c06683cf6f908894638139c9fD�*�
a7f93d258bd14e3d81be8c58b2998d78081d84b5f8f763c1bff64b3571ca321eD�)�
dabd6fc3fcccc9d794b28168afdd8fb94f2d78fda10a5751459cee469f8412d4D�(�
0986dce8e3a59471cabc7ed457e23c3f0fdc81e3cbab4093eaa0426e2d5d26efD�'�
3feced91f7391352cfca0debae0c2aa43febbeee7d24929c75cd8d1d5a6b782eD�&�
06a5cb180f3ca29cdae7dd9547b29c30079ef85e1809389608777308ad5e4c3aD�%�
9e77aa7192e0e6ca06b1a23c5e174410e0034b59dedc6cc1edf7458486f920edD�$�
23c887a392429ec463dea994475481a04b8745d5f29926c149d6f3f48c5ebde0D�#�
96abc02747879aa68bd335dadad5f1e2d5ea64c519db929820194757e80af933D�"�
4c4e8afba69331a45497c224ebaa7b237c5e25c3fa2dba00bb45fa49fc41aed8D�!�
af5e8ccb9d54f4f9b71774537a4c1e69aad8ae1b83815d24f5930bb72e20d0f8
�gs���
�H���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�G���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��F���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�Es�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�DsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��Cs�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
��R�<���Os�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�Ns�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��Ms�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�Lsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m�K�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C�J���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t�I�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
�����r�Usu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
�T���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�S���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��R���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�Qs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�PsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
�_�9�E���[���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�Zs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�YsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��Xs�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�Ws�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��Vs�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
_+�&��_��as�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�`s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��_s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t�^�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�]���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�\���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�����t�g�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�f���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�e���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��d���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�cs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�bsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
'9�T�&�'c�nsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��ms�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�ls�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��ks�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�jsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m�i�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C�h���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.
�r���r�tsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m�s�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�
�r���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�q���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��p���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�os�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.
�_�9�E���z���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�ys�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�xsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��ws�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�vs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��us�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
a+�(��a��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��~s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�}su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
�|���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�{���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
2����2r�su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.t��g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
�_�9�E���
���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��
s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�	s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
_+�&��_��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t��g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�����t��g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
~9�r~�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.�C����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.
du���dm�%�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C�$���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t�#�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�"���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�!���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.�� ���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.
E��]�^�E��,���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�+s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�*sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��)s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�(s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��'s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�&su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.
�+�-���	�2s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��1s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�0su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m�/�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�
�.���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�-���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�gs���
�8���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�7���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��6���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�5s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�4sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��3s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
E��]�^�E��?���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�>s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�=sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��<s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�;s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��:s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�9su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.
�+�&���	�Es�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��Ds�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�Csu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.t�B�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�A���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�@���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.

e�r+��V��:��eD�:�
3c12cdb5717ff04a0dcf949d40ddef5d878342fe63c8cf26ece6f2f0f56c9075D�9�
1594da41bb4b69a611ac9e605dec625b69dd2f867a53943a544a8babfb76594cD�8�
0cfe90113fcfe21d6f21f6022481283b9b35ca916c02484fc39e89b88fcffa8aD�7�
43561875a5de2607f06bea160d4eb38c49eb95d2de1193d32c75d69bbef928deD�6�
a3db401db86968bf26b166686f43ca87a750990d0b9e46fad7c8f63e89052035D�5�
a12a8a2185579f6577042b3b9876e89a3c3c99ff67c168c0388c79d64d4d9854D�4�
40ebdc19d1f43fa0892059019bcdba4bd97351c6d146ef74e530e00dc4732c4cD�3�
85c0d75554f340d99942609a8488c0ad5b2e4ddc0e40c1192056ab8ab8395492D�2�
1cb65029ad75fd77a7975a1a11ecf00d33c40ae006a565c6b49188cb7f9eb6ccD�1�
c5ef38f748c2f2a1c21e14d6274fec8b3391722d8c6c93cdd5f977075f798d88D�0�
6cbada440eaf05d5c86416fab118a0ab641f93992a6a4070b19938894fcb8bbbD�/�
01a6f6a9a36d8203819ae336a672955e40e9b1c9cf387d5ccd0942ebea8c147aD�.�
68e1429d8531b268902804fdf15f6eb8ffcadc2d36315c6090a3edb14eb2ab13
�gs���
�K���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�J���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��I���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�Hs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�GsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��Fs�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
C��[�\�C��R���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�Qs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�PsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��Os�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�Ns�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��Ms�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t�L�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
1+�&_�1�	�Xs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��Ws�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.�C�V���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t�U�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�T���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�S���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�gs���
�^���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�]���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��\���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�[s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�ZsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��Ys�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
��R�<���es�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�ds�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��cs�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�bsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m�a�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C�`���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t�_�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
9����9r�lsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m�k�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�
�j���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�i���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��h���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�gs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�fsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
�_�9�E���r���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�qs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�psW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��os�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�ns�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��ms�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
a+�(��a��xs�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�ws�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��vs�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�usu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
�t���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�s���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
2����2r�su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.t�~�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�}���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�|���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.��{���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�zs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�ysW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
�_�9�E������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
_+�&��_��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�
s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��	s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t��g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�����t��g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
�
s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
~9�r~�
�s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c�sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.��s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	�s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.��s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.�C����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.
�u����C����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t��g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.
��C���q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556��q�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651��q�K�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651
MM�/� q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506of~flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������
��"�)�/�5�<�B�H�O�U�[�a�g�n�t�z�� �
!�"�#�$�%%�,&�2'�8(�?)�E+�K,�R-�X.�^/�e0�l1�r2�x3�4�5�6�7�8�9�:� <�#=�'>�(?�)@�,A�0B�1C�2D�5E�:F�=G�>H�AI�EK�GL�HM�KN�OO�PP�QQ�TR�YS�ZT�[U�^V�bW�cX�dY�gZ�l[�m\�n]�q^�v_�y`�za�}b�c�d�e�f�g�h�
i�j�k�l�m�n�o�p� q�#r�(s�)t�*u�-v�2w�5x�6y�9z�={�>|�?}�B
�Q��0�#q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�"q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�!q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
$,@�$��'q�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651}�&q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�%q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�$q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��(q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�)q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�,q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�+q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�*q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
&,@�&��0q�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�/q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�.q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�-q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��1q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�2q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�5q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�4q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�3q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@�&���:q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905��9q�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�8q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�7q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�6q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
��C���=q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556��<q�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651��;q�K�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651
MM�/�>q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�Aq�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�@q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�?q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@����Eq�K�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651}�Dq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�Cq�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�Bq�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420

e�r+��V��:��eD�G�
3d901cc9a4697e9c08105de93d1a190650a8439e1dabe11a97d17c67cd1d951cD�F�
09d536dbeed2bb97193afabb9564cc6e6def3636f719ed0e3bbb8c0e575f7033D�E�
c1769c3e3380140052696701ca6809cb191ea6c245caf1c658a1b8bc580f13baD�D�
393b6f38ca21b31f198eb40d2fbdecb79a43ca0306ac436c4ebcc4fc8a15043aD�C�
61772a9e48d677eb7feb9225da4fdbfa417f99764a26adf0ba4e311baad2696cD�B�
ec4cb2d5a569d854ac525bd458045223e598500765770d860e5bf0b84a41767bD�A�
fe463cbf93e98cd763c89bf55103a9c84e8d48e998eb06542fe3e3fb72a10dd9D�@�
34ff7de8a4ca78de046e416a969184543fb961e44c8500ad933f5d0d9d71bdb4D�?�
1333d18f0d5f36acf0badba03a7250ddf92df7f789f4674ece2dfcfcd925f3b3D�>�
8bf0a6fa452bb777d2800beaf0ba2e84f3dd1b17964e1b1bb26b099bcd5ba413D�=�
49c502046e8fd1833a810286c8db37a87f18dc47667827f45a56267aefdac60fD�<�
973cf0ccc163c9374db09502b1e69f3323abc0960eca2ad66bfae874ac23d131D�;�
4800c473b78c5271f956b53fa3f8a3f696c8b2709fa3afd5457178a5946300eb
�d���Gq�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556��Fq�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651
MM�/�Hq�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�Kq�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�Jq�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�Iq�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
$,@�$��Oq�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651}�Nq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�Mq�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�Lq�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��Pq�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�Qq�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�Tq�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�Sq�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�Rq�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@�&���Yq�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651��Xq�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�Wq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�Vq�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�Uq�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��Zq�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�[q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�^q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�]q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�\q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
&,@�&��bq�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�aq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�`q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�_q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��cq�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�dq�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�gq�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�fq�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�eq�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@�&���lq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905��kq�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�jq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�iq�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�hq�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��mq�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�nq�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�qq�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�pq�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�oq�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@�&���vq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905��uq�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�tq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�sq�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�rq�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
��C���yq�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556��xq�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651��wq�K�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651
MM�/�zq�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�}q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�|q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�{q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@����q�K�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651}�q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�~q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
�d���q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556��q�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651
MM�/�q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
$,@�$��q�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651}�
q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�	q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�
q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@�&���q�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651��q�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
&,@�&��q�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/� q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�#q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�"q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�!q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@�&���(q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905��'q�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�&q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�%q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�$q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��)q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�*q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�-q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�,q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�+q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@�&���2q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905��1q�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�0q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�/q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�.q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
��C���5q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556��4q�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651��3q�K�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651
MM�/�6q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�9q�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�8q�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�7q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
$,@�$��=q�A�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651}�<q��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�;q�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�:q�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
qq��>q�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�?q�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�Bq�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�Aq�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�@q�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
&,@�&��Fq�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�Eq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�Dq�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�Cq�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420

e�r+��V��:��eD�T�
7f4ef7b8732bcac3d9fd39fa13b53c8401e618cc64cf7e86b46a6a0bf9f5ae93D�S�
211c26bfbf530d58f28b3bff1ac40338e642a96b7252fd6857fcb26e533c5790D�R�
bfebf9b332bfdd37851d0e28304a7388d0da7c5c2ba905903d1294494041b80bD�Q�
30c56f4f794204c049aed74f749c3b0b0739f232b66c48497f125252af988405D�P�
b1b8c61d7f414e0bff5b987279a268865b3400e4618cc614c0e2852dd52aef50D�O�
31e1c574e3fa3fef3b015e2b2e1d685b860a8b96e7151d331b9ef708986965c3D�N�
33747e3cee335e0df270058b70d2ce33f91cadb372c26e1a24641083294b45b2D�M�
a288bfc4e0cabe06d845847deb1b0bbdf10a01f9707476ebbf61f3bc2e99e2a0D�L�
2d5e71a837c196e47d9d4ea6dfd48be8ec78faaf662f54465992a8340399b0ccD�K�
35b3f04497e7cd33947d10c42841c8a302879e0665aff842a760e318a83d90aaD�J�
33fa2846ccf25385f17ff97c1999aeae26f83868dcd26164e5524c4255cb1ce1D�I�
31cb8b4500b30fc437c8e439643e9d1afd49b8c687a8be5c9b39c44c31f51d44D�H�
fce2a6c0ec49c42d5100944108bbb85b8a3e2685de9b583b1b4627e6f66b330e
qq��Gq�'�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
MM�/�Hq�o�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�Q��0�Kq�q�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6�Jq�}�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q�Iq�s�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�,@�&���Pq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905��Oq�=�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}�Nq��Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h�Mq�a�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P�Lq�1�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
")�S�i��"[�XiQ�Marian Csontos <mcsontos@redhat.com> - 0.8.5-3^���- Check input file exists earlier.y�Wi��Marian Csontos <mcsontos@redhat.com> - 0.8.5-2]��@- Remove obsolete pool-inactive option from thin_trim man page.j�Vio�Marian Csontos <mcsontos@redhat.com> - 0.8.5-1\�F@- Additional fixes for thin_dump and thin_repair.j�Uio�Marian Csontos <mcsontos@redhat.com> - 0.8.2-1\��@- Fix tools requiring additional --repair option.z�Ti�
�Marian Csontos <mcsontos@redhat.com> - 0.8.1-1\�~�- Update to latest upstream release including various bug fixes.n�Siw�Marian Csontos <mcsontos@redhat.com> - 0.7.3-3Z
�- Fix version 2 metadata corruption in cache_restore.b�Ri_�Marian Csontos <mcsontos@redhat.com> - 0.7.3-2Yܶ@- Rebuilding with updated source tarball.�S�Qi�?�Marian Csontos <mcsontos@redhat.com> - 0.7.3-1Y�p@- Update to latest bugfix and documentation update release.
- *_restore tools wipe superblock as a last resort.
- Add thin_check --override-mapping-root.
)v���)��`k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�_ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�^k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�]k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��\k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase��[k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-75\}@- Resolves: #1672308 - Do not restart dhcp on NetworkManagers up eventsX�Zy;�Marian Csontos <mcsontos@redhat.com> - 0.8.5-3.el7_9.2_h��- Rebuild for Z stream.��Yy��Marian Csontos <mcsontos@redhat.com> - 0.8.5-3.el7_9.1_a�@- Underpopulated nodes are considered non fatal error by thin_check.
��-�w�{��k�hko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�gk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�fk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��ek��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase\�d}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.1`��@- Roll in CentOS BrandingT�co=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�bk=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�ak�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode
m|��R�w�m��pk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase��ok��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-75\}@- Resolves: #1672308 - Do not restart dhcp on NetworkManagers up events\�n}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.2ff�- Roll in CentOS Brandingy�mi��Stepan Broz <sbroz@redhat.com> - 12:4.2.5-83.2fM�@- Rebuild because of bind ABI changes related to CVE-2023-50387T�lo=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�kk=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�jk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��ik��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objects
��
��E��\�x}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.1`��@- Roll in CentOS BrandingT�wo=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�vk=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�uk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��tk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�sko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�rk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�qk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib
j|���jT�o=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�k=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�~k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��}k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�|ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�{k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�zk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��yk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase
3�%��%�3��k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase��k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-75\}@- Resolves: #1672308 - Do not restart dhcp on NetworkManagers up events\�}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.2ff�- Roll in CentOS Brandingy�i��Stepan Broz <sbroz@redhat.com> - 12:4.2.5-83.2fM�@- Rebuild because of bind ABI changes related to CVE-2023-50387
��-�w�{��k�ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��
k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase\�}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.1`��@- Roll in CentOS BrandingT�o=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�
k=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�	k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode
m|��R�w�m��k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase��k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-75\}@- Resolves: #1672308 - Do not restart dhcp on NetworkManagers up events\�}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.2ff�- Roll in CentOS Brandingy�i��Stepan Broz <sbroz@redhat.com> - 12:4.2.5-83.2fM�@- Rebuild because of bind ABI changes related to CVE-2023-50387T�o=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�k=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objects
��
��E��\� }?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.1`��@- Roll in CentOS BrandingT�o=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�k=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib
;z�~��;R�(k=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�'k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��&k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�%ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�$k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�#k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��"k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase��!k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-75\}@- Resolves: #1672308 - Do not restart dhcp on NetworkManagers up events
`�J�N�b�`{�0k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��/k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�.ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�-k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�,k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��+k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase\�*}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.1`��@- Roll in CentOS BrandingT�)o=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217
��T�y�}��k�8ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�7k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�6k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��5k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase\�4}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.2ff�- Roll in CentOS Brandingy�3i��Stepan Broz <sbroz@redhat.com> - 12:4.2.5-83.2fM�@- Rebuild because of bind ABI changes related to CVE-2023-50387T�2o=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�1k=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696
m|��R�w�m��@k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase��?k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-75\}@- Resolves: #1672308 - Do not restart dhcp on NetworkManagers up events\�>}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.2ff�- Roll in CentOS Brandingy�=i��Stepan Broz <sbroz@redhat.com> - 12:4.2.5-83.2fM�@- Rebuild because of bind ABI changes related to CVE-2023-50387T�<o=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�;k=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�:k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��9k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objects
��
��E��\�H}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.1`��@- Roll in CentOS BrandingT�Go=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�Fk=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�Ek�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��Dk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�Cko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�Bk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�Ak��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib

e�r+��V��:��eD�a�
419a628252f2a83438fabbadf25cbc862ef23160a9a3d32fa110f61a1f1f3930D�`�
3989ac4ab63df7b51e1ce010e2b0d2368a33f915f06ae6b659dd6861d3dc3721D�_�
49a6803a256d5206d45f93d9583e7333cd4961a731881b7a82c761bb7ea7c9abD�^�
912ce11b5c1438a25af1e1961d891e6421717a57685de5add6d528d3ff3bdf42D�]�
1e0e7cf67ede91280fd5a1d1a63490ea597c590a44d12ba3e9d2c08a05b703c1D�\�
a9ba907298e679306020035cb1d25f9afc4e33153f8395fbcfb0ce1578791a93D�[�
bbf2b7054c85cc8831c0ffba64a4cabdc3eb23c4d32ba5484b962d4c8f22ecdeD�Z�
7b812c97766f36c2e477c31f7c5cfaabf34e7bfaf746d34a7f6971d6abc3e95cD�Y�
3b822a517d29541cd78da3a94ca8b9ce8095283d799bf7d7ebe96461744ae90dD�X�
eac7d9685870a65836a4ca60f270d56cb0278fbdcef6be718d7aae558eeab78dD�W�
a29e2e0a13cced40434f89b37fa93d3caf9d4d7726df5a200015fd9c03f045f6D�V�
5784610bb7a7b03cfd4ed995bd2f9d4785cdbc6dd40713274e6f1ae158558f20D�U�
4bfbeb71cf3639c4f6067ddf6c491f06976bc93d091646bb825481dd641a719f
;z�~��;R�Pk=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�Ok�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��Nk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�Mko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�Lk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�Kk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��Jk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase��Ik��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-75\}@- Resolves: #1672308 - Do not restart dhcp on NetworkManagers up events
`�J�N�b�`{�Xk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��Wk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objectsk�Vko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�Uk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�Tk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��Sk��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase\�R}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.1`��@- Roll in CentOS BrandingT�Qo=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217
��T�y�}��k�`ko�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-79]�?�- Resolves:  #1756850 - Close FD in noreplay mode{�_k�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-78]S��- Detect time shifts to prevent ip address expiration (#1093803)u�^k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-77\��@- Resolves: #1712414 - Reset signal handlers set by isclib��]k��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-76\��- Resolves: #1704675 - Fix crash of dhcpd(6) triggered by bind rebase\�\}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.2ff�- Roll in CentOS Brandingy�[i��Stepan Broz <sbroz@redhat.com> - 12:4.2.5-83.2fM�@- Rebuild because of bind ABI changes related to CVE-2023-50387T�Zo=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�Yk=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696
�|��R�w�c�hUu�Tim Waugh <twaugh@redhat.com> 3.2-11P�{@- Ported i18n patch and reinstated it (bug #870460).]�gUi�Tim Waugh <twaugh@redhat.com> 3.2-10PY��- Fixed license as current source says GPLv3+.\�f}?�CentOS Sources <bugs@centos.org> - 4.2.5-83.el7.centos.2ff�- Roll in CentOS Brandingy�ei��Stepan Broz <sbroz@redhat.com> - 12:4.2.5-83.2fM�@- Rebuild because of bind ABI changes related to CVE-2023-50387T�do=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83.1`���- Fix for CVE-2021-25217R�ck=�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-83^AE�- Revert fix for 1668696{�bk�
�Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-81^(9@- Resolves: #1668696 - Update /etc/resolv.conf in stateless mode��ak��Pavel Zhukov <pzhukov@redhat.com> - 12:4.2.5-80^ P@- Resolves: #1697637 - Resize ldap buffers to truncate bigger objects

Cg�Q�Y	�Cc�rUu�Tim Waugh <twaugh@redhat.com> 3.2-11P�{@- Ported i18n patch and reinstated it (bug #870460).]�qUi�Tim Waugh <twaugh@redhat.com> 3.2-10PY��- Fixed license as current source says GPLv3+.M�pQM�Than Ngo <than@redhat.com> - 3.3-6c��@- Resolves: #2152980, regression[�oQi�Than Ngo <than@redhat.com> - 3.3-5[�H�- Resolves: #1611281, diff -y produces garbageJ�nY?�Daniel Mach <dmach@redhat.com> - 3.3-4R�U�- Mass rebuild 2014-01-24J�mY?�Daniel Mach <dmach@redhat.com> - 3.3-3R�k�- Mass rebuild 2013-12-27k�lS��Tim Waugh <twaugh@redhat.com> 3.3-2Rg�@- Fixed multibyte handling logic for diff -Z (bug #1022417).B�kS5�Tim Waugh <twaugh@redhat.com> 3.3-1QQ��- 3.3 (bug #927560).`�jUo�Tim Waugh <twaugh@redhat.com> 3.2-13Q']�- Fixed i18n handling of 'diff -E' (bug #914666).��i���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.2-12Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild

1g�Q�Y	�1e�|Yu�Petr Oros <poros@redhat.com> - 1:3.0-3X!�@- Hide irrelevant fixup message
- Resolves: #1384195m�{Y��Petr Oros <poros@redhat.com> - 1:3.0-2Ws�@- Unmask LRDIMM in memmory type detail
- Resolves: #1321342M�zQM�Than Ngo <than@redhat.com> - 3.3-6c��@- Resolves: #2152980, regression[�yQi�Than Ngo <than@redhat.com> - 3.3-5[�H�- Resolves: #1611281, diff -y produces garbageJ�xY?�Daniel Mach <dmach@redhat.com> - 3.3-4R�U�- Mass rebuild 2014-01-24J�wY?�Daniel Mach <dmach@redhat.com> - 3.3-3R�k�- Mass rebuild 2013-12-27k�vS��Tim Waugh <twaugh@redhat.com> 3.3-2Rg�@- Fixed multibyte handling logic for diff -Z (bug #1022417).B�uS5�Tim Waugh <twaugh@redhat.com> 3.3-1QQ��- 3.3 (bug #927560).`�tUo�Tim Waugh <twaugh@redhat.com> 3.2-13Q']�- Fixed i18n handling of 'diff -E' (bug #914666).��s���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.2-12Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
q�.�^�q��c�M�Lianbo Jiang <lijiang@redhat.com> - 1:3.2-5^��@- Revert this patch("Use larger units for memory device and BIOS size")
- Resolves: rhbz#1767323�<�c��Lianbo Jiang <lijiang@redhat.com> - 1:3.2-4^r
@- Fix System Slot Information for PCIe SSD
- Resolves: rhbz#1793900
- Sync with upstream(commit:62bce59fed1)
- Resolves: rhbz#1767323��c�;�Lianbo Jiang <lijiang@redhat.com> - 1:3.2-3\��- Add "Logical non-volatile device" to the memory device types
- Resolves: rhbz#1664921g�co�Lianbo Jiang <lijiang@redhat.com> - 1:3.2-1[�@- Sync with upstream 3.2
- Resolves: rhbz#1628992c�cg�Lianbo Jiang <lijiang@redhat.com> - 1:3.1-1Z�@- Sync with upstream
- Resolves: rhbz#1568227r�~Y�
�Petr Oros <poros@redhat.com> - 1:3.0-5Y	�@- Update compiler flags for hardened builds
- Resolves: #1420763Z�}Y_�Petr Oros <poros@redhat.com> - 1:3.0-4X�f@- Sync with upstream
- Resolves: #1385884
Oo���0�Os�g��Petr Menšík <pemensik@redhat.com> - 2.76-14^�@- Stop treating SERVFAIL as successful response (#1815080)h�
gm�Petr Menšík <pemensik@redhat.com> - 2.76-13^^F�- Do not ignore DHCPv6 relay messages (#1757247)e�	gg�Petr Menšík <pemensik@redhat.com> - 2.76-12^\�@- Fix memory leak in create_helper (#1795369)�g��Petr Menšík <pemensik@redhat.com> - 2.76-11]��@- Send dhcp_release even for addresses not on local network (#1752569)o�g{�Petr Menšík <pemensik@redhat.com> - 2.76-10]��- Fix TCP queries after interface recreation (#1721668)i�eq�Petr Menšík <pemensik@redhat.com> - 2.79-9\�@- Fix passing of dnssec enabled queries (#1638703)t�e��Petr Menšík <pemensik@redhat.com> - 2.76-8\��@- Stop using privileged port for outbound queries (#1614331)�
�g�5�Lianbo Jiang <lijiang@redhat.com> - 1:3.2-5.1_��@- Fix the "OUT OF SPEC" error for empty NVMe and DIMM slots
- Resolves: rhbz#1858345
v�{	�e�gg�Petr Menšík <pemensik@redhat.com> - 2.76-12^\�@- Fix memory leak in create_helper (#1795369)�g��Petr Menšík <pemensik@redhat.com> - 2.76-11]��@- Send dhcp_release even for addresses not on local network (#1752569)o�g{�Petr Menšík <pemensik@redhat.com> - 2.76-10]��- Fix TCP queries after interface recreation (#1721668)i�eq�Petr Menšík <pemensik@redhat.com> - 2.79-9\�@- Fix passing of dnssec enabled queries (#1638703)�!�k�Y�Petr Menšík <pemensik@redhat.com> - 2.76-16.1_��@- Accept responses only on correct sockets (CVE-2020-25684)
- Use strong verification on queries (CVE-2020-25685)
- Handle multiple identical DNS queries better (CVE-2020-25686)
- Link against nettle for sha256 hash implementationg�
gk�Petr Menšík <pemensik@redhat.com> - 2.76-16^��@- Fix strict-mode retries on REFUSED (#1755610)��g�'�Petr Menšík <pemensik@redhat.com> - 2.76-15^��@- Forward non-recursive queries to upstream, but serve local names (#1755610)
���+�}�k��Petr Menšík <pemensik@redhat.com> - 2.76-17.1`%@- Fix occasional failures in netlink on many interfaces (#1887649)�!�k�Y�Petr Menšík <pemensik@redhat.com> - 2.76-16.1_��@- Accept responses only on correct sockets (CVE-2020-25684)
- Use strong verification on queries (CVE-2020-25685)
- Handle multiple identical DNS queries better (CVE-2020-25686)
- Link against nettle for sha256 hash implementationg�gk�Petr Menšík <pemensik@redhat.com> - 2.76-16^��@- Fix strict-mode retries on REFUSED (#1755610)��g�'�Petr Menšík <pemensik@redhat.com> - 2.76-15^��@- Forward non-recursive queries to upstream, but serve local names (#1755610)s�g��Petr Menšík <pemensik@redhat.com> - 2.76-14^�@- Stop treating SERVFAIL as successful response (#1815080)h�gm�Petr Menšík <pemensik@redhat.com> - 2.76-13^^F�- Do not ignore DHCPv6 relay messages (#1757247)
~�5�A�!�k�Y�Petr Menšík <pemensik@redhat.com> - 2.76-16.1_��@- Accept responses only on correct sockets (CVE-2020-25684)
- Use strong verification on queries (CVE-2020-25685)
- Handle multiple identical DNS queries better (CVE-2020-25686)
- Link against nettle for sha256 hash implementationg�gk�Petr Menšík <pemensik@redhat.com> - 2.76-16^��@- Fix strict-mode retries on REFUSED (#1755610)��g�'�Petr Menšík <pemensik@redhat.com> - 2.76-15^��@- Forward non-recursive queries to upstream, but serve local names (#1755610)s�g��Petr Menšík <pemensik@redhat.com> - 2.76-14^�@- Stop treating SERVFAIL as successful response (#1815080)h�gm�Petr Menšík <pemensik@redhat.com> - 2.76-13^^F�- Do not ignore DHCPv6 relay messages (#1757247)e�gg�Petr Menšík <pemensik@redhat.com> - 2.76-12^\�@- Fix memory leak in create_helper (#1795369)�g��Petr Menšík <pemensik@redhat.com> - 2.76-11]��@- Send dhcp_release even for addresses not on local network (#1752569)
V���@�Ve�'gg�Petr Menšík <pemensik@redhat.com> - 2.76-12^\�@- Fix memory leak in create_helper (#1795369)�&g��Petr Menšík <pemensik@redhat.com> - 2.76-11]��@- Send dhcp_release even for addresses not on local network (#1752569)o�%g{�Petr Menšík <pemensik@redhat.com> - 2.76-10]��- Fix TCP queries after interface recreation (#1721668)i�$eq�Petr Menšík <pemensik@redhat.com> - 2.79-9\�@- Fix passing of dnssec enabled queries (#1638703)t�#e��Petr Menšík <pemensik@redhat.com> - 2.76-8\��@- Stop using privileged port for outbound queries (#1614331)n�"ku�Petr Menšík <pemensik@redhat.com> - 2.76-17.3`B@- Accept replies from bound sockets again (#1923913)w�!k��Petr Menšík <pemensik@redhat.com> - 2.76-17.2`<�@- Correct two regressions introduced by CVE fixes (#1923913)}� k��Petr Menšík <pemensik@redhat.com> - 2.76-17.1`%@- Fix occasional failures in netlink on many interfaces (#1887649)
(��+�(o�.g{�Petr Menšík <pemensik@redhat.com> - 2.76-10]��- Fix TCP queries after interface recreation (#1721668)i�-eq�Petr Menšík <pemensik@redhat.com> - 2.79-9\�@- Fix passing of dnssec enabled queries (#1638703)�!�,k�Y�Petr Menšík <pemensik@redhat.com> - 2.76-16.1_��@- Accept responses only on correct sockets (CVE-2020-25684)
- Use strong verification on queries (CVE-2020-25685)
- Handle multiple identical DNS queries better (CVE-2020-25686)
- Link against nettle for sha256 hash implementationg�+gk�Petr Menšík <pemensik@redhat.com> - 2.76-16^��@- Fix strict-mode retries on REFUSED (#1755610)��*g�'�Petr Menšík <pemensik@redhat.com> - 2.76-15^��@- Forward non-recursive queries to upstream, but serve local names (#1755610)s�)g��Petr Menšík <pemensik@redhat.com> - 2.76-14^�@- Stop treating SERVFAIL as successful response (#1815080)h�(gm�Petr Menšík <pemensik@redhat.com> - 2.76-13^^F�- Do not ignore DHCPv6 relay messages (#1757247)
~�5�A�!�5k�Y�Petr Menšík <pemensik@redhat.com> - 2.76-16.1_��@- Accept responses only on correct sockets (CVE-2020-25684)
- Use strong verification on queries (CVE-2020-25685)
- Handle multiple identical DNS queries better (CVE-2020-25686)
- Link against nettle for sha256 hash implementationg�4gk�Petr Menšík <pemensik@redhat.com> - 2.76-16^��@- Fix strict-mode retries on REFUSED (#1755610)��3g�'�Petr Menšík <pemensik@redhat.com> - 2.76-15^��@- Forward non-recursive queries to upstream, but serve local names (#1755610)s�2g��Petr Menšík <pemensik@redhat.com> - 2.76-14^�@- Stop treating SERVFAIL as successful response (#1815080)h�1gm�Petr Menšík <pemensik@redhat.com> - 2.76-13^^F�- Do not ignore DHCPv6 relay messages (#1757247)e�0gg�Petr Menšík <pemensik@redhat.com> - 2.76-12^\�@- Fix memory leak in create_helper (#1795369)�/g��Petr Menšík <pemensik@redhat.com> - 2.76-11]��@- Send dhcp_release even for addresses not on local network (#1752569)
����+�+�g�<gk�Petr Menšík <pemensik@redhat.com> - 2.76-16^��@- Fix strict-mode retries on REFUSED (#1755610)��;g�'�Petr Menšík <pemensik@redhat.com> - 2.76-15^��@- Forward non-recursive queries to upstream, but serve local names (#1755610)s�:g��Petr Menšík <pemensik@redhat.com> - 2.76-14^�@- Stop treating SERVFAIL as successful response (#1815080)h�9gm�Petr Menšík <pemensik@redhat.com> - 2.76-13^^F�- Do not ignore DHCPv6 relay messages (#1757247)e�8gg�Petr Menšík <pemensik@redhat.com> - 2.76-12^\�@- Fix memory leak in create_helper (#1795369)�7g��Petr Menšík <pemensik@redhat.com> - 2.76-11]��@- Send dhcp_release even for addresses not on local network (#1752569)}�6k��Petr Menšík <pemensik@redhat.com> - 2.76-17.1`%@- Fix occasional failures in netlink on many interfaces (#1887649)
X�[�p�X��B�'��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.12-0.29.pre5P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuildt�Am�Kamil Dudka <kdudka@redhat.com> - 0.12-0.28.pre5OY�- do not crash if add_heartbeat() returned NULL (#798103)n�@ku�Petr Menšík <pemensik@redhat.com> - 2.76-17.3`B@- Accept replies from bound sockets again (#1923913)w�?k��Petr Menšík <pemensik@redhat.com> - 2.76-17.2`<�@- Correct two regressions introduced by CVE fixes (#1923913)}�>k��Petr Menšík <pemensik@redhat.com> - 2.76-17.1`%@- Fix occasional failures in netlink on many interfaces (#1887649)�!�=k�Y�Petr Menšík <pemensik@redhat.com> - 2.76-16.1_��@- Accept responses only on correct sockets (CVE-2020-25684)
- Use strong verification on queries (CVE-2020-25685)
- Handle multiple identical DNS queries better (CVE-2020-25686)
- Link against nettle for sha256 hash implementation
{����'�{S�Ik?�Daniel Mach <dmach@redhat.com> - 0.12-0.36.pre6R�U�- Mass rebuild 2014-01-24S�Hk?�Daniel Mach <dmach@redhat.com> - 0.12-0.35.pre6R�k�- Mass rebuild 2013-12-27�A�Gm��Kamil Dudka <kdudka@redhat.com> - 0.12-0.34.pre6Q+R@- update to latest upstream pre-release
- drop unneeded patches
- fix autoconf warnings
- explicitly disable using OpenSSL and GnuTLS��F�'��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.12-0.33.pre5Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildo�Emu�Kamil Dudka <kdudka@redhat.com> - 0.12-0.32.pre5P��@- do not delegate GSSAPI credentials (CVE-2012-4545)��Dm��Kamil Dudka <kdudka@redhat.com> - 0.12-0.31.pre5Pr�@- add default "ddg" dumb/smart rewrite prefixes for DuckDuckGo (#856348)v�Cm��Kamil Dudka <kdudka@redhat.com> - 0.12-0.30.pre5P<��- fix specfile issues reported by the fedora-review script
������l�Pkq�Jan Synáček <jsynacek@redhat.com> - 1:24.3-20Y��@- fix unsafe enriched mode translations (#1490451)��Ok��Jan Synáček <jsynacek@redhat.com> - 1:24.3-19Xo��- fix build failure on ppc64 (#1336711)
- fix emacs crashes (#1308518)i�Neq�Petr Hracek <phracek@redhat.com> - 1:24.3-18V	A- Fix for sbit on emacs binary
- Related: #1223033��Me�;�Petr Hracek <phracek@redhat.com> - 1:24.3-17V	@- emacs on ppc64le fails to build from source when RELRO is enabled
- Related: #1223033��Le�=�Petr Hracek <phracek@redhat.com> - 1:24.3-16U���- emacs on ppc64le fails to build from source when RELRO is enabled
- Resolves: #1223033s�Ke��Petr Hracek <phracek@redhat.com> - 1:24.3-15U�@- Updated texts in patch and SPEC file
- Resolves: #1223033h�Jmg�Kamil Dudka <kdudka@redhat.com> - 0.12-0.37.pre6Y��- Rebuilt for js 48-bit VA support (#1439479)

e�r+��V��:��eD�n�
7174a32cc247b70e650aa36730fa976b5d7e498a9fc59fde5c06de3be20d8da3D�m�
e9ee7e077912afbee46d9de1440f905a3150a783ca98d2999145e7f0d4946b00D�l�
cdc630a6947d25b54a576be1d51170f8ca7a920b446adaa54aece61b239e798dD�k�
91fc50b78a1f5d50c4f2a592996c690be37c4d7e9724a2dbd625eba57e9d607bD�j�
2847971791401757255fc2092497c37efa1f8f7440c3ce7fc60b243b497e8094D�i�
69714123fc4f27b58c1e15a2bdfef799961c0c2c3f1398116a458d05cf87f618D�h�
2d55f68e1a5fb1da8eb138aca00951f0f028a8f3db6a4427488b57f1c043891eD�g�
67dc839e667e3f5b861596b011039393d6a243f7dfb880c5c787ed72ab1e601fD�f�
72415fc89f5dcb558370bd92e670638fc9add9ad19ba4ee77ef546520c9a9e39D�e�
f2136014ff193c8527ea2351651b413e5c8cb5eeb1687c98dd2e6d544c6813bdD�d�
81d6abea697da32a4834b6bbe7be764845468cc2ee8e089861fd0eb80c2466c6D�c�
a547520b96904888041cdae1529c93057c845c1215a8ac1a453c516eae9263a6D�b�
decf2a313c4d562a043eed4b9202d10b5c58750490b4d6db6e70c5a2bf2fe794
��/�<���Ve�=�Petr Hracek <phracek@redhat.com> - 1:24.3-16U���- emacs on ppc64le fails to build from source when RELRO is enabled
- Resolves: #1223033s�Ue��Petr Hracek <phracek@redhat.com> - 1:24.3-15U�@- Updated texts in patch and SPEC file
- Resolves: #1223033z�Tk��Jacek Migacz <jmigacz@redhat.com> - 1:24.3-23.1d0�- Fix htmlfontify.el command injection vulnerability (#2175177)a�Scc�Tomas Pelka <tpelka@redhat.com> - 1:24.3-23]�@- Resolves: #1765208 rebuild against new IM}�Rk��Jan Synáček <jsynacek@redhat.com> - 1:24.3-22[��@- refix: TLS certificate warnings should be hard errors (#1403643)�i�Qk�i�Jan Synáček <jsynacek@redhat.com> - 1:24.3-21[@- fix libjpeg detection fails with gcc7 (#1487557)
- fix Emacs GUI Toolbar icons missing (#1477745)
- fix hardening: TLS certificate warnings should be hard errors (#1403643)
<m|
 �<a�]cc�Tomas Pelka <tpelka@redhat.com> - 1:24.3-23]�@- Resolves: #1765208 rebuild against new IM}�\k��Jan Synáček <jsynacek@redhat.com> - 1:24.3-22[��@- refix: TLS certificate warnings should be hard errors (#1403643)�i�[k�i�Jan Synáček <jsynacek@redhat.com> - 1:24.3-21[@- fix libjpeg detection fails with gcc7 (#1487557)
- fix Emacs GUI Toolbar icons missing (#1477745)
- fix hardening: TLS certificate warnings should be hard errors (#1403643)l�Zkq�Jan Synáček <jsynacek@redhat.com> - 1:24.3-20Y��@- fix unsafe enriched mode translations (#1490451)��Yk��Jan Synáček <jsynacek@redhat.com> - 1:24.3-19Xo��- fix build failure on ppc64 (#1336711)
- fix emacs crashes (#1308518)i�Xeq�Petr Hracek <phracek@redhat.com> - 1:24.3-18V	A- Fix for sbit on emacs binary
- Related: #1223033��We�;�Petr Hracek <phracek@redhat.com> - 1:24.3-17V	@- emacs on ppc64le fails to build from source when RELRO is enabled
- Related: #1223033
��
y�z��l�dkq�Jan Synáček <jsynacek@redhat.com> - 1:24.3-20Y��@- fix unsafe enriched mode translations (#1490451)��ck��Jan Synáček <jsynacek@redhat.com> - 1:24.3-19Xo��- fix build failure on ppc64 (#1336711)
- fix emacs crashes (#1308518)i�beq�Petr Hracek <phracek@redhat.com> - 1:24.3-18V	A- Fix for sbit on emacs binary
- Related: #1223033��ae�;�Petr Hracek <phracek@redhat.com> - 1:24.3-17V	@- emacs on ppc64le fails to build from source when RELRO is enabled
- Related: #1223033��`e�=�Petr Hracek <phracek@redhat.com> - 1:24.3-16U���- emacs on ppc64le fails to build from source when RELRO is enabled
- Resolves: #1223033s�_e��Petr Hracek <phracek@redhat.com> - 1:24.3-15U�@- Updated texts in patch and SPEC file
- Resolves: #1223033z�^k��Jacek Migacz <jmigacz@redhat.com> - 1:24.3-23.1d0�- Fix htmlfontify.el command injection vulnerability (#2175177)
��/�<���je�=�Petr Hracek <phracek@redhat.com> - 1:24.3-16U���- emacs on ppc64le fails to build from source when RELRO is enabled
- Resolves: #1223033s�ie��Petr Hracek <phracek@redhat.com> - 1:24.3-15U�@- Updated texts in patch and SPEC file
- Resolves: #1223033z�hk��Jacek Migacz <jmigacz@redhat.com> - 1:24.3-23.1d0�- Fix htmlfontify.el command injection vulnerability (#2175177)a�gcc�Tomas Pelka <tpelka@redhat.com> - 1:24.3-23]�@- Resolves: #1765208 rebuild against new IM}�fk��Jan Synáček <jsynacek@redhat.com> - 1:24.3-22[��@- refix: TLS certificate warnings should be hard errors (#1403643)�i�ek�i�Jan Synáček <jsynacek@redhat.com> - 1:24.3-21[@- fix libjpeg detection fails with gcc7 (#1487557)
- fix Emacs GUI Toolbar icons missing (#1477745)
- fix hardening: TLS certificate warnings should be hard errors (#1403643)
<m|
 �<a�qcc�Tomas Pelka <tpelka@redhat.com> - 1:24.3-23]�@- Resolves: #1765208 rebuild against new IM}�pk��Jan Synáček <jsynacek@redhat.com> - 1:24.3-22[��@- refix: TLS certificate warnings should be hard errors (#1403643)�i�ok�i�Jan Synáček <jsynacek@redhat.com> - 1:24.3-21[@- fix libjpeg detection fails with gcc7 (#1487557)
- fix Emacs GUI Toolbar icons missing (#1477745)
- fix hardening: TLS certificate warnings should be hard errors (#1403643)l�nkq�Jan Synáček <jsynacek@redhat.com> - 1:24.3-20Y��@- fix unsafe enriched mode translations (#1490451)��mk��Jan Synáček <jsynacek@redhat.com> - 1:24.3-19Xo��- fix build failure on ppc64 (#1336711)
- fix emacs crashes (#1308518)i�leq�Petr Hracek <phracek@redhat.com> - 1:24.3-18V	A- Fix for sbit on emacs binary
- Related: #1223033��ke�;�Petr Hracek <phracek@redhat.com> - 1:24.3-17V	@- emacs on ppc64le fails to build from source when RELRO is enabled
- Related: #1223033
�����5�tq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�sq�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081z�rk��Jacek Migacz <jmigacz@redhat.com> - 1:24.3-23.1d0�- Fix htmlfontify.el command injection vulnerability (#2175177)
u�T�u��xi�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�wq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��vi�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��ui�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��|{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�{k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��zu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�yu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��~i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�}q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.of�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������G��H��K��P��X��`��h��p��x���������� ��(��0��8��@��H��P��X��`��h��r��|������������'��.��5��<��B��I��P��V��]��d��j��q��t��x��|������������������&��-��4��;��C��K��R��Y��aºiúpĺwźƻǻȻɻʻ"˻*̻1ͻ8λ>ϻCлIѻPӻVԻ]ջdֻj׻qػxٻ~ڻۼܼݼ	޼߼�����"�&�'�-�0�1�8�9�:�@�C�D�J�N�O�U
-!l��:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��
i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��	i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�
u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
b{�z�S�b��k��Jan Synáček <jsynacek@redhat.com> - 1:24.3-19Xo��- fix build failure on ppc64 (#1336711)
- fix emacs crashes (#1308518)i�eq�Petr Hracek <phracek@redhat.com> - 1:24.3-18V	A- Fix for sbit on emacs binary
- Related: #1223033��e�;�Petr Hracek <phracek@redhat.com> - 1:24.3-17V	@- emacs on ppc64le fails to build from source when RELRO is enabled
- Related: #1223033��e�=�Petr Hracek <phracek@redhat.com> - 1:24.3-16U���- emacs on ppc64le fails to build from source when RELRO is enabled
- Resolves: #1223033s�e��Petr Hracek <phracek@redhat.com> - 1:24.3-15U�@- Updated texts in patch and SPEC file
- Resolves: #1223033��s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
9��$�C�9��&e�=�Petr Hracek <phracek@redhat.com> - 1:24.3-16U���- emacs on ppc64le fails to build from source when RELRO is enabled
- Resolves: #1223033s�%e��Petr Hracek <phracek@redhat.com> - 1:24.3-15U�@- Updated texts in patch and SPEC file
- Resolves: #1223033z�$k��Jacek Migacz <jmigacz@redhat.com> - 1:24.3-23.1d0�- Fix htmlfontify.el command injection vulnerability (#2175177)a�#cc�Tomas Pelka <tpelka@redhat.com> - 1:24.3-23]�@- Resolves: #1765208 rebuild against new IM}�"k��Jan Synáček <jsynacek@redhat.com> - 1:24.3-22[��@- refix: TLS certificate warnings should be hard errors (#1403643)�i�!k�i�Jan Synáček <jsynacek@redhat.com> - 1:24.3-21[@- fix libjpeg detection fails with gcc7 (#1487557)
- fix Emacs GUI Toolbar icons missing (#1477745)
- fix hardening: TLS certificate warnings should be hard errors (#1403643)l� kq�Jan Synáček <jsynacek@redhat.com> - 1:24.3-20Y��@- fix unsafe enriched mode translations (#1490451)
<m|
 �<a�-cc�Tomas Pelka <tpelka@redhat.com> - 1:24.3-23]�@- Resolves: #1765208 rebuild against new IM}�,k��Jan Synáček <jsynacek@redhat.com> - 1:24.3-22[��@- refix: TLS certificate warnings should be hard errors (#1403643)�i�+k�i�Jan Synáček <jsynacek@redhat.com> - 1:24.3-21[@- fix libjpeg detection fails with gcc7 (#1487557)
- fix Emacs GUI Toolbar icons missing (#1477745)
- fix hardening: TLS certificate warnings should be hard errors (#1403643)l�*kq�Jan Synáček <jsynacek@redhat.com> - 1:24.3-20Y��@- fix unsafe enriched mode translations (#1490451)��)k��Jan Synáček <jsynacek@redhat.com> - 1:24.3-19Xo��- fix build failure on ppc64 (#1336711)
- fix emacs crashes (#1308518)i�(eq�Petr Hracek <phracek@redhat.com> - 1:24.3-18V	A- Fix for sbit on emacs binary
- Related: #1223033��'e�;�Petr Hracek <phracek@redhat.com> - 1:24.3-17V	@- emacs on ppc64le fails to build from source when RELRO is enabled
- Related: #1223033
���Q�H�}�4]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�3]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�2]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)��1]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�0]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)�/�/]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495z�.k��Jacek Migacz <jmigacz@redhat.com> - 1:24.3-23.1d0�- Fix htmlfontify.el command injection vulnerability (#2175177)
^|�g�^��;]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�:]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)�/�9]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495t�8a�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)l�7]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�6]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��5]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)
 �9�5�J� �/�C]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495t�Ba�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)l�A]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�@]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��?]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)}�>]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�=]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�<]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)
A��x0�,�Al�K]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�J]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��I]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)}�H]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�G]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�F]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)��E]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�D]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)
���W�N�}�R]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�Q]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�P]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)��O]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�N]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)�/�M]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495t�La�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)

e�r+��V��:��eD�{�
4402a7fcf865ee506196d91c722ec2875470f134b63f3912ac69561ba10e5113D�z�
18defd29c31366e3f3fc7602eed4307dcdd1028a8e25fd6823379fa2ef33eb6bD�y�
d219bddd9ca9b61182ef38132b073da37b5c7b6727fe9ef79c35acfe7e1aca0eD�x�
a52fbf59e2e7f8b7b912ee6fd5be7c84450b3ab1d4cb68690cfc3f306086b817D�w�
a919c9e3a766f98e15edfc8dde8b699f46753980aaf8f4b46d2831fcc01cf9b7D�v�
369ac51f105f8b0b9fb343deb57c8ed97f3e08bbb535d683866ddfd47b058675D�u�
1b57cc987d64b98efbaa6f796a3df838d4f4cc4a2b892e4e19685ea37ea8188dD�t�
284e903527e4376ba342697bff7afdcf76804823b3344908e0ad3589efb08d0eD�s�
a56dd9d75f85b76dd72f232aef6262710e4f66d7291c55f0e3467fa4c70855eeD�r�
006866668980a661dabcff054750dcfabee9be838cbdbe8f6554a12c8d2437e4D�q�
1d2c5ccf5a54793d996b971ad4448b1d95a72bf1270703b1cdd944b0b4a82932D�p�
98fa7e7c32572003a415282278a680123f7896108aa35e2ddad608cf9a8bf1b6D�o�
d057cb97f19e0b7a6e8769b9407b59d09edac0f8548ba4137a65575461013ea6
^|�g�^��Y]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�X]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)�/�W]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495t�Va�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)l�U]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�T]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��S]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)
 �9�5�J� �/�a]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495t�`a�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)l�_]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�^]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��]]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)}�\]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�[]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�Z]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)
A��x0�,�Al�i]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�h]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��g]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)}�f]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�e]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�d]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)��c]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�b]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)
���W�N�}�p]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�o]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�n]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)��m]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�l]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)�/�k]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495t�ja�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)
^|�g�^��w]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�v]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)�/�u]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495t�ta�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)l�s]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�r]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��q]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)
 �9�5�J� �/�]��Milan Crha <mcrha@redhat.com> - 3.28.2-1[�@- Update to 3.28.2
- Add patch for GNOME bug #795997 (Fails to parse Google OAuth2 authorization code)
- Resolves: #1575495t�~a�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)l�}]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�|]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��{]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)}�z]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�y]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�x]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)
A��x0�,�Al�]�Milan Crha <mcrha@redhat.com> - 3.28.5-5^��@- Resolves: #1772103 (EDBusServer: Delay new module load)y�]��Milan Crha <mcrha@redhat.com> - 3.28.5-4]S��- Add patch related to evolution-ews' CVE-2019-3890 (RH bug #1696762)��]�%�Milan Crha <mcrha@redhat.com> - 3.28.5-3\�@- Update patch for RH bug #1610744 (test-cal-client-get-revision could fail)}�]��Milan Crha <mcrha@redhat.com> - 3.28.5-2\T4�- Add patch for RH bug #1610744 (test-cal-client-get-revision could fail)E�]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796174 (fixed upstream)��]�1�Milan Crha <mcrha@redhat.com> - 3.28.3-2[(�@- Add patch for GNOME bug #796174 (strcat() considered unsafe for buffer overflow)|�]��Milan Crha <mcrha@redhat.com> - 3.28.3-1['��- Update to 3.28.3
- Remove patch for GNOME bug #795997 (fixed upstream)
@��y1�@�X�]�U�Milan Crha <mcrha@redhat.com> - 3.28.5-4]��@- Add patch for RH bug #1392567 (Sync CategoryList with mail Labels)
- Add patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)��
]�5�Milan Crha <mcrha@redhat.com> - 3.28.5-3]S��- Add patch for RH bug #1696760 (CVE-2019-3890 - SSL Certificates are not validated)��]�/�Milan Crha <mcrha@redhat.com> - 3.28.5-2[�v�- Add patches for RH bug #1633711 (Backport few minor regression fixes from 3.30)E�]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�
]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796297 (fixed upstream)�
�	]�?�Milan Crha <mcrha@redhat.com> - 3.28.3-2[0�@- Add patch for GNOME bug #796297 (Cannot modify existing meeting after fix for this bug)t�a�	�Milan Crha <mcrha@redhat.com> - 3.28.5-5.1bs�@- Resolves: #2081786 (Backport patch for Google OAuth2 change)
�f�[�I��E�]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796297 (fixed upstream)�
�]�?�Milan Crha <mcrha@redhat.com> - 3.28.3-2[0�@- Add patch for GNOME bug #796297 (Cannot modify existing meeting after fix for this bug)~�]�!�Milan Crha <mcrha@redhat.com> - 3.28.5-8_��- Resolves: #1891558 (Birthday date of Contact depends on system timezone)}�]��Milan Crha <mcrha@redhat.com> - 3.28.5-7_��- Resolves: #1887925 (Allow change of the Microsoft 365 OAuth2 endpoints)��]�3�Milan Crha <mcrha@redhat.com> - 3.28.5-6^�U@- Add patch for RH bug #1764669 (Reject creating meetings organized by other users)��]�Q�Milan Crha <mcrha@redhat.com> - 3.28.5-5]�)�- Remove patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)
jw�u�j}�]��Milan Crha <mcrha@redhat.com> - 3.28.5-7_��- Resolves: #1887925 (Allow change of the Microsoft 365 OAuth2 endpoints)��]�3�Milan Crha <mcrha@redhat.com> - 3.28.5-6^�U@- Add patch for RH bug #1764669 (Reject creating meetings organized by other users)��]�Q�Milan Crha <mcrha@redhat.com> - 3.28.5-5]�)�- Remove patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)�X�]�U�Milan Crha <mcrha@redhat.com> - 3.28.5-4]��@- Add patch for RH bug #1392567 (Sync CategoryList with mail Labels)
- Add patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)��]�5�Milan Crha <mcrha@redhat.com> - 3.28.5-3]S��- Add patch for RH bug #1696760 (CVE-2019-3890 - SSL Certificates are not validated)��]�/�Milan Crha <mcrha@redhat.com> - 3.28.5-2[�v�- Add patches for RH bug #1633711 (Backport few minor regression fixes from 3.30)
6�o'�6�X�"]�U�Milan Crha <mcrha@redhat.com> - 3.28.5-4]��@- Add patch for RH bug #1392567 (Sync CategoryList with mail Labels)
- Add patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)��!]�5�Milan Crha <mcrha@redhat.com> - 3.28.5-3]S��- Add patch for RH bug #1696760 (CVE-2019-3890 - SSL Certificates are not validated)�� ]�/�Milan Crha <mcrha@redhat.com> - 3.28.5-2[�v�- Add patches for RH bug #1633711 (Backport few minor regression fixes from 3.30)E�]1�Milan Crha <mcrha@redhat.com> - 3.28.5-1[^��- Update to 3.28.5|�]��Milan Crha <mcrha@redhat.com> - 3.28.4-1[L��- Update to 3.28.4
- Remove patch for GNOME bug #796297 (fixed upstream)�
�]�?�Milan Crha <mcrha@redhat.com> - 3.28.3-2[0�@- Add patch for GNOME bug #796297 (Cannot modify existing meeting after fix for this bug)~�]�!�Milan Crha <mcrha@redhat.com> - 3.28.5-8_��- Resolves: #1891558 (Birthday date of Contact depends on system timezone)
 f�[�x#z W�*eM�Josef Ridky <jridky@redhat.com> - 0:1.8.18-4X�+�- Fix RPMDiff issues and rebuild�%�)e�g�Josef Ridky <jridky@redhat.com> - 0:1.8.18-3X��@- Fix issues with warning: dereferencing type-punned pointer 
  will break strict-aliasing rules from RPMDiffR�(eC�Josef Ridky <jridky@redhat.com> - 0:1.8.18-2X���- Fix issue in file sources_�'e]�Josef Ridky <jridky@redhat.com> - 0:1.8.18-1X�@- New upstream release 1.8.18 (#1398658)~�&]�!�Milan Crha <mcrha@redhat.com> - 3.28.5-8_��- Resolves: #1891558 (Birthday date of Contact depends on system timezone)}�%]��Milan Crha <mcrha@redhat.com> - 3.28.5-7_��- Resolves: #1887925 (Allow change of the Microsoft 365 OAuth2 endpoints)��$]�3�Milan Crha <mcrha@redhat.com> - 3.28.5-6^�U@- Add patch for RH bug #1764669 (Reject creating meetings organized by other users)��#]�Q�Milan Crha <mcrha@redhat.com> - 3.28.5-5]�)�- Remove patch for RH bug #1764669 (Send meeting change notifications only if being the organizer)
D���'��DR�1eC�Josef Ridky <jridky@redhat.com> - 0:1.8.18-2X���- Fix issue in file sources��0k�S�Pavel Cahyna <pcahyna@redhat.com> - 0:1.8.18-10a�{�- Protect against negative values to memmove that caused
  "ipmitool sol activate" to crash against an IBM DataPower appliance
  (#1951480) and IP-131 Dayton blades in a SGI ICE-X (#2025519)
  Cherry-picked from upstream PR#78.i�/sc�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-9^_�@- Disable -fstrict-aliasing (RPMDiff issue)^�.sM�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-8^^F�- Backport fix for CVE-2020-5208o�-e}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-7Zy��- Remove debug prints shown without -v option (#1483163)��,e�=�Josef Ridky <jridky@redhat.com> - 0:1.8.18-6Y�{�- Hide unrequested verbose output (#1483163)
- Fix doc for check input values (#1495098)o�+e}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-5X�s�- Remove RPMDiff fix file (#1439269) related to #1398658
�W����$�i�8sc�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-9^_�@- Disable -fstrict-aliasing (RPMDiff issue)^�7sM�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-8^^F�- Backport fix for CVE-2020-5208o�6e}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-7Zy��- Remove debug prints shown without -v option (#1483163)��5e�=�Josef Ridky <jridky@redhat.com> - 0:1.8.18-6Y�{�- Hide unrequested verbose output (#1483163)
- Fix doc for check input values (#1495098)o�4e}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-5X�s�- Remove RPMDiff fix file (#1439269) related to #1398658W�3eM�Josef Ridky <jridky@redhat.com> - 0:1.8.18-4X�+�- Fix RPMDiff issues and rebuild�%�2e�g�Josef Ridky <jridky@redhat.com> - 0:1.8.18-3X��@- Fix issues with warning: dereferencing type-punned pointer 
  will break strict-aliasing rules from RPMDiff
O��J��O\�>a[�Jan Grulich <jgrulich@redhat.com> - 0.26-1Y�W@- Update to 0.26
  Resolves: bz#1420227K�=[?�Daniel Mach <dmach@redhat.com> - 0.23-6R�U�- Mass rebuild 2014-01-24K�<[?�Daniel Mach <dmach@redhat.com> - 0.23-5R�k�- Mass rebuild 2013-12-27��;���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.23-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�w�:g�	�Pavel Cahyna <pcahyna@redhat.com> - 1.8.18-11d��- Add upstream ipmievd patch to check received msg id against expectation
  Fixes problem where SEL response is not recognized correctly
  when SEL request times out
  Resolves: rhbz#2224569��9k�S�Pavel Cahyna <pcahyna@redhat.com> - 0:1.8.18-10a�{�- Protect against negative values to memmove that caused
  "ipmitool sol activate" to crash against an IBM DataPower appliance
  (#1951480) and IP-131 Dayton blades in a SGI ICE-X (#2025519)
  Cherry-picked from upstream PR#78.
��K���Ce�G�Jan Grulich <jgrulich@redhat.com> - 0.27.0-3^K�- Validate relationship of the total size to the offset to avoid crash
  Resolves: bz#1775695b�Bec�Jan Grulich <jgrulich@redhat.com> - 0.27.0-2\X)@- Minor improvements
  Resolves: bz#1652637\�AeW�Jan Grulich <jgrulich@redhat.com> - 0.27.0-1\=�@- Exiv2 0.27.0
  Resolves: bz#1652637�p�@a��Jan Grulich <jgrulich@redhat.com> - 0.26-3Z�@- Fix uncontrolled recursion in image.cpp:Exiv2::Image::printIFDStructure() which can allow a
  remote attacker to cause a denial of service via a crafted tif file
  Resolves: bz#1548410�y�?a��Jan Grulich <jgrulich@redhat.com> - 0.26-2Z���- Fix heap-based buffer over-read in Exiv2::Image::byteSwap4 in image.cpp
  Resolves: bz#1547207

  Fix heap-based buffer over-read in Exiv2::getULong function in types.cpp
  Resolves: bz#1545232
�Z�s%���y�Ia��Jan Grulich <jgrulich@redhat.com> - 0.26-2Z���- Fix heap-based buffer over-read in Exiv2::Image::byteSwap4 in image.cpp
  Resolves: bz#1547207

  Fix heap-based buffer over-read in Exiv2::getULong function in types.cpp
  Resolves: bz#1545232\�Ha[�Jan Grulich <jgrulich@redhat.com> - 0.26-1Y�W@- Update to 0.26
  Resolves: bz#1420227K�G[?�Daniel Mach <dmach@redhat.com> - 0.23-6R�U�- Mass rebuild 2014-01-24K�F[?�Daniel Mach <dmach@redhat.com> - 0.23-5R�k�- Mass rebuild 2013-12-27��E���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.23-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�"�De�a�Jan Grulich <jgrulich@redhat.com> - 0.27.0-4a�- Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS
  Resolves: bz#1990352
"�H�	p"K�P[?�Daniel Mach <dmach@redhat.com> - 0.23-5R�k�- Mass rebuild 2013-12-27��O���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.23-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�"�Ne�a�Jan Grulich <jgrulich@redhat.com> - 0.27.0-4a�- Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS
  Resolves: bz#1990352��Me�G�Jan Grulich <jgrulich@redhat.com> - 0.27.0-3^K�- Validate relationship of the total size to the offset to avoid crash
  Resolves: bz#1775695b�Lec�Jan Grulich <jgrulich@redhat.com> - 0.27.0-2\X)@- Minor improvements
  Resolves: bz#1652637\�KeW�Jan Grulich <jgrulich@redhat.com> - 0.27.0-1\=�@- Exiv2 0.27.0
  Resolves: bz#1652637�p�Ja��Jan Grulich <jgrulich@redhat.com> - 0.26-3Z�@- Fix uncontrolled recursion in image.cpp:Exiv2::Image::printIFDStructure() which can allow a
  remote attacker to cause a denial of service via a crafted tif file
  Resolves: bz#1548410

e�r+��V��:��eD��
a962654ff0fe134fdd88392c47a711e94bc84e08e27d0a7cb7d28e9150d2999aD��
45f0406fbbb55abe1511ceade8ca9fb297ae44cce197166c9a3f70561dbffc30D��
8246ba658ab0a84cdf2b467c142701ec560b9ced3db90dfd04a7275cb2636566D��
301d479dffc9084746269cad6d9be379a3c01fafa139c9203aa5c98ca7e9d79eD��
f4c0956c54c55adea5769904bb460f6ab64b017d31e9a73f0a047345be6dd6afD��
6cc655263da0213df7eb5a2c6c63b5825361f55336855a67a7b33881d10ca955D��
fc2d6ed7481cb42c62b4bd75126fc4237093c74ba7e87908a90815f672bdf45dD��
b0179562abc1ff5d40c03661749ce4f7f4c7d58c428cecfc4a3711bfa98e6ec6D��
c653aaa3759f6c65e6ccf1dafa36096bf4821f315dbf756943730947258100efD��
54b72bac2daf97a8d1ba79e4288be55712b5b35027f2df547f3e0af93bd9b6a5D�~�
037e885e4b00fa8c73772c5a2e0f05aa735f04807e080c5819a8a15dade3d5dcD�}�
73cda0f598ca90fe3470940ed62663a7a5a1091731757b8e057fc929d3c1a209D�|�
1a5b2d18101ca9a398c7873900403ed4ffc7daf7fb801a9ce1649c3fafe185cf
��SVb�b�Vec�Jan Grulich <jgrulich@redhat.com> - 0.27.0-2\X)@- Minor improvements
  Resolves: bz#1652637\�UeW�Jan Grulich <jgrulich@redhat.com> - 0.27.0-1\=�@- Exiv2 0.27.0
  Resolves: bz#1652637�p�Ta��Jan Grulich <jgrulich@redhat.com> - 0.26-3Z�@- Fix uncontrolled recursion in image.cpp:Exiv2::Image::printIFDStructure() which can allow a
  remote attacker to cause a denial of service via a crafted tif file
  Resolves: bz#1548410�y�Sa��Jan Grulich <jgrulich@redhat.com> - 0.26-2Z���- Fix heap-based buffer over-read in Exiv2::Image::byteSwap4 in image.cpp
  Resolves: bz#1547207

  Fix heap-based buffer over-read in Exiv2::getULong function in types.cpp
  Resolves: bz#1545232\�Ra[�Jan Grulich <jgrulich@redhat.com> - 0.26-1Y�W@- Update to 0.26
  Resolves: bz#1420227K�Q[?�Daniel Mach <dmach@redhat.com> - 0.23-6R�U�- Mass rebuild 2014-01-24
0g�(��-0�y�]a��Jan Grulich <jgrulich@redhat.com> - 0.26-2Z���- Fix heap-based buffer over-read in Exiv2::Image::byteSwap4 in image.cpp
  Resolves: bz#1547207

  Fix heap-based buffer over-read in Exiv2::getULong function in types.cpp
  Resolves: bz#1545232\�\a[�Jan Grulich <jgrulich@redhat.com> - 0.26-1Y�W@- Update to 0.26
  Resolves: bz#1420227K�[[?�Daniel Mach <dmach@redhat.com> - 0.23-6R�U�- Mass rebuild 2014-01-24K�Z[?�Daniel Mach <dmach@redhat.com> - 0.23-5R�k�- Mass rebuild 2013-12-27��Y���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.23-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�"�Xe�a�Jan Grulich <jgrulich@redhat.com> - 0.27.0-4a�- Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS
  Resolves: bz#1990352��We�G�Jan Grulich <jgrulich@redhat.com> - 0.27.0-3^K�- Validate relationship of the total size to the offset to avoid crash
  Resolves: bz#1775695
"�H�	p"K�d[?�Daniel Mach <dmach@redhat.com> - 0.23-5R�k�- Mass rebuild 2013-12-27��c���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.23-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�"�be�a�Jan Grulich <jgrulich@redhat.com> - 0.27.0-4a�- Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS
  Resolves: bz#1990352��ae�G�Jan Grulich <jgrulich@redhat.com> - 0.27.0-3^K�- Validate relationship of the total size to the offset to avoid crash
  Resolves: bz#1775695b�`ec�Jan Grulich <jgrulich@redhat.com> - 0.27.0-2\X)@- Minor improvements
  Resolves: bz#1652637\�_eW�Jan Grulich <jgrulich@redhat.com> - 0.27.0-1\=�@- Exiv2 0.27.0
  Resolves: bz#1652637�p�^a��Jan Grulich <jgrulich@redhat.com> - 0.26-3Z�@- Fix uncontrolled recursion in image.cpp:Exiv2::Image::printIFDStructure() which can allow a
  remote attacker to cause a denial of service via a crafted tif file
  Resolves: bz#1548410
��SVb�b�jec�Jan Grulich <jgrulich@redhat.com> - 0.27.0-2\X)@- Minor improvements
  Resolves: bz#1652637\�ieW�Jan Grulich <jgrulich@redhat.com> - 0.27.0-1\=�@- Exiv2 0.27.0
  Resolves: bz#1652637�p�ha��Jan Grulich <jgrulich@redhat.com> - 0.26-3Z�@- Fix uncontrolled recursion in image.cpp:Exiv2::Image::printIFDStructure() which can allow a
  remote attacker to cause a denial of service via a crafted tif file
  Resolves: bz#1548410�y�ga��Jan Grulich <jgrulich@redhat.com> - 0.26-2Z���- Fix heap-based buffer over-read in Exiv2::Image::byteSwap4 in image.cpp
  Resolves: bz#1547207

  Fix heap-based buffer over-read in Exiv2::getULong function in types.cpp
  Resolves: bz#1545232\�fa[�Jan Grulich <jgrulich@redhat.com> - 0.26-1Y�W@- Update to 0.26
  Resolves: bz#1420227K�e[?�Daniel Mach <dmach@redhat.com> - 0.23-6R�U�- Mass rebuild 2014-01-24
0g�(��-0�y�qa��Jan Grulich <jgrulich@redhat.com> - 0.26-2Z���- Fix heap-based buffer over-read in Exiv2::Image::byteSwap4 in image.cpp
  Resolves: bz#1547207

  Fix heap-based buffer over-read in Exiv2::getULong function in types.cpp
  Resolves: bz#1545232\�pa[�Jan Grulich <jgrulich@redhat.com> - 0.26-1Y�W@- Update to 0.26
  Resolves: bz#1420227K�o[?�Daniel Mach <dmach@redhat.com> - 0.23-6R�U�- Mass rebuild 2014-01-24K�n[?�Daniel Mach <dmach@redhat.com> - 0.23-5R�k�- Mass rebuild 2013-12-27��m���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.23-4Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�"�le�a�Jan Grulich <jgrulich@redhat.com> - 0.27.0-4a�- Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS
  Resolves: bz#1990352��ke�G�Jan Grulich <jgrulich@redhat.com> - 0.27.0-3^K�- Validate relationship of the total size to the offset to avoid crash
  Resolves: bz#1775695
�H�	oS�x[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)��w��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.0-5Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�"�ve�a�Jan Grulich <jgrulich@redhat.com> - 0.27.0-4a�- Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS
  Resolves: bz#1990352��ue�G�Jan Grulich <jgrulich@redhat.com> - 0.27.0-3^K�- Validate relationship of the total size to the offset to avoid crash
  Resolves: bz#1775695b�tec�Jan Grulich <jgrulich@redhat.com> - 0.27.0-2\X)@- Minor improvements
  Resolves: bz#1652637\�seW�Jan Grulich <jgrulich@redhat.com> - 0.27.0-1\=�@- Exiv2 0.27.0
  Resolves: bz#1652637�p�ra��Jan Grulich <jgrulich@redhat.com> - 0.26-3Z�@- Fix uncontrolled recursion in image.cpp:Exiv2::Image::printIFDStructure() which can allow a
  remote attacker to cause a denial of service via a crafted tif file
  Resolves: bz#1548410
��b	�Q�j�~]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�}]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�|]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718V�{[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�z]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�y]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27
ZZ�"�e�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
W>�N��WV�[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.0-5Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�>�e�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��H�j�]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718
ZZ�"�	e�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
9>��J��9W�]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718V�[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�
]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)�>�
e�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��j�]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903
ZZ�"�e�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
_>�V�_V�[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)��e�9Tomas Korbar <tkorbar@redhat.com> - 2.1.0-15c:�- Ensure raw tagnames are safe exiting internalEntityParser
- Resolves: CVE-2022-40674�>�e�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��H�j�]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718
ZZ�"�e�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
>��mL�"]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�!]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S� [OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.0-5Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild��e�9Tomas Korbar <tkorbar@redhat.com> - 2.1.0-15c:�- Ensure raw tagnames are safe exiting internalEntityParser
- Resolves: CVE-2022-40674�>�e�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��I��j�&]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�%]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�$]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718V�#[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718
ZZ�"�'e�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
W>�N��WV�-[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�,]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�+]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�*[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)��)��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.0-5Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�>�(e�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��H�j�0]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�/]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�.]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718
ZZ�"�1e�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
9>��J��9W�8]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�7]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718V�6[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�5]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�4]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�3[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)�>�2e�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��j�9]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903
ZZ�"�:e�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
_>�V�_V�@[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�?]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�>]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�=[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)��<e�9Tomas Korbar <tkorbar@redhat.com> - 2.1.0-15c:�- Ensure raw tagnames are safe exiting internalEntityParser
- Resolves: CVE-2022-40674�>�;e�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��H�j�C]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�B]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�A]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718
ZZ�"�De�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
>��mL�J]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�I]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�H[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)��G��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.0-5Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild��Fe�9Tomas Korbar <tkorbar@redhat.com> - 2.1.0-15c:�- Ensure raw tagnames are safe exiting internalEntityParser
- Resolves: CVE-2022-40674�>�Ee�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��I��j�N]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�M]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�L]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718V�K[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718
ZZ�"�Oe�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
W>�N��WV�U[U	Joe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�T]?	Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�S]?	Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�R[O	Joe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)��Q��	Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.1.0-5Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�>�Pe�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315

e�r+��V��:��eD��
e4434d6372a44237428f390b21eaa263d38ebe585fcde7c9b6d093bd6a53f942D��
55a15d25343aa48f6f67cbbb7365207f4430960b97fe22eea6521df9ef5f6e1eD��
997876dc6dace25c6299e9ca1dc76b8112d4862b054ac67c11bcfa1e81c637efD��
36e226643adb16e51005fd729514451221b0570727d946df70bc555084b1ab43D��
c59613f8305583361be758cf7921fe48cedfaca536f354535c5dca03087c3798D��
c102608096eb8bfc89f563c1a82e55812f85dc764c578fc98b29fe740b014b88D��
bb4a0d5f27950f8712ba44e0d94dac84d24f409c0064a28dd7e64dab38dea9bcD��
ad0cdb4681378d6768d0ba8ff62f05cf6459eb32070c81c7d3eec65c844a8fa5D�
�
7202bdb3eb9b58bc979d8ec45159b6e39ea0ff80df19efb9cc6274a852beee11D��
8552fe474d6c38b9a301d6273b81897005c2a518b97ad149df81dca168a8bdc6D��
77a2ace1d206cdce59078a04e1d50602e60fa9783490a87d7d894bfb57c1904cD�
�
38165265e6956a27cc026b542a5b84342b4e8d479263713e10c9a0b0871d9705D�	�
46c46ba8573d8f101c53fe10179a66e853ec151d66f5dfb686fb60c5e75aa610
��H�j�X]{	Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�W]U	Joe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�V]]	Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718
ZZ�"�Ye�a	Tomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
9>��J��9W�`]U
Joe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�_]]
Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718V�^[U
Joe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�]]?
Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�\]?
Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�[[O
Joe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)�>�Ze�	Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��j�a]{
Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903
ZZ�"�be�a
Tomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
_>�V�_V�h[UJoe Orton <jorton@redhat.com> - 2.1.0-9X6�@- add security fix for CVE-2016-0718L�g]?Daniel Mach <dmach@redhat.com> - 2.1.0-8R�U�- Mass rebuild 2014-01-24L�f]?Daniel Mach <dmach@redhat.com> - 2.1.0-7R�k�- Mass rebuild 2013-12-27S�e[OJoe Orton <jorton@redhat.com> - 2.1.0-6Q��@- fix "xmlwf -h" output (#948534)��de�9
Tomas Korbar <tkorbar@redhat.com> - 2.1.0-15c:�- Ensure raw tagnames are safe exiting internalEntityParser
- Resolves: CVE-2022-40674�>�ce�
Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
��H�j�k]{Joe Orton <jorton@redhat.com> - 2.1.0-12^��- add security fixes for CVE-2018-20843, CVE-2019-15903W�j]UJoe Orton <jorton@redhat.com> - 2.1.0-11]9��- add security fix for CVE-2015-2716[�i]]Joe Orton <jorton@redhat.com> - 2.1.0-10X6�A- updated security fix for CVE-2016-0718
ZZ�"�le�aTomas Korbar <tkorbar@redhat.com> - 2.1.0-13b~�- Fix multiple CVEs
- CVE-2022-23852 expat: integer overflow in function XML_GetBuffer
- CVE-2021-45960 expat: Large number of prefixed XML attributes on a single tag can crash libexpat
- CVE-2021-46143 expat: Integer overflow in doProlog in xmlparse.c
- CVE-2022-22827 Integer overflow in storeAtts in xmlparse.c
- CVE-2022-22826 Integer overflow in nextScaffoldPart in xmlparse.c
- CVE-2022-22825 Integer overflow in lookup in xmlparse.c
- CVE-2022-22824 Integer overflow in defineAttribute in xmlparse.c
- CVE-2022-22823 Integer overflow in build_model in xmlparse.c
- CVE-2022-22822 Integer overflow in addBinding in xmlparse.c
- Resolves: CVE-2022-23852
- Resolves: CVE-2021-45960
- Resolves: CVE-2021-46143
- Resolves: CVE-2022-22827
- Resolves: CVE-2022-22826
- Resolves: CVE-2022-22825
- Resolves: CVE-2022-22824
- Resolves: CVE-2022-22823
- Resolves: CVE-2022-22822
Y>�Y�O�oq�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784��ne�9Tomas Korbar <tkorbar@redhat.com> - 2.1.0-15c:�- Ensure raw tagnames are safe exiting internalEntityParser
- Resolves: CVE-2022-40674�>�me�Tomas Korbar <tkorbar@redhat.com> - 2.1.0-14b8h�- Fix multiple CVEs
- CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
- CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
- CVE-2022-25315 expat: integer overflow in storeRawNames()
- Resolves: CVE-2022-25236
- Resolves: CVE-2022-25235
- Resolves: CVE-2022-25315
:u�#��:�uq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�tq�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��sq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�rq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�qq�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��pq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818
Eq4�E�L�zq�)
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��yq�
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��xu�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�wu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��vq�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
~����q�'
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�~q�
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�}q�C
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��|q�
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�{q�
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205
^�/��^�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-|�u�
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�
Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
Kv��K�9�	u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
�l�o�c��Y�q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�
q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��
u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
!~���!{�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
	���	��q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189
9�/�2�9w� u}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759|�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
F�"R�F��%q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�$q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�#q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��"q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�!q�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784
A#��A��*u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�)u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��(q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�'q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�&q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
:u�#��:�0q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�/q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��.q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�-q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�,q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��+q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818
Qq4�!Q�L�5q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-|�4u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��3u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�2u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��1q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
~����:q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�9q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�8q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��7q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�6q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205
&�/�2�&��@q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�?q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�>u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�=u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��<u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�;u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��Eu�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Du�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Cq�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Bq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Aq�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������Kq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Jq�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Iq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�Hu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Gu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Fu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�Qu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Pu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Ou�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Nu�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Mu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Lq�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Vq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Uq�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Tq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�Sq�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�Ru}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759

e�r+��V��:��eD�"�
457da3dc935ceedbf369f8d8283038086c61d7ec599b6b13c34f1a9eb692decdD�!�
f2bf2828a9c0dfda573e370c7710e37259fb9041de3d51ef97b7cd65188789a9D� �
805b144f9365a51694ca9ecf28482dd714b37f78fa08e3a4a7a5aa22da4216deD��
757772969a2b13e5983aef925c31b673696df5c322b359714f2a89267929bf4eD��
0cd349e9faa4208c5a06dd623c32419cde907327603062ef0197ae238ecf9cb1D��
815665d02d2dd24faf81af70e9152d3a62a47d616ae070372b69b3ce7b0c1e95D��
dbc118d3ccfcbb7b3059ad8a684e25485e0745d8f682f5b8e2a16c1ab4a3100bD��
22ad74d75ec657ae1c2e0ef0ec2331caf9bbe77cd9d4af628f4350d8891164d0D��
42e5dee7b0556011cb8bdc92961b584ecf210268b03c4e68df01ba36dc1f30e1D��
0c50466e187899042f37e621ad418348afddcf8a0b1ef74a9c42573da5425ecaD��
2c656f5e90d00ae998a2b2a6a9d7caaa9328030aefb87a1ce161d941af33182eD��
314a81ff92e3f3500ef8c7b95dd418bbf2ed11ea8d65031d6e8de42e8e43ab73D��
5ec01f00815a52d61439e813a4a0958fc52c9c59500edb2e2fabac3c7fe068c8
Kv��K�9�[u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Zq�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Yq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Xq�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Wq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�aq�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��`q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�_q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�^q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��]q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��\u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�fu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��eu�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�du�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��cq�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�bq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��lq�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�kq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�jq�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��iq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�hq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�gq�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��rq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�qq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�pu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�ou�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��nu�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�mu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��wu�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�vu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��uq�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�tq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�sq�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������}q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�|q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��{q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�zu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�yu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�xu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��~q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�
u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�
q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��	q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��$q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�#q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�"u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�!u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735�� u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��)u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�(u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��'q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�&q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�%q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������/q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�.q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��-q�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�,u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�+u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�*u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�5u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�4u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�3u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��2u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�1u�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��0q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�:q� Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�9q�) Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��8q� Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�7q�/ Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�6u}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�?u� Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��>q�' Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�=q� Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�<q�C Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��;q� Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561ofjflrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������Y��`��a��b��h��k��l��o��u��z���	���� �%�*	�0
�5�:�@
�E�K�Q�V�[�a�f�l�r�w�}���
����$ �)!�/"�5#�:$�?&�E'�J(�P)�V+�[,�a-�g.�l/�q0�w1�|2�3�4�
5�6�7�8�#9�):�.;�4<�:=�?>�E?�K@�PA�UB�[D�`E�fF�lG�qH�wI�}J�K�L�
M�N�O�P�#Q�)R�/S�4T�9U�?V�DW�JX�PY�UZ�[\�a]�f^�k_�q`�va�|b�c�d�
e�f�g�h�#i�(
(l��(�Y�Eq�C!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Dq�!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Cq�!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Bq�)!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Aq�!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��@u�- Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Ju�!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Iu�-!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Hu�!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Gq�'!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Fq�!Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Pq�'"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Oq�"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Nq�C"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Mq�"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Lq�"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Kq�)"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��Vq�#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Uq�#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�Tu�"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Su�"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Ru�-"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Qu�"Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024

e�r+��V��:��eD�/�
c7b50fc58609f6e4057703fe1bb83fe6a7c2c9ca068b534e97ac8c7a78e4c8f4D�.�
6bca052cf755c10a9a15dd05c1eba4a527bd36e88354bfc05d9a678661d7d827D�-�
4bec36ddbf5963ce6aa8fffba7900ae727da0978060620165937170bee608f51D�,�
e899e4be36103040ff23d743f3f3ec0eaf8bddfc2604aee19b9ab12e587d87e8D�+�
f4df6c727e6e445ddca7fe286fc32ec9aed6c8a3fddf42faf905580926d1117aD�*�
e0a4a368252a2466ddc2b35c58646282829e8b14ff12d3237645aab8609ca5c2D�)�
5f5c399567e8888b62c997c08412e019f0c5ddf8dd28c78cfa0128928dcd853eD�(�
662a9d17ec8e137ca36a020dc0efbe8ae088dfd2e1dab2436cf4496bf31f3c75D�'�
b6ff39e8375e47ff8d8c06f442a8b78add02677aa81e66db47255f6469357012D�&�
293f6c4af159003426f1ce9255f1bc981d24fe6d1e848489c5b960eb8d9b7e85D�%�
e31ccbd3696503d01bf17eb08d66c852a75d233ea3040b15ee14477f72f2013dD�$�
84534b4e8a9f57e1d6cedeafa786721a479e210dc0b2bc07dd005e62c961e69eD�#�
575a71de43d9ee448ec1678d6e6396b7c3cc5de05454e3681e5a3f900c5dc4bc
A#��A��[u�-#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Zu�#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Yq�'#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Xq�#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Wq�C#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������aq�$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�`q�C$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��_q�$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�^u�#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�]u�#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�\u�#Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�gu�$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�fu�$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�eu�$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��du�-$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�cu�$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��bq�'$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�lq�%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�kq�)%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��jq�%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�iq�/%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�hu}$Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�qu�%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��pq�'%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�oq�%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�nq�C%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��mq�%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�wq�C&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��vq�&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�uq�&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�tq�)&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��sq�&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��ru�-%Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�|u�&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��{u�-&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�zu�&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��yq�'&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�xq�&Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�''Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�~q�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�}q�)'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q�(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��
u�-(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�
q�(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�	q�C(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u�(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�(Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�')Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q�*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u})Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�#u�*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��"q�'*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�!q�*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y� q�C*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�)q�C+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��(q�+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�'q�+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�&q�)+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��%q�+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��$u�-*Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�.u�+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��-u�-+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�,u�+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��+q�'+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�*q�+Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��4q�',Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�3q�,Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�2q�C,Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��1q�,Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�0q�,Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�/q�),Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��:q�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�9q�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�8u�,Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�7u�,Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��6u�-,Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�5u�,Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��?u�--Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�>u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��=q�'-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�<q�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�;q�C-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������Eq�.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Dq�C.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Cq�.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�Bu�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Au�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�@u�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�Ku�.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Ju�.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Iu�.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Hu�-.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Gu�.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Fq�'.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Pq�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Oq�)/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Nq�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�Mq�//Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�Lu}.Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�Uu�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Tq�'/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Sq�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Rq�C/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Qq�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�[q�C0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Zq�0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Yq�0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Xq�)0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Wq�0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��Vu�-/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114

e�r+��V��:��eD�<�
9f8abcf48b89d3171a189ec5449a97b802ba649f300ad32218c8310d9ae89caaD�;�
63037d9ff075fdac3127a74533eb74eaba6a3dd7a6b714768f44507fd8962d88D�:�
e03fb473c4111b34ab231b026b46e185aba267a54abad312d1fc4be2fe1a79baD�9�
ddf36ad1ce4578114e5a65661c1a8de7696ede0b51d5d3a2d8ac551164a4d7ccD�8�
4bdf983ae009a8ef897188d860d0535c00a5071923c33261e644570fa2d5cb9dD�7�
7b0c0a663c4992773363ce6c177e9d75ad05e8f8ee19c76a4d1f71fdd6a97da0D�6�
a4e1b36b41fc592139af224d55fdf5ffecd2f6b528dd8ae73388911df76a9f02D�5�
f646388701bda1badf96a2fb3864cff8cec8c983277a87af8b050a51147a03afD�4�
bf7e4ecac92c09b957b31c3b99fe5124cb6807feecce32ee6137fa893ce3daecD�3�
056e7fe3c5a00be53248709c74120df1d6c073ef1b7b7beba63ff41d48f35c17D�2�
0c17cb1415294598f297a58396280f055f0f3258f080b1ab697bfe04bbe0008dD�1�
4d77c6049313415fe1c4aab3e4ee43727167a46b87e28723f6c79f4bffef3607D�0�
e2a3860deceb4f2f2ddc8390def1eb021196fee5ef075702ec1588374818efa6
�~���|�`u�0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��_u�-0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�^u�0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��]q�'0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�\q�0Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��fq�'1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�eq�1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�dq�C1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��cq�1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�bq�1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�aq�)1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��lq�2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�kq�2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�ju�1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�iu�1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��hu�-1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�gu�1Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��qu�-2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�pu�2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��oq�'2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�nq�2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�mq�C2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������wq�3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�vq�C3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��uq�3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�tu�2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�su�2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�ru�2Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�}u�3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�|u�3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�{u�3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��zu�-3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�yu�3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��xq�'3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q�4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�~u}3Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u�4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�
q�C5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�
q�)5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��	q�5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-4Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u�5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�5Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q�7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u�6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�6Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��#u�-7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�"u�7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��!q�'7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289� q�7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������)q�8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�(q�C8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��'q�8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�&u�7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�%u�7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�$u�7Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�/u�8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�.u�8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�-u�8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��,u�-8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�+u�8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��*q�'8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�4q�9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�3q�)9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��2q�9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�1q�/9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�0u}8Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�9u�9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��8q�'9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�7q�9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�6q�C9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��5q�9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�?q�C:Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��>q�:Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�=q�:Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�<q�):Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��;q�:Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��:u�-9Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Du�:Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Cu�-:Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Bu�:Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Aq�':Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�@q�:Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Jq�';Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Iq�;Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Hq�C;Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Gq�;Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Fq�;Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Eq�);Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��Pq�<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Oq�<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�Nu�;Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Mu�;Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Lu�-;Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Ku�;Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��Uu�-<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Tu�<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Sq�'<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Rq�<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Qq�C<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������[q�=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Zq�C=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Yq�=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�Xu�<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Wu�<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Vu�<Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735

e�r+��V��:��eD�I�
ed6e07b307de61a56b4041aaba7661b6fcdeb599402390671b3db4d8c0b4cdfcD�H�
8f01b6b2a6ce4e4129d3b25510ee332c113e0f671df54f56ad2dff8e711a11b8D�G�
eb7bebdbd517434195d041324099366ce234dfd58929430224320ff59b866c8eD�F�
864bee28e84214e17a2569dc4782fe389e64424fc470fc80157b86f2bdf0df03D�E�
2ebe4dd6652fe19a01c6576bd236175a5952205b51f6f3c76a25a539af114ca1D�D�
e818d4e04d72d3014d26343beb92384fad7a4c394dde4f7dc2a541d0416f569fD�C�
132ce82de39a18ad1be89af9ce56bdf2cf2471eddae86a469dfbdaef42478652D�B�
55db8fa1e758d5038aa9f74ed8982f1b73505b989a9643ef81f8b704f975fb8cD�A�
2eb32fa5c1642715eed3bff00d204b72790f716770349e1a3307229ec9f1a88aD�@�
4badd67c65c46b09cdfb999c67dcf07efbec0e2b1b5ee21318fb415d90aff27eD�?�
1b7c83c31498a1d9eec34b76e89035fa039c4d34cdfb507851df956c9a5cb86bD�>�
8901005d391fcf6247d95caeaae9763898d0d5a0e8da308e73380bbdefdbbb1cD�=�
90b4df9d1f42ba4c9d6ed5a171805bd3aa1ab73ca030c78d62b088ffd716ff81
$q4�!�$|�au�=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�`u�=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�_u�=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��^u�-=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�]u�=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��\q�'=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�fq�>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�eq�)>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��dq�>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�cq�/>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�bu}=Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�ku�>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��jq�'>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�iq�>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�hq�C>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��gq�>Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�qq�C?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��pq�?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�oq�?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�nq�)?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��mq�?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��lu�->Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�vu�?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��uu�-?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�tu�?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��sq�'?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�rq�?Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��|q�'@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�{q�@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�zq�C@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��yq�@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�xq�@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�wq�)@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q�AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u�@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��~u�-@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�}u�@Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�CAOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������
q�BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�CBOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�
u�AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�	u�AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�AOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u�BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}BOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�CCOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�#q�CDOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��"q�DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�!q�DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L� q�)DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�(u�DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��'u�-DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�&u�DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��%q�'DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�$q�DOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��.q�'EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�-q�EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�,q�CEOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��+q�EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�*q�EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�)q�)EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��4q�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�3q�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�2u�EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�1u�EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��0u�-EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�/u�EOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��9u�-FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�8u�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��7q�'FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�6q�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�5q�CFOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������?q�GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�>q�CGOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��=q�GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�<u�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�;u�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�:u�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�Eu�GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Du�GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Cu�GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Bu�-GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Au�GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��@q�'GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Jq�HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Iq�)HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Hq�HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�Gq�/HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�Fu}GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�Ou�HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Nq�'HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Mq�HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Lq�CHOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Kq�HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�Uq�CIOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Tq�IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Sq�IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Rq�)IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Qq�IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��Pu�-HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Zu�IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Yu�-IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Xu�IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Wq�'IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Vq�IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738

e�r+��V��:��eD�V�
147dc35e6fff3dff6a81de8b9ddae7411d557a2f80bb93a6b4040fde544b5c73D�U�
0c0ba36a5e8704ab304024f5f4bc9616e4592da8ef6293f27ee584cd13805973D�T�
176d124a27956ac315b44b6b42bb13fe2fa7702d805ae7b58731b8d634bc0a2eD�S�
34210a0ec25b1987cb28b7719bb7ab7d7eff1adb56711dc0f4835ba89256cc82D�R�
bf1f40d6279d065b649f886d586e1bc6bb518de89df420459f9ba36c8a3f403aD�Q�
129f6f9ff00bcf11fa14cab3ec12d80bf9b9612f1194adc7aaacead1b3e7b651D�P�
4935d172a32f8bef9fd07236702a965e4d14a6e86b534e6c52fbe4aad6047e03D�O�
87fc214b49a5aba9c5d113e739d9654287b4a0272123ff8eead1a12b7c845ec3D�N�
4e0fff288896ea81f4c997cb6ce0c357c6515c6987555c53ddbd8c800177f083D�M�
a8c33d4ab95933b150aa784ba9bae1d03d59e6633afd229fc51bafff1df0e892D�L�
e36b9d803bc4c2cac122e737759eaaf8944848895c016d80232d05a405a97587D�K�
e7be65394477619c3bc276a472efa4a7f642dce66c5dee203826d0391223391aD�J�
5d10762096ebcbd7efdc8eecb2d15ca2b35d49c6fbf417a3f85b555ac622eafc
60�$G�6��`q�'JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�_q�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�^q�CJOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��]q�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�\q�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�[q�)JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��fq�KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�eq�KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�du�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�cu�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��bu�-JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�au�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��ku�-KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�ju�KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��iq�'KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�hq�KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�gq�CKOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������qq�LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�pq�CLOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��oq�LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�nu�KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�mu�KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�lu�KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�wu�LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�vu�LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�uu�LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��tu�-LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�su�LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��rq�'LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�|q�MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�{q�)MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��zq�MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�yq�/MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�xu}LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u�MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�~q�CMOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��}q�MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�CNOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�
u�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��	q�'NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�COOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�
q�)OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u�OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�CPOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������#q�QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�"q�CQOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��!q�QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|� u�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�)u�QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�(u�QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�'u�QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��&u�-QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�%u�QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��$q�'QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�.q�ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�-q�)ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��,q�ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�+q�/ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�*u}QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�3u�ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��2q�'ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�1q�ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�0q�CROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��/q�ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�9q�CSOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��8q�SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�7q�SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�6q�)SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��5q�SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��4u�-ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�>u�SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��=u�-SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�<u�SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��;q�'SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�:q�SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Dq�'TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Cq�TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Bq�CTOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Aq�TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�@q�TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�?q�)TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��Jq�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Iq�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�Hu�TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Gu�TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Fu�-TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Eu�TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��Ou�-UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Nu�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Mq�'UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Lq�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Kq�CUOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������Uq�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Tq�CVOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Sq�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�Ru�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Qu�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Pu�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�[u�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Zu�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Yu�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Xu�-VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Wu�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Vq�'VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�`q�WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�_q�)WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��^q�WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�]q�/WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�\u}VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759

e�r+��V��:��eD�c�
31dbae1dc23e561a169170b6a4e76e5abb65227590e305195a2a4c4709cc4a0dD�b�
6fc93f49bcfb356742bd0f053b32fc44739f52e356d8575874ed5e03d9fd09baD�a�
7d006c10e1e850ab6583783df33de8d968fa27fd47068c159bb2bac55c7eeecaD�`�
222d1cb4f63704dc1cb456a7733ac13be509de7210e4f3ef68095502f871ad42D�_�
889cf274fa9d2dc353f72daefeafeef0bab8bbc22a11e69f5009602f524dfc5fD�^�
b023cc7bb4beba93c1fa4b4ea3d00f85891637ae3f1692b51863007e799f93e4D�]�
8649585113a6705fe59be338b82b0ec406c0c3351b940dbebdffabd40fbc2eb5D�\�
c24fe30d66c39a6dc7e1701a8503f46d3e747baaf032761258334310ad79e035D�[�
9952c1ad9640539f832b2907ecca1438442f4d21c5b1159a6b061b54d0245407D�Z�
600d4f94f14cc026544d704f5a8190f1e11d4020dcff350bfca31fef4c037731D�Y�
ee225d31e25d3fd9c6524bed27748c75c0944037288a89578e3005fb2eedea8fD�X�
b2a7339af908b8ee4bf1f85d0d58404c6e69e1311f16a5ce08f7c4e01629bac6D�W�
3c80748d03286542b429491e9861564380252fcbcd1d92283ddfa799fb2dc3f5
Kv��K�9�eu�WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��dq�'WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�cq�WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�bq�CWOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��aq�WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�kq�CXOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��jq�XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�iq�XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�hq�)XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��gq�XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��fu�-WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�pu�XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��ou�-XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�nu�XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��mq�'XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�lq�XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��vq�'YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�uq�YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�tq�CYOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��sq�YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�rq�YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�qq�)YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��|q�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�{q�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�zu�YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�yu�YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��xu�-YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�wu�YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�~q�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�}q�CZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q�[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�
u�[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��
u�-[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�	u�[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q�\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u�\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�C]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�"u�]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��!u�-]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9� u�]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�']Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��(q�'^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�'q�^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�&q�C^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��%q�^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�$q�^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�#q�)^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��.q�_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�-q�_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�,u�^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�+u�^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��*u�-^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�)u�^Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024of�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������k�4l�9m�?n�Eo�Jp�Oq�Ur�Zt�`u�fv�kw�qx�wy�|z�{�|�}�~����#��)��.��3��9��>��D��J��O��U��[��`��e��k��p��v��|������
��������"��(��.��3��9��?��D��I��O��T��Z��`��e��k��q��v��{��������������#��(��-��3��8��>��D��I��O��U��Z��_��e��j��p��v��{��������������"��(��-��3��9��>��C��I��N��T��Z��_��e��k��p��u��{����������
A#��A��3u�-_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�2u�_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��1q�'_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�0q�_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�/q�C_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������9q�`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�8q�C`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��7q�`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�6u�_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�5u�_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�4u�_Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�?u�`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�>u�`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�=u�`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��<u�-`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�;u�`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��:q�'`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Dq�aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Cq�)aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Bq�aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�Aq�/aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�@u}`Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�Iu�aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Hq�'aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Gq�aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Fq�CaOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Eq�aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�Oq�CbOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Nq�bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Mq�bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Lq�)bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Kq�bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��Ju�-aOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Tu�bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Su�-bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Ru�bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Qq�'bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Pq�bOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Zq�'cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Yq�cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Xq�CcOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Wq�cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Vq�cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Uq�)cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��`q�dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�_q�dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�^u�cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�]u�cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��\u�-cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�[u�cOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024

e�r+��V��:��eD�p�
47ba59d4b1cb5b673b1229b14f41032935be9d093380d4ebda5b7a3a020d1829D�o�
c19464cde9f5e6924a75e43dc5a5f2a6f67fe7b180bebf78fe28c2a9ea75b38aD�n�
733cd7b64f33a955dabc853a4b1cd0c8c37bf1e8e726fc0bacb1d1ce4472cea3D�m�
b0a39d51fd2f8d6d5a8f011e24a249847065815606a7f38e2041f4b496cc0190D�l�
a0725d3676ffa6a24b4686e544f68d9c21b869c274d28cebfafb3c70638c371eD�k�
bba4318d019ae161e780b129f85d5ab91b299e3b9745f99a659fc52dacdfb221D�j�
6151436b0cdfffbc9de946bc989ec92ce8de7794357a065c433e0c8dfd3e7fdbD�i�
7f851a8769285e3f9758a4eaf850aac198635f11095424df455837066af7c141D�h�
8dbf315b824ef3ed709ed82b3c42515cc6137b6f4eaf95ccff91f5d362b86985D�g�
a1970a5fc923219ddca4fa8d05e7f29ee858edf46448313a44734fb4d4c4149dD�f�
22e3e72ea0793e34fa431ce4f6c77af3460b1cd5e67558a3b644f1e438900d99D�e�
42ab3de394252ea2575955dde550d26c4c2d82245f48145c1880b3eee1f049e5D�d�
f313883838c79487308bec6209cc25ea688f77759c6bbdb331c4237999334033
A#��A��eu�-dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�du�dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��cq�'dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�bq�dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�aq�CdOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������kq�eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�jq�CeOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��iq�eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�hu�dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�gu�dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�fu�dOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�qu�eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�pu�eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�ou�eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��nu�-eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�mu�eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��lq�'eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�vq�fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�uq�)fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��tq�fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�sq�/fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�ru}eOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�{u�fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��zq�'fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�yq�fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�xq�CfOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��wq�fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�CgOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�~q�)gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��}q�gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��|u�-fOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u�gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�gOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�
q�ChOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��	q�hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q�iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u�hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�
u�hOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�CiOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q�jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�CjOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u�iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�iOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�#u�jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�"u�jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�!u�jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735�� u�-jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�(q�kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�'q�)kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��&q�kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�%q�/kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�$u}jOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�-u�kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��,q�'kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�+q�kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�*q�CkOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��)q�kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�3q�ClOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��2q�lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�1q�lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�0q�)lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��/q�lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��.u�-kOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�8u�lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��7u�-lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�6u�lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��5q�'lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�4q�lOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��>q�'mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�=q�mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�<q�CmOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��;q�mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�:q�mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�9q�)mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��Dq�nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Cq�nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�Bu�mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Au�mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��@u�-mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�?u�mOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��Iu�-nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Hu�nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Gq�'nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Fq�nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Eq�CnOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������Oq�oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Nq�CoOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Mq�oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�Lu�nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Ku�nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Ju�nOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�Uu�oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Tu�oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Su�oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Ru�-oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Qu�oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Pq�'oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Zq�pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Yq�)pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Xq�pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�Wq�/pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�Vu}oOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�_u�pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��^q�'pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�]q�pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�\q�CpOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��[q�pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�eq�CqOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��dq�qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�cq�qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�bq�)qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��aq�qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��`u�-pOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114

e�r+��V��:��eD�}�
0fa4711e307981d6c9174ab9d2a6a3091cae2a4a43da04ce41a45407c143d240D�|�
bffc06b208a2645d2beeed5ae0505ff7be55cec6055ed415ae076e3e74f9aa2eD�{�
83b3cec745768f57ddcdabe20c4c848fee7126552012cc9fa7a1be366825f4adD�z�
b050823fb61726e8976cc72b306b33896e52a61ba34741aaaacac29f20a9d428D�y�
f65aabbd9e294d13896f966d93142b9e462abc508dc124cbced08758d3d9247aD�x�
f037f86f203b3b15569c8b08388aeeeba9eda00ceac6945410b851d91563d688D�w�
de01b8c6bef6e8935094026fbbfa516daaf970a7e92df84e3705c559853ece19D�v�
74cf9b03dd4c4fd8b948481f59523011514a6b13612c953041fe8c112c7aa0d9D�u�
e783291d5ab16df4900451958335994c05de05b904aa33cf87682f106e2baf20D�t�
3b72db221eb1db189edcf9c97b83663b0494d24fa1fe73c09e6916b1baaec8e6D�s�
eb1886e298af82bc97e979491381fe23e271aabb79f09bef435b84c876817fbdD�r�
ad3ed272a76cefffd6cfcbe64c326b1286965a0a1950072cb4a2337f839ca989D�q�
a83eb350bcaf8f5bf58970e8c94bdcbdd5f690dc3d7e90d21bf5532d9a597c62
�~���|�ju�qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��iu�-qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�hu�qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��gq�'qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�fq�qOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��pq�'rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�oq�rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�nq�CrOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��mq�rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�lq�rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�kq�)rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��vq�sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�uq�sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�tu�rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�su�rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��ru�-rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�qu�rOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��{u�-sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�zu�sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��yq�'sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�xq�sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�wq�CsOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q�tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�CtOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�~u�sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�}u�sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�|u�sOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u�tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u�tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u�tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q�uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��
q�uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�	q�/uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}tOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u�uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�CuOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��
q�uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�CvOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q�vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-uOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u�vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u�vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q�vOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��"q�'wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�!q�wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y� q�CwOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q�wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q�wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��(q�xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�'q�xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�&u�wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�%u�wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��$u�-wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�#u�wOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��-u�-xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�,u�xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��+q�'xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�*q�xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�)q�CxOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������3q�yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�2q�CyOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��1q�yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�0u�xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�/u�xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�.u�xOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�9u�yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�8u�yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�7u�yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��6u�-yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�5u�yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��4q�'yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�>q�zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�=q�)zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��<q�zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�;q�/zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�:u}yOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�Cu�zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Bq�'zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Aq�zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�@q�CzOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��?q�zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�Iq�C{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Hq�{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Gq�{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Fq�){Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Eq�{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��Du�-zOyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Nu�{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Mu�-{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Lu�{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Kq�'{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Jq�{Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Tq�'|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Sq�|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Rq�C|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Qq�|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Pq�|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Oq�)|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��Zq�}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Yq�}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�Xu�|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Wu�|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Vu�-|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Uu�|Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��_u�-}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�^u�}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��]q�'}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�\q�}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�[q�C}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������eq�~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�dq�C~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��cq�~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�bu�}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�au�}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�`u�}Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735

e�r+��V��:��eD�
�
aae99874c09826e7ffdc47307dc7fa4aa1ef9302e99a8432186772a7619d629dD�	�
7621e69d1f6a5287ec45f7ae6e9410b61ce65c095de32ed792b022a4520de7d1D��
f854a25eb972d3b371b5576e432a9a20947bb7be07e83253e98bd2b39025d16aD��
daad2593294d57ecd2ba590f2b8292ca6c1a15ac312f2ce7da8dbb7128a21db5D��
da3a8c2abd8f7012e5d4bebd1103714f6d567dbd1f5281431b01ffd6d61025fbD��
48c1cdad82823961370ac3c16ed4a93a8b8b46bde9034024316e1a72af9522d4D��
c6f14dac0ec25c398840115e52a340353f02aaea3834f3a0eba9c59477ed29acD��
682b34f9ba65eb2126b3140d6fe7319d11e990cef5a3d74f66b79f00719e6adaD��
dba6df762c2a7b4df2011636555ed8910dd7c702ac1a8c2233d5bdc1752907ddD��
bece87454982682fbdb7722fda453b231999ee186bb714b2151fb7a2f81a9897D��
411d4dcdad36f25940ac90a44c595935da1b410049409e9047bf8e5a0d896d00D��
0ee97394870cffe996ee7e4b916ac7fd3a1843f7b577ee2bf1a309f6b5e3e325D�~�
79973cc33f53bcaa66861b86f5ca88df66744a2b5a58c2f2f7f0dc2e37c67a36
$q4�!�$|�ku�~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�ju�~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�iu�~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��hu�-~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�gu�~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��fq�'~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�pq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�oq�)Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��nq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�mq�/Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�lu}~Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�uu�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��tq�'Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�sq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�rq�COyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��qq�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�{q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��zq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�yq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�xq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��wq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��vu�-Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�~u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��}q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�|q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�
u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�	u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�
q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�"q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�!q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-�� q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�'u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��&q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�%q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�$q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��#q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�-q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��,q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�+q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�*q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��)q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��(u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�2u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��1u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�0u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��/q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�.q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��8q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�7q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�6q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��5q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�4q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�3q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��>q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�=q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�<u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�;u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��:u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�9u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��Cu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Bu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Aq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�@q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�?q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������Iq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Hq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Gq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�Fu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Eu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Du��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�Ou��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Nu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Mu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Lu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Ku��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Jq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Tq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Sq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Rq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�Qq�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�Pu}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�Yu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Xq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Wq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Vq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Uq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�_q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��^q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�]q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�\q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��[q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��Zu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�du��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��cu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�bu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��aq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�`q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738

e�r+��V��:��eD��
08ec368681cd5235d44e7c13637d697d5bc44aaf5cfd9f49fc33531191a5717bD��
dbc4de07d0e60afa27428cc96344b4424c8cf8209e8961f014f4989de0ede96dD��
8ba45a2931417326f5988ff2fa9db54c083bfab2f5fe260ea31072a26b0d9adbD��
d60ccb9327412f5e9b92a65ce3c4d3ec7c9cef9e0d21433888157b9758c62587D��
966ec9754e2cc3fe39729998dcef6f877a9061b02c36cada54ff696eb4dd98c6D��
ab37db3638f3d63077ca3270c6b587f0147ede183844f7fd95cc12babea8f8a8D��
94aaf8d6f0db1300c892d45a1a8334173bca651326cfadf717623f714460fe61D��
6838d1704d6089791d6b3d53de842f0901465128bc97227e71cbfb2073418234D��
03ea957f3e2be56bc876a29ef48424ad8cc38c240505a263f9907bb55882d20fD��
32fdc77032a9de115471b54289fc5f0fd4e2fe3f428c90a14db22d18d246a781D�
�
0f2b27230afc7e0f0e4681b53e974e613f93cdd1f542dd4b63a37b74db2caa55D��
6d6d3ccc17a9eee0b41995b6db620df39e9070da91831a1ee3a9c9f9bf6eb135D��
d0a250d18f4b89599438cfd448782db11f8012472af6df48eced91d60be23eb0
60�$G�6��jq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�iq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�hq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��gq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�fq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�eq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��pq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�oq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�nu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�mu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��lu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�ku��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��uu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�tu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��sq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�rq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�qq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������{q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�zq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��yq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�xu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�wu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�vu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��~u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�}u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��|q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��
q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�	q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��
q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��"q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�!q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{� u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��'u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�&u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��%q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�$q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�#q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������-q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�,q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��+q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�*u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�)u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�(u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�3u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�2u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�1u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��0u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�/u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��.q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�8q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�7q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��6q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�5q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�4u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�=u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��<q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�;q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�:q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��9q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�Cq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Bq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Aq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�@q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��?q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��>u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Hu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Gu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Fu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Eq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Dq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Nq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Mq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Lq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Kq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Jq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Iq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��Tq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Sq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�Ru��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Qu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Pu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Ou��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��Yu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Xu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Wq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Vq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Uq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������_q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�^q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��]q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�\u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�[u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Zu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�eu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�du��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�cu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��bu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�au��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��`q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�jq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�iq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��hq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�gq�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�fu}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759

e�r+��V��:��eD�$�
cd5dcd832d5dda7bea32dbdbe45ad8e13ef022b0a9d83e5b78427944aaab8f18D�#�
847a5e41805b10521ebc6aff29431992c0a22a8d17c634a1e13970158fa1af9cD�"�
45aa06d1829f4839d099598b630eabc9be0756f534ae4a81d0d6b7ab5922bc09D�!�
4e697ffc60fca75a99deb8089617f94c12550b52fd5e8a07ec885967667c7541D� �
b6d54a557b4be65879c789367443480c4c3cb12adfbb35c324b6786e2f8ba2a7D��
65b46c58329dcd3a310fbfb4c8b9371639bb59c96629f150e82a7820305f44fbD��
fc3bab612213d15e8f3305d921a6c746a042fa8d06b3e8b75aa25f4eeced3daeD��
83c007c9ec430e38dbcdce8b868daa1718da2090b7ef60980dfaeff2c633aa2fD��
25c4de241ae499bb87004a0bd23c0264cf0e5ec7003c83fa57962fc6ca0fff80D��
d63186e6cef38839b7dec9223b2e71fce4525a6125dbb201cab77ddcd29b6eb3D��
8126411e939ed28c342373246930b21454d5af2651f4d36c56e7d17b279978ffD��
e4d444d844a4cafb1f7e4fa1a67562e38078b7cbb3816a7216492e9a2d40c822D��
b067b77274a7e008ceafa9fe949f6649af4f291e1fe843cc01d5255b977ff6be
Kv��K�9�ou��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��nq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�mq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�lq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��kq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�uq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��tq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�sq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�rq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��qq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��pu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�zu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��yu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�xu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��wq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�vq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�~q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��}q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�|q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�{q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�
u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��	q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�
u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759ofVflrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������"��'��-��2��8��>��C��I��O��T��Y��_��d��j��p��u��{��������������"��'��-��3��8��=��C�H�N�T�Y�_�e�j�o	�u
�z��
�����!�'�,�2�8�=�C�I�N�S�Y�^�d�j!�o"�u#�{$�%�&�'�(�)�*�!+�',�--�2.�7/�=0�B1�H2�N3�S4�Y5�_6�d7�i8�o:�t;�z<�=�>�?�@�A�B�!C�&D�,E�2F�7G�=H�CI�HJ�MK�SL�XM�^N�dO�iP�oR�uS�zT�U�
Kv��K�9�!u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024�� q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�'q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��&q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�%q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�$q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��#q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��"u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�,u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��+u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�*u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��)q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�(q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��2q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�1q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�0q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��/q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�.q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�-q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��8q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�7q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�6u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�5u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��4u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�3u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��=u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�<u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��;q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�:q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�9q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������Cq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Bq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Aq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�@u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�?u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�>u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�Iu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Hu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Gu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Fu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Eu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Dq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Nq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Mq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Lq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�Kq�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�Ju}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�Su��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Rq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Qq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Pq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Oq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�Yq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Xq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Wq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Vq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Uq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��Tu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�^u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��]u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�\u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��[q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Zq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��dq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�cq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�bq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��aq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�`q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�_q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��jq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�iq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�hu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�gu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��fu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�eu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024

e�r+��V��:��eD�1�
5bf7fa347b641deaa5b1dd5752635a5a43ee644e71cca2e924839f74490cf862D�0�
3baf28c0979d5f90558e58f7499f8c92082cc8e9b4e8e68acfa4d95a6a902be4D�/�
3af5287deb01c0880a6d6916b3fc0ecdfaf93e576369b1b9cfdcc1613bc22a7dD�.�
33beb19a202929092a6e1605a3f6115c5442714589a627267a8ba12528865a7eD�-�
8cab4a117a1efc20543417ed7f4d69f0626329800f58029dc586d0a2bdadea33D�,�
27091e98db08364ca7ce67c92ed7fea1f2ef9a1b64dd06f659d6bb1cf563d729D�+�
a4aa01b378a3f60ccb4500c7b55fd5e37fde220dcb3863302b729de23aefcf5aD�*�
332d0c5fbd59617b2854c4ef7acc7a7862676bdf591666e519d3b09c2f3435e8D�)�
ecb4654a5f2ad2d8e3539f0b0076eee523a54eda425ef270ec5cb0394fa1ea8cD�(�
04338d51e121bd3112024a6e032e9dc376c437e7d1914a17d85868c3c59e8f72D�'�
d31ed1bf33208a48c1659c4aa33c952c4a88624e0ef52fdda4e5cb196354ac40D�&�
d264ee805ecda49c30b17382368adfa7d60dde5fe60862b200ff3a5b11b02cfaD�%�
248724675fc45561c18b6906dfbeacda8c1e9b4451c512be528649e3e34c63b9
A#��A��ou�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�nu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��mq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�lq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�kq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������uq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�tq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��sq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�ru��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�qu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�pu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�{u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�zu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�yu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��xu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�wu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��vq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��~q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�}q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�|u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��
q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�	q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��
q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��!u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9� u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������'q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�&q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��%q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�$u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�#u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�"u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�-u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�,u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�+u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��*u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�)u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��(q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�2q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�1q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��0q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�/q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�.u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�7u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��6q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�5q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�4q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��3q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�=q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��<q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�;q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�:q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��9q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��8u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Bu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Au�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�@u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��?q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�>q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Hq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Gq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Fq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Eq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Dq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Cq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��Nq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Mq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�Lu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Ku��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Ju�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Iu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��Su�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Ru��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Qq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Pq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Oq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������Yq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Xq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Wq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�Vu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Uu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Tu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�_u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�^u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�]u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��\u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�[u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Zq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�dq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�cq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��bq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�aq�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�`u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�iu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��hq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�gq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�fq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��eq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�oq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��nq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�mq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�lq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��kq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��ju�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114

e�r+��V��:��eD�>�
9bbb081fdd6485184aa28dae8f3c1946680fdf0f31efe538dc75912939ac72efD�=�
041f5f1e8b93254eb47e8b18434325a8ecfea6152330918662e991c8b435cdfeD�<�
f5670dae0add00bdfd492611247f9503be7281552df1cc745f5b359269462efdD�;�
64eaa7b016a8e2dfc63c23045a2a81e467d7e0553af8d19b447d9f84265a2b26D�:�
ae4a37c25fe4cd0a6a91a2140530796b4b2c6059cf099f2bd2f65504b92e3742D�9�
53777bef4b884ec988d12664f72eaadc76fa2b24890080c6649e74f9c9769d94D�8�
f7c83637d8468e19213b90ac92d161c309fd5941a55567c16d8598b7ff66e882D�7�
6389f5f5c812cb020dd4bcf4dc948be8137ffef92ecbea10a81268530ca43c7bD�6�
18a944fd24888ada7034062b23c8096dad6ee599c3c1262ac434394919b64aeeD�5�
4535717be95f1dcc2921d19bb37276451f877f99558ee69df6a67597d545a010D�4�
15a85325dd91b5d41165cb155f2faac7f1c67c75551d52a664027fc559a5c62cD�3�
2676b39f946e027f903e8815ed686e37a2b8101f353ca2063367ccce93da761bD�2�
2aba6dcda4b716437cd39f662b144aa8fe26ea6f15b54f36ae5c7340a33c8b36
�~���|�tu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��su�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�ru��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��qq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�pq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��zq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�yq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�xq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��wq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�vq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�uq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�~u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�}u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��|u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�{u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�
q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��	q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�
u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�!q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058�� q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�&u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��%u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�$u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��#q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�"q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��,q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�+q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�*q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��)q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�(q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�'q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��2q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�1q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�0u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�/u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��.u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�-u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��7u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�6u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��5q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�4q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�3q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������=q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�<q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��;q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�:u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�9u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�8u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�Cu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Bu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Au��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��@u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�?u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��>q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Hq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Gq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Fq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�Eq�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�Du}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�Mu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Lq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Kq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Jq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Iq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�Sq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Rq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Qq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Pq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Oq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��Nu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Xu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Wu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Vu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Uq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Tq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��^q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�]q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�\q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��[q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Zq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Yq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��dq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�cq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�bu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�au��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��`u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�_u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��iu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�hu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��gq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�fq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�eq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������oq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�nq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��mq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�lu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�ku��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�ju��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735

e�r+��V��:��eD�K�
9db93e031838e2ddbd104024296a70bd847b8e704bfa2e92f767297158bf6b6cD�J�
a219a29b75fdb33749412440d21f8b1ff92ad6616637e7e8cb818daf66fabe36D�I�
8864cd46b197d894c0037ac70b483f8091d39212b9cf6ace09e8c117d76a1c12D�H�
0dc9fbacba7b11cb8fe67dd7a2596d89132d937ce3099a1e872d630f5f68fafcD�G�
5a34d2e48c7b78b23d4ae6c9697fa3094d3e9bc3dfdb7d09f1670206a32b7e46D�F�
23bb9783bb909c0cddbbcaeb08d2ecd0d27ba3325b65571783ef5837be019a60D�E�
af59395f80e4a8af28d6c6ccafe41de973b85b01eae99f978460cfe0198a5ee6D�D�
f93d558436474dcf26feea265313045cb98abbe57849c1f0f07a622d83612eb1D�C�
30fb1512e1cb3b565ab1bc735499011c641766b730df4ce0ba6baf035db92c70D�B�
9d6605784a491b25286fafef98f82226f7634b2197c483f0273690b3701d2853D�A�
cfbce8f5d94f01a7ce8c1dc8545168b7c3c1c2a62bae89f00a69ebd439002ffaD�@�
c5b8ab0d8d7cb70f48d43af7b11ed34cd4a069ee3f243e0b5c1601adbbf3b7baD�?�
87421442fb8dc3f0b7025e35dcc33c47b33e35e6cff668106fc871a7fdc443b7
$q4�!�$|�uu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�tu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�su��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��ru�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�qu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��pq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�zq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�yq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��xq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�wq�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�vu}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��~q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�}q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�|q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��{q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�
u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��	u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��
q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������!q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y� q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�'u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�&u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�%u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��$u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�#u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��"q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�,q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�+q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��*q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�)q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�(u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�1u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��0q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�/q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�.q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��-q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�7q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��6q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�5q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�4q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��3q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��2u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�<u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��;u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�:u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��9q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�8q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Bq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Aq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�@q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��?q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�>q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�=q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��Hq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Gq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�Fu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Eu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Du�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Cu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��Mu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Lu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Kq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Jq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Iq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������Sq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Rq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Qq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�Pu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Ou��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Nu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�Yu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�Xu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�Wu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Vu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Uu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Tq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�^q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�]q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��\q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�[q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�Zu}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�cu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��bq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�aq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�`q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��_q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�iq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��hq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�gq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�fq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��eq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��du�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�nu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��mu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�lu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��kq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�jq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738

e�r+��V��:��eD�X�
758f0b0b263f27bf6a17362a156e2d236f0210bb8fd11a69dbd5e2d9ca1be328D�W�
c0676678d1a3bcf8ce6a786607357db6145dd2dff6d685cc3e3b7312511343fcD�V�
0e63c2347e36ece8d4f15909b64a5a6c3b79f38a6e53f614e310fbfd86f26b06D�U�
f9c8ee59079e1a20cac32e3fe1b20f6f94b271c132efb4de7f5f0ebad73c632dD�T�
6813b3fd706e79a0721cb26c926c2fdd57aaf1300c3f48cd8573cbf02eb06168D�S�
3a7a5d5027216e07b3eae0f5b2cf013760700d03cca8961ca4395cd637ac3c5eD�R�
2b0dc7f8c8bffbe06bd0124f1cbc07bb9eda4e34b45db595e6101d68eee5ebedD�Q�
37356ac1734506c064e4fdf1e87d69a442a12767a7e98626e8c9c571fb460198D�P�
4874985f1d75f7c43dceb6929982f36fc7a9566042a70c22a42bc6e3e6a65b58D�O�
a52c89128003d6c528346ece42b32f7126708399f05995deaa7aa1e7035625a9D�N�
9c90fdb57f5b173c0200715d87a85083b5f8dd268a7aef1df7baddcd4f7ba0adD�M�
c7df39cc317144af8cab982c0134ec6182c78bfaafe8e47f94f33a0cd4991c97D�L�
c9587fe47330c8c9650ddea3de6ed9574b7027a816ed5dc48c5f19783f043700
60�$G�6��tq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�sq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�rq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��qq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�pq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�oq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��zq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�yq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�xu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�wu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��vu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�uu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�~u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��}q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�|q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�{q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�
u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�	u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�
q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|� u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��&q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�%q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�$q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��#q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�"q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�!q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��,q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�+q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�*u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�)u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��(u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�'u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��1u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�0u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��/q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�.q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�-q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������7q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�6q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��5q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�4u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�3u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�2u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�=u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�<u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�;u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��:u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�9u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��8q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�Bq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Aq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��@q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�?q�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�>u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759
Kv��K�9�Gu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Fq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Eq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Dq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Cq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�Mq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Lq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Kq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Jq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��Iq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��Hu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�Ru��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Qu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Pu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��Oq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Nq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��Xq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�Wq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�Vq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��Uq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�Tq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�Sq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-
&�/�2�&��^q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�]q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�\u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�[u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��Zu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�Yu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��cu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�bu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��aq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�`q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�_q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������iq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�hq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��gq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�fu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�eu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�du��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�ou��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�nu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�mu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��lu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�ku��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��jq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289
V�3��V�tq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�sq�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��rq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818�O�qq�/�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-31^��- fence_compute/fence_evacuate: fix region_name content type and
  project shortopt in usage text and project-domain shortopt
  Resolves: rhbz#1760203
- fence_rhevm: add cookie support
  Resolves: rhbz#1763675
- fencing: improve stdin quote parsing
  Resolves: rhbz#1769784w�pu}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759

e�r+��V��:��eD�e�
c3729b12ca4075c75da87d40054a8cd81d3a2be928846fec9b090f2282da0809D�d�
f0254a038a74be08cf548424dccbe986696e47e0e50cd52cf8f1ecdf5cf432b0D�c�
e1db7a00d2204d116b7e75f87e236094c6578a2ebf4a48a7af11edd3618ebce3D�b�
b233baa0fb9d61676aea025d1f7b834810ad66467adee309673c302ed29261eeD�a�
87b930e9a82a5887d60c5bf35a95284a59744832eca1423a916a46ac5dc807a3D�`�
7d0c45c842a51eb4e14eecce16a8da906ea6668258c6fe279d9649645d4bd422D�_�
a4124d55ffe94d6e2682cb82eb1191d84b8b271f2950a8cbf86be4ade606a768D�^�
58a5f6025a63f07b9dc9793ec13c58029a3502315d1bb29d4c7015091c9e8dbeD�]�
c565a665dee8bff0a1df1f9e228b65e7935723b9a6e91ae26f4b30dc3b90452bD�\�
2f00c2ff15b5c113c361dc4ad8be22ff7ec2bde7c1098b7abe496171dc1d7b49D�[�
84e0987f67e674a41976b9cd147cec00e6c57db8a4feeb9b141b7fb607b890efD�Z�
8d6cfc5c9cef32a028f7938e7be7de7b81bde37d434b23891fb9c2f0583c18dfD�Y�
164f86624a46a2f71b3b2a951d0544b44be7971180929255dc526785acc3a143
Kv��K�9�yu��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��xq�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�wq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�vq�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��uq��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561
(l��(�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��~q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�}q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�|q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-��{q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-33^U@- fence-agents-lpar: build on non-ppc64le arch's
  Resolves: rhbz#1801818��zu�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114
�~���|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738
60�$G�6��
q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�	q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205�L�q�)�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-34^g�@- fence_aws: improve parameter logic to allow setting region parameter
  while using credentials from ~/.aws/config
  Resolves: rhbz#1673468
-of�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������W�X�Y�Z�![�'\�,]�1^�7_�<`�Ba�Hb�Mc�Sd�Ye�^f�cg�ih�nj�tk�zl�m�n�o�p�q�r� s�&t�,u�1v�7w�=x�By�Gz�M{�R|�X}�^~�c�i��o��t��y������
��������!��+��5��@��K��V��a��l��v��������"��-��8��C��M��W��a��k��u����
���� ��+��6��A��K��U��`��k��v�������� ��,��8��D��O��Z��e��p��{��������)��5��@��L��X��d��p��|��������)��5��?
&�/�2�&��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-35^|�@- fence_aws: fix possible race condition
  Resolves: rhbz#1816205{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�
u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024
A#��A��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289�q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058
������q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-40^��@- fence_vmware_rest: fix encoding issues
  Resolves: rhbz#1793738�Y�q�C�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-39^��@- fence_vmware_rest: add filter parameter to avoid 1000 VM API limit
  and avoid failing when hitting it during the monitor-action
  Resolves: rhbz#1654058��q��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-36^��- fence_vmware_rest: improve exception handling
  Resolves: rhbz#1827561|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735
$q4�!�$|�!u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.5an�@- fence_aws: add "filter" parameter
  Resolves: rhbz#2003189{� u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.4`��@- fence_azure_arm: fix MSI support
  Resolves: rhbz#1957762|�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.3_�@- fence_aws: add support for IMDSv2
  Resolves: rhbz#1905735��u�-�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.2_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078
  Resolves: rhbz#1850114�9�u��Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.1_'�@- fence_lpar: fix issue with long username, hostname, etc not
  working when the command run by the agent exceeds 80 characters
- fence_evacuate: enable evacuation of instances using private flavors

  Resolves: rhbz#1860545
  Resolves: rhbz#1862024��q�'�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41^˳@- fence_aws: improve logging and metadata/usage text
  Resolves: rhbz#1832289

K��?��I��KO�+aA�Eike Rathke <erack@redhat.com> - 102.9.0-4d�- Update to 102.9.0 build2W�*_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�)aA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1O�(aA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�'aA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1O�&aA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��%_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9O�$aA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�#_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer featuresw�"u}�Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.2.1-41.6b�@- fence_aws: fix IMDSv2 support
  Resolves: rhbz#2050759

q�@�e�o�qO�5aA�Eike Rathke <erack@redhat.com> - 102.9.0-4d�- Update to 102.9.0 build2W�4_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�3aA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1O�2aA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�1aA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1O�0aA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��/_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9O�.aA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�-_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer featuresQ�,cC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1
3�#�-��/��3Q�@cC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�?cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1Q�>cC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1O�=aA�Eike Rathke <erack@redhat.com> - 102.9.0-4d�- Update to 102.9.0 build2W�<_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�;aA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1O�:aA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�9aA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1O�8aA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��7_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9Q�6cC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1
5w%��/��/��5O�KaA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1Q�JcC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�IcC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1Q�HcC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1O�GaA�Eike Rathke <erack@redhat.com> - 102.9.0-4d�- Update to 102.9.0 build2W�F_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�EaA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1O�DaA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�CaA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1O�BaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��A_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9
-�\�\�%�-O�VaA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�UaA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1Q�TcC�Eike Rathke <erack@redhat.com> - 102.12.0-1dw6�- Update to 102.12.0 build1��Se�3�Anton Bobrov <abobrov@redhat.com> 102.11.0-2dl��- Do not import cert to certdb on override exception:
  rhbz#2118991
  mzbz@1833330Q�RcC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�QcC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1Q�PcC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1O�OaA�Eike Rathke <erack@redhat.com> - 102.9.0-4d�- Update to 102.9.0 build2W�N_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�MaA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1O�LaA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2
%�T�Zw#�w%O�aaA�Eike Rathke <erack@redhat.com> - 102.9.0-4d�- Update to 102.9.0 build2W�`_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�_aA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1Q�^cC�Eike Rathke <erack@redhat.com> - 102.12.0-1dw6�- Update to 102.12.0 build1��]e�3�Anton Bobrov <abobrov@redhat.com> 102.11.0-2dl��- Do not import cert to certdb on override exception:
  rhbz#2118991
  mzbz@1833330Q�\cC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�[cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1Q�ZcC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1O�YaA�Eike Rathke <erack@redhat.com> - 102.9.0-4d�- Update to 102.9.0 build2W�X_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�WaA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1
'�Xu!�y'�{'Q�lcC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1O�kaA�Eike Rathke <erack@redhat.com> - 102.9.0-4d�- Update to 102.9.0 build2W�j_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�iaA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1Q�hcC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��- Update to 102.13.0 build2Q�gcC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�r@- Update to 102.13.0 build1Q�fcC�Eike Rathke <erack@redhat.com> - 102.12.0-1dw6�- Update to 102.12.0 build1��ee�3�Anton Bobrov <abobrov@redhat.com> 102.11.0-2dl��- Do not import cert to certdb on override exception:
  rhbz#2118991
  mzbz@1833330Q�dcC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�ccC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1Q�bcC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1

B�X�u!�y%�B��ve�3�Anton Bobrov <abobrov@redhat.com> 102.11.0-2dl��- Do not import cert to certdb on override exception:
  rhbz#2118991
  mzbz@1833330Q�ucC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�tcC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1Q�scC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1Q�rcC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��- Update to 102.13.0 build2Q�qcC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�r@- Update to 102.13.0 build1Q�pcC�Eike Rathke <erack@redhat.com> - 102.12.0-1dw6�- Update to 102.12.0 build1��oe�3�Anton Bobrov <abobrov@redhat.com> 102.11.0-2dl��- Do not import cert to certdb on override exception:
  rhbz#2118991
  mzbz@1833330Q�ncC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�mcC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1

e�r+��V��:��eD�r�
158e955d20950ef61a38c645accc22bd6cf37c7f31e06cdd3313c2bc5b0d969fD�q�
74484befc2ade710df325b9af62b87ffaef3b2b13a00935396297467ec8e98a8D�p�
e0d62271ecc1d123dd2dfe6e63131923215ed05f9f87bb42cbe1c713b4cfec5dD�o�
4eb117f25866c9e447c845336fe608b5c30ec80262a6ffb3dfb33756f0001e62D�n�
dd98390ecb2875b55a18bb8ce2f4fe960e7d8f308cf206decddcbcf25c6638c0D�m�
9e0249e756fa1e3dfb334a1acf42d322e19676dcef92227940e29b52a2972853D�l�
6341f007df657335759aa49bd308613667e9481106e29eff6fe1a74abfc9200aD�k�
ce4f5cfaaa8ee847baeaa1449c9bda07462f87ac1b32027dc3d2b1086d417890D�j�
3fb0b77a99715fb931ff65f91089240046d339752c82495a1069470792e26818D�i�
ea41aafc4258682847158cad9b72b66d86e801649ba22dfbbb766d88ea1addafD�h�
2699d7c26ffc9f022f434f324f0530dfee3fbaba767104e9902922124ba69b63D�g�
155f2a67548cb8ab54265b28dbf3f1e731e26cf182da45d98c95425930890046D�f�
97f2f474f7e410b8f477b1e905b6207ab4497c4def5fa6005eca7739687d0fca
.�X�[
�e�.Q�cC�Eike Rathke <erack@redhat.com> - 102.12.0-1dw6�- Update to 102.12.0 build1��e�3�Anton Bobrov <abobrov@redhat.com> 102.11.0-2dl��- Do not import cert to certdb on override exception:
  rhbz#2118991
  mzbz@1833330Q�cC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�~cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1Q�}cC�Eike Rathke <erack@redhat.com> - 102.10.0-1d,@- Update to 102.10.0 build1K�|c7�Eike Rathke <erack@redhat.com> - 102.14.0-3d��- Bump NVR to rebuildR�{aG�Jan Horak <jhorak@redhat.com> - 102.14.0-2d��- Rebuild due to rhbz#2228948Q�zcC�Eike Rathke <erack@redhat.com> - 102.14.0-1d��@- Update to 102.14.0 build1Q�ycC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��- Update to 102.13.0 build2Q�xcC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�r@- Update to 102.13.0 build1Q�wcC�Eike Rathke <erack@redhat.com> - 102.12.0-1dw6�- Update to 102.12.0 build1
.�X�a
�*��.Q�cC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��- Update to 102.13.0 build2Q�cC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�r@- Update to 102.13.0 build1Q�
cC�Eike Rathke <erack@redhat.com> - 102.12.0-1dw6�- Update to 102.12.0 build1��	e�3�Anton Bobrov <abobrov@redhat.com> 102.11.0-2dl��- Do not import cert to certdb on override exception:
  rhbz#2118991
  mzbz@1833330Q�cC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1K�c7�Eike Rathke <erack@redhat.com> - 102.14.0-3d��- Bump NVR to rebuildR�aG�Jan Horak <jhorak@redhat.com> - 102.14.0-2d��- Rebuild due to rhbz#2228948Q�cC�Eike Rathke <erack@redhat.com> - 102.14.0-1d��@- Update to 102.14.0 build1Q�cC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��- Update to 102.13.0 build2Q�cC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�r@- Update to 102.13.0 build1
.�W	�a
~*��.Q�cC�Eike Rathke <erack@redhat.com> - 102.14.0-1d��@- Update to 102.14.0 build1Q�cC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��- Update to 102.13.0 build2Q�cC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�r@- Update to 102.13.0 build1Q�cC�Eike Rathke <erack@redhat.com> - 102.12.0-1dw6�- Update to 102.12.0 build1��e�3�Anton Bobrov <abobrov@redhat.com> 102.11.0-2dl��- Do not import cert to certdb on override exception:
  rhbz#2118991
  mzbz@1833330Q�cC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dP�@- Update to 102.11.0 build1Q�cC�Eike Rathke <erack@redhat.com> - 102.15.0-1d�F@- Update to 102.15.0 build2K�c7�Eike Rathke <erack@redhat.com> - 102.14.0-3d��- Bump NVR to rebuildR�aG�Jan Horak <jhorak@redhat.com> - 102.14.0-2d��- Rebuild due to rhbz#2228948Q�
cC�Eike Rathke <erack@redhat.com> - 102.14.0-1d��@- Update to 102.14.0 build1
i�]	�q�{)�il�"_}�Jan Horak <jhorak@redhat.com> - 102.3.0-7cEZ�- Fix for expat CVE-2022-40674 and non functional webrtcN�!_A�Jan Horak <jhorak@redhat.com> - 102.3.0-6c p�- Update to 102.3.0 build1O� aA�Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1O�aA�Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�aA�Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�aA�Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1L�]?�Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�_1�Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0Q�cC�Eike Rathke <erack@redhat.com> - 102.15.0-1d�F@- Update to 102.15.0 build2K�c7�Eike Rathke <erack@redhat.com> - 102.14.0-3d��- Bump NVR to rebuildR�aG�Jan Horak <jhorak@redhat.com> - 102.14.0-2d��- Rebuild due to rhbz#2228948
j�\�r �|+�jO�-aA�Eike Rathke <erack@redhat.com> - 102.4.0-1cF�@- Update to 102.4.0 build1l�,_}�Jan Horak <jhorak@redhat.com> - 102.3.0-7cEZ�- Fix for expat CVE-2022-40674 and non functional webrtcN�+_A�Jan Horak <jhorak@redhat.com> - 102.3.0-6c p�- Update to 102.3.0 build1O�*aA�Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1O�)aA�Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�(aA�Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�'aA�Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1L�&]?�Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�%_1�Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0O�$aA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�#aA�Eike Rathke <erack@redhat.com> - 102.4.0-1cF�@- Update to 102.4.0 build1
D�\
�f�T�DO�8aA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�7_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer featuresO�6aA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�5aA�Eike Rathke <erack@redhat.com> - 102.4.0-1cF�@- Update to 102.4.0 build1l�4_}�Jan Horak <jhorak@redhat.com> - 102.3.0-7cEZ�- Fix for expat CVE-2022-40674 and non functional webrtcN�3_A�Jan Horak <jhorak@redhat.com> - 102.3.0-6c p�- Update to 102.3.0 build1O�2aA�Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1O�1aA�Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�0aA�Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�/aA�Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1O�.aA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1
D�\
�g��T��DO�CaA�Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�BaA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�A_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer featuresO�@aA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�?aA�Eike Rathke <erack@redhat.com> - 102.4.0-1cF�@- Update to 102.4.0 build1l�>_}�Jan Horak <jhorak@redhat.com> - 102.3.0-7cEZ�- Fix for expat CVE-2022-40674 and non functional webrtcN�=_A�Jan Horak <jhorak@redhat.com> - 102.3.0-6c p�- Update to 102.3.0 build1O�<aA�Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1O�;aA�Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�:aA�Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�9aA�Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1

_�]��J���_O�MaA�Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�LaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��K_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9O�JaA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�I_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer featuresO�HaA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�GaA�Eike Rathke <erack@redhat.com> - 102.4.0-1cF�@- Update to 102.4.0 build1l�F_}�Jan Horak <jhorak@redhat.com> - 102.3.0-7cEZ�- Fix for expat CVE-2022-40674 and non functional webrtcN�E_A�Jan Horak <jhorak@redhat.com> - 102.3.0-6c p�- Update to 102.3.0 build1O�DaA�Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1

`�]��J���`N�W_A�Jan Horak <jhorak@redhat.com> - 102.3.0-6c p�- Update to 102.3.0 build1O�VaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��U_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9O�TaA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�S_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer featuresO�RaA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�QaA�Eike Rathke <erack@redhat.com> - 102.4.0-1cF�@- Update to 102.4.0 build1l�P_}�Jan Horak <jhorak@redhat.com> - 102.3.0-7cEZ�- Fix for expat CVE-2022-40674 and non functional webrtcN�O_A�Jan Horak <jhorak@redhat.com> - 102.3.0-6c p�- Update to 102.3.0 build1O�NaA�Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1

_�?��/�T�_N�a_A�Jan Horak <jhorak@redhat.com> - 102.3.0-6c p�- Update to 102.3.0 build1O�`aA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�_aA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1O�^aA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��]_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9O�\aA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�[_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer featuresO�ZaA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�YaA�Eike Rathke <erack@redhat.com> - 102.4.0-1cF�@- Update to 102.4.0 build1l�X_}�Jan Horak <jhorak@redhat.com> - 102.3.0-7cEZ�- Fix for expat CVE-2022-40674 and non functional webrtc

^�?��/�T�^O�kaA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�jaA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�iaA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1O�haA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��g_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9O�faA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�e_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer featuresO�daA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�caA�Eike Rathke <erack@redhat.com> - 102.4.0-1cF�@- Update to 102.4.0 build1l�b_}�Jan Horak <jhorak@redhat.com> - 102.3.0-7cEZ�- Fix for expat CVE-2022-40674 and non functional webrtc

s�B�g�q�sO�uaA�Eike Rathke <erack@redhat.com> - 102.5.0-1ck�@- Update to 102.5.0 build1O�taA�Eike Rathke <erack@redhat.com> - 102.9.0-3d�- Update to 102.9.0 build2W�s_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�raA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1O�qaA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�paA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1O�oaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��n_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9O�maA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�l_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer features

e�r+��V��:��eD��
107322552a77011bd81b348ebfbb5f9181eec6a6de74a1a746e6bccf9773e1a6D�~�
7cc5e8e7cd7fd7b33ddc2f01d6d1866e7073a0a2e8ec65d4a8b21009e3f67777D�}�
b9339ad70e81b9edbe99c176f811eaa3f6b5564cff528ff56f4f44d677623c02D�|�
5b68af3481bd9ec99e96979c742095c04ad5a420aca88d0278499ae1949f56d7D�{�
649668855741b2c9edbad09dfdf69374c2011e1b429ea28cf0f6c96a62a14f57D�z�
a2cead9a7e5666819ec51f9e5c76ccde1eaf396651494f7020eb59615a2f9a17D�y�
a019256591b9ba5eafbd13f6202b604bb7a7441347110ad87f864f0f8d374298D�x�
1a25dc8c20fd98c6b44d7a50ee5bbeab01a9250c1764965613176ca25661a781D�w�
39a345eb07bae6f35b9362289fb910cb39998826047249bc3991a0ab55547bceD�v�
eabf42cd353ef8d1bad1431cc770d9f360563c64237198926aaa475aab327c3dD�u�
daff96fd89f92832ea99fda83cf1b76e717202ee8aa4dbe27e75350ce028065fD�t�
469ca6e8993db68735d7333e493a80dd4dde10f37d4c15b290e072922a543da8D�s�
a83374c57cbdfe6fe09065ecf3df2781d4ed835b1b41143f2b4e74dde0e6a8cd

,�B�g�q�,��a�K�Eike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URLO�~aA�Eike Rathke <erack@redhat.com> - 102.9.0-3d�- Update to 102.9.0 build2W�}_S�Jan Horak <jhorak@redhat.com> - 102.9.0-2d	�@- removed disable-openh264-downloadO�|aA�Eike Rathke <erack@redhat.com> - 102.9.0-1d'@- Update to 102.9.0 build1O�{aA�Eike Rathke <erack@redhat.com> - 102.8.0-2c�w�- Update to 102.8.0 build2O�zaA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�=@- Update to 102.8.0 build1O�yaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�S@- Update to 102.7.0 build1��x_�-�Jan Horak <jhorak@redhat.com> - 102.6.0-2c��@- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9O�waA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�.�- Update to 102.6.0 build1i�v_w�Jan Horak <jhorak@redhat.com> - 102.5.0-2c��@- Added libwebrtc screencast patch for newer features
!�\
�K��`s!O�
aA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��	a�K�Eike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URLQ�cC�Eike Rathke <erack@redhat.com> - 115.10.0-1f-�- Update to 115.10.0 build1K�_;�Jan Horak <jhorak@redhat.com> - 115.9.1-2f-�- Removed expat CVE fixH�a3�Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�aA�Eike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�aw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�aA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1
h�\
�K�^�hO�aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1Q�cC�Eike Rathke <erack@redhat.com> - 115.10.0-1f-�- Update to 115.10.0 build1K�_;�Jan Horak <jhorak@redhat.com> - 115.9.1-2f-�- Removed expat CVE fixH�a3�Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�aA�Eike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�aw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�
aA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1
f�A��V�\
�fO� aA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�aA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1Q�cC�Eike Rathke <erack@redhat.com> - 115.11.0-1f:�- Update to 115.11.0 build1Q�cC�Eike Rathke <erack@redhat.com> - 115.10.0-1f-�- Update to 115.10.0 build1K�_;�Jan Horak <jhorak@redhat.com> - 115.9.1-2f-�- Removed expat CVE fixH�a3�Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�aA�Eike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�aw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�aA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1
K�A��T�\
�KO�+aA�Eike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�*aw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�)aA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�(aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�'aA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1Q�&cC�Eike Rathke <erack@redhat.com> - 115.11.0-1f:�- Update to 115.11.0 build1Q�%cC�Eike Rathke <erack@redhat.com> - 115.10.0-1f-�- Update to 115.10.0 build1K�$_;�Jan Horak <jhorak@redhat.com> - 115.9.1-2f-�- Removed expat CVE fixH�#a3�Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�"aA�Eike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�!aw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425
k�g�k�u�kH�6a3�Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�5aA�Eike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�4aw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�3aA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�2aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�1aA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1Q�0cC�Eike Rathke <erack@redhat.com> - 115.12.0-1f_�- Update to 115.12.0 build1Q�/cC�Eike Rathke <erack@redhat.com> - 115.11.0-1f:�- Update to 115.11.0 build1Q�.cC�Eike Rathke <erack@redhat.com> - 115.10.0-1f-�- Update to 115.10.0 build1K�-_;�Jan Horak <jhorak@redhat.com> - 115.9.1-2f-�- Removed expat CVE fixH�,a3�Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1
��^
�b�|.��H�Aa3�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1K�@_;�Jan Horak <jhorak@redhat.com> - 115.3.0-1e0@- Update to 115.3.0 ESRK�?_;�Jan Horak <jhorak@redhat.com> - 115.2.0-3d��- Update to 115.2.0 ESRK�>_;�Jan Horak <jhorak@redhat.com> - 115.1.0-1d�E@- Update to 115.1.0 ESRK�=_;�Jan Horak <jhorak@redhat.com> - 115.0.2-1d�-@- Update to 115.0.2 ESRG�<_3�Jan Horak <jhorak@redhat.com> - 115.0b8-1d��@- Update to 115.0b8Q�;cC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2Q�:cC�Eike Rathke <erack@redhat.com> - 115.12.0-1f_�- Update to 115.12.0 build1Q�9cC�Eike Rathke <erack@redhat.com> - 115.11.0-1f:�- Update to 115.11.0 build1Q�8cC�Eike Rathke <erack@redhat.com> - 115.10.0-1f-�- Update to 115.10.0 build1K�7_;�Jan Horak <jhorak@redhat.com> - 115.9.1-2f-�- Removed expat CVE fix

�g�o%��;��H�Ka3�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1K�J_;�Jan Horak <jhorak@redhat.com> - 115.3.0-1e0@- Update to 115.3.0 ESRK�I_;�Jan Horak <jhorak@redhat.com> - 115.2.0-3d��- Update to 115.2.0 ESRK�H_;�Jan Horak <jhorak@redhat.com> - 115.1.0-1d�E@- Update to 115.1.0 ESRK�G_;�Jan Horak <jhorak@redhat.com> - 115.0.2-1d�-@- Update to 115.0.2 ESRG�F_3�Jan Horak <jhorak@redhat.com> - 115.0b8-1d��@- Update to 115.0b8Q�EcC�Eike Rathke <erack@redhat.com> - 102.11.0-2dS�@- Update to 102.11.0 build2O�DaA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�CaA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��Ba�K�Eike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URL

]g�y+��A�]��Ua�K�Eike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URLH�Ta3�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1K�S_;�Jan Horak <jhorak@redhat.com> - 115.3.0-1e0@- Update to 115.3.0 ESRK�R_;�Jan Horak <jhorak@redhat.com> - 115.2.0-3d��- Update to 115.2.0 ESRK�Q_;�Jan Horak <jhorak@redhat.com> - 115.1.0-1d�E@- Update to 115.1.0 ESRK�P_;�Jan Horak <jhorak@redhat.com> - 115.0.2-1d�-@- Update to 115.0.2 ESRG�O_3�Jan Horak <jhorak@redhat.com> - 115.0b8-1d��@- Update to 115.0b8O�NaA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�MaA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��La�K�Eike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URL
R�\
�r$��=�RO�`aA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��_a�K�Eike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URLH�^a3�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1K�]_;�Jan Horak <jhorak@redhat.com> - 115.3.0-1e0@- Update to 115.3.0 ESRK�\_;�Jan Horak <jhorak@redhat.com> - 115.2.0-3d��- Update to 115.2.0 ESRK�[_;�Jan Horak <jhorak@redhat.com> - 115.1.0-1d�E@- Update to 115.1.0 ESRK�Z_;�Jan Horak <jhorak@redhat.com> - 115.0.2-1d�-@- Update to 115.0.2 ESRG�Y_3�Jan Horak <jhorak@redhat.com> - 115.0b8-1d��@- Update to 115.0b8O�XaA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�WaA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�VaA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1
J�\�r$�@��JO�kaA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�jaA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�iaA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��ha�K�Eike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URLH�ga3�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1K�f_;�Jan Horak <jhorak@redhat.com> - 115.3.0-1e0@- Update to 115.3.0 ESRK�e_;�Jan Horak <jhorak@redhat.com> - 115.2.0-3d��- Update to 115.2.0 ESRK�d_;�Jan Horak <jhorak@redhat.com> - 115.1.0-1d�E@- Update to 115.1.0 ESRK�c_;�Jan Horak <jhorak@redhat.com> - 115.0.2-1d�-@- Update to 115.0.2 ESRO�baA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�aaA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1
J�`�v+�@��JO�vaA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�uaA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�taA�Eike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�saA�Eike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��ra�K�Eike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URLH�qa3�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1K�p_;�Jan Horak <jhorak@redhat.com> - 115.3.0-1e0@- Update to 115.3.0 ESRK�o_;�Jan Horak <jhorak@redhat.com> - 115.2.0-3d��- Update to 115.2.0 ESRK�n_;�Jan Horak <jhorak@redhat.com> - 115.1.0-1d�E@- Update to 115.1.0 ESRK�m_;�Jan Horak <jhorak@redhat.com> - 115.0.2-1d�-@- Update to 115.0.2 ESRO�laA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1

e�r+��V��:��eD��
7724d8a7b5c53b6b19107130e41d127672ad5e6814dd6d9cdf6130a27f22354bD��
6a6db0a030199ad5a8e0edde0f8458ca5391f94ac4ccd7a93c3c186326026cc3D�
�
d09bdd004c3fac87661119d619afb43d9ad9824ef8a2e58fa51c55f0211f12d9D�	�
de58dba9cc8af79c110d13626931309529fa1a8782a121fbfc29dd03e58e58b6D��
13154f5e2510e00d260ae211027b13f44ca11e49508ba2237ccccda2eea337b2D��
fc48a72a9a0a8898553b10f1e151b5cb865e23d1ae5200c58cf22572c71ff6acD��
a6fc6ceec2ef96703e31fadfc56988518eb77de39ff4fd2e69fa98b88e033dd7D��
843fb795c9bf323f16859c41219123409abcc114812537da012befe15091fbc3D��
6d8bf16512d109e75893de1fd5c3fff8aa8557a12556eccd6e6c8fbfd7f184adD��
74e98e4966e80435f954bb2859be485730a97c3e547acc848d76d50f49af0329D��
06de00e45a444bd8381c6526ee4a204b80511ebbca8c8b0b52bfd9d9bacec74cD��
2f160bf3a57455fd82821ea858e6ab2789596f1ae502a2b3968383670f17296fD��
33dd225ef7b01c077e7d0977782fa69f3d8fd4cea6363f4cde213cc37694b3a2
.�g�|*���|.K�_;Jan Horak <jhorak@redhat.com> - 115.3.0-1e0@- Update to 115.3.0 ESRH�a3Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�aAEike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�~awEike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�}aAEike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�|aAEike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�{aAEike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�zaAEike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��ya�KEike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URLH�xa3Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1K�w_;Jan Horak <jhorak@redhat.com> - 115.3.0-1e0@- Update to 115.3.0 ESR

��x&�g�H�a3Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1H�
a3Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�	aAEike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�awEike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�aAEike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�aAEike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�aAEike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�aAEike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��a�KEike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URLH�a3Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1

|g�q�`�|H�a3Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1K�_;Jan Horak <jhorak@redhat.com> - 115.9.1-2f-�- Removed expat CVE fixH�a3Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�aAEike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�awEike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�aAEike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�aAEike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�aAEike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�
aAEike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��a�KEike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URL
7g�q�`��7I� ]9Jan Horak <jhorak@redhat.com> - 68.6.1-1^��- Update to 68.6.1 ESRA�G?Jan Horak <jhorak@redhat.com>^_�@- Update to 68.6.0 build1K�_;Jan Horak <jhorak@redhat.com> - 115.9.1-2f-�- Removed expat CVE fixH�a3Eike Rathke <erack@redhat.com> - 115.9.1-1e�r�- Update to 115.9.1O�aAEike Rathke <erack@redhat.com> - 115.9.0-2e�8@- Update to 115.9.0 build2j�awEike Rathke <erack@redhat.com> - 115.9.0-1e�C�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O�aAEike Rathke <erack@redhat.com> - 115.8.0-1e�Y�- Update to 115.8.0 build1O�aAEike Rathke <erack@redhat.com> - 115.7.0-1e�o�- Update to 115.7.0 build1O�aAEike Rathke <erack@redhat.com> - 115.6.0-1exK@- Update to 115.6.0 build1O�aAEike Rathke <erack@redhat.com> - 115.5.0-1eSa@- Update to 115.5.0 build1��a�KEike Rathke <erack@redhat.com> - 115.4.0-1e.w@- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URL
_�W�g"��T�_W�,mEMartin Stransky <stransky@redhat.com> - 68.7.0-3^��@- Added fix for rhbz#1821418L�+]?Jan Horak <jhorak@redhat.com> - 68.7.0-2^�k@- Update to 68.7.0 build3I�*]9Jan Horak <jhorak@redhat.com> - 68.6.1-1^��- Update to 68.6.1 ESRA�)G?Jan Horak <jhorak@redhat.com>^_�@- Update to 68.6.0 build1B�(GAJan Horak <jhorak@redhat.com>_>e�- Update to 68.12.0 build1B�'GAJan Horak <jhorak@redhat.com>_{�- Update to 68.11.0 build1B�&GAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1`�%G}Jan Horak <jhorak@redhat.com>^�@- Update to 68.9.0 build1
- Added patch for pipewire 0.3F�$GIJan Horak <jhorak@redhat.com>^�>@- Added s390x specific patchesA�#G?Jan Horak <jhorak@redhat.com>^�l@- Update to 68.8.0 build1W�"mEMartin Stransky <stransky@redhat.com> - 68.7.0-3^��@- Added fix for rhbz#1821418L�!]?Jan Horak <jhorak@redhat.com> - 68.7.0-2^�k@- Update to 68.7.0 build3
U�s��A��S�U[�8]]Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�7_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�6_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1M�5_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�4]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�3]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build1B�2GAJan Horak <jhorak@redhat.com>_>e�- Update to 68.12.0 build1B�1GAJan Horak <jhorak@redhat.com>_{�- Update to 68.11.0 build1B�0GAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1`�/G}Jan Horak <jhorak@redhat.com>^�@- Update to 68.9.0 build1
- Added patch for pipewire 0.3F�.GIJan Horak <jhorak@redhat.com>^�>@- Added s390x specific patchesA�-G?Jan Horak <jhorak@redhat.com>^�l@- Update to 68.8.0 build1
G�g�}.��>��GM�D_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�C_1Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1[�B]]Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�A_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�@_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1M�?_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�>]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�=]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build1H�<a3Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�;_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1M�:_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�9_1Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1
x�e�g�~3�xf�OaoEike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�NaAEike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H�Ma3Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�L_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1M�K_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�J_1Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1[�I]]Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�H_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�G_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1H�Fa3Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�E_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1
[�T�]
�r �[Y�ZaU	Eike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)f�Yao	Eike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�XaA	Eike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H�Wa3	Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�V_?	Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1M�U_?	Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�T_1	Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1[�S]]	Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�R_?	Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�Q_?	Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1Y�PaUEike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)
e�R	�i�c�eM�e_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2O�daA
Eike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1Y�caU
Eike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)f�bao
Eike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�aaA
Eike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H�`a3
Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�__?
Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1M�^_?
Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�]_1
Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1[�\]]
Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�[_?
Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2
e�Y	�n�W�eM�p_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1M�o_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2O�naAEike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1Y�maUEike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)f�laoEike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�kaAEike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H�ja3Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�i_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1M�h_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�g_1Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1[�f]]Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepage
i�c��L��T�iH�{a3
Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�z_?
Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1M�y_?
Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2O�xaAEike Rathke <erack@redhat.com> - 78.13.0-2a�- Update to 78.13.0 build2O�waAEike Rathke <erack@redhat.com> - 78.13.0-1a	/�- Update to 78.13.0 build1Q�v_GJan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssO�uaAEike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1Y�taUEike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)f�saoEike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�raAEike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H�qa3Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0

e�r+��V��:��eD��
b351574a459bf47d5aed5e921e49e33fc565cab9b3d72ce5cd6fefba1b6f83c9D��
a64d622fd50cce3d3743013a5534e4fed4985139f60314ee23246e08601835cfD��
765577455a2956ce537d4c4d5768286fbead171668c41853b5d6f0989dd4013cD��
6ce9a07c50256531ba281b344b048ba26881b6d3612f2c4ee5f35d0801d8be57D��
4276584eb593d2fb304ab50518d7e2c4f955abe8fc5b3d1b9f0dd053d363f298D��
cb3a549fe050cd75184479500b542065e37366ce62d90769646352bf2d9798a2D��
d8f95fca6716286e91c7ab7b9be9bd359800c870cc0bdb90128bf93397e9352dD��
54c6e6aa53fe175c25dc35fe3f6476d9b195d85a4fc5e64d5625d1731cc5b1ceD��
c95a549af2d83400b97e70bcf7ebf1fbbb8b58bb768c6f7761edc982d7326504D��
06c9237d3d292ac356ab89dc89e2e9d7f41d6b52eaa838d872573cdeac93d2e7D��
2a94cd35eaf2c096188c8f30e38bb1ae656122294b6b2f692f185e9533bf7f02D��
4612dc1b815321d8acda2baafa9107d32d2e88453f1c98a341c59936db87f826D�
�
64a964dbf122edcb897186c8824b60976d45bd7ddce017d938404771e1396a1e
I�E��C��O�If�aoEike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�aAEike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H�a3Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1O�aA
Eike Rathke <erack@redhat.com> - 78.13.0-2a�- Update to 78.13.0 build2O�aA
Eike Rathke <erack@redhat.com> - 78.13.0-1a	/�- Update to 78.13.0 build1Q�_G
Jan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssO�aA
Eike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1Y�~aU
Eike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)f�}ao
Eike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�|aA
Eike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1
V�R��Z�m�VY�aUEike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)f�aoEike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�aAEike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H�a3Eike Rathke <erack@redhat.com> - 78.10.0-1`~�@- Update to 78.10.0M�
_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1O�aAEike Rathke <erack@redhat.com> - 78.14.0-1a0��- Update to 78.14.0 build1O�aAEike Rathke <erack@redhat.com> - 78.13.0-2a�- Update to 78.13.0 build2O�
aAEike Rathke <erack@redhat.com> - 78.13.0-1a	/�- Update to 78.13.0 build1Q�	_GJan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssO�aAEike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1Y�aUEike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)
A�Z�d�w.��AB�GAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1B�GAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1`�G}Jan Horak <jhorak@redhat.com>^�@- Update to 68.9.0 build1
- Added patch for pipewire 0.3F�GIJan Horak <jhorak@redhat.com>^�>@- Added s390x specific patchesA�G?Jan Horak <jhorak@redhat.com>^�l@- Update to 68.8.0 build1W�mEMartin Stransky <stransky@redhat.com> - 68.7.0-3^��@- Added fix for rhbz#1821418L�]?Jan Horak <jhorak@redhat.com> - 68.7.0-2^�k@- Update to 68.7.0 build3O�aAEike Rathke <erack@redhat.com> - 78.14.0-1a0��- Update to 78.14.0 build1O�aAEike Rathke <erack@redhat.com> - 78.13.0-2a�- Update to 78.13.0 build2O�aAEike Rathke <erack@redhat.com> - 78.13.0-1a	/�- Update to 78.13.0 build1Q�_GJan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssO�aAEike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1
h�m�u1��@��hA�)G?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�(]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�'GAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1B�&GAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1`�%G}Jan Horak <jhorak@redhat.com>^�@- Update to 68.9.0 build1
- Added patch for pipewire 0.3F�$GIJan Horak <jhorak@redhat.com>^�>@- Added s390x specific patchesA�#G?Jan Horak <jhorak@redhat.com>^�l@- Update to 68.8.0 build1W�"mEMartin Stransky <stransky@redhat.com> - 68.7.0-3^��@- Added fix for rhbz#1821418L�!]?Jan Horak <jhorak@redhat.com> - 68.7.0-2^�k@- Update to 68.7.0 build3L� ]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�G?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1
&�h�{,��I�o&F�5GIJan Horak <jhorak@redhat.com>^�>@- Added s390x specific patchesR�4Ceerack@redhat.com - 78.4.1-1_���- Update to 78.4.1
- Filtering nss/nspr libs��3]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�2]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�1]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�0G?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�/]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�.GAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1B�-GAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1`�,G}Jan Horak <jhorak@redhat.com>^�@- Update to 68.9.0 build1
- Added patch for pipewire 0.3F�+GIJan Horak <jhorak@redhat.com>^�>@- Added s390x specific patchesL�*]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2
_�X��1�\�_B�@GAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1`�?G}Jan Horak <jhorak@redhat.com>^�@- Update to 68.9.0 build1
- Added patch for pipewire 0.3R�>Ceerack@redhat.com - 78.4.1-1_���- Update to 78.4.1
- Filtering nss/nspr libs��=]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�<]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�;]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�:G?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�9]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�8GAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1B�7GAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1`�6G}Jan Horak <jhorak@redhat.com>^�@- Update to 68.9.0 build1
- Added patch for pipewire 0.3
>�l(���z��>L�L]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�KGAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1B�JGAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1`�IG}Jan Horak <jhorak@redhat.com>^�@- Update to 68.9.0 build1
- Added patch for pipewire 0.3L�H]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�GC1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��F]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�E]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�D]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�CG?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�B]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�AGAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1
R�m�]��5��RM�X]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�W]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�VG?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�U]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�TGAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1B�SGAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1L�R]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�QC1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��P]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�O]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�N]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�MG?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1
&{@��]��6�a&8�dC1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��c]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�b]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�a]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�`G?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�_]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�^GAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1B�]GAJan Horak <jhorak@redhat.com>^��@- Update to 68.10.0 build1L�\]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�[]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�ZC1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��Y]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loading
=�b��;�f+��=M�p_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�o]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�n]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�mC1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��l]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�k]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�j]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�iG?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�h]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�gGAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1L�f]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�e]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build1
H�l(���z+��HL�|]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�{G?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1M�z_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�y]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�x]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�wC1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��v]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�u]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�t]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�sG?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1L�r]?Jan Horak <jhorak@redhat.com> - 78.2.0-3_;�- Update to 78.2.0 build1B�qGAJan Horak <jhorak@redhat.com>_�@- Update to 68.11.0 build1

e�r+��V��:��eD�&�
6d7bcceec43abb616cbffadcf76d1c208a4f658a0625d17e0b0315b3e5a4c252D�%�
e063c651b9c19f3ff44c19dafd53594a57c6c58f609c5e0e419a4b724c4b5f87D�$�
40f292198cfd1d640409908c391eac750a799c0007158bd95505cc00794862e8D�#�
3430976f8acda648d8659eecbc9ab33a1dcb14139a6206b64b25c7a1129d685eD�"�
49a94cfaa934548d43b739e469156d5cbf8467609c08c9d7583ecd18912a49b7D�!�
66d5ac31048d37a6a1e65da7b344292d028e8fbb82d4b9d710ab79080280254cD� �
98f19e1b800783ce86112ad1cabb55fccc84a4979bb77d07ffceab8d38da6f2aD��
44600066daf3f3b57b9e269737e0b0dfcd410f3a524fbbd74aec3162d6f84f7cD��
67cc5f25f8e6a42f9536eb9dbe7e22e3fab22c55d87d37db23cb90136913067eD��
802ef81827f925a8e48e7eac8b4f0c0e44a7873cc15a96c696316840d6541191D��
c51cb2eba6f030cce0b81686cebf834e0aad1fb747875ef6fc8d06c6930fe18aD��
2fe8803bf3b71fc183107689fe53ca7b40a655e57b4fc6531786f97143f55b5fD��
f455772710a92ccc156759199ca532b9536d567cda99884613c0d4ec6f35ed4c
�+��R�b�M�]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloadingL�]?Jan Horak <jhorak@redhat.com> - 78.4.0-1_��@- Update to 78.4.0 build2A�G?Jan Horak <jhorak@redhat.com>_d�@- Update to 78.3.0 build1M�_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1M�_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�C1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��~]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�}]AJan Horak <jhorak@redhat.com> - 78.4.0-2_���- Enable addon sideloading
T{@��R�-��TL�]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�C1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�
_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1M�_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�
]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�	C1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loading
k�`�i�Y
�kM�_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�C1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1��]�'Jan Horak <jhorak@redhat.com> - 78.4.0-3_���- Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loadingM�_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�_1Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1[�]]Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1M�_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1
B�`�i.��@��B[�)]]Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�(_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�'_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1M�&_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�%]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�$]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�#C1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1M�"_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�!_1Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1[� ]]Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1
W�g��>��N��WM�5_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�4_1Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1[�3]]Jan Horak <jhorak@redhat.com> - 78.7.0-3`"y@- Fixing install prefix for the homepageM�2_?Eike Rathke <erack@redhat.com> - 78.7.0-2`
�@- Update to 78.7.0 build2M�1_?Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0 build1M�0_?Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1 build1L�/]?Jan Horak <jhorak@redhat.com> - 78.6.0-1_�
�- Update to 78.6.0 build1L�.]?Jan Horak <jhorak@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build18�-C1erack@redhat.com - 78.4.1-1_���- Update to 78.4.1M�,_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1M�+_?Eike Rathke <erack@redhat.com> - 78.8.0-1`-@- Update to 78.8.0 build2F�*_1Eike Rathke <erack@redhat.com> - 78.7.1-1`"yA- Update to 78.7.1

>�%�C�o��>L�?]? Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�>_1 Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�=_1 Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�<_? Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��;]�% Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�:_? Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��9]�A Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190M�8_? Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��7]�3 Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�6_?Eike Rathke <erack@redhat.com> - 78.9.0-1`Q�@- Update to 78.9.0 build1

<�#�A�m��<L�I]?!Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�H_1!Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�G_1!Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�F_?!Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��E]�%!Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�D_?!Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��C]�A!Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190M�B_?!Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��A]�3!Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667O�@aA Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1
!��H��f�s!O�TaA"Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�SaA"Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�RaA"Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1L�Q]?"Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�P_1"Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�O_1"Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�N_?"Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��M]�%"Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�L_?"Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��K]�A"Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190O�JaA!Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1
#n�J�i�s#M�__?$Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2O�^aA#Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�]aA#Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�\aA#Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1L�[]?#Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�Z_1#Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�Y_1#Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�X_?#Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��W]�%#Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�V_?#Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��U]�A#Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190
/|,��K��U�/��j]�%%Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�i_?%Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2O�haA$Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1O�gaA$Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�faA$Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�eaA$Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1L�d]?$Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�c_1$Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�b_1$Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�a_?$Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��`]�%$Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315
!�g�}+���j!F�v_1&Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�u_1&Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�t_?&Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��s]�%&Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315O�raA%Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1O�qaA%Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�paA%Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�oaA%Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1L�n]?%Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�m_1%Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�l_1%Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�k_?%Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3
b�_
�i�C��bL�]?'Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�_1'Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�_1'Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�~_?'Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��}]�%'Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315O�|aA&Eike Rathke <erack@redhat.com> - 91.13.0-1b��@- Update to 91.13.0 build1O�{aA&Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1O�zaA&Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�yaA&Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�xaA&Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1L�w]?&Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1

e�r+��V��:��eD�3�
0b48a1dc6bd965ac5f800c44cf498da51c5fd0ec07bf16a07911d66f89932c4bD�2�
078df219eb34b52cef5f93c17533da34f2eceaec30e85da8944716d38dfee196D�1�
61eb1f5291daee31b9568e4897e13e2fa0260d850c62490f336ee5f55b31703bD�0�
f9138cc0c8bd84737691daa9f6f8f6914ee52bef60ec7862c2921c8d8743faa7D�/�
42e22ddc4f5145c86fda06a008ba1415e8c40c3caa32ca21f81ce460fa3e2bf5D�.�
d84e36f29bdfc3258ea945056512bc5478db08e97bee521c8debc13bb0e514b1D�-�
903e1d0ede27725fa4cc5c201b48de10f5cbd5f90594a9cb1c3a7e06037b2fe0D�,�
8c0eff6015d46baf10cb337069eb8d7100741d665dddd559e9e053509293cad7D�+�
6d5b1649b1e98557b5173af9108f9a86fc71dcf1bec82baed2b16dc82c6491d4D�*�
91c597c3c15155bea7576d423bb897ce5644669e24f2b918fb694fe845700c49D�)�
524031feb4b382103cd67a6e7a15219524577b7af9ecf3f8b7e5ca443bb043aaD�(�
c472916040722df81c63f7a4b84001545fcde6fe7ff88a7d90493dac79e09626D�'�
97afe94345fd3c005c2618f3f48fcbae76e8b91619f9bfe40ec51d70d2b90c75
)�\
�f��O��m)A�
G?(Jan Horak <jhorak@redhat.com>a��- Update to 91.0.1 build1E�Y5(Jan Horak <jhorak@redhat.com> - 91.0-1aj@- Update to 91.0 ESRC�Y1(Jan Horak <jhorak@redhat.com> - 91.0-1a�@- Update to 91.0b8Q�
_G(Jan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssO�	aA(Eike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1Y�aU(Eike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)f�ao(Eike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8O�aA'Eike Rathke <erack@redhat.com> - 91.13.0-1b��@- Update to 91.13.0 build1O�aA'Eike Rathke <erack@redhat.com> - 91.12.0-1b�?�- Update to 91.12.0 build1O�aA'Eike Rathke <erack@redhat.com> - 91.11.0-2b�U�- Update to 91.11.0 build2O�aA'Eike Rathke <erack@redhat.com> - 91.11.0-1b���- Update to 91.11.0 build1O�aA'Eike Rathke <erack@redhat.com> - 91.10.0-1b��- Update to 91.10.0 build1
]�b��$�~8��]L�]?)Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1A�G?)Jan Horak <jhorak@redhat.com>a��- Update to 91.0.1 build1E�Y5)Jan Horak <jhorak@redhat.com> - 91.0-1aj@- Update to 91.0 ESRC�Y1)Jan Horak <jhorak@redhat.com> - 91.0-1a�@- Update to 91.0b8Q�_G)Jan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssO�aA)Eike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1Y�aU)Eike Rathke <erack@redhat.com> - 78.11.0-3`��- Update to 78.11.0 build2 (release)f�ao)Eike Rathke <erack@redhat.com> - 78.11.0-2`���- Fix rhel_minor_version for dist .el8_4 and .el8v�]�(Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�]?(Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L�]?(Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1
N�8��L�q"�NX�#]W*Jan Horak <jhorak@redhat.com> - 91.2.0-5aqV@- Fixed crashes when FIPS is enabled.v�"]�*Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�!]?*Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L� ]?*Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1A�G?*Jan Horak <jhorak@redhat.com>a��- Update to 91.0.1 build1E�Y5*Jan Horak <jhorak@redhat.com> - 91.0-1aj@- Update to 91.0 ESRC�Y1*Jan Horak <jhorak@redhat.com> - 91.0-1a�@- Update to 91.0b8Q�_G*Jan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssO�aA*Eike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1v�]�)Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�]?)Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1
"�^
�|8��!�v"Q�/_G,Jan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssM�._?+Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1X�-]W+Jan Horak <jhorak@redhat.com> - 91.2.0-5aqV@- Fixed crashes when FIPS is enabled.v�,]�+Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�+]?+Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L�*]?+Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1A�)G?+Jan Horak <jhorak@redhat.com>a��- Update to 91.0.1 build1E�(Y5+Jan Horak <jhorak@redhat.com> - 91.0-1aj@- Update to 91.0 ESRC�'Y1+Jan Horak <jhorak@redhat.com> - 91.0-1a�@- Update to 91.0b8Q�&_G+Jan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssO�%aA+Eike Rathke <erack@redhat.com> - 78.12.0-1`�@- Update to 78.12.0 build1M�$_?*Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1
:�r.���l��:E�;Y5-Jan Horak <jhorak@redhat.com> - 91.0-1aj@- Update to 91.0 ESRC�:Y1-Jan Horak <jhorak@redhat.com> - 91.0-1a�@- Update to 91.0b8Q�9_G-Jan Horak <jhorak@redhat.com> - 78.12.0-2`�t�- Rebuild to pickup older nssM�8_?,Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�7_?,Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1X�6]W,Jan Horak <jhorak@redhat.com> - 91.2.0-5aqV@- Fixed crashes when FIPS is enabled.v�5]�,Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�4]?,Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L�3]?,Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1A�2G?,Jan Horak <jhorak@redhat.com>a��- Update to 91.0.1 build1E�1Y5,Jan Horak <jhorak@redhat.com> - 91.0-1aj@- Update to 91.0 ESRC�0Y1,Jan Horak <jhorak@redhat.com> - 91.0-1a�@- Update to 91.0b8
:�m�J��d��:L�G]?.Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L�F]?.Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1A�EG?.Jan Horak <jhorak@redhat.com>a��- Update to 91.0.1 build1E�DY5.Jan Horak <jhorak@redhat.com> - 91.0-1aj@- Update to 91.0 ESRC�CY1.Jan Horak <jhorak@redhat.com> - 91.0-1a�@- Update to 91.0b8M�B_?-Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�A_?-Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1X�@]W-Jan Horak <jhorak@redhat.com> - 91.2.0-5aqV@- Fixed crashes when FIPS is enabled.v�?]�-Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�>]?-Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L�=]?-Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1A�<G?-Jan Horak <jhorak@redhat.com>a��- Update to 91.0.1 build1
S�,��<��j�Sv�R]�/Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�Q]?/Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L�P]?/Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1A�OG?/Jan Horak <jhorak@redhat.com>a��- Update to 91.0.1 build1E�NY5/Jan Horak <jhorak@redhat.com> - 91.0-1aj@- Update to 91.0 ESRC�MY1/Jan Horak <jhorak@redhat.com> - 91.0-1a�@- Update to 91.0b8M�L_?.Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1M�K_?.Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�J_?.Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1X�I]W.Jan Horak <jhorak@redhat.com> - 91.2.0-5aqV@- Fixed crashes when FIPS is enabled.v�H]�.Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503
C�U�f�C��C]�]]a0Jan Horak <jhorak@redhat.com> - 91.4.0-2a�5�- Added fix for failing addons signatures.M�\_?0Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�[_?0Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1X�Z]W0Jan Horak <jhorak@redhat.com> - 91.2.0-5aqV@- Fixed crashes when FIPS is enabled.v�Y]�0Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�X]?0Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L�W]?0Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1M�V_?/Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1M�U_?/Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�T_?/Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1X�S]W/Jan Horak <jhorak@redhat.com> - 91.2.0-5aqV@- Fixed crashes when FIPS is enabled.

c�%��7�c�c]�g]a1Jan Horak <jhorak@redhat.com> - 91.4.0-2a�5�- Added fix for failing addons signatures.M�f_?1Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�e_?1Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1X�d]W1Jan Horak <jhorak@redhat.com> - 91.2.0-5aqV@- Fixed crashes when FIPS is enabled.v�c]�1Jan Horak <jhorak@redhat.com> - 91.2.0-4aZ�- Disable webrender on the s390x due to wrong colors: rhbz#2009503L�b]?1Jan Horak <jhorak@redhat.com> - 91.2.0-3aTU@- Update to 91.2.0 build1L�a]?1Jan Horak <jhorak@redhat.com> - 91.1.0-1aA�@- Update to 91.1.0 build1M�`_?0Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��_]�30Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�^_?0Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1
	��%��5����M�p_?2Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��o]�32Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�n_?2Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1]�m]a2Jan Horak <jhorak@redhat.com> - 91.4.0-2a�5�- Added fix for failing addons signatures.M�l_?2Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�k_?2Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1M�j_?1Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��i]�31Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�h_?1Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1

n�J��J�oM�z_?3Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��y]�33Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�x_?3Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1]�w]a3Jan Horak <jhorak@redhat.com> - 91.4.0-2a�5�- Added fix for failing addons signatures.M�v_?3Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�u_?3Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1M�t_?2Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��s]�%2Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�r_?2Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��q]�A2Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190
	on�J��J�oM�_?4Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��]�34Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�_?4Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1]�]a4Jan Horak <jhorak@redhat.com> - 91.4.0-2a�5�- Added fix for failing addons signatures.M�_?4Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M�~_?3Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��}]�%3Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�|_?3Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��{]�A3Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190

e�r+��V��:��eD�@�
c515fb742f9fbf6e205c91df3d75b991bc0e87b359f64d944d2e6930b0b37ce8D�?�
36e338a02697b1f86cb751a4d30e96bbb9a01a424dfe6f050474e28f832d3b2dD�>�
5c481b40303686e7be3e1c4fb48c29d0e1c8d41c8eec46b55771c7970af95954D�=�
a2b22dc88f61d0fa6de4fcb62e090f383e630fc264c56ad005c9c508b1c0fcb2D�<�
d247f05fd2f22a9dc59679f6c668b92c75b8f5beb481c99983a0b6d26d10bb08D�;�
2ba8ed563d8e7d31e393c915f3705b7c8c4c991ca337616916c90e4a14049411D�:�
e65c76e2da0feca843e2f481d8447767d71a1f723ceeca4f9720896b896a6e7eD�9�
a40300c549d06a08cce3881d68a82db4bbd0d600667f58fd2017f98bd033fa4eD�8�
e3fe1238b3aefa061d1f4c2e420e93639cafe3a21ce171d5f4a80fbe6aa7e555D�7�
c448f7707d3e7d90b0f7376b9e91d551448d8304a6b162d474c8cf243b7f11e5D�6�
34f10adeaa6be7f713c3b688736291759f254661968bf607fab161503364705fD�5�
48c754619fa5b6636c02b2b5d79f0529027a96e638760d84ff74df57ece87bd2D�4�
5a169173d476ff530595d0ae6b03d7f7fba5bf999d95a008a477896efb71218d

&n�J�Qv&M�
_?5Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��]�35Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�_?5Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1]�
]a5Jan Horak <jhorak@redhat.com> - 91.4.0-2a�5�- Added fix for failing addons signatures.M�	_?5Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1F�_14Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�_?4Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��]�%4Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�_?4Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��]�A4Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190
	vn�J�Q�vM�_?6Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��]�36Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�_?6Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1]�]a6Jan Horak <jhorak@redhat.com> - 91.4.0-2a�5�- Added fix for failing addons signatures.F�_15Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�_?5Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��]�%5Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�_?5Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��]�A5Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190

-n�J�X}-M� _?7Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��]�37Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�_?7Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1]�]a7Jan Horak <jhorak@redhat.com> - 91.4.0-2a�5�- Added fix for failing addons signatures.F�_16Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�_16Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�_?6Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��]�%6Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�_?6Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��]�A6Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190
	�n�J�h��M�)_?8Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��(]�38Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�'_?8Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1F�&_17Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�%_17Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�$_?7Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��#]�%7Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�"_?7Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��!]�A7Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190

>n�J�i�>M�3_?9Eike Rathke <erack@redhat.com> - 91.6.0-1a�rA- Update to 91.6.0 build1��2]�39Jan Horak <jhorak@redhat.com> - 91.5.0-2a�r@- Use default update channel to fix non working enterprise policies:
  rhbz#2044667M�1_?9Eike Rathke <erack@redhat.com> - 91.5.0-1a��- Update to 91.5.0 build1L�0]?8Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�/_18Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�._18Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�-_?8Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��,]�%8Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�+_?8Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��*]�A8Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190
)n�J�i)�<�;a�:Eric Garver <egarver@redhat.com> - 0.6.3-3]>�- backport recent upstream stable fixes
- backport fix --remove-rules deleting all direct rules
- backport fix unable to delete rich rule forward-port
- backport fix forward-port for external zone hijacking internal zone
- backport fix testsuite iptables lockingL�:]?9Jan Horak <jhorak@redhat.com> - 91.9.1-1b���- Update to 91.9.1 build1F�9_19Eike Rathke <erack@redhat.com> - 91.9.0-1bg�- Update to 91.9.0F�8_19Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M�7_?9Eike Rathke <erack@redhat.com> - 91.7.0-3b%�- Update to 91.7.0 build3��6]�%9Jan Horak <jhorak@redhat.com> - 91.7.0-2b\@- Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315M�5_?9Eike Rathke <erack@redhat.com> - 91.7.0-1b
�- Update to 91.7.0 build2��4]�A9Jan Horak <jhorak@redhat.com> - 91.6.0-2b�- Install langpacks to the browser/extensions to make them available in UI:
  rhbz#2030190
	�$�@�o�}`�Dca:Eric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa�Ccc:Eric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
�Bc�3:Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square bracketsh�Aas:Eric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zonec�@ai:Eric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall�?a{:Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r�>a�:Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind�=ak:Eric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-configr�<a�:Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name
	�$�@�o�}`�Mca;Eric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa�Lcc;Eric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
�Kc�3;Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square bracketsh�Jas;Eric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zonec�Iai;Eric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall�Ha{;Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r�Ga�;Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind�Fak;Eric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-configr�Ea�;Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name
)�O�s��)c�Tai<Eric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall�Sa{<Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r�Ra�<Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind�Qak<Eric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-configr�Pa�<Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name�<�Oa�<Eric Garver <egarver@redhat.com> - 0.6.3-3]>�- backport recent upstream stable fixes
- backport fix --remove-rules deleting all direct rules
- backport fix unable to delete rich rule forward-port
- backport fix forward-port for external zone hijacking internal zone
- backport fix testsuite iptables lockingn�Nc};Eric Garver <egarver@redhat.com> - 0.6.3-13`x*�- doc: clarify --set-target values "default" vs "reject"
	��@�d��c�]ai=Eric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall�\a{=Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r�[a�=Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind�Zak=Eric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-configr�Ya�=Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name`�Xca<Eric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa�Wcc<Eric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
�Vc�3<Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square bracketsh�Uas<Eric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zone
��@��r�da�>Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name�<�ca�>Eric Garver <egarver@redhat.com> - 0.6.3-3]>�- backport recent upstream stable fixes
- backport fix --remove-rules deleting all direct rules
- backport fix unable to delete rich rule forward-port
- backport fix forward-port for external zone hijacking internal zone
- backport fix testsuite iptables lockingn�bc}=Eric Garver <egarver@redhat.com> - 0.6.3-13`x*�- doc: clarify --set-target values "default" vs "reject"`�aca=Eric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa�`cc=Eric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
�_c�3=Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square bracketsh�^as=Eric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zone
	�$�O�V��r�ma�?Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name`�lca>Eric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa�kcc>Eric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
�jc�3>Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square bracketsh�ias>Eric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zonec�hai>Eric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall�ga{>Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r�fa�>Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind�eak>Eric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-config
	�$�O�V��n�vc}?Eric Garver <egarver@redhat.com> - 0.6.3-13`x*�- doc: clarify --set-target values "default" vs "reject"`�uca?Eric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa�tcc?Eric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
�sc�3?Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square bracketsh�ras?Eric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zonec�qai?Eric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall�pa{?Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r�oa�?Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind�nak?Eric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-config
/�K�o�/h�}as@Eric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zonec�|ai@Eric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall�{a{@Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r�za�@Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind�yak@Eric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-configr�xa�@Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name�<�wa�@Eric Garver <egarver@redhat.com> - 0.6.3-3]>�- backport recent upstream stable fixes
- backport fix --remove-rules deleting all direct rules
- backport fix unable to delete rich rule forward-port
- backport fix forward-port for external zone hijacking internal zone
- backport fix testsuite iptables locking
	r�6�Z��h�asAEric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zonec�aiAEric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall�a{AEric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r�a�AEric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind�akAEric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-configr�a�AEric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name`�ca@Eric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa�cc@Eric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
�~c�3@Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square brackets

e�r+��V��:��eD�M�
1e46d6b60429dbed54c038855d87f27518fd4c4f7f6e66a15ff60a3bda266f78D�L�
c3bdafdc7b5df1eae10ff90840698573957b8409268bf2a94cf0a31564d3658cD�K�
1979501bae62e6070c0c6037b5547a69c4342485df1f9dd821ad18a174b0bd48D�J�
85ac0468355fd6847c79849e947fd3b5d88f606ad3aa6fd06cb4aca3fe3c9fc8D�I�
031f000698ae93b4d5d19e31521dddc308fa90b6dfee2faed3b23620d47fd150D�H�
91d045022efb0cd2e147b359f329cbd083f5efa2e778b5a35adf22874dba15e2D�G�
aeadded2fd899332eca7c3d0d69c10f06ba09b988bbb0be751dfc6ea05b1a753D�F�
724795eec6065da1df593d22a6a359fc5b241aec5a3916cbec646ff78f2196baD�E�
f19ae45fcb7a758368a349bdd8244b1029ea8e22cd16b83c2fd74bcfa32253b6D�D�
84fb40705d6f0704a0543373e2e266ea3565b3125d70e1cf4d3a2ef8497670a0D�C�
ac621916b414525cdb8e9a02b622a0b85c0f539979311abe60541cc0da534032D�B�
0e230546571aa26c06f1097967584ab4b9e777e7ca6c94d45f8706a36bdccc22D�A�
4706b7d5da4cf50b5e9a1e2b512bf1746aac5d7ff7525f047e6a79a392d7f548
	fr�:��'�fa�[kBDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�[]BDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�
[uBDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�cEBKalev Lember <klember@redhat.com> - 1.0.2-2[�Q@- Update to 1.0.2 (#1570030)R�cEBKalev Lember <klember@redhat.com> - 1.0.1-1[���- Update to 1.0.1 (#1570030)n�
c}AEric Garver <egarver@redhat.com> - 0.6.3-13`x*�- doc: clarify --set-target values "default" vs "reject"`�	caAEric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa�ccAEric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
�c�3AEric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square brackets

V�J��0�r�VX�[YCDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�[kCDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�[]CDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�[uCDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�cECKalev Lember <klember@redhat.com> - 1.0.2-2[�Q@- Update to 1.0.2 (#1570030)R�]KBDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�c{BKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�cEBKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�[YBDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�[YBDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)

V�P��6�p�VX�#[YDDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�"[YDDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�![kDDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z� []DDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�[uDDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�]KCDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�]KCDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�c{CKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�cECKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�[YCDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)

g�;��3�r�gR�-cEEKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�,[YEDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�+[YEDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�*[kEDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�)[]EDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)[�(oKDDebarshi Ray <rishi@fedoraproject.org> - 1.0.9-12ay?@- Fix CVE-2021-41133 (#2012864)R�']KDDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�&]KDDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�%c{DKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�$cEDKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)

f�;��:��'�fa�7[kFDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�6[]FDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�5[uFDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�4cEFKalev Lember <klember@redhat.com> - 1.0.2-2[�Q@- Update to 1.0.2 (#1570030)R�3cEFKalev Lember <klember@redhat.com> - 1.0.1-1[���- Update to 1.0.1 (#1570030)K�2e5EKalev Lember <klember@redhat.com> - 1.0.9-13fb�@- Fix CVE-2024-32462[�1oKEDebarshi Ray <rishi@fedoraproject.org> - 1.0.9-12ay?@- Fix CVE-2021-41133 (#2012864)R�0]KEDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�/]KEDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�.c{EKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340

V�J��0�r�VX�A[YGDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�@[kGDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�?[]GDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�>[uGDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�=cEGKalev Lember <klember@redhat.com> - 1.0.2-2[�Q@- Update to 1.0.2 (#1570030)R�<]KFDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�;c{FKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�:cEFKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�9[YFDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�8[YFDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)

V�P��6�p�VX�K[YHDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�J[YHDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�I[kHDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�H[]HDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�G[uHDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�F]KGDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�E]KGDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�Dc{GKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�CcEGKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�B[YGDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)

g�;��3�r�gR�UcEIKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�T[YIDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�S[YIDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�R[kIDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�Q[]IDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)[�PoKHDebarshi Ray <rishi@fedoraproject.org> - 1.0.9-12ay?@- Fix CVE-2021-41133 (#2012864)R�O]KHDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�N]KHDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�Mc{HKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�LcEHKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)

f�;��:��'�fa�_[kJDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�^[]JDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�][uJDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�\cEJKalev Lember <klember@redhat.com> - 1.0.2-2[�Q@- Update to 1.0.2 (#1570030)R�[cEJKalev Lember <klember@redhat.com> - 1.0.1-1[���- Update to 1.0.1 (#1570030)K�Ze5IKalev Lember <klember@redhat.com> - 1.0.9-13fb�@- Fix CVE-2024-32462[�YoKIDebarshi Ray <rishi@fedoraproject.org> - 1.0.9-12ay?@- Fix CVE-2021-41133 (#2012864)R�X]KIDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�W]KIDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�Vc{IKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340

V�J��0�r�VX�i[YKDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�h[kKDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�g[]KDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�f[uKDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�ecEKKalev Lember <klember@redhat.com> - 1.0.2-2[�Q@- Update to 1.0.2 (#1570030)R�d]KJDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�cc{JKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�bcEJKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�a[YJDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�`[YJDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)

V�P��6�p�VX�s[YLDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�r[YLDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�q[kLDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�p[]LDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�o[uLDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�n]KKDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�m]KKDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�lc{KKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�kcEKKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�j[YKDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)

g�;��3�r�gR�}cEMKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�|[YMDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�{[YMDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�z[kMDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�y[]MDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)[�xoKLDebarshi Ray <rishi@fedoraproject.org> - 1.0.9-12ay?@- Fix CVE-2021-41133 (#2012864)R�w]KLDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�v]KLDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�uc{LKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�tcELKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)

f�;��:��'�fa�[kNDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�[]NDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�[uNDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�cENKalev Lember <klember@redhat.com> - 1.0.2-2[�Q@- Update to 1.0.2 (#1570030)R�cENKalev Lember <klember@redhat.com> - 1.0.1-1[���- Update to 1.0.1 (#1570030)K�e5MKalev Lember <klember@redhat.com> - 1.0.9-13fb�@- Fix CVE-2024-32462[�oKMDebarshi Ray <rishi@fedoraproject.org> - 1.0.9-12ay?@- Fix CVE-2021-41133 (#2012864)R�]KMDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�]KMDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�~c{MKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340

e�r+��V��:��eD�Z�
f44cd6beef0e0285e87ceddb589f3ce6b36f4340a280ed674cc37aa7141b8397D�Y�
ef82a93c26a7db64bb635cb373e0bf00ab1038b8e42c02b37a970cc41e97ef34D�X�
c2b79101f730ccfa892ffdfdb7ce4d806f9960bc302581dc10991c7321dd4e24D�W�
1e843fde687553231eecf687163be424f4d2df8b4398e28a34c6dff791e1b161D�V�
f61c338504f42e88dbef95a448e0e1aa1c04a89586134610472f384c31966981D�U�
7ea68138245e021dc4dbaf9e1b990e5250e1b72ebca41352896a1b5dbceda2fbD�T�
4b031b0a3b505796cae1f7221a96821c6c953c4e2f94f8869bfc2a6139af8b2aD�S�
cddc3744f22b625662ab15986f90fc202f14ece03ac5fce4fbde2d656b5f38ddD�R�
5cd33852a9e9061d05228552a9fa6fe6b3b0667fc738828b9df7e633dbe46bd5D�Q�
a300fb68037da47d07903271c1b04a1bf9b9ce2da5c1a0e56fcede7f6614fa62D�P�
ddd64d000d677447dbb3a66637d5f9d9064439fbdd584fdad1f5aea0b47ef550D�O�
e251fe0d7ffbb8b51c6644310756c5ea0a0ea8d5282cb0ecda819c8ff161dfecD�N�
6a5560cf575ee9bfa9cac85044e94e3bce3ea85e26431c99e41877289cf82b64

V�J��0�r�VX�[YODavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�[kODavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�[]ODavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�[uODavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�
cEOKalev Lember <klember@redhat.com> - 1.0.2-2[�Q@- Update to 1.0.2 (#1570030)R�]KNDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�c{NKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�
cENKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�	[YNDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�[YNDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)of	Iflrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������T��_��j��v����
����#��/��;��G��R��]��g��p��z����
���� ��)��3��;��D��M��T��]��d��m��v��}��������#��-��7��A��K��U��_��i��s��}��	�	�	�%	�/	�8	�A	�J	�S		�[	
�d	�m	�v	
�	�	�	�	�	�'	�.	�5	�<	�C	�K	�S	�Z	�a	�i	�r	�{	�	 �	"�	#�	$�%	%�-	&�5	'�=	(�D	*�L	+�T	,�]	-�e	.�n	/�r	1�t	2�x	3�|	5�~	6�	7�	8�	9�	:�	;�	<�	=� 	>�$	?�(	@�+	A�0	B�4	C�8	D�<	F�?	G�D	H�H

V�P��6�p�VX�[YPDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�[YPDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�[kPDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�[]PDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)f�[uPDavid King <dking@redhat.com> - 1.0.2-3\3?@- Backport patches to improve OCI support (#1660137)R�]KODavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�]KODavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�c{OKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�cEOKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�[YODavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)

g�;��3�r�gR�%cEQKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)X�$[YQDavid King <dking@redhat.com> - 1.0.2-7\��@- Fix IOCSTI sandbox bypass (#1700652)X�#[YQDavid King <dking@redhat.com> - 1.0.2-6\f��- Tweak /proc sandbox patch (#1675435)a�"[kQDavid King <dking@redhat.com> - 1.0.2-5\d�- Do not mount /proc in root sandbox (#1675435)Z�![]QDavid King <dking@redhat.com> - 1.0.2-4\<y�- Apply the OCI support patch (#1660137)[� oKPDebarshi Ray <rishi@fedoraproject.org> - 1.0.9-12ay?@- Fix CVE-2021-41133 (#2012864)R�]KPDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�]KPDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�c{PKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340R�cEPKalev Lember <klember@redhat.com> - 1.0.9-8]��@- Update to 1.0.9 (#1753591)

8�;��:��#�8M�/_?RDaniel Mach <dmach@redhat.com> - 1.3.0-11R�k�- Mass rebuild 2013-12-27��.��RFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-10Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ�-Y_RAdam Tkac <atkac redhat com> - 1.3.0-9P�9@- rebuild due to "jpeg8-ABI" feature drops�,Y�RAdam Tkac <atkac redhat com> - 1.3.0-8P��- fix ABI breakage caused by fltk-1_v4.3.x-cursor.patch (#883026)A�+Y-RAdam Tkac <atkac redhat com> - 1.3.0-7P�N@- add xcursor BRK�*e5QKalev Lember <klember@redhat.com> - 1.0.9-13fb�@- Fix CVE-2024-32462[�)oKQDebarshi Ray <rishi@fedoraproject.org> - 1.0.9-12ay?@- Fix CVE-2021-41133 (#2012864)R�(]KQDavid King <dking@redhat.com> - 1.0.9-11`X��- Fix CVE-2021-21381 (#1938059)R�']KQDavid King <dking@redhat.com> - 1.0.9-10`@- Fix CVE-2021-21261 (#1918771)m�&c{QKalev Lember <klember@redhat.com> - 1.0.9-9^1s�- Backport OCI fixes from upstream
- Resolves: #1796340
	�F�K�����8��SFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-10Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ�7Y_SAdam Tkac <atkac redhat com> - 1.3.0-9P�9@- rebuild due to "jpeg8-ABI" feature drops�6Y�SAdam Tkac <atkac redhat com> - 1.3.0-8P��- fix ABI breakage caused by fltk-1_v4.3.x-cursor.patch (#883026)A�5Y-SAdam Tkac <atkac redhat com> - 1.3.0-7P�N@- add xcursor BR{�4c�RJan Grulich <jgrulich@redhat.com> - 1.3.4-3b��- Fix segfault if using very large selections
  Resolves: bz#1999819��3c�MRJan Grulich <jgrulich@redhat.com> - 1.3.4-2^Nt�- Do not drop linker flags for main library when --use-xxx option is used
  Resolves: bz#1510482]�2c[RJan Grulich <jgrulich@redhat.com> - 1.3.4-1X�}@- Re-base to 1.3.4 (+ sync with Fedora)M�1_?RDaniel Mach <dmach@redhat.com> - 1.3.0-13R�U�- Mass rebuild 2014-01-24g�0coRPetr Hracek <phracek@redhat.com> - 1.3.0-12R��@- Resolves: #1048857 fltk does not build on RHEL7
	f�F���}9�fZ�AY_TAdam Tkac <atkac redhat com> - 1.3.0-9P�9@- rebuild due to "jpeg8-ABI" feature drops�@Y�TAdam Tkac <atkac redhat com> - 1.3.0-8P��- fix ABI breakage caused by fltk-1_v4.3.x-cursor.patch (#883026)A�?Y-TAdam Tkac <atkac redhat com> - 1.3.0-7P�N@- add xcursor BR{�>c�SJan Grulich <jgrulich@redhat.com> - 1.3.4-3b��- Fix segfault if using very large selections
  Resolves: bz#1999819��=c�MSJan Grulich <jgrulich@redhat.com> - 1.3.4-2^Nt�- Do not drop linker flags for main library when --use-xxx option is used
  Resolves: bz#1510482]�<c[SJan Grulich <jgrulich@redhat.com> - 1.3.4-1X�}@- Re-base to 1.3.4 (+ sync with Fedora)M�;_?SDaniel Mach <dmach@redhat.com> - 1.3.0-13R�U�- Mass rebuild 2014-01-24g�:coSPetr Hracek <phracek@redhat.com> - 1.3.0-12R��@- Resolves: #1048857 fltk does not build on RHEL7M�9_?SDaniel Mach <dmach@redhat.com> - 1.3.0-11R�k�- Mass rebuild 2013-12-27
	(e�[�`��(s�JY�UAdam Tkac <atkac redhat com> - 1.3.0-8P��- fix ABI breakage caused by fltk-1_v4.3.x-cursor.patch (#883026)A�IY-UAdam Tkac <atkac redhat com> - 1.3.0-7P�N@- add xcursor BR{�Hc�TJan Grulich <jgrulich@redhat.com> - 1.3.4-3b��- Fix segfault if using very large selections
  Resolves: bz#1999819��Gc�MTJan Grulich <jgrulich@redhat.com> - 1.3.4-2^Nt�- Do not drop linker flags for main library when --use-xxx option is used
  Resolves: bz#1510482]�Fc[TJan Grulich <jgrulich@redhat.com> - 1.3.4-1X�}@- Re-base to 1.3.4 (+ sync with Fedora)M�E_?TDaniel Mach <dmach@redhat.com> - 1.3.0-13R�U�- Mass rebuild 2014-01-24g�DcoTPetr Hracek <phracek@redhat.com> - 1.3.0-12R��@- Resolves: #1048857 fltk does not build on RHEL7M�C_?TDaniel Mach <dmach@redhat.com> - 1.3.0-11R�k�- Mass rebuild 2013-12-27��B��TFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-10Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
	A��N���AA�SY-VAdam Tkac <atkac redhat com> - 1.3.0-7P�N@- add xcursor BR{�Rc�UJan Grulich <jgrulich@redhat.com> - 1.3.4-3b��- Fix segfault if using very large selections
  Resolves: bz#1999819��Qc�MUJan Grulich <jgrulich@redhat.com> - 1.3.4-2^Nt�- Do not drop linker flags for main library when --use-xxx option is used
  Resolves: bz#1510482]�Pc[UJan Grulich <jgrulich@redhat.com> - 1.3.4-1X�}@- Re-base to 1.3.4 (+ sync with Fedora)M�O_?UDaniel Mach <dmach@redhat.com> - 1.3.0-13R�U�- Mass rebuild 2014-01-24g�NcoUPetr Hracek <phracek@redhat.com> - 1.3.0-12R��@- Resolves: #1048857 fltk does not build on RHEL7M�M_?UDaniel Mach <dmach@redhat.com> - 1.3.0-11R�k�- Mass rebuild 2013-12-27��L��UFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-10Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ�KY_UAdam Tkac <atkac redhat com> - 1.3.0-9P�9@- rebuild due to "jpeg8-ABI" feature drop
��-�B��(���[c�MVJan Grulich <jgrulich@redhat.com> - 1.3.4-2^Nt�- Do not drop linker flags for main library when --use-xxx option is used
  Resolves: bz#1510482]�Zc[VJan Grulich <jgrulich@redhat.com> - 1.3.4-1X�}@- Re-base to 1.3.4 (+ sync with Fedora)M�Y_?VDaniel Mach <dmach@redhat.com> - 1.3.0-13R�U�- Mass rebuild 2014-01-24g�XcoVPetr Hracek <phracek@redhat.com> - 1.3.0-12R��@- Resolves: #1048857 fltk does not build on RHEL7M�W_?VDaniel Mach <dmach@redhat.com> - 1.3.0-11R�k�- Mass rebuild 2013-12-27��V��VFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-10Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ�UY_VAdam Tkac <atkac redhat com> - 1.3.0-9P�9@- rebuild due to "jpeg8-ABI" feature drops�TY�VAdam Tkac <atkac redhat com> - 1.3.0-8P��- fix ABI breakage caused by fltk-1_v4.3.x-cursor.patch (#883026)
	f�>�k���f]�dc[WJan Grulich <jgrulich@redhat.com> - 1.3.4-1X�}@- Re-base to 1.3.4 (+ sync with Fedora)M�c_?WDaniel Mach <dmach@redhat.com> - 1.3.0-13R�U�- Mass rebuild 2014-01-24g�bcoWPetr Hracek <phracek@redhat.com> - 1.3.0-12R��@- Resolves: #1048857 fltk does not build on RHEL7M�a_?WDaniel Mach <dmach@redhat.com> - 1.3.0-11R�k�- Mass rebuild 2013-12-27��`��WFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-10Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ�_Y_WAdam Tkac <atkac redhat com> - 1.3.0-9P�9@- rebuild due to "jpeg8-ABI" feature drops�^Y�WAdam Tkac <atkac redhat com> - 1.3.0-8P��- fix ABI breakage caused by fltk-1_v4.3.x-cursor.patch (#883026)A�]Y-WAdam Tkac <atkac redhat com> - 1.3.0-7P�N@- add xcursor BR{�\c�VJan Grulich <jgrulich@redhat.com> - 1.3.4-3b��- Fix segfault if using very large selections
  Resolves: bz#1999819
	+e��-�5�{+M�m_?XDaniel Mach <dmach@redhat.com> - 1.3.0-13R�U�- Mass rebuild 2014-01-24g�lcoXPetr Hracek <phracek@redhat.com> - 1.3.0-12R��@- Resolves: #1048857 fltk does not build on RHEL7M�k_?XDaniel Mach <dmach@redhat.com> - 1.3.0-11R�k�- Mass rebuild 2013-12-27��j��XFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-10Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ�iY_XAdam Tkac <atkac redhat com> - 1.3.0-9P�9@- rebuild due to "jpeg8-ABI" feature drops�hY�XAdam Tkac <atkac redhat com> - 1.3.0-8P��- fix ABI breakage caused by fltk-1_v4.3.x-cursor.patch (#883026)A�gY-XAdam Tkac <atkac redhat com> - 1.3.0-7P�N@- add xcursor BR{�fc�WJan Grulich <jgrulich@redhat.com> - 1.3.4-3b��- Fix segfault if using very large selections
  Resolves: bz#1999819��ec�MWJan Grulich <jgrulich@redhat.com> - 1.3.4-2^Nt�- Do not drop linker flags for main library when --use-xxx option is used
  Resolves: bz#1510482
	7��F�K��7L�v]?YDaniel Mach <dmach@redhat.com> - 4.0.9-6R�U�- Mass rebuild 2014-01-24L�u]?YDaniel Mach <dmach@redhat.com> - 4.0.9-5R�k�- Mass rebuild 2013-12-27s�te�YJiri Popelka <jpopelka@redhat.com> - 4.0.9-4R���- Correct Obsoletes/Provides printer-filters (bug #1035450)|�s[�YTim Waugh <twaugh@redhat.com> - 4.0.9-3Q��@- Obsolete/provide printer-filters package now it has gone (bug #967316).y�rk�	YTom Callaway <spot@fedoraproject.org> - 4.0.9-2Q��@- remove Artistic test scripts from source tarball (bz 967406)>�qeYJiri Popelka <jpopelka@redhat.com> - 4.0.9-1Q?�- 4.0.9{�pc�XJan Grulich <jgrulich@redhat.com> - 1.3.4-3b��- Fix segfault if using very large selections
  Resolves: bz#1999819��oc�MXJan Grulich <jgrulich@redhat.com> - 1.3.4-2^Nt�- Do not drop linker flags for main library when --use-xxx option is used
  Resolves: bz#1510482]�nc[XJan Grulich <jgrulich@redhat.com> - 1.3.4-1X�}@- Re-base to 1.3.4 (+ sync with Fedora)
	*�:�+�n�y*L�]?ZDaniel Mach <dmach@redhat.com> - 4.0.9-5R�k�- Mass rebuild 2013-12-27s�~e�ZJiri Popelka <jpopelka@redhat.com> - 4.0.9-4R���- Correct Obsoletes/Provides printer-filters (bug #1035450)|�}[�ZTim Waugh <twaugh@redhat.com> - 4.0.9-3Q��@- Obsolete/provide printer-filters package now it has gone (bug #967316).y�|k�	ZTom Callaway <spot@fedoraproject.org> - 4.0.9-2Q��@- remove Artistic test scripts from source tarball (bz 967406)>�{eZJiri Popelka <jpopelka@redhat.com> - 4.0.9-1Q?�- 4.0.9��zg�)YZdenek Dohnal <zdohnal@redhat.com> - 4.0.9-10_��- 1891679 - [RHEL 7] foomatic-rip files up /var/spool/tmp with temporary files��ye�YZdenek Dohnal <zdohnal@redhat.com> - 4.0.9-9\�@- 1707559 - removal of option in ghostscript caused foomatic-rip to failk�x[YTim Waugh <twaugh@redhat.com> - 4.0.9-8S��- Put some text into foomatic-preferred-drivers man page.U�w[SYTim Waugh <twaugh@redhat.com> - 4.0.9-7S��@- Ship more manpages (bug #948965).
	F�Y�g�[�FW�eM[Ondrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_�_c[Ondrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)V�_Q[Ondrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)~�_�[Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)��g�)ZZdenek Dohnal <zdohnal@redhat.com> - 4.0.9-10_��- 1891679 - [RHEL 7] foomatic-rip files up /var/spool/tmp with temporary files��e�ZZdenek Dohnal <zdohnal@redhat.com> - 4.0.9-9\�@- 1707559 - removal of option in ghostscript caused foomatic-rip to failk�[ZTim Waugh <twaugh@redhat.com> - 4.0.9-8S��- Put some text into foomatic-preferred-drivers man page.U�[SZTim Waugh <twaugh@redhat.com> - 4.0.9-7S��@- Ship more manpages (bug #948965).L�]?ZDaniel Mach <dmach@redhat.com> - 4.0.9-6R�U�- Mass rebuild 2014-01-24

e�r+��V��:��eD�g�
d2c7c9daa4378bb677e4fa893b6839ebef8009ea1e132569083c4a845ec60a22D�f�
779af39181edc4bdb4e091b266ec46176447a4ccc0941c928f999ed3fa780cacD�e�
bb549c96d2986def32a70c8f766e2a23ac2dd2f4c76e72e116fdc699bd0c6eb9D�d�
5dfc9505dc8c10ee2fa6b344d1a86a8ea57d43b15353225888d1f9888a840220D�c�
8c8b857999a32f70ec103af37b684d4c2eb482a3f8d75f62cec86acb6c10e940D�b�
530c5e0227cf705a60da80a809db414020ef88b26923ed6828fe285d4f1b5e18D�a�
564e997b9c790bd2ccb1bc895a8ace373c5af426e771063ebc24eb3ac892b979D�`�
b06da13bab5aee0690c6d98073ecafe702d73f53e8e1b9421e90fe7928ba1d17D�_�
1ca99a830f21e3f243a3f20099285c28e83738059736b8931da396f1b77e1b0aD�^�
b884e513e4fabc67d102225daf07a6948f3c7aba4eea99292cf5bbaa993d41e7D�]�
5496c1582c68c5314603d320dbb44e5435532564f1a4c6068e8040f2767a1797D�\�
7b4f34148e411ba03bffe54c35102df45b1e78e1ed461d8ba62a118f517e96d9D�[�
a4f2dc5f488dc7bd53211931528d9c122391fbf1997e99e33a04a33c38c67995
B��D�[�B~�_�\Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)��g�C[Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscanf�
gi[Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}�g�[Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O�]E[Ondrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)�|�
e�[Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)g�	em[Ondrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)
F�E���/�Ff�gi\Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}�g�\Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O�]E\Ondrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)�|�e�\Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)g�em\Ondrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)W�eM\Ondrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_�_c\Ondrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)V�_Q\Ondrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)
hh��,�hh�|�e�]Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)g�em]Ondrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)W�eM]Ondrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_�_c]Ondrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)V�_Q]Ondrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)~�_�]Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)��g�C\Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscan
	-�.�-�S��-g�'em^Ondrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)W�&eM^Ondrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_�%_c^Ondrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)V�$_Q^Ondrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)~�#_�^Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)��"g�C]Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscanf�!gi]Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}� g�]Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O�]E]Ondrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)
S�.�-�SV�._Q_Ondrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)~�-_�_Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)��,g�C^Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscanf�+gi^Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}�*g�^Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O�)]E^Ondrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)�|�(e�^Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)
��D����f�5gi_Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}�4g�_Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O�3]E_Ondrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)�|�2e�_Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)g�1em_Ondrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)W�0eM_Ondrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_�/_c_Ondrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)
yh�P�V�y|�<]�`Marek Kasik <mkasik@redhat.com> - 2.8-11[@- Preserve API/ABI compatibility for public symbols
- Resolves: #1576504[�;eU`Richard Hughes <rhughes@redhat.com> - 2.8-10[�- Update to 2.8
- Resolves: #1576504m�:c{`Marek Kasik <mkasik@redhat.com> - 2.4.11-15X��A- Fix shellcheck warning (coverity)
- Related: #1368141��9c�+`Marek Kasik <mkasik@redhat.com> - 2.4.11-14X��@- Backport functions for reading signed values from stream
- Resolves: #1381678z�8c�`Marek Kasik <mkasik@redhat.com> - 2.4.11-13X��- Don't show path of non-existing libtool file
- Resolves: #1368141��7c�M`Marek Kasik <mkasik@redhat.com> - 2.4.11-12V�3�- Define _FILE_OFFSET_BITS=64 to handle inodes higher than or equal to 2^31
- Resolves: #1303268��6g�C_Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscan
i��p�i��Cc�+aMarek Kasik <mkasik@redhat.com> - 2.4.11-14X��@- Backport functions for reading signed values from stream
- Resolves: #1381678z�Bc�aMarek Kasik <mkasik@redhat.com> - 2.4.11-13X��- Don't show path of non-existing libtool file
- Resolves: #1368141��Ac�MaMarek Kasik <mkasik@redhat.com> - 2.4.11-12V�3�- Define _FILE_OFFSET_BITS=64 to handle inodes higher than or equal to 2^31
- Resolves: #1303268��@m�;`Marek Kasik <mkasik@redhat.com> - 2.8-14.el7_9.1_�@- Test bitmap size earlier for PNGs
- Fix memory leak in pngshim.c
- Resolves: #1891635j�?]{`Marek Kasik <mkasik@redhat.com> - 2.8-14\�M�- Fix rendering in monochrome mode
- Resolves: #1657479��>]�1`Marek Kasik <mkasik@redhat.com> - 2.8-13[�- Fix definition of constant ft_encoding_gb2312 in freetype.h
- Resolves: #1645218d�=]o`Marek Kasik <mkasik@redhat.com> - 2.8-12[o�- Fix loading of avar tables
- Resolves: #1576504
#�2�L�U�#��Kc�MbMarek Kasik <mkasik@redhat.com> - 2.4.11-12V�3�- Define _FILE_OFFSET_BITS=64 to handle inodes higher than or equal to 2^31
- Resolves: #1303268��Jm�;aMarek Kasik <mkasik@redhat.com> - 2.8-14.el7_9.1_�@- Test bitmap size earlier for PNGs
- Fix memory leak in pngshim.c
- Resolves: #1891635j�I]{aMarek Kasik <mkasik@redhat.com> - 2.8-14\�M�- Fix rendering in monochrome mode
- Resolves: #1657479��H]�1aMarek Kasik <mkasik@redhat.com> - 2.8-13[�- Fix definition of constant ft_encoding_gb2312 in freetype.h
- Resolves: #1645218d�G]oaMarek Kasik <mkasik@redhat.com> - 2.8-12[o�- Fix loading of avar tables
- Resolves: #1576504|�F]�aMarek Kasik <mkasik@redhat.com> - 2.8-11[@- Preserve API/ABI compatibility for public symbols
- Resolves: #1576504[�EeUaRichard Hughes <rhughes@redhat.com> - 2.8-10[�- Update to 2.8
- Resolves: #1576504m�Dc{aMarek Kasik <mkasik@redhat.com> - 2.4.11-15X��A- Fix shellcheck warning (coverity)
- Related: #1368141
N���+�E�Nj�S]{bMarek Kasik <mkasik@redhat.com> - 2.8-14\�M�- Fix rendering in monochrome mode
- Resolves: #1657479��R]�1bMarek Kasik <mkasik@redhat.com> - 2.8-13[�- Fix definition of constant ft_encoding_gb2312 in freetype.h
- Resolves: #1645218d�Q]obMarek Kasik <mkasik@redhat.com> - 2.8-12[o�- Fix loading of avar tables
- Resolves: #1576504|�P]�bMarek Kasik <mkasik@redhat.com> - 2.8-11[@- Preserve API/ABI compatibility for public symbols
- Resolves: #1576504[�OeUbRichard Hughes <rhughes@redhat.com> - 2.8-10[�- Update to 2.8
- Resolves: #1576504m�Nc{bMarek Kasik <mkasik@redhat.com> - 2.4.11-15X��A- Fix shellcheck warning (coverity)
- Related: #1368141��Mc�+bMarek Kasik <mkasik@redhat.com> - 2.4.11-14X��@- Backport functions for reading signed values from stream
- Resolves: #1381678z�Lc�bMarek Kasik <mkasik@redhat.com> - 2.4.11-13X��- Don't show path of non-existing libtool file
- Resolves: #1368141
zi�Q�W�z|�Z]�cMarek Kasik <mkasik@redhat.com> - 2.8-11[@- Preserve API/ABI compatibility for public symbols
- Resolves: #1576504[�YeUcRichard Hughes <rhughes@redhat.com> - 2.8-10[�- Update to 2.8
- Resolves: #1576504m�Xc{cMarek Kasik <mkasik@redhat.com> - 2.4.11-15X��A- Fix shellcheck warning (coverity)
- Related: #1368141��Wc�+cMarek Kasik <mkasik@redhat.com> - 2.4.11-14X��@- Backport functions for reading signed values from stream
- Resolves: #1381678z�Vc�cMarek Kasik <mkasik@redhat.com> - 2.4.11-13X��- Don't show path of non-existing libtool file
- Resolves: #1368141��Uc�McMarek Kasik <mkasik@redhat.com> - 2.4.11-12V�3�- Define _FILE_OFFSET_BITS=64 to handle inodes higher than or equal to 2^31
- Resolves: #1303268��Tm�;bMarek Kasik <mkasik@redhat.com> - 2.8-14.el7_9.1_�@- Test bitmap size earlier for PNGs
- Fix memory leak in pngshim.c
- Resolves: #1891635
i��p�i��ac�+dMarek Kasik <mkasik@redhat.com> - 2.4.11-14X��@- Backport functions for reading signed values from stream
- Resolves: #1381678z�`c�dMarek Kasik <mkasik@redhat.com> - 2.4.11-13X��- Don't show path of non-existing libtool file
- Resolves: #1368141��_c�MdMarek Kasik <mkasik@redhat.com> - 2.4.11-12V�3�- Define _FILE_OFFSET_BITS=64 to handle inodes higher than or equal to 2^31
- Resolves: #1303268��^m�;cMarek Kasik <mkasik@redhat.com> - 2.8-14.el7_9.1_�@- Test bitmap size earlier for PNGs
- Fix memory leak in pngshim.c
- Resolves: #1891635j�]]{cMarek Kasik <mkasik@redhat.com> - 2.8-14\�M�- Fix rendering in monochrome mode
- Resolves: #1657479��\]�1cMarek Kasik <mkasik@redhat.com> - 2.8-13[�- Fix definition of constant ft_encoding_gb2312 in freetype.h
- Resolves: #1645218d�[]ocMarek Kasik <mkasik@redhat.com> - 2.8-12[o�- Fix loading of avar tables
- Resolves: #1576504
"�2�L�U�"��i��eFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-18P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild��hm�;dMarek Kasik <mkasik@redhat.com> - 2.8-14.el7_9.1_�@- Test bitmap size earlier for PNGs
- Fix memory leak in pngshim.c
- Resolves: #1891635j�g]{dMarek Kasik <mkasik@redhat.com> - 2.8-14\�M�- Fix rendering in monochrome mode
- Resolves: #1657479��f]�1dMarek Kasik <mkasik@redhat.com> - 2.8-13[�- Fix definition of constant ft_encoding_gb2312 in freetype.h
- Resolves: #1645218d�e]odMarek Kasik <mkasik@redhat.com> - 2.8-12[o�- Fix loading of avar tables
- Resolves: #1576504|�d]�dMarek Kasik <mkasik@redhat.com> - 2.8-11[@- Preserve API/ABI compatibility for public symbols
- Resolves: #1576504[�ceUdRichard Hughes <rhughes@redhat.com> - 2.8-10[�- Update to 2.8
- Resolves: #1576504m�bc{dMarek Kasik <mkasik@redhat.com> - 2.4.11-15X��A- Fix shellcheck warning (coverity)
- Related: #1368141
	V��b�� �re�]eFilip Januš <fjanus@redhat.com> - 2.0.35-27_���- Fix CVE-2016-5766
- Resolves: #1356813
- Upstream patch: https://github.com/libgd/libgd/commit/aba3db8N�qa?eDaniel Mach <dmach@redhat.com> - 2.0.35-26R�U�- Mass rebuild 2014-01-24N�pa?eDaniel Mach <dmach@redhat.com> - 2.0.35-25R�k�- Mass rebuild 2013-12-27L�oc9eHonza Horak <hhorak@redhat.com> - 2.0.35-24QP<A- Fix build on aarch64T�ncIeHonza Horak <hhorak@redhat.com> - 2.0.35-23QP<@- Fix issues found by Coverity��m��eFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-22Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild\�l]_eAdam Tkac <atkac redhat com> - 2.0.35-21P�9@- rebuild due to "jpeg8-ABI" feature dropP�k]GeAdam Tkac <atkac redhat com> - 2.0.35-20P�O@- rebuild against new libjpeg�&�jc�keHonza Horak <hhorak@redhat.com> - 2.0.35-19P<��- Spec file cleanup
- Compile and run test suite during build
- Using chrpath to get rid of --rpath in gd-progs
	$d�gl�u$N�{a?fDaniel Mach <dmach@redhat.com> - 2.0.35-26R�U�- Mass rebuild 2014-01-24N�za?fDaniel Mach <dmach@redhat.com> - 2.0.35-25R�k�- Mass rebuild 2013-12-27L�yc9fHonza Horak <hhorak@redhat.com> - 2.0.35-24QP<A- Fix build on aarch64T�xcIfHonza Horak <hhorak@redhat.com> - 2.0.35-23QP<@- Fix issues found by Coverity��w��fFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-22Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild\�v]_fAdam Tkac <atkac redhat com> - 2.0.35-21P�9@- rebuild due to "jpeg8-ABI" feature dropP�u]GfAdam Tkac <atkac redhat com> - 2.0.35-20P�O@- rebuild against new libjpeg�&�tc�kfHonza Horak <hhorak@redhat.com> - 2.0.35-19P<��- Spec file cleanup
- Compile and run test suite during build
- Using chrpath to get rid of --rpath in gd-progs��s��fFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-18P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
"\��d�q"L�c9gHonza Horak <hhorak@redhat.com> - 2.0.35-24QP<A- Fix build on aarch64T�cIgHonza Horak <hhorak@redhat.com> - 2.0.35-23QP<@- Fix issues found by Coverity����gFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-22Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild\�]_gAdam Tkac <atkac redhat com> - 2.0.35-21P�9@- rebuild due to "jpeg8-ABI" feature dropP�]GgAdam Tkac <atkac redhat com> - 2.0.35-20P�O@- rebuild against new libjpeg�&�~c�kgHonza Horak <hhorak@redhat.com> - 2.0.35-19P<��- Spec file cleanup
- Compile and run test suite during build
- Using chrpath to get rid of --rpath in gd-progs��}��gFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-18P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild� �|e�]fFilip Januš <fjanus@redhat.com> - 2.0.35-27_���- Fix CVE-2016-5766
- Resolves: #1356813
- Upstream patch: https://github.com/libgd/libgd/commit/aba3db8
&�^�t!�&����hFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-22Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild\�
]_hAdam Tkac <atkac redhat com> - 2.0.35-21P�9@- rebuild due to "jpeg8-ABI" feature dropP�	]GhAdam Tkac <atkac redhat com> - 2.0.35-20P�O@- rebuild against new libjpeg�&�c�khHonza Horak <hhorak@redhat.com> - 2.0.35-19P<��- Spec file cleanup
- Compile and run test suite during build
- Using chrpath to get rid of --rpath in gd-progs����hFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-18P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild� �e�]gFilip Januš <fjanus@redhat.com> - 2.0.35-27_���- Fix CVE-2016-5766
- Resolves: #1356813
- Upstream patch: https://github.com/libgd/libgd/commit/aba3db8N�a?gDaniel Mach <dmach@redhat.com> - 2.0.35-26R�U�- Mass rebuild 2014-01-24N�a?gDaniel Mach <dmach@redhat.com> - 2.0.35-25R�k�- Mass rebuild 2013-12-27

e�r+��V��:��eD�t�
570aef75009a72d1f785eeeb0cf1e9b1c5113c73c46a3a7c2eebe0f87a44655bD�s�
bb408fa95bcf415eb2f22a47b9881db4b7939785d83fa16655c8dc2709c0e454D�r�
076ae5a31f58ce2e33f04de674fed5086fd8f72a8e802528d833f3033c017469D�q�
9a97f6e2d20a2e98ad20844706c47bf2fc689c6975c67067aa46d4ab03c1e47aD�p�
b3523f6bd479abca1bc4c70f870af2423e9747ad2cb185692334588138742f50D�o�
0debd7af9974202b568d8b8c1c87e8d70139dd2dbc62ba9bf7a9e72fe64c3990D�n�
d0b3530450134364f48fc2529fb28b6ba4924562e2743be8a4a9531df24ce934D�m�
d9df089dfd6da09a0d335f5f7217eb49fb786af4bc6bdc86f8f5780e9588cb54D�l�
aa4d5c25ee0ab0c6200041d7babcc2186123b17af2126662b27bed0013787faaD�k�
eba7c5a667e7db88684d709d6c7106aa972e55a41d27a79736afb8d0eec1de6dD�j�
a4c7433fc835c54d8bf366a26b4dc41534ab33b1bd9437ea1ba37c1150958611D�i�
3e01c37b17dac632211d855274ca843a3926cde218387315d5124f7b90008656D�h�
8c0250c573335738373e9064ccc227bb57bf3a3ce5d859aa2fe9f129bbc28592
	�Z	�x�{\�]_iAdam Tkac <atkac redhat com> - 2.0.35-21P�9@- rebuild due to "jpeg8-ABI" feature dropP�]GiAdam Tkac <atkac redhat com> - 2.0.35-20P�O@- rebuild against new libjpeg�&�c�kiHonza Horak <hhorak@redhat.com> - 2.0.35-19P<��- Spec file cleanup
- Compile and run test suite during build
- Using chrpath to get rid of --rpath in gd-progs����iFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-18P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild� �e�]hFilip Januš <fjanus@redhat.com> - 2.0.35-27_���- Fix CVE-2016-5766
- Resolves: #1356813
- Upstream patch: https://github.com/libgd/libgd/commit/aba3db8N�a?hDaniel Mach <dmach@redhat.com> - 2.0.35-26R�U�- Mass rebuild 2014-01-24N�a?hDaniel Mach <dmach@redhat.com> - 2.0.35-25R�k�- Mass rebuild 2013-12-27L�
c9hHonza Horak <hhorak@redhat.com> - 2.0.35-24QP<A- Fix build on aarch64T�cIhHonza Horak <hhorak@redhat.com> - 2.0.35-23QP<@- Fix issues found by Coverity
	!d
�mx�!{�c�jRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�_ejRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�c�jRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143� �e�]iFilip Januš <fjanus@redhat.com> - 2.0.35-27_���- Fix CVE-2016-5766
- Resolves: #1356813
- Upstream patch: https://github.com/libgd/libgd/commit/aba3db8N�a?iDaniel Mach <dmach@redhat.com> - 2.0.35-26R�U�- Mass rebuild 2014-01-24N�a?iDaniel Mach <dmach@redhat.com> - 2.0.35-25R�k�- Mass rebuild 2013-12-27L�c9iHonza Horak <hhorak@redhat.com> - 2.0.35-24QP<A- Fix build on aarch64T�cIiHonza Horak <hhorak@redhat.com> - 2.0.35-23QP<@- Fix issues found by Coverity����iFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.0.35-22Q�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
t�'�3�R�ts�%c�mRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143e�$cklRay Strode <rstrode@redhat.com> - 3.28.2-26_�#�- Fix warning during unlock
  Related: #1897063{�#c�lRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�"_elRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�!c�lRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143{� c�kRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�_ekRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�c�kRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143
���A�`��`�-_eoRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�,c�oRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143{�+c�nRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�*_enRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�)c�nRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143e�(ckmRay Strode <rstrode@redhat.com> - 3.28.2-26_�#�- Fix warning during unlock
  Related: #1897063{�'c�mRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�&_emRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583
l��+�M�l{�5c�qRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�4_eqRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�3c�qRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143e�2ckpRay Strode <rstrode@redhat.com> - 3.28.2-26_�#�- Fix warning during unlock
  Related: #1897063{�1c�pRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�0_epRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�/c�pRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143{�.c�oRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821
t�"�A�h�ts�=c�tRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143{�<c�sRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�;_esRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�:c�sRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143{�9c�rRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�8_erRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�7c�rRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143e�6ckqRay Strode <rstrode@redhat.com> - 3.28.2-26_�#�- Fix warning during unlock
  Related: #1897063
���A�`�e�DckuRay Strode <rstrode@redhat.com> - 3.28.2-26_�#�- Fix warning during unlock
  Related: #1897063{�Cc�uRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�B_euRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583s�Ac�uRay Strode <rstrode@redhat.com> - 3.28.2-23^���- Support exotic keyboard layouts better
  Related: #1734143e�@cktRay Strode <rstrode@redhat.com> - 3.28.2-26_�#�- Fix warning during unlock
  Related: #1897063{�?c�tRay Strode <rstrode@redhat.com> - 3.28.2-25_m�- Backport some libgdm leak fixes from upstream
  Resolves: #1882821`�>_etRay Strode <rstrode@redhat.com> 3.28.2-24_cO�- Fix FD leak on logout
  Resolves: #1877583

e�r+��V��:��eD��
3e669a493af1a126cce0a77eecae0864765c9b701b5640962ecfa5a8ec1afc30D��
36fed680eaa8454cb71901db4b5393c54c16fdfc72c0901bc461231559e164efD��
48db0a9dafc6ecf4c0b955075d04ff198a44fa5b1bdea37a0f03af3d9d75e1a6D�~�
5268af6fbc32bf7411d9d0df3379c86428de9b0d25cbcbd8a6f1703caac79829D�}�
d977ef2c9e09f15898d44de8446c4e0984f357c637fa6b2194f05cf87e8abc29D�|�
c4a681b60727112a37ddcabfef6cfcafd36496fa1748cd9e419ad0d579eeb740D�{�
3b2af1cbe29d541a936e2a76af8f1cc07780ea069f8cc04404f4b2f85184abfcD�z�
b3306affa940e0e2ab3cd9caec8dda837e626fe8043ec669f8465d62b7b08ed5D�y�
c0c2b524cce50372b06ea8c7a4618f02d379ce6a9cbf9b2a7bbd6e21c4a80dd7D�x�
666bdeb5237f9bac4020a4b5da35bdc2b27ec3fe6d28b4e3823d1ad165c013b5D�w�
73e2cf9bb12255322e5252ec0b918e3e62d5c6df5b610dd7d2ecf351b34f1365D�v�
0f6e2c2f22024dd4f9db5cb729bdd2f2744882ba37e965a50b954f861c99243bD�u�
9b205c9658e9caf5ecd6d928179b7e7b36aa629b18e33540805f21a0d0b9f939
lx�x�lM�L_?vDaniel Mach <dmach@redhat.com> - 0.2.0-18R�U�- Mass rebuild 2014-01-24M�K_?vDaniel Mach <dmach@redhat.com> - 0.2.0-17R�k�- Mass rebuild 2013-12-27i�JeqvNils Philippsen <nils@redhat.com> - 0.2.0-16R�@- remove BR: w3m, it's only needed for "make dist"M�Io/vRex Dieter <rdieter@fedoraproject.org> - 0.2.0-15R��- rebuild (exiv2)O�Ho3vRex Dieter <rdieter@fedoraproject.org> - 0.2.0-14R��- rebuild (openexr)[�GkOvKalev Lember <kalevlember@gmail.com> - 0.2.0-13R1��- Rebuilt for ilmbase soname bump��F��vFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.0-12Q��- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild�i�Ee�ovNils Philippsen <nils@redhat.com> - 0.2.0-11Q�o@- replace lua-5.2 patch by upstream commit
- fix buffer overflow in and add plausibility checks to ppm-load op
  (CVE-2012-4433)
- fix multi-lib issue in generated documentation
[�Ob�i�[i�TeqwNils Philippsen <nils@redhat.com> - 0.2.0-16R�@- remove BR: w3m, it's only needed for "make dist"M�So/wRex Dieter <rdieter@fedoraproject.org> - 0.2.0-15R��- rebuild (exiv2)O�Ro3wRex Dieter <rdieter@fedoraproject.org> - 0.2.0-14R��- rebuild (openexr)[�QkOwKalev Lember <kalevlember@gmail.com> - 0.2.0-13R1��- Rebuilt for ilmbase soname bump��P��wFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.0-12Q��- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild�i�Oe�owNils Philippsen <nils@redhat.com> - 0.2.0-11Q�o@- replace lua-5.2 patch by upstream commit
- fix buffer overflow in and add plausibility checks to ppm-load op
  (CVE-2012-4433)
- fix multi-lib issue in generated documentationV�NeKvJosef Ridky <jridky@redhat.com> - 0.2.0-19.1a�q@- fix CVE-2021-45463 (#2035416)U�MaMvJosef Ridky <jridky@redhat.com> - 0.2.0-19X@�- add Requires: dcraw (#1279144)
	'�`��'�w'M�]o/xRex Dieter <rdieter@fedoraproject.org> - 0.2.0-15R��- rebuild (exiv2)O�\o3xRex Dieter <rdieter@fedoraproject.org> - 0.2.0-14R��- rebuild (openexr)[�[kOxKalev Lember <kalevlember@gmail.com> - 0.2.0-13R1��- Rebuilt for ilmbase soname bump��Z��xFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.0-12Q��- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild�i�Ye�oxNils Philippsen <nils@redhat.com> - 0.2.0-11Q�o@- replace lua-5.2 patch by upstream commit
- fix buffer overflow in and add plausibility checks to ppm-load op
  (CVE-2012-4433)
- fix multi-lib issue in generated documentationV�XeKwJosef Ridky <jridky@redhat.com> - 0.2.0-19.1a�q@- fix CVE-2021-45463 (#2035416)U�WaMwJosef Ridky <jridky@redhat.com> - 0.2.0-19X@�- add Requires: dcraw (#1279144)M�V_?wDaniel Mach <dmach@redhat.com> - 0.2.0-18R�U�- Mass rebuild 2014-01-24M�U_?wDaniel Mach <dmach@redhat.com> - 0.2.0-17R�k�- Mass rebuild 2013-12-27
]�D��CV�][�ekOyKalev Lember <kalevlember@gmail.com> - 0.2.0-13R1��- Rebuilt for ilmbase soname bump��d��yFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.0-12Q��- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild�i�ce�oyNils Philippsen <nils@redhat.com> - 0.2.0-11Q�o@- replace lua-5.2 patch by upstream commit
- fix buffer overflow in and add plausibility checks to ppm-load op
  (CVE-2012-4433)
- fix multi-lib issue in generated documentationV�beKxJosef Ridky <jridky@redhat.com> - 0.2.0-19.1a�q@- fix CVE-2021-45463 (#2035416)U�aaMxJosef Ridky <jridky@redhat.com> - 0.2.0-19X@�- add Requires: dcraw (#1279144)M�`_?xDaniel Mach <dmach@redhat.com> - 0.2.0-18R�U�- Mass rebuild 2014-01-24M�__?xDaniel Mach <dmach@redhat.com> - 0.2.0-17R�k�- Mass rebuild 2013-12-27i�^eqxNils Philippsen <nils@redhat.com> - 0.2.0-16R�@- remove BR: w3m, it's only needed for "make dist"
	2�^��R���2��n��zFedora Release Engineering <releng@fedoraproject.org> - 2.2.2-2V��- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild�X�ma�QzPaul Howarth <paul@city-fan.org> - 2.2.2-1V��- Update to 2.2.2
  - geoipupdate now calls fsync on the database directory after a rename to
    make it durable in the event of a crash
- Update autotools patchV�leKyJosef Ridky <jridky@redhat.com> - 0.2.0-19.1a�q@- fix CVE-2021-45463 (#2035416)U�kaMyJosef Ridky <jridky@redhat.com> - 0.2.0-19X@�- add Requires: dcraw (#1279144)M�j_?yDaniel Mach <dmach@redhat.com> - 0.2.0-18R�U�- Mass rebuild 2014-01-24M�i_?yDaniel Mach <dmach@redhat.com> - 0.2.0-17R�k�- Mass rebuild 2013-12-27i�heqyNils Philippsen <nils@redhat.com> - 0.2.0-16R�@- remove BR: w3m, it's only needed for "make dist"M�go/yRex Dieter <rdieter@fedoraproject.org> - 0.2.0-15R��- rebuild (exiv2)O�fo3yRex Dieter <rdieter@fedoraproject.org> - 0.2.0-14R��- rebuild (openexr)
�����r��zFedora Release Engineering <releng@fedoraproject.org> - 2.4.0-2Yx�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild�'�qa�ozPaul Howarth <paul@city-fan.org> - 2.4.0-1Y(�- Update to 2.4.0
  - geoipupdate now checks that	0��p��zFedora Release Engineering <releng@fedoraproject.org> - 2.3.1-2X��@- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild�^�oa�]zPaul Howarth <paul@city-fan.org> - 2.3.1-1Xn5@- Update to 2.3.1
  - geoipupdate now uses TCP keep-alive when compiled with cURL 7.25 or
    greater
  - Previously, on an invalid gzip file, geoipupdate would output binary data
    to stderr; it now displays an appropriate error message
  - Install README, ChangeLog, GeoIP.conf.default etc. into docdir (GH#33)
  - $(sysconfdir) is now created if it doesn't exist (GH#33)
  - The sample config file is now usable (GH#33) the database directory is writable: if it is
    not, it reports the problem and aborts
  - geoipupdate now acquires a lock when starting up to ensure only one
    instance may run at a time: a new option, 'LockFile', exists to set the
    file to use as a lock ('.geoipupdate.lock' in the database directory by
    default)
  - geoipupdate now prints out additional information from the server when a
    download request results in something other than HTTP status 2xx; this
    provides more information when the API does not respond with a database
    file
  - ${datarootdir}/GeoIP is now created on 'make install' (GH#29)
  - Previously, a variable named 'ERROR' was used, which caused issues building
    on Windows (GH#36)
- Drop EL-5 support
  - Drop BuildRoot: and Group: tags
  - Drop explicit buildroot cleaning in %install section
  - Drop explicit %clean section
  - noarch subpackages always available now
  - libcurl-devel always available now
"d"�>�ta�zPaul Howarth <paul@city-fan.org> - 2.5.0-1Y�e�- Update to 2.5.0
  - Replace use of strnlen() due to lack of universal availability (GH#71)
  - Document the 'LockFile' option in the 'GeoIP.conf' man page (GH#64)
  - Remove unused base64 library (GH#68)
  - Add the new configuration option 'PreserveFileTimes'; if set, the
    downloaded files will get the same modification times as their original on
    the server (default is '0') (GH#63)
  - Use the correct types when calling 'curl_easy_setopt()'; this fixes
    warnings generated by libcurl's 'typecheck-gcc.h' (GH#61)
  - In 'GeoIP.conf', the 'UserId' option was renamed to 'AccountID' and the
    'ProductIds' option was renamed to 'EditionIDs'; the old options will
    continue to work, but upgrading to the new names is recommended for
    forward compatibility��s��%zFedora Release Engineering <releng@fedoraproject.org> - 2.4.0-3Y���- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
���!���x��{Fedora Release Engineering <releng@fedoraproject.org> - 2.2.2-2V��- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild�X�wa�Q{Paul Howarth <paul@city-fan.org> - 2.2.2-1V��- Update to 2.2.2
  - geoipupdate now calls fsync on the database directory after a rename to
    make it durable in the event of a crash
- Update autotools patch��vi�zMichal Ruprich <mruprich@redhat.com> - 2.5.0-2dFo@- Resolves: #2188376 - Add support for hashed license keys to geoipupdatey�ui�zMichal Ruprich <mruprich@redhat.com> - 2.5.0-1\]o@- Resolves: #1643470 - Add geoipupdate package
- Initial commit
�����|��{Fedora Release Engineering <releng@fedoraproject.org> - 2.4.0-2Yx�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild�'�{a�o{Paul Howarth <paul@city-fan.org> - 2.4.0-1Y(�- Update to 2.4.0
  - geoipupdate now checks that	4��z��{Fedora Release Engineering <releng@fedoraproject.org> - 2.3.1-2X��@- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild�^�ya�]{Paul Howarth <paul@city-fan.org> - 2.3.1-1Xn5@- Update to 2.3.1
  - geoipupdate now uses TCP keep-alive when compiled with cURL 7.25 or
    greater
  - Previously, on an invalid gzip file, geoipupdate would output binary data
    to stderr; it now displays an appropriate error message
  - Install README, ChangeLog, GeoIP.conf.default etc. into docdir (GH#33)
  - $(sysconfdir) is now created if it doesn't exist (GH#33)
  - The sample config file is now usable (GH#33) the database directory is writable: if it is
    not, it reports the problem and aborts
  - geoipupdate now acquires a lock when starting up to ensure only one
    instance may run at a time: a new option, 'LockFile', exists to set the
    file to use as a lock ('.geoipupdate.lock' in the database directory by
    default)
  - geoipupdate now prints out additional information from the server when a
    download request results in something other than HTTP status 2xx; this
    provides more information when the API does not respond with a database
    file
  - ${datarootdir}/GeoIP is now created on 'make install' (GH#29)
  - Previously, a variable named 'ERROR' was used, which caused issues building
    on Windows (GH#36)
- Drop EL-5 support
  - Drop BuildRoot: and Group: tags
  - Drop explicit buildroot cleaning in %install section
  - Drop explicit %clean section
  - noarch subpackages always available now
  - libcurl-devel always available now
"d"�>�~a�{Paul Howarth <paul@city-fan.org> - 2.5.0-1Y�e�- Update to 2.5.0
  - Replace use of strnlen() due to lack of universal availability (GH#71)
  - Document the 'LockFile' option in the 'GeoIP.conf' man page (GH#64)
  - Remove unused base64 library (GH#68)
  - Add the new configuration option 'PreserveFileTimes'; if set, the
    downloaded files will get the same modification times as their original on
    the server (default is '0') (GH#63)
  - Use the correct types when calling 'curl_easy_setopt()'; this fixes
    warnings generated by libcurl's 'typecheck-gcc.h' (GH#61)
  - In 'GeoIP.conf', the 'UserId' option was renamed to 'AccountID' and the
    'ProductIds' option was renamed to 'EditionIDs'; the old options will
    continue to work, but upgrading to the new names is recommended for
    forward compatibility��}��%{Fedora Release Engineering <releng@fedoraproject.org> - 2.4.0-3Y���- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
9��x�9��e�|Andrew Price <anprice@redhat.com> - 3.1.10-6Z&�@- gfs2_edit: Print offsets of indirect pointers
  Resolves: rhbz#1518938�7�e�|Andrew Price <anprice@redhat.com> - 3.1.10-5Y��- Update URL in spec file
  Resolves: rhbz#1501738
- fsck.gfs2: Make -p, -n and -y conflicting options
  Resolves: rhbz#1507091��e�-|Andrew Price <anprice@redhat.com> - 3.1.10-4Y��- gfs2_edit savemeta: Fix up saving of dinodes/symlinks
  Resolves: rhbz#1482542�u�e�|Andrew Price <anprice@redhat.com> - 3.1.10-3X���- libgfs2: Issue one write per rgrp when creating them
- mkfs.gfs2: Fix resource group alignment issue
- mkfs.gfs2: Free unnecessary cached pages, disable readahead
  Resolves: rhbz#1440269��i�{Michal Ruprich <mruprich@redhat.com> - 2.5.0-2dFo@- Resolves: #2188376 - Add support for hashed license keys to geoipupdatey�i�{Michal Ruprich <mruprich@redhat.com> - 2.5.0-1\]o@- Resolves: #1643470 - Add geoipupdate package
- Initial commit
:s�*:�l�g�s|Andrew Price <anprice@redhat.com> - 3.1.10-10^��- libgfs2: Use sizeof for 'reserved' fields in ondisk.c
- fsck.gfs2: Disambiguate 'check_data'
- gfs2-utils: Accept a char* instead of a buffer head in gfs2_check_meta
- fsck.gfs2: Disambiguate check_metalist
- fsck.gfs2: Fix segfault in build_and_check_metalist
- fsck.gfs2: Retain context for indirect pointers in ->check_metalist
- fsck.gfs2: Clear bad indirect block pointers when bitmap meets expectations
  Resolves: rhbz#1487726�4�e�|Andrew Price <anprice@redhat.com> - 3.1.10-9[��- fsck.gfs2: Don't check fs formats we don't recognise
- libgfs2: Fix pointer cast byte order issue
  Resolves: rhbz#1616389�
�e�7|Andrew Price <anprice@redhat.com> - 3.1.10-8[,�- glocktop: Remove a non-existent flag from the usage string
  Resolves: rhbz#1544944�	�e�/|Andrew Price <anprice@redhat.com> - 3.1.10-7Z�>�- mkfs.gfs2: Scale down journal size for smaller devices
  Resolves: rhbz#1498068
4^��4�5�q�{}Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�q�G}Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��
k�3|Andrew Price <anprice@redhat.com> - 3.1.10-11.1_u�- mkfs.gfs2: Don't use i/o limits hints <4K for block size
  Resolves: rhbz#1853625��	g�W|Andrew Price <anprice@redhat.com> - 3.1.10-11^�(@- gfs2_jadd: Handle out-of-space issues
- gfs2_jadd: error handling overhaul
  Resolves: rhbz#1837640
u�T�u��i�)}Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/}Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��i�Q}Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��
i�)}Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��{�	}Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�k�}Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=}Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o}Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���i�Q~Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��i�)~Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�q�{~Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�k�~Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=~Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o~Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��i�)~Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/~Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5� q�{Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�q�GSebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��s�~Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��{�	~Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��$i�)Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�#q�/Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��"i�QPavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��!i�)Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��({�	Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�'k�Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��&u�=Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�%u�oOndrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���+i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��*i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�)q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�0k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��/u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�.u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��-i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�,q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�4q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�3q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��2s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��1{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��8i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�7q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��6i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��5i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��<{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�;k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��:u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�9u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387

e�r+��V��:��eD��
bf6b711d995c2cfcd7c146204145b34ce97998804eb37c62306f383d81097962D�
�
7f8cb3fbedf15a4146ccc43a641071e7f99fbde04c72526476d5cd90545e4644D��
6f603069d8c52e3cf80cd2299fead7f8539598c42a9cd85ae42363724530da93D��
6a1b6459f1f724a4030deb520745ead7657fcaae71a35ba2905022d5da341997D�
�
5c264476a12da876822ba10518576ea9ba06566847192d58c4642df8ad70f0deD�	�
eace35203de4fbc64ea081a27197877a56615d25b23b30e79f559209ff736310D��
ae71e0763354a3a81b14cb8bd4de22629e35e59b0045199ad6958323fac31e30D��
2f40644349b7b023a5ac1b6045dc14e19a4d5af38ffd90e8907d4b98929b12b2D��
e07e25a4f64939f2fc2c8dfbcd0358561025cfc19d01318d054b161d02e76a80D��
4a1eda7aca52060e944393a7b40798a1e90bbd8b4ffcf3bdfe5779ccbe2acc43D��
e4d4ae004f1e33c3542d967b6301d6307f9a848be51a7008ff5726259a3e5a5dD��
a0b6efe5d9993351a08c5873bc1be89455d96a5535d9bf69e24384ab21850577D��
c37e4471ce6ce9e562309ca353e9b1cd0725d1ec5d073e80ad7a9ba3f32732c1
�G;���?i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��>i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�=q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�Dk��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��Cu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�Bu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��Ai�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�@q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�Hq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�Gq�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��Fs��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��E{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��Li�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�Kq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��Ji�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��Ii�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��P{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�Ok��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��Nu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�Mu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���Si�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��Ri�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�Qq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�Xk��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��Wu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�Vu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��Ui�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�Tq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�\q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�[q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��Zs��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��Y{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��`i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�_q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��^i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��]i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��d{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�ck��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��bu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�au�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���gi�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��fi�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�eq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�lk��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��ku�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�ju�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��ii�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�hq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�pq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�oq�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��ns��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��m{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��ti�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�sq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��ri�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��qi�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��x{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�wk��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��vu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�uu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���{i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��zi�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�yq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�~u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��}i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�|q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��
u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�	u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�
q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l�� {�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���#i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��"i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�!q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�(k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��'u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�&u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��%i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�$q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�,q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�+q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��*s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��){�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��0i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�/q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��.i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��-i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��4{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�3k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��2u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�1u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���7i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��6i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�5q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�<k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��;u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�:u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��9i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�8q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�@q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�?q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��>s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��={�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067

e�r+��V��:��eD��
497230bf98b04ad42a5e86190210020c9d693a673e748256dfdae01fda278f6bD��
e3c6ac455f3f655e70629ab69610a70ab4f4e55490536ec08dc32ec06031f28bD��
6c21b000ed4eaee655f575de1d380dded8d228f9631df396279ba89debbe6faeD��
ce44bc6fbc305c3861c8d26e236f8872ccd1827001528bced75ea5a087db84d4D��
84b71cd28250d68d8dd0c9a9da4983782f0ef2c5888c5734b7d12841ff61313bD��
ee8a7377ed0c955a55eec8ea39cbb91e5c2b99a4b050e0f4136075e5c7c87796D��
b649840984828bb702a86f59b74053d9fb62a7d9512eed421f9ac6fd2c5e648aD��
e6b35740952d21b92b5fd63b78ed0f5a4649c9aeb22cf9cb5af2d6c5c8a86dc3D��
37036b6e228127d501401f8546d504c70f6e51fcc1271a33342effbc6d6a62cdD��
44fdf0fd6b2ea0867e2530297d92b753e9b67534567ffa09595ff50bc74c9886D��
4f181bcb90816497b5e18006556c8e9c5e26bb5a1da4f5be2acce0472c81866dD��
087a9eb6f7e5a03f17d35ced5aea62e436334f59bd027880ae3be3eb69257219D��
37146ed7255163cbdf3bb94a0f5e8ea9cb46eeddd0d269546fb213017f212548
u�T�u��Di�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�Cq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��Bi�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��Ai�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��H{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�Gk��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��Fu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�Eu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���Ki�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��Ji�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�Iq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�Pk��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��Ou�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�Nu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��Mi�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�Lq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�Tq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�Sq�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��Rs��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��Q{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��Xi�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�Wq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��Vi�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��Ui�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��\{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�[k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��Zu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�Yu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���_i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��^i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�]q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�dk��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��cu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�bu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��ai�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�`q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�hq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�gq�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��fs��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��e{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��li�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�kq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��ji�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��ii�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��p{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�ok��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��nu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�mu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���si�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��ri�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�qq�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�xk��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��wu�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�vu�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��ui�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�tq�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�|q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�{q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��zs��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��y{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��~i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��}i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387of	�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������	J�P	K�S	L�X	M�\	N�`	O�d	P�g	Q�l	R�p	S�t	T�x	U�{	V�	W�	X�	Y�	Z�	[�	\�	]�	^� 	_�#	`�(	a�,	b�0	c�4	d�7	e�<	f�@	h�D	i�H	j�K	k�P	l�T	m�X	n�\	o�_	p�d	q�h	r�l	s�p	t�s	u�x	v�|	w�	x�	z�	{�	|�	}�	~�	�	�� 	��'	��.	��5	��<	��C	��J	��Q	��X	��_	��f	��m	��t	��{	��	��		��	��	��	��$	��(	��/	��4	��;	��@	��G	��N	��U	��\	��c	��k	��r	��y	��	��	��	��	��	��"	��)	��0	��7	��>	��E	��L	��S	��Z	��a	��e	��i	��o	��t	��{	��	��		��	��	��	��&
�G;���i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�
u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��	i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
X{�X�5�q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[�q�G�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081��s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��
{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
u�T�u��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059��i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
lK��l��{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:�k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
�G;���i�Q�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5�q�{�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
-!l��:� k��Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008��u�=�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1�u�o�Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387��i�)�Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O�q�/�Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
3{�~�E�3��'u�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099o�&iy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221��%a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��$u�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099o�#iy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221��"s��Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365��!{�	�Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067
Mg�c�_�M��.u�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099o�-iy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221h�,u_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596��+a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000h�*u_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596��)a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��(a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000

e�r+��V��:��eD�(�
79588570ccbd1df263463cf10a5d97ef323266e2abedfeb2fefafd34609a08dfD�'�
45fefc5e38fdda8877b262c158dcf1558ddd8b48fca3c2cd58b21d90e637096fD�&�
449fcca21f14ce7eafdbe53266ec3665872f2ce58cd9fd10b5ebe923ec7e12a2D�%�
cb1bff3dcdabc1801553de1e4bae164ca1ca0aa473eebe3e7afd8360d53dcad7D�$�
b65a283b2abdd24d3efe7491ad9fbe6bab445307ebf30070af80a0fd335b8560D�#�
d1d53660bffa4c0d03720470eba69755d1fe600ebcd13dc49a736237a10983ebD�"�
3c79cb3de74e545373941c507295276cafff95e505438c0bb771fd73deb0cf11D�!�
722785536ad769e0f2077e33c2c6aa02937baf01e2357433b6873c7a444503daD� �
0506a69ed5099abb05188f0ad253ebf7fb23f9516de5789b336622a000b67e9dD��
e10f54c5d580e560b5d4611357d17fabf744c685d0597c57f65096c26149632cD��
c1b656d07a2265aaad3c80a8e621f30eacc4d7131ecac7e66fade5608ce366e2D��
0918063cb9b48c317391f431d587661c39613d95bd83d01ca9029660d7a1dfd9D��
8509fe4641cb16b24f3aced3e8cb56ef28648055b03221b4d4cb4017259e1995
g�U�#���5a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000h�4u_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596��3a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��2a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��1u�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099o�0iy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221��/a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000
t�#��Q�to�<iy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221h�;u_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596��:a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��9a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��8u�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099o�7iy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221h�6u_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596
`�.�Q���Ca�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��Bu�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099o�Aiy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221h�@u_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596��?a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��>a�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��=u�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099
M��U�Q�Mh�Ju_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596��Ia�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000h�Hu_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596��Ga�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��Fa�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��Eu�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099o�Diy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221

e�r+��V��:��eD�5�
d2c498e78241cc2d36124d37d4771f877da25de95d6a31c1ad42e1287fdda746D�4�
136c98f13aca8088f8a6db32a4f1c09e88ab4e875a90611b2c854ca63a7db95aD�3�
7b99cae552eb8e3aa9044c06a0c67601794c80300cf140324bc228da9d9f0c30D�2�
d7000378e73195f460b1df7dafb97183eefb63440b39636075973f460f0b141dD�1�
c67a99f8d73138551a0d40218c32828b28c8df46641ed69f149aa858bfb4476cD�0�
d0c3a21a7ae050cc88bb11365edee8ae76ce4656de55be60d371d691353d0a2aD�/�
a09b59d166ae4f96e35aa50238b29f47cbf2e30ed154a83dd200b7627918a160D�.�
b2b420ac2c03b3a2e4cadd073857498446180ec51a863fe30335c9da3a963fdeD�-�
ee561a3f0dd8945edec3478e8426cc324bdf6fc5fe6a31d762cfae60d3e14830D�,�
d41ecaf1cea900f2c9354fc197197c80a88316766208fa264735e4153be0668eD�+�
c7dec18b5dff68e91dd42275e011d20aecbe60817c948f50fef7adfc8276ec34D�*�
1f62ae8c12fed4f7639f910b2b5ff758d169ec26fdf5536df0cfd5d6bee2d247D�)�
bbce7868f8e66ee5f69db6702fdb909d81b8c17bb4f7417dbf08a87ef2a26308
\��U�Q�\��Qi�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�Pia�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)h�Ou_�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-9`��@- Fix CVE-2021-27219
  Resolves: #1960596��Na�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��Ma�K�Ray Strode <rstrode@redhat.com> - 2.56.1-8_��@- Backport patch to fix leak in g_signal_connect_object
  Resolves: 1887862
  Related: #1717000��Lu�E�Michael Catanzaro <mcatanzaro@redhat.com> - 2.56.1-7^�2�- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099o�Kiy�Jens Petersen <petersen@redhat.com> - 2.56.1-6^��@- Backport patches for GDBus auth
  Resolves: #1777221
O��~}O�/�Xi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Wi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Vi��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Ui�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Tik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Si�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�Ri��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)
���y�z�_i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�^ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��]i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�\i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��[i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�Zia�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)x�Yi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)
-|N�D�-��fi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�ei��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��di�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)x�ci�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�bi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�ai�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��`i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
���f��f�ms]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�li�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�ki�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�ji�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��ii��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�hi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�gik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
sq�Z�r�sx�ti�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��si��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�ri�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�qik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��pi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�oi��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��ni�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)
jM�i�R�jz�{i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�zik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��yi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�xi��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)f�ws]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�vi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�ui�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
d|N�j�du�i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�~i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�}i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��|i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
La�y�z�Lx�	i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)
��	j����x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�
ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�
s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)
M�i�"�h�ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)�5�i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
_����V�_�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)
�G��5��
�$s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�#s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�"i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�!i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x� i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)�5�i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)
jG�Cj�U�(m�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules��'m�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)i�&W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�%i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)
2�]�y�2�5�/i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�.s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�-s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�,i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�+i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�*i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)r�)m{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)
3��#�3x�4i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)r�3m{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�2m�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules��1m�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)i�0W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)
M�i�"���;m�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)i�:W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�9i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�8s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�7s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�6i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�5i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
F'�G�F��@i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�?i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�>ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)r�=m{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�<m�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules

e�r+��V��:��eD�B�
ff4671dfa3a8f95a13b8ba51b2a558742445e61b30cbb1cf07788364ca2bb076D�A�
aab72ef4b89bc4481b87f7aaf225cbdefb62073dddddc7fc7c2b94ab11a0a936D�@�
acbb0c34227bd9c7bba35cfa08b4942dd141ee4ccadd128d8acedaef5e31522cD�?�
1cdd1bc2cbd53aa25851e70a8024e7e85db9b9d0fcdfcc2df323c89e5944ec7aD�>�
43b68e9aee5969d0a7628cb49b8b9e8a4b328432cd2bbf3a542567a7d9be9cc8D�=�
aba75d84977de2cd5e9da00e763912c5e72ba28b55b17e081014e97ca13ce809D�<�
9d6c8bed9c4d8626f8fd6586301ec93617410de9408cd2b65fef37c2cea142c9D�;�
f48caf62db65a846a2e5bf134e7e6a5aa0bcc81a67c9995255a33f3f18ab9f65D�:�
0fbc642e2648e77838d136eb26008e221d165a8465fd50b51c8e7ef52d5c3376D�9�
f48d75115ac638576d608849a173ace6a70c2430a2e0226487652befdf004b27D�8�
c59d4299cbd7dc796fc38b8ac3ad9e4a8030d20ee8831940a24af8b28a84cca5D�7�
58dd6ecca9f9c38c402d46c56efacaf2a8739de21c64f22dfb3f9887f2de6c94D�6�
7b92de985a23ef4b67bd11135a92917ca99025920b1e4db59517205a2278c3f1
;��W�`�;i�GW�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�Fi��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�Es�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�Ds]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�Ci�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Bi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Ai�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
���f��f�Ns]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�Mi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Li�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Ki�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Ji��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Ii�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Hik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
Ar�M�X�A��Ui�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�Ti��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��Si�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�Ria�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)i�QW�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�Pi��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�Os�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)
\��f�\��\i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)x�[i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Zi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Yi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Xi��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Wi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Vik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
O��~}O�/�ci�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�bi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��ai��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�`i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�_ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��^i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�]i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)
����x�ki�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��ji��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�ii�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�hik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��gi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�fi��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)f�es]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�di�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)
TM�i�<�Tz�ri�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�qik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��pi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)�
�os�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�ns]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�mi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�li�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
#|N�j�#�5�yi��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�xs�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�ws]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�vi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�ui�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�ti�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��si��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
;��W�`�;i�W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�~s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�}s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�|i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�{i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�zi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
2h��2z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)r�m{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�m�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules��m�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)
#|N�j�#�5�i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�
s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�	i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
�.�'����i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�ia�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)i�
W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)
K��W�b�K��i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�ia�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
\��f�\��"i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)x�!i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/� i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
O��~}O�/�)i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�(i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��'i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�&i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�%ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��$i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�#i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)
���v�z�0i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�/ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��.i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�-i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��,i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)f�+s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�*i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)
S|N�j�S��7i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�6i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)f�5s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�4i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�3i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�2i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��1i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
���f��f�>s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�=i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�<i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�;i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��:i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�9i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�8ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
tr�[�s�tx�Ei�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Di��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Ci�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Bik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Ai�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�@i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)�
�?s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)

e�r+��V��:��eD�O�
cffd614b0edc8b160d92daa7f3c4c4dffd5e33a66532c35ee32132d1b56e63b7D�N�
91de6d1a2c900bf6a030d637e635ba8bed416176970159ef63c61ba70f93a275D�M�
b3e7d51cd260028cee1b21b2d94a9e4694745e0e673f10a05aebb54a5a4928abD�L�
c4697b0258943ed3a070f75ed2b1163ddeb2746108163a6b372318bfc419db74D�K�
9ba71fe357dd09d1913b30b0bd83507588d8cb06eda6f2c15326f3f1384c6180D�J�
b05ac36a6c2c5fb2a3b34dee8aff347281f1ee28b49846b4add728a5cd69f06aD�I�
68765f29d06d31652e80d398846d899e7437a836c1fffeb61248afa76e51b90fD�H�
178ac00cbf99e924ca4b26e5bede47496404e34c1fe48906789d80dd955c9793D�G�
9c54883a611d1da210a5b0909cd7fd415b6c99473614fab81bae9df9cf8c6be2D�F�
15c7b778a896d0c127b0468d18a519b750dbd5a649ccba7fbb6b5b215b7243d6D�E�
a25ea7a2e7fdf9c96aa665fd1d337fa501a8be996a208eede238af6018d94012D�D�
7ea4c424cb331a1de27539fd790be4a991e6525f0d33035d854f2e66e0c2e274D�C�
235d7a11f2bec5ce59b3207ad420c1a0034747f77ac4902d343951c7bd4109d6
TM�i�<�Tz�Li�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Kik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Ji�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)�
�Is�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�Hs]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�Gi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Fi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
#|N�j�#�5�Si��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�Rs�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�Qs]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�Pi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Oi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Ni�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Mi��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
La�y�z�Lx�Zi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Yi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Xi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Wi��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Vi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Uik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Ti�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)
>�	P�"�>f�as]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�`i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�_i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�^i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)�5�]i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�\s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�[s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)
�r�M���em�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)i�dW�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�ci��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�bs�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)
�'�7��/�ii�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�hi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)r�gm{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�fm�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules
����i���om�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)i�nW�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�mi��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�ls�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�ks]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�ji�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)
F'�G�F��ti��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�si�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�rik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)r�qm{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�pm�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules
;��W�`�;i�{W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�zi��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�ys�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�xs]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�wi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�vi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�ui�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
���f��f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��~i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�}i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�|ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
Ar�M�X�A��	i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�ia�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)i�W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)
\��f�\��i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�
i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�
ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
O��~}O�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)
����x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)
TM�i�<�Tz�&i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�%ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��$i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)�
�#s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�"s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�!i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/� i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
#|N�j�#�5�-i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�,s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�+s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�*i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�)i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�(i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��'i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
;��W�`�;i�4W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�3i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�2s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�1s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�0i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�/i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�.i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
2h��2z�9i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�8ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)r�7m{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�6m�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules��5m�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)
#|N�j�#�5�@i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�?s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�>s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�=i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�<i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�;i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��:i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
�.�'����Hi��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Gi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Fik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Ei�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�Di��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��Ci�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�Bia�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)i�AW�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)

e�r+��V��:��eD�\�
deefbf7dc62157f10bf35bfcceae5fb497403a6fbf86fef1e8cfd5636f7bad10D�[�
670e8233e94a81c11ff801e9565903257b0694462a07b7f8724d3008d060ad94D�Z�
2fda5e0025c27a97a92116265279bc7592a072372d95f68ec7c2e289e884155bD�Y�
df21a3fb768e603f322d9c16831a48f1a953dcc954f4b9b79e30a3e77107cd77D�X�
4266dcf7867c8c57f9684916eb7d5867aba2298775bf2e55af86bb7d8b4ef39cD�W�
5e130e7019c26fc26493cc8b1c227f57d4451afda99fda03e0dac4bd46628980D�V�
f7501b0cdc7eb8f83b56ce263d1a1408914f103af339c893bd31a587ad345cd3D�U�
f2fa340f24195c35a86b3ed5c2f4ca5405ba1e6482aab26dd1e8d7ce339a73fbD�T�
6815b9d123a4214f4d4bf68b7d0d6c2ea059a5ed94bf0abe1b157d1e14de7f6cD�S�
49e01e923bc5d1026751341c9a01ab8ef4d50d8b17e94f179de33afcbfb0b234D�R�
eae7a2d2bc9f6058c113c27e6bdea6677a865df0f7924ed51165a2653c2d2175D�Q�
650dc5eb73a88b8297704da202b361a3a2367643c25269a9d667ea5803dbc397D�P�
aeb54137355c495d8cbda465df5347f7e0075a2330f89bc679ccd9d8f8d5b4f6
K��W�b�K��Oi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�Ni��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��Mi�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�Lia�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)x�Ki�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Ji�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Ii�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
\��f�\��Vi�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)x�Ui�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Ti�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Si�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Ri��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Qi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Pik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
O��~}O�/�]i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�\i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��[i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Zi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Yik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Xi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�Wi��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)
���v�z�di�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�cik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��bi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�ai��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��`i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)f�_s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�^i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)
S|N�j�S��ki�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�ji��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)f�is]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�hi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�gi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�fi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��ei��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
���f��f�rs]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�qi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�pi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�oi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��ni��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�mi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�lik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
tr�[�s�tx�yi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��xi��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�wi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�vik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��ui�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�ti��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)�
�ss�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)
TM�i�<�Tz�i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��~i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)�
�}s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�|s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�{i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�zi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
#|N�j�#�5�i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
La�y�z�Lx�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�
i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�
i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�	ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)
>�	P�"�>f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)�5�i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)
�r�M���m�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)i�W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)
�'�7��/�i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)r�m{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�m�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules
����i���#m�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)i�"W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�!i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
� s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)
F'�G�F��(i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�'i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�&ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)r�%m{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�$m�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules
;��W�`�;i�/W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�.i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�-s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�,s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�+i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�*i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�)i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
���f��f�6s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�5i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�4i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�3i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��2i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�1i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�0ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)
Ar�M�X�A��=i�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�<i��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)��;i�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c�:ia�Florian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)i�9W�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�8i��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�7s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)
\��f�\��Di�/�Florian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)x�Ci�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Bi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Ai�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��@i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�?i�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�>ik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)

e�r+��V��:��eD�i�
5c3a51f2cd800bc1eb63007add93f02cb14e4acbe93b537fa3fb5d1a05f91ceaD�h�
9ff292253bb056d6533811af24502ff8e6b9f03d370e153698aff7cc1cb568b6D�g�
794055514a0043fb0a97d85b7e623b6862a4861b6e488835385596d392b4f24eD�f�
a9cdf7b1790648907c553d9bd3ea79400a2884d68c1cb870f1c3d0c0ef2af44dD�e�
63e5114d5fdf7fa2162781d184e8588d2af92fd268bf72cf0824edd0ad85d504D�d�
83e83351bd9f8e17bb928673f2236a6035cf3a335789585a60a5d5068c2c8b23D�c�
68fdae357028fe930922530fba8f0491b1f04b11e6ce8cc9f6c7b362bfe37101D�b�
bffa643f42fbf585a2b14d6c8bfb9d7ac804826cf20ad4d14bbdc3c996290615D�a�
b8969d6cee16b77e095cb73262e74f3bea7aeaacc386fb96ed8274c2732c2893D�`�
71b7e0dd87fd725a96f1b8e998c7b16f7c063cf2f5888312df9191de086378b7D�_�
4c33dc16f8bf9f19d59d71c209205c27c9923c2016d5ca5f3409885c95bd8be4D�^�
ae5b869408794a434481ba8d5927690a56b9e2045b44efc1cca5b637285e435cD�]�
cafdbebcda7664e47d81f647d715249983cbe0bb4b063c1d56ab327a8766e2d0
O��~}O�/�Ki�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�Ji�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Ii��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Hi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Gik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Fi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�Ei��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)
����x�Si�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��Ri��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z�Qi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Pik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Oi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u�Ni��Florian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)f�Ms]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�Li�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)
TM�i�<�Tz�Zi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�Yik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)��Xi�O�Carlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)�
�Ws�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�Vs]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�Ui�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�Ti�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
#|N�j�#�5�ai��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�`s�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�_s]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�^i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�]i�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�\i�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��[i��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
;��W�`�;i�hW�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5�gi��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�fs�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�es]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�di�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�ci�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�bi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
2h��2z�mi�
�Carlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h�lik�Florian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)r�km{�Florian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U�jm�?�Florian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules��im�=�Florian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)
#|N�j�#�5�ti��Florian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
�ss�#�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f�rs]�Siddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x�qi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/�pi�w�Carlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x�oi�	�Carlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)��ni��Carlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)

�;��0�I��b�~�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`�}�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`�|�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v�{�g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926k�z�Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�yu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�xu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�wu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�vu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714i�uW�DJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)
D�4�l�D`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\���1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641b��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372f�yW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager lines
	+��d��K��+k��Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�
u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�
u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714d�	uW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R����Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375
	c�$�\��-�cb��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372f�yW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v��g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926
:�=��:d�uW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R����Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\���1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641

!�N��.�R��!f�'yW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb�&�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`�%�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`�$�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v�#�g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926k�"�Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�!u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V� u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714
J�:�p�J`�.�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`�-�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\�,��1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641b�+�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b�*�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`�)�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`�(�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372
�*�`�U��k�6�Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�5u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�4u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�3u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�2u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714d�1uW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`�0�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R�/���Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205
	c�$�\��-�cb�?�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b�>�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`�=�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`�<�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372f�;yW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb�:�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`�9�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`�8�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v�7�g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926
:�=��:d�EuW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`�D�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R�C���Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205`�B�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`�A�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\�@��1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641

e�r+��V��:��eD�v�
72811299e34ce97ab4abb454b8e728ca0bcc192a314cab3cc6799df21cc7b92bD�u�
c40a3a99e0047693ac6789e2c35f28639c6c6c3dafcaa8083ab1f6aec4279cd6D�t�
aa8159ebe427848a84e44ec1263eb6e8467bd09994185803163c9501ede167adD�s�
dd928d632917d65ac27ed05d45f342a550ac01430159ae99363d9a406701fe04D�r�
276df6b2e20398eb1acd7d2327f480491884ec450b49410d4cad1f010cba2e36D�q�
ea5bee404d5fc3e07b6c6c946b4663fdc9b4befd89d89e5fd0c57da7b27800ecD�p�
b843af350666656b6246dd355d5e90fac356a7c6b609118d69957fefcf9350b3D�o�
a100ffb8d2d8478959b6d515f8a57612af98cd23cd3f340be8fdc45b223ebd2bD�n�
b83531fbbb21a612cb6bf9dd29ef1ba3afdeacd82de1d86b9949dac00d9edecbD�m�
b808a968c2ce3fd33503aecac4b0f640badeb9c4fc64b22515676fc26677bdbaD�l�
18f14d208b245267c6cc29b0b7074e0e030ee89e895659c26047d4186135bd94D�k�
6c06e0b4e7b36d4a64097557ada558aaa42f90b60af6f66d06329756c6ea57c9D�j�
b126c7678a3e74f9a0dca6136f61a6fdd9471991c6ce22a72c08d8a8aa86f2e1

!�N��.�R��!f�OyW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb�N�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`�M�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`�L�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v�K�g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926k�J�Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�Iu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�Hu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�Gu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�Fu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714
J�:�p�J`�V�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`�U�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\�T��1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641b�S�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b�R�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`�Q�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`�P�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372
�*�`�U��k�^�Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�]u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�\u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�[u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�Zu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714d�YuW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`�X�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R�W���Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205
	c�$�\��-�cb�g�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b�f�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`�e�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`�d�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372f�cyW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb�b�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`�a�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`�`�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v�_�g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926
:�=��:d�muW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`�l�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R�k���Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205`�j�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`�i�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\�h��1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641

!�N��.�R��!f�wyW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb�v�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`�u�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`�t�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v�s�g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926k�r�Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�qu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�pu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�ou;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�nu;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714of
6flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������	��4	��9	��@	��H	��O	��V	��]	��d	��k	��r	��y	��	��	��	��	��	��	��#	��(	��/	��6	��=	��D	��K	��S	��Z	��a	��h	��m	��t	��~	��	��	��	��	��'	��.	��6	��?	��E	��O	��V	��^	��g	��m	��w	��~	��	��	��	��	��&	��.	��7	��=	��C	��I	��O	��W
�_
�e
�l
�s
�x
�
�
�
�
	�

� 
�'
�-

�5
�=
�E
�M
�S
�Y
�`
�f
�m
�t
�z
�
�
�
�
�
�"
�)
 �0
!�6
"�=
#�D
$�J
%�Q
'�X
(�^
)�e
*�l
+�r
,�y
-�
.�
/�

0�
1�
2�!
3�(
4�.
5�5
J�:�p�J`�~�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`�}�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\�|��1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641b�{�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b�z�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`�y�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`�x�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372
�*�`�U��k��Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714d�uW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R����Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205
	c�$�\��-�cb��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`�
�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372f�yW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb�
�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`�	�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v��g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926
:�=��:d�uW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R����Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\���1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641

!�N��.�R��!f�yW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`��;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v��g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926k��Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714
J�:�p�J`�&�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`�%�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\�$��1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641b�#�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b�"�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`�!�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`� �;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372
�*�`�U��k�.�Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823V�-u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V�,u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V�+u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V�*u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714d�)uW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`�(�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R�'���Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205
	c�$�\��-�cb�7�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901b�6�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`�5�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`�4�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372f�3yW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb�2�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`�1�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`�0�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v�/�g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926
:�=��:d�=uW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines`�<�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R�;���Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205`�:�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`�9�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\�8��1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641
�P�j�i�t�Csy�Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Be��Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Ae��Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�@qw�Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�?ms�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�>q�i�Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501
j�e�P�jr�Iqw�Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�Hms�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�Gs�
�Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��Fs�-�Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Es�-�Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��Ds��Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999

e�r+��V��:��eD��
8afb8e27332a8489152d37ca03c25098d73ea51e0982b87f6a7bb7d35104b927D��
6ff94086763de7dbc7a08197fae9ec80ef7dbba995606dc86e245517b4635a11D��
68b19039b1e53465dc3f08f0e56e24f7e1672b449a51dd05f8ae10ff49416b66D��
86f47f4e0ba937bd5cc3e11936092ae2624f85a10417a53a3620844161158224D��
821df7321c6fd01dc77f9435ba556d7b08cfdfdb262113c4223883e34adeedf3D�~�
195f9b3429ced50e475e3f14ae59ece2ac1f581466cf6713231c9da9927283e0D�}�
b08dd14ff4c9cde964c7eb832ae4496d321debc822b86b970f8051ca8589c6b3D�|�
c4456d3a9934c3fe90a0750649cc735745508843da43735b39aa5cdcaadb99a4D�{�
d6af98392b986204b8b504202adcf13ec1eca355c819f9d4a1ee4d8448a14c55D�z�
be7ce57daa28ef35ce7974665112d6551b70b8c48b1c14c9fb067c8aae658533D�y�
134432ad69b8ff48c6929ed4f645153058d8cb0020dbb0be3eeb7ead882052b9D�x�
838f9c1a4495b9f9bd85ed4019e8c2dc8ac645f72e221541ed03338c1cea45bdD�w�
e67c1938cd59583e0619d2d7e8c5830ae4585c3509d473ef7f73fac3a559c82f
Z{����Z��Os�-�Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Ns�-�Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��Ms��Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�Lsy�Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Ke��Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Je��Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
�~
�p$����W]�'�Rui Matos <rmatos@redhat.com> - 3.22.1-4Y��- Make our password validation similar to anaconda's
  Resolves: rhbz#1447941��V]�3�Rui Matos <rmatos@redhat.com> - 3.22.1-3Y�- Disable 'software' page as it doesn't make sense in RHEL
  Resolves: rhbz#1446735x�U]��Rui Matos <rmatos@redhat.com> - 3.22.1-2X�C�- Honor anaconda's firstboot being disabled
  Resolves: rhbz#1226819I�Te1�Kalev Lember <klember@redhat.com> - 3.22.1-1W�%�- Update to 3.22.1I�Se1�Kalev Lember <klember@redhat.com> - 3.22.0-1W��@- Update to 3.22.0K�Rg3�Kalev Lember <klember@redhat.com> - 3.21.92-1W��@- Update to 3.21.92q�Qss�Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�Ps�
�Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Cv�"s�Ck�_ay�Ray Strode <rstrode@redhat.com> - 3.28.1-4\�F@- Fix busy loop in account plugin
  Resolves: #1600161^�^a_�Ray Strode <rstrode@redhat.com> - 3.28.1-2[Y��- Fix account schema
  Resolves: #1597353^�]e[�Kalev Lember <klember@redhat.com> - 3.28.1-1Z�J@- Update to 3.28.1
- Resolves: #1568621�+�\i�o�Bastien Nocera <bnocera@redhat.com> - 3.26.2-9Z�$�+ gnome-settings-daemon-3.26.2-9
- Revert automatic suspend after inactivity, it was rejected
- Related: #1449171q�[ym�Michael Catanzaro <mcatanzaro@redhat.com> - 3.28.0-2.1b���- Remove timezone boundaries
  Related: #2098257z�Za��Ray Strode <rstrode@redhat.com> - 3.28.0-2\�F@- Ensure vendora logo gets used instead of foot
  Resolves: #1711308`�Yi[�Richard Hughes <rhughes@redhat.com> - 3.28.0-1[�- Update to 3.28.0
- Resolves: #1568175��X]�1�Rui Matos <rmatos@redhat.com> - 3.22.1-5Y��@- Update session definition files to work with GNOME 3.26
  Resolves: rhbz#1506607
�q�f����ee�!�Benjamin Berg <bberg@redhat.com> - 3.28.1-10_�@- Prevent automatic logout warning in greeter sessions
  Related: #1729296�:�dc��Benjamin Berg <bberg@redhat.com> - 3.28.1-9_��- Keep auto-logout working inside VMs
  Resolves: #1672998
- Never log out automatically from greeter sessions
  Resolves: #1729296�	�cm�'�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]rJ@- Add display mapping check specific for the Dell Canvas
  Resolves: #1548320��bm�7�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7]L�- Fallback scale properly without org.gnome.Mutter.DisplayConfig
  Resolves: #1556776s�am}�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]J�@- Handle rfkill device disappearing
  Resolves: #1691197��`m�+�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]5�@- Added patch for - keyboard: Enable ibus for OSK purposes
  Resolves: #1632904
�Q��!����lm�7�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7]L�- Fallback scale properly without org.gnome.Mutter.DisplayConfig
  Resolves: #1556776s�km}�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]J�@- Handle rfkill device disappearing
  Resolves: #1691197��jm�+�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]5�@- Added patch for - keyboard: Enable ibus for OSK purposes
  Resolves: #1632904k�iay�Ray Strode <rstrode@redhat.com> - 3.28.1-4\�F@- Fix busy loop in account plugin
  Resolves: #1600161^�ha_�Ray Strode <rstrode@redhat.com> - 3.28.1-2[Y��- Fix account schema
  Resolves: #1597353^�ge[�Kalev Lember <klember@redhat.com> - 3.28.1-1Z�J@- Update to 3.28.1
- Resolves: #1568621�+�fi�o�Bastien Nocera <bnocera@redhat.com> - 3.26.2-9Z�$�+ gnome-settings-daemon-3.26.2-9
- Revert automatic suspend after inactivity, it was rejected
- Related: #1449171
ps�/�m�p��sm�+�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]5�@- Added patch for - keyboard: Enable ibus for OSK purposes
  Resolves: #1632904k�ray�Ray Strode <rstrode@redhat.com> - 3.28.1-4\�F@- Fix busy loop in account plugin
  Resolves: #1600161^�qa_�Ray Strode <rstrode@redhat.com> - 3.28.1-2[Y��- Fix account schema
  Resolves: #1597353^�pe[�Kalev Lember <klember@redhat.com> - 3.28.1-1Z�J@- Update to 3.28.1
- Resolves: #1568621��oe�!�Benjamin Berg <bberg@redhat.com> - 3.28.1-10_�@- Prevent automatic logout warning in greeter sessions
  Related: #1729296�:�nc��Benjamin Berg <bberg@redhat.com> - 3.28.1-9_��- Keep auto-logout working inside VMs
  Resolves: #1672998
- Never log out automatically from greeter sessions
  Resolves: #1729296�	�mm�'�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]rJ@- Add display mapping check specific for the Dell Canvas
  Resolves: #1548320
$��h�$��xe�!�Benjamin Berg <bberg@redhat.com> - 3.28.1-10_�@- Prevent automatic logout warning in greeter sessions
  Related: #1729296�:�wc��Benjamin Berg <bberg@redhat.com> - 3.28.1-9_��- Keep auto-logout working inside VMs
  Resolves: #1672998
- Never log out automatically from greeter sessions
  Resolves: #1729296�	�vm�'�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]rJ@- Add display mapping check specific for the Dell Canvas
  Resolves: #1548320��um�7�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7]L�- Fallback scale properly without org.gnome.Mutter.DisplayConfig
  Resolves: #1556776s�tm}�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]J�@- Handle rfkill device disappearing
  Resolves: #1691197
"��*�-�"��m�7�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7]L�- Fallback scale properly without org.gnome.Mutter.DisplayConfig
  Resolves: #1556776s�~m}�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]J�@- Handle rfkill device disappearing
  Resolves: #1691197��}m�+�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]5�@- Added patch for - keyboard: Enable ibus for OSK purposes
  Resolves: #1632904k�|ay�Ray Strode <rstrode@redhat.com> - 3.28.1-4\�F@- Fix busy loop in account plugin
  Resolves: #1600161^�{a_�Ray Strode <rstrode@redhat.com> - 3.28.1-2[Y��- Fix account schema
  Resolves: #1597353^�ze[�Kalev Lember <klember@redhat.com> - 3.28.1-1Z�J@- Update to 3.28.1
- Resolves: #1568621��yo�3�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-11`�t�- Fix possible crash on gsd-media-keys startup
  Resolves: #1878167
- Ignore permission issues during gsd-housekeeping file deletion
  Resolves: #1909954
- Revert mapping of "XF86RFKill" key
  Resolves: #1888412
ls�/l�+�i�o�Bastien Nocera <bnocera@redhat.com> - 3.26.2-9Z�$�+ gnome-settings-daemon-3.26.2-9
- Revert automatic suspend after inactivity, it was rejected
- Related: #1449171��o�3�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-11`�t�- Fix possible crash on gsd-media-keys startup
  Resolves: #1878167
- Ignore permission issues during gsd-housekeeping file deletion
  Resolves: #1909954
- Revert mapping of "XF86RFKill" key
  Resolves: #1888412��e�!�Benjamin Berg <bberg@redhat.com> - 3.28.1-10_�@- Prevent automatic logout warning in greeter sessions
  Related: #1729296�:�c��Benjamin Berg <bberg@redhat.com> - 3.28.1-9_��- Keep auto-logout working inside VMs
  Resolves: #1672998
- Never log out automatically from greeter sessions
  Resolves: #1729296�	�m�'�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]rJ@- Add display mapping check specific for the Dell Canvas
  Resolves: #1548320
��>�A�6��	�m�'�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]rJ@- Add display mapping check specific for the Dell Canvas
  Resolves: #1548320��
m�7�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7]L�- Fallback scale properly without org.gnome.Mutter.DisplayConfig
  Resolves: #1556776s�	m}�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]J�@- Handle rfkill device disappearing
  Resolves: #1691197��m�+�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]5�@- Added patch for - keyboard: Enable ibus for OSK purposes
  Resolves: #1632904k�ay�Ray Strode <rstrode@redhat.com> - 3.28.1-4\�F@- Fix busy loop in account plugin
  Resolves: #1600161^�a_�Ray Strode <rstrode@redhat.com> - 3.28.1-2[Y��- Fix account schema
  Resolves: #1597353^�e[�Kalev Lember <klember@redhat.com> - 3.28.1-1Z�J@- Update to 3.28.1
- Resolves: #1568621
NB�
�K�N��m�+�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]5�@- Added patch for - keyboard: Enable ibus for OSK purposes
  Resolves: #1632904k�ay�Ray Strode <rstrode@redhat.com> - 3.28.1-4\�F@- Fix busy loop in account plugin
  Resolves: #1600161^�a_�Ray Strode <rstrode@redhat.com> - 3.28.1-2[Y��- Fix account schema
  Resolves: #1597353^�e[�Kalev Lember <klember@redhat.com> - 3.28.1-1Z�J@- Update to 3.28.1
- Resolves: #1568621�+�i�o�Bastien Nocera <bnocera@redhat.com> - 3.26.2-9Z�$�+ gnome-settings-daemon-3.26.2-9
- Revert automatic suspend after inactivity, it was rejected
- Related: #1449171��
e�!�Benjamin Berg <bberg@redhat.com> - 3.28.1-10_�@- Prevent automatic logout warning in greeter sessions
  Related: #1729296�:�c��Benjamin Berg <bberg@redhat.com> - 3.28.1-9_��- Keep auto-logout working inside VMs
  Resolves: #1672998
- Never log out automatically from greeter sessions
  Resolves: #1729296
b��h�$�b^�a_�Ray Strode <rstrode@redhat.com> - 3.28.1-2[Y��- Fix account schema
  Resolves: #1597353^�e[�Kalev Lember <klember@redhat.com> - 3.28.1-1Z�J@- Update to 3.28.1
- Resolves: #1568621��e�!�Benjamin Berg <bberg@redhat.com> - 3.28.1-10_�@- Prevent automatic logout warning in greeter sessions
  Related: #1729296�:�c��Benjamin Berg <bberg@redhat.com> - 3.28.1-9_��- Keep auto-logout working inside VMs
  Resolves: #1672998
- Never log out automatically from greeter sessions
  Resolves: #1729296�	�m�'�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]rJ@- Add display mapping check specific for the Dell Canvas
  Resolves: #1548320��m�7�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7]L�- Fallback scale properly without org.gnome.Mutter.DisplayConfig
  Resolves: #1556776s�m}�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]J�@- Handle rfkill device disappearing
  Resolves: #1691197
'���k�'�� e�!�Benjamin Berg <bberg@redhat.com> - 3.28.1-10_�@- Prevent automatic logout warning in greeter sessions
  Related: #1729296�:�c��Benjamin Berg <bberg@redhat.com> - 3.28.1-9_��- Keep auto-logout working inside VMs
  Resolves: #1672998
- Never log out automatically from greeter sessions
  Resolves: #1729296�	�m�'�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]rJ@- Add display mapping check specific for the Dell Canvas
  Resolves: #1548320��m�7�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7]L�- Fallback scale properly without org.gnome.Mutter.DisplayConfig
  Resolves: #1556776s�m}�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]J�@- Handle rfkill device disappearing
  Resolves: #1691197��m�+�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]5�@- Added patch for - keyboard: Enable ibus for OSK purposes
  Resolves: #1632904k�ay�Ray Strode <rstrode@redhat.com> - 3.28.1-4\�F@- Fix busy loop in account plugin
  Resolves: #1600161
"��*�-�"��'m�7Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-7]L�- Fallback scale properly without org.gnome.Mutter.DisplayConfig
  Resolves: #1556776s�&m}Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-6]J�@- Handle rfkill device disappearing
  Resolves: #1691197��%m�+Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-5]5�@- Added patch for - keyboard: Enable ibus for OSK purposes
  Resolves: #1632904k�$ayRay Strode <rstrode@redhat.com> - 3.28.1-4\�F@- Fix busy loop in account plugin
  Resolves: #1600161^�#a_Ray Strode <rstrode@redhat.com> - 3.28.1-2[Y��- Fix account schema
  Resolves: #1597353^�"e[Kalev Lember <klember@redhat.com> - 3.28.1-1Z�J@- Update to 3.28.1
- Resolves: #1568621��!o�3�Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-11`�t�- Fix possible crash on gsd-media-keys startup
  Resolves: #1878167
- Ignore permission issues during gsd-housekeeping file deletion
  Resolves: #1909954
- Revert mapping of "XF86RFKill" key
  Resolves: #1888412
s�/�q�-ssFlorian Müllner <fmuellner@redhat.com> - 3.28.3-24]�N@- Fix orphaned animation actors
  Related: #1753799��,c�7Ray Strode <rstrode@redhat.coM> - 3.28.3-23]�|@- Fix "Not Listed?" entry to shows characters instead of bullets
  Resolves: #1772896��+o�3Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-11`�t�- Fix possible crash on gsd-media-keys startup
  Resolves: #1878167
- Ignore permission issues during gsd-housekeeping file deletion
  Resolves: #1909954
- Revert mapping of "XF86RFKill" key
  Resolves: #1888412��*e�!Benjamin Berg <bberg@redhat.com> - 3.28.1-10_�@- Prevent automatic logout warning in greeter sessions
  Related: #1729296�:�)c�Benjamin Berg <bberg@redhat.com> - 3.28.1-9_��- Keep auto-logout working inside VMs
  Resolves: #1672998
- Never log out automatically from greeter sessions
  Resolves: #1729296�	�(m�'Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]rJ@- Add display mapping check specific for the Dell Canvas
  Resolves: #1548320
X����XX�5cQRay Strode <rstrode@redhat.com> - 3.28.3-32_�#�- Fix crasher
  Resolves: #1897063[�4cWRay Strode <rstrode@redhat.com> - 3.28.3-31_��@- Add leak fixes
  Resolves: #1881995��3s�%Florian Müllner <fmuellner@redhat.com> - 3.28.3-30^�)@- Wake up lock screen when deactivated programmatically
  Resolves: #1850201k�2sgFlorian Müllner <fmuellner@redhat.com> - 3.28.3-29^�@- Squash more JS warnings
  Related: #1751121��1s�Florian Müllner <fmuellner@redhat.com> - 3.28.3-28^�@- Fix some (harmless but annoying) JS warnings
  Related: #1751121|�0s�Florian Müllner <fmuellner@redhat.com> - 3.28.3-27^�V@- Avoid warning on early signal emission
  Resolves: #1735700u�/s{Florian Müllner <fmuellner@redhat.com> - 3.28.3-26^�1�- Fix IM set-content-type handling
  Resolves: #1771841s�.swFlorian Müllner <fmuellner@redhat.com> - 3.28.3-25^��@- Improve performance under load
  Resolves: #1824871
?���,�?[�=cWRay Strode <rstrode@redhat.com> - 3.28.3-31_��@- Add leak fixes
  Resolves: #1881995��<s�%Florian Müllner <fmuellner@redhat.com> - 3.28.3-30^�)@- Wake up lock screen when deactivated programmatically
  Resolves: #1850201k�;sgFlorian Müllner <fmuellner@redhat.com> - 3.28.3-29^�@- Squash more JS warnings
  Related: #1751121��:s�Florian Müllner <fmuellner@redhat.com> - 3.28.3-28^�@- Fix some (harmless but annoying) JS warnings
  Related: #1751121|�9s�Florian Müllner <fmuellner@redhat.com> - 3.28.3-27^�V@- Avoid warning on early signal emission
  Resolves: #1735700u�8s{Florian Müllner <fmuellner@redhat.com> - 3.28.3-26^�1�- Fix IM set-content-type handling
  Resolves: #1771841s�7swFlorian Müllner <fmuellner@redhat.com> - 3.28.3-25^��@- Improve performance under load
  Resolves: #1824871q�6ssFlorian Müllner <fmuellner@redhat.com> - 3.28.3-24]�N@- Fix orphaned animation actors
  Related: #1753799
B�1�C�?�B��Es�%Florian Müllner <fmuellner@redhat.com> - 3.28.3-30^�)@- Wake up lock screen when deactivated programmatically
  Resolves: #1850201k�DsgFlorian Müllner <fmuellner@redhat.com> - 3.28.3-29^�@- Squash more JS warnings
  Related: #1751121��Cs�Florian Müllner <fmuellner@redhat.com> - 3.28.3-28^�@- Fix some (harmless but annoying) JS warnings
  Related: #1751121|�Bs�Florian Müllner <fmuellner@redhat.com> - 3.28.3-27^�V@- Avoid warning on early signal emission
  Resolves: #1735700u�As{Florian Müllner <fmuellner@redhat.com> - 3.28.3-26^�1�- Fix IM set-content-type handling
  Resolves: #1771841s�@swFlorian Müllner <fmuellner@redhat.com> - 3.28.3-25^��@- Improve performance under load
  Resolves: #1824871q�?ssFlorian Müllner <fmuellner@redhat.com> - 3.28.3-33`	l�- Guard against StWidget crash
  Resolves: #1861428X�>cQRay Strode <rstrode@redhat.com> - 3.28.3-32_�#�- Fix crasher
  Resolves: #1897063
J�G�e�D�J��Me�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�LqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�KmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�Jq�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501k�IsgFlorian Müllner <fmuellner@redhat.com> - 3.29.3-34`��- Fix another JS warning
  Resolves: #1860445q�HssFlorian Müllner <fmuellner@redhat.com> - 3.28.3-33`	l�- Guard against StWidget crash
  Resolves: #1861428X�GcQRay Strode <rstrode@redhat.com> - 3.28.3-32_�#�- Fix crasher
  Resolves: #1897063[�FcWRay Strode <rstrode@redhat.com> - 3.28.3-31_��@- Add leak fixes
  Resolves: #1881995

e�r+��V��:��eD��
e09b5f3555e23622b184571a63391c9f149a33111cf6ec9a07616cecca01c1c3D��
996c2919ed070ff29e27f8c9e3ec7f7ce69e1eea9e9da6d559423f84983ba41cD��
8d8f18480a50ae9e2993b7bee4e3a0d583f2b6288ec60e32b2b42a5b4256456aD�
�
1afd010d898c09610cd98864d1e601d56fbb031d59f51f0e0e1a08fc482b006fD��
9c633fbd6673e42c90f906b0939d7603ab4b721859bff248db9a4cc0489b32a6D��
abb8fad659ee9b374da07546268016023d98393401191ae5ac9ac40748aad0edD�
�
d3f83e6ec632331c1a4225feeaaf7c261512e7eb7a079d16b971c7c027fa3c0bD�	�
90b70e89b675963abcce8494de690686f885b273dc190de89560db7345231837D��
d8e476878a37bbc6056f5f2cfa3f1c9b9406ca06fd0c7ba1bb6e17b09a385ae9D��
8d5c171c9ce6a333fe8241291edf73b4b6bbed0df2258efac8cfac13210aba97D��
b06ece51d62eb4905a59da18d4a041ada4dc1d9541693245f60fa02f0ec302deD��
30eb275b4ea0c87a84abafbe22dd3006c16cac9a0fa0c57de243a23c72d28adfD��
db4ef1e0a6b2f44fef3fdb8ad686016dcfa25ae6374a3646a9c898f01668d499
]�
r�]�Ss�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��Rs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Qs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��Ps�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�OsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Ne�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270
�������Ys�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�XsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�We�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Ve�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�UqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�TmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417
Nm�X�4�Nr�`qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�_msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�^q�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�]ssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�\s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��[s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Zs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��fs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��es�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��ds�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�csyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�be�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��ae�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��ms�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�lsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�ke�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��je�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�iqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�hmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�gs�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�tqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�smsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�rq�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�qssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�ps�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��os�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��ns�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��zs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��ys�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��xs�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�wsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�ve�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��ue�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��s�	Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�sy	Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�	Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��~e�	Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�}qw	Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�|ms	Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�{s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�qw
Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�ms
Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�q�i
Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�ss	Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�s�
	Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��s�-	Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-	Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��s�-
Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��
s�-
Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�sy
Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�
e�
Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��	e�
Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�s�

Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�q�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�ssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��"s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��!s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058�� s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��)s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�(sy
Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�'e�
Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��&e�
Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�%qw
Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�$ms
Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�#s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�0qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�/msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�.q�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�-ss
Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�,s�

Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��+s�-
Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��*s�-
Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��6s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��5s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��4s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�3syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�2e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��1e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��=s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�<syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�;e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��:e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�9qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�8msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�7s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�DqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�CmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�Bq�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�AssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�@s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��?s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��>s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��Js�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Is�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��Hs�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�GsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Fe�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Ee�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��Qs�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�PsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Oe�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Ne�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�MqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�LmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�Ks�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371

e�r+��V��:��eD��
de133553b72273258b6a99609593572620371fffa43173a2338c8558bfa99e7eD��
a3f82abae1cfa7453d9b8553062e87caf6acf5fab2d57ec6ba1cd09335b548f8D��
44c332e4f12eed26da249463f404e2a9b0a26965d3864059eabafa8b359ad304D��
c2dee3fc80a476ec4b0960d8a193508056f424e74141e414c57914a3c8f07e86D��
0f15bf4e21cca58586fae47893052796624bb20d948f2087a88fa6589059216aD��
86d37b5ad18b07654ecb4a92153db1f1929859e2e00c1a74b0455e6a33a22949D��
db707f9fd1fe35154ab4047938dc0ffe4a07327789e176680886a697d796b61eD��
bd606511a1c296702ecfd01d1fa8f5651c4c51d34d4f242cd3fe75de4b25c299D��
5e7fbcbc653f613c746c3e1bb2b62d8fcc19ac0cf1d92487882d5541de4284c0D��
ae2e332cb8ed86d6de74c580f47de47f6f0d33330807f898fad3b7a0b8ffa440D��
728ac150acc4c81d235b89af0449b11ae268d8c5ea5df6ca8b54c4f90b3deb7cD��
d2cc1f66c9ca4847924aa950f6bf6e884b94331ad97c0150bd241fccb76ae118D��
1dcd5933cc511b7268b7c46d30ee331788e825ef5dc6aeefc373ae7708e575f7
Nm�X�4�Nr�XqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�WmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�Vq�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�UssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�Ts�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��Ss�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Rs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��^s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��]s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��\s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�[syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Ze�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Ye�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��es�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�dsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�ce�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��be�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�aqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�`msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�_s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�lqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�kmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�jq�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�issFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�hs�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��gs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��fs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��rs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��qs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��ps�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�osyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�ne�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��me�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��ys�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�xsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�we�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��ve�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�uqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�tmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�ss�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�~q�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�}ssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�|s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��{s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��zs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��
s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��
e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�	qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�q�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�ssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��!s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t� syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�(qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�'msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�&q�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�%ssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�$s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��#s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��"s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��.s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��-s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��,s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�+syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�*e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��)e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��5s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�4syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�3e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��2e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�1qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�0msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�/s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�<qwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�;msCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�:q�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�9ssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�8s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��7s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��6s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��Bs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��As�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��@s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�?syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�>e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��=e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��Is�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�HsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Ge�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Fe�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�EqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�DmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�Cs�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�PqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�OmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�Nq�iFlorian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�MssFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�Ls�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��Ks�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Js�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058

e�r+��V��:��eD�*�
44d06a1ca389cc452e21dee550e31d9247c635c403355f8fa7df144b76f7ee8eD�)�
d8dd9b50628f10da8aacac180c1d67e558c1ea21f01087d813dcd0249e74edbdD�(�
b4cbf615b36395073b874a9c133a8bf54fd76e3016b591c08aa9bb4e0bc70679D�'�
7c3a5727b1fac7e2de0318d8d80ec9c79f8d4817cde856564f2029e02691769fD�&�
c480e3a1a9b563578db18be5b147c32561044872ed18447819bf430f2cde21c2D�%�
2a85a789f09834655fede0beff4a30eea8c21356b1669e49795509c63d513254D�$�
82c766a327f786b1d8e1cf34a5ed50e63b48ed813b1e42b1cdf8bdbe7d349866D�#�
f37f01eec61a287a1271577470666ad9b985aa271aa8eec00beb21627c77dd76D�"�
589b285340071ac5a04d6fc61453fbc9ef5c7d6c4d24c934c944d51787ae5966D�!�
163f0d23cfe8fd01038ccb7746a4af46b5d8859204698181d3dcc73e81d8fb94D� �
ae74b02c469234e1874d6852f03edc12b68b262ee96a49590345a04f69d92c18D��
4e2fdfb11cf1f7b0f724741e7730e02c2e6ab6bc2b306bf41ace3283e2b8739bD��
1661002b4d684efd2898ed72901055d3f780eab559156150f5421b5f448d823d
Z{����Z��Vs�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Us�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��Ts�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�SsyFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Re�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Qe�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��]s�Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�\syFlorian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�[e�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Ze�Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�YqwFlorian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�XmsCarlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�Ws�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�dqw Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�cms Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�bq�i Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�assFlorian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�`s�
Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��_s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��^s�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��js�- Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��is�- Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��hs� Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�gsy Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�fe� Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��ee� Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��qs�!Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�psy!Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�oe�!Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��ne�!Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�mqw!Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�lms!Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�ks�
 Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�xqw"Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�wms"Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�vq�i"Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�uss!Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�ts�
!Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��ss�-!Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��rs�-!Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��~s�-"Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��}s�-"Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��|s�"Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�{sy"Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�ze�"Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��ye�"Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��s�#Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�sy#Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�#Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�#Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�qw#Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�ms#Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�s�
"Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�qw$Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�ms$Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�
q�i$Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�	ss#Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�s�
#Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��s�-#Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-#Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��s�-$Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-$Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��s�$Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�sy$Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�$Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��
e�$Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��s�%Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�sy%Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�%Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�%Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�qw%Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�ms%Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�s�
$Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr� qw&Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�ms&Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�q�i&Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�ss%Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�s�
%Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��s�-%Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-%Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��&s�-&Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��%s�-&Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��$s�&Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�#sy&Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�"e�&Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��!e�&Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��-s�'Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�,sy'Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�+e�'Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��*e�'Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�)qw'Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�(ms'Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�'s�
&Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�4qw(Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�3ms(Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�2q�i(Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�1ss'Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�0s�
'Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��/s�-'Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��.s�-'Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��:s�-(Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��9s�-(Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��8s�(Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�7sy(Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�6e�(Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��5e�(Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��As�)Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�@sy)Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�?e�)Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��>e�)Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�=qw)Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�<ms)Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�;s�
(Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�Hqw*Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�Gms*Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�Fq�i*Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�Ess)Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�Ds�
)Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��Cs�-)Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Bs�-)Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��Ns�-*Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Ms�-*Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��Ls�*Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�Ksy*Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Je�*Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Ie�*Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��Us�+Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�Tsy+Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�Se�+Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��Re�+Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�Qqw+Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�Pms+Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�Os�
*Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371

e�r+��V��:��eD�7�
87b4bf85d74acb5f568e2cb39c5b3f1c972eba5db5f0219021c385fcf2d29732D�6�
c80cdecf0a4d4edc4e52f018171be3aaff999a6abe4579401f05dcf51a2e2586D�5�
425b1c0988b4a82a7edad5a994ae16e7775d36d9efe1e2cfab48f0893276a38cD�4�
2790ee1f2222b6bacc39245756529d819aa586d22b8f921a30392fabf1e845ccD�3�
6b9b9395896aada874edc170d344039f28e922ef896e327a1058aac608e3bf71D�2�
f759508ca587ecc4ba720b9a7958780468e4b3259069514d52bbb9963d29f17eD�1�
3d16cbc8797f49fcd4f8fd66dcd9abf0441a825f9ad6028f0548e6003c0e2366D�0�
547b0510681fd163f611bd36836750eb87f43894c5f7c7b2578765bbcce090bdD�/�
9408ed4cf3bb74bfe932474193ada99007d34cf9c767bbc2acddae99d4db12feD�.�
017e2d09736a9888ed8e38dca3b1a005fcfebb65e0d3d31617fa9ba35f62526dD�-�
7af718b81b8f45b39e82ed35fcd1065c8dd2f178f9310777598dc5f3544dd695D�,�
bdc8ab95aa96bf3f851a6cd97f2d9c878fe34101ff383e7ab7f2c5eb11a13d78D�+�
f0264bd6f2bbb5db07d005243d60a13920c116e9e1b122e88fab4886f3ff1bc8
Nm�X�4�Nr�\qw,Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�[ms,Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�Zq�i,Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�Yss+Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�Xs�
+Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��Ws�-+Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��Vs�-+Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��bs�-,Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��as�-,Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��`s�,Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�_sy,Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�^e�,Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��]e�,Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��is�-Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�hsy-Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�ge�-Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��fe�-Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�eqw-Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�dms-Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�cs�
,Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�pqw.Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�oms.Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�nq�i.Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�mss-Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�ls�
-Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��ks�--Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��js�--Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��vs�-.Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��us�-.Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��ts�.Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�ssy.Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�re�.Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��qe�.Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��}s�/Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�|sy/Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�{e�/Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��ze�/Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�yqw/Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�xms/Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�ws�
.Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
Nm�X�4�Nr�qw0Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�ms0Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�,�q�i0Florian Müllner <fmuellner@redhat.com> - 3.28.1-7\�@- Add window-grouper extension
  Resolves: #1355845

- Add disable-screenshield extension
  Resolves: #1643501q�ss/Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�s�
/Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��s�-/Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��~s�-/Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
Z{����Z��
s�-0Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��	s�-0Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058��s�0Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�sy0Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�0Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�0Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357
~
�� ��s�1Florian Müllner <fmuellner@redhat.com> - 3.28.1-13^��- Adjust dash-to-dock for classic backports
  Resolves: #1805920
- Fix inconsistent state in window-list prefs dialog
  Resolves: #1613835
- Add accessible name to status icons
  Resolves: #1600999t�sy1Florian Müllner <fmuellner@redhat.com> - 3.28.1-12^���- Drop faulty patch from backport
  Resolves: #1782102y�e�1Jonas Ådahl <jadahl@redhat.com> - 3.28.1-11]�B�- A couple of fixes to the classic backports
  Resolves: #1778270��e�1Jonas Ådahl <jadahl@redhat.com> - 3.28.1-10]�V�- Fix unwanted appearance of workspace switcher menu
  Resolves: #1752357r�
qw1Florian Müllner <fmuellner@redhat.com> - 3.28.1-9]bx@- Make classic mode more classic
  Resolves: #1720286n�ms1Carlos Garnacho <cgarnach@redhat.com> - 3.28.1-8]M`@- Add extra-osk-keys extension
  Resolves: #1702417�s�
0Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371
�m�X���$���=2Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233q�ss1Florian Müllner <fmuellner@redhat.com> - 3.28.1-17`x*�- Override lg foreground color
  Resolves: #1875419�s�
1Florian Müllner <fmuellner@redhat.com> - 3.28.1-16`@- Fix stuck window picker after screen lock
  Resolves: #1904371��s�-1Florian Müllner <fmuellner@redhat.com> - 3.28.1-15`@- Add workspace tooltips to workspace-indicator/window-list
  Resolves: #1901624��s�-1Florian Müllner <fmuellner@redhat.com> - 3.28.1-14^��- Fix workspace switch in window-list outside GNOME Classic
  Resolves: #1848058
TQ���Tz�y2Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q2Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148����2Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298����%2Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+2Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+���K2Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
,����S,�#�"�	�=3Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��!�	�3Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"� �G3Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�yY2Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�72Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[2Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860
ZR���Zy�(w3Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�'�	�Q3Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��&�	�3Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��%�	�%3Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��$�	�+3Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�#�	�K3Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���-��%4Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��,��+4Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�+��K4Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�*��=4Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�)u[3Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��4��%5Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�3yY4Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��2y�74Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�1w[4Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�0y4Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�/��Q4Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��.��4Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��;w�5Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�:yY5Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��9y�75Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�8w[5Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�7y5Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�6��Q5Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��5��5Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�?�Q6Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�>�6Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�=wc5Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�<w�5Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�Bc�M6Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�Ac�A6Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�@�/6Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�G�	�=6Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��F�	�6Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�E�G6Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Dcc6Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Cc�6Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���L�	�7Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�K�G7Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Jcc7Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Ic�7Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�Hc�M7Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��Q�	�7Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��P�	�%7Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��O�	�+7Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�N�	�K7Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�M�	�=7Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233

e�r+��V��:��eD�D�
f5037b5658870caf9db57fef7e511d690b1959170ab11cfda5aa83f814633ba2D�C�
17166fc5096e5f62c88e7eff8f2e850bf452600e5d52eaf11a1dff4bc21c285fD�B�
6ddc8fea6aac5d2cf395f1d06506d529fc6fde104aa7ced09ed3d16f8996db76D�A�
50c11af52b9c7aba5a74a2beb07e802550af036c3a37feb00b9bfca7b241ffa1D�@�
3f5208ad5e6d40b1cdbd818874e03c204f1a94371bda2f9525511fe0a0803522D�?�
91c532ed3ffc0c3a3ff8c2e0c2f2eea28b1497fd586422e4640ae48504011029D�>�
53dc9de016bb6fc2c1a005c20044580f8d5de2f99f77df7527b054e08cb02e1eD�=�
ba3679dbdaf62ecae1a485bd198e4127a1c7605fffa6492fb32ed97c97eff892D�<�
c13dc951f499e2d4af158a7e69ac636e75289d333b51e67cf3b6c1c3b573e7dfD�;�
553cb086c6ccc5df943b00d1342272a201f6f00d3833176eb02708135da3101eD�:�
27bc90124c2fa6f18a9edb3748c392b723f315a736b6b34038195625871ecf2bD�9�
abb495131866830ec1e5474b69876de363e44c471e7221b10ce992f1f526f966D�8�
4aea4b143d8173155f3ca2e53011c25de372518c46da064056b3507555cdc03a
A
�hA�#�V�	�=8Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��U�	�8Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�T�G8Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Scc8Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Rc�8Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�[�	�Q8Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��Z�	�8Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��Y�	�%8Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��X�	�+8Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�W�	�K8Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240of
�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������
7�B
8�I
9�P
;�V
<�]
=�d
>�j
?�q
@�x
A�~
B�
C�
D�
E�
F� 
G�&
H�-
I�4
J�:
K�A
L�H
M�N
N�U
P�\
Q�b
R�i
S�p
T�v
U�}
V�
W�

X�
Y�
Z�
[�"
\�(
]�-
^�4
_�;
`�?
a�B
b�G
c�L
d�Q
f�V
g�[
i�_
j�b
k�g
l�m
m�r
n�x
o�}
p�
q�
r�
s�
t�
u�
v�!
w�&
x�+
y�/
z�2
{�7
|�=
}�B
~�H
�M
��T
��[
��_
��b
��g
��l
��q
��v
��{
��
��
��
��

��
��
��
��$
��+
��/
��2
��7
��<
��A
��F
��K
��O
��R
��W
��]
��b
��h
��m
��t
��{
��
��
��
��
��
��
��
��
��r��'�_�Q9Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�^�9Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�]�Y9Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�\�9Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�bc�M9Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�ac�A9Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�`�/9Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�g��K:Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�f��=:Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�e�G9Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�dcc9Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�cc�9Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�mw[:Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�ly:Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�k��Q:Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��j��:Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��i��%:Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��h��+:Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�r�	�=;Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��q�	�;Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�p�G;Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�oyY:Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��ny�7:Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�xw;Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�w�	�Q;Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��v�	�;Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��u�	�%;Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��t�	�+;Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�s�	�K;Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���}��%<Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��|��+<Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�{��K<Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�z��=<Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�yu[;Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3����%=Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�yY<Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7<Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[<Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�y<Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q<Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��~��<Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��w�=Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�
yY=Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��	y�7=Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[=Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�y=Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q=Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148����=Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'��Q>Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
��>Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�
wc=Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�w�=Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�c�M>Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�A>Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/>Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#��	�=>Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	�>Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G>Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc>Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�>Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%����	�?Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G?Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc?Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�?Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�c�M?Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��!�	�?Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298�� �	�%?Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+?Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�K?Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#��	�=?Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�&�	�=@Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��%�	�@Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�$�G@Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�#cc@Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�"c�@Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�+�	�Q@Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��*�	�@Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��)�	�%@Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��(�	�+@Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�'�	�K@Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�/�QAJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�.�AJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�-�YAJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�,�AJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�2c�MAPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�1c�AAPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�0�/AJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�7��KBJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�6��=BJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�5�GAJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�4ccAPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�3c�APeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�=w[BRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�<yBRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�;��QBJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��:��BJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��9��%BJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��8��+BJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�B�	�=CJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��A�	�CJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�@�GCJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�?yYBRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��>y�7BRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�HwCRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�G�	�QCJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��F�	�CJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��E�	�%CJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��D�	�+CJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�C�	�KCJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���M��%DJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��L��+DJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�K��KDJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�J��=DJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�Iu[CRobbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��T��%EJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�SyYDRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��Ry�7DRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�Qw[DRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�PyDRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�O��QDJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��N��DJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298

e�r+��V��:��eD�Q�
72b814596920effa935ebdde082d64181b5aa2f44485a058f2535c54828f931eD�P�
f85c959b9b36039c3d4707a5c1e73243be76f1191f9b467bae50a18a9612af31D�O�
660894a2c18d390472d0f133b53c845c1ecffde9327004870721603cd1f91b48D�N�
64a62730fee8363341816507f9171c57a6c6433b7c7418501dbfc6686c446190D�M�
31e074062d36f692f0ee2ec64a68e0193b540bf85cc09b3fd7a6f3384ab55806D�L�
121ae3d3bc314678d6d4591403f12a7aac992b4097837f5c93e9dfa346814e6bD�K�
92d5b94aea2121671cd099763736607349b3607d2d2e2e681811cd2f4c86ba88D�J�
06444e0746003a76118ae6a9895e5592ab3c18c2bf85ab614b50a43dd56980b9D�I�
ccaed81377566681009e212ad6067bf7a462c3a7df25aa078d71854dc61496baD�H�
6fa281a1277a0474df3c2033953900cb085700242c41a44cda525992e8b7c5c6D�G�
51c06da7ce2ef116cd43474b64056e939ccb0ae0e6198dd907ee842fdc5005b9D�F�
ba8057e4e0424cbc1521c650fa3a07edba34cbd8e90391f5273ce5c22d55e305D�E�
445eab0d09b92ba9a49ba8c3bfd3c3eee915acfbb0d71c89b249baf899d7fcb2
Em�>�9�E��[w�ENicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�ZyYERobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��Yy�7ERobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�Xw[ERobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�WyERobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�V��QEJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��U��EJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�_�QFJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�^�FJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�]wcENicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�\w�ENicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�bc�MFPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�ac�AFPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�`�/FJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�g�	�=FJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��f�	�FJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�e�GFJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�dccFPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�cc�FPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���l�	�GJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�k�GGJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�jccGPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�ic�GPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�hc�MGPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��q�	�GJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��p�	�%GJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��o�	�+GJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�n�	�KGJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�m�	�=GJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�v�	�=HJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��u�	�HJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�t�GHJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�sccHPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�rc�HPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�{�	�QHJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��z�	�HJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��y�	�%HJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��x�	�+HJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�w�	�KHJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'��QIJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�~�IJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�}�YIJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�|�IJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�c�MIPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�AIPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/IJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+���KJJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$���=JJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"��GIJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�ccIPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�IPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�
w[JRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�yJRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���QJJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��
��JJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��	��%JJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+JJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#��	�=KJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	�KJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��GKJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�yYJRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7JRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�wKRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-��	�QKJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148���	�KJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%KJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+KJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�KKJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!�����%LJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+LJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+���KLJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$���=LJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�u[KRobbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��$��%MJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�#yYLRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��"y�7LRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�!w[LRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z� yLRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���QLJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148����LJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��+w�MNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�*yYMRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��)y�7MRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�(w[MRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�'yMRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�&��QMJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��%��MJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�/�QNJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�.�NJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�-wcMNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�,w�MNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�2c�MNPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�1c�ANPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�0�/NJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�7�	�=NJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��6�	�NJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�5�GNJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�4ccNPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�3c�NPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���<�	�OJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�;�GOJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�:ccOPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�9c�OPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�8c�MOPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��A�	�OJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��@�	�%OJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��?�	�+OJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�>�	�KOJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�=�	�=OJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�F�	�=PJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��E�	�PJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�D�GPJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�CccPPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Bc�PPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�K�	�QPJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��J�	�PJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��I�	�%PJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��H�	�+PJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�G�	�KPJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�O�QQJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�N�QJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�M�YQJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�L�QJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�Rc�MQPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�Qc�AQPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�P�/QJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�W��KRJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�V��=RJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�U�GQJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�TccQPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Sc�QPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705

e�r+��V��:��eD�^�
9cd2077252d68212f08dd81f3353a8d296b4983fd631071221ad12978b80e2d3D�]�
fa40075494cdb791de80bb9dd16a60c61c5e4200559523fc4cb22ded671eda5aD�\�
9df3dd0592a54ada722f373efb2ba882dada990b05e08814608a1d5fb236de64D�[�
1b5fd99f401b83a160bcf8506fd135056203e2df730c72f49440fe457a1ec20eD�Z�
3d0d4dbcbdb1f804aa9e133124ebb735a5037654221d45f8e93d4e81c3cc2f75D�Y�
ce893faa55582d8281001d9876f4ceaddca9de5adf25f32692196a6e85a1aa48D�X�
4c3662507f01c062009127bb3ab45ab19236e6dcc70fe08ca363713b45cf9229D�W�
fede7faa428def30a78d440b2dfd020e0a972bca7601dbd552274dc2f98434c9D�V�
c03ba838a367a50725a5bad5793e263d9c1c7d7e962a29cd8e0b093cf5a0056dD�U�
c30d6ca286d3a7294da3e5596cf791d5c1314667173d02f21d751e689e05d52bD�T�
2543d29db08633a435d64df84ea00c6bdfb481a55fd6621a7e31190ab94c1ddfD�S�
783b344765a19ddce5583dff7a5df7639ac3de2a002a21d71a0528d6aaae8258D�R�
d80f9a89dac504f4ac37f8ea511d7ea892e9a02e191b8bf374506a66f6ff3395
�a�2��g�]w[RRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�\yRRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�[��QRJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��Z��RJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��Y��%RJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��X��+RJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�b�	�=SJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��a�	�SJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�`�GSJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�_yYRRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��^y�7RRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�hwSRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�g�	�QSJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��f�	�SJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��e�	�%SJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��d�	�+SJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�c�	�KSJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���m��%TJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��l��+TJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�k��KTJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�j��=TJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�iu[SRobbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��t��%UJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�syYTRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��ry�7TRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�qw[TRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�pyTRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�o��QTJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��n��TJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��{w�UNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�zyYURobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��yy�7URobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�xw[URobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�wyURobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�v��QUJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��u��UJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'��QVJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�~�VJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�}wcUNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�|w�UNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�c�MVPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�AVPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/VJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#��	�=VJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	�VJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��GVJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�ccVPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�VPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%����	�WJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��GWJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�
ccWPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�	c�WPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�c�MWPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`���	�WJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%WJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+WJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�KWJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�
�	�=WJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#��	�=XJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	�XJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��GXJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�ccXPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�XPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-��	�QXJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148���	�XJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%XJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+XJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�KXJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'��QYJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
��YJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+��YYJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J��YJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�"c�MYPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�!c�AYPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V� �/YJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�'��KZJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�&��=ZJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�%�GYJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�$ccYPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�#c�YPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�-w[ZRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�,yZRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�+��QZJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��*��ZJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��)��%ZJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��(��+ZJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�2�	�=[Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��1�	�[Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�0�G[Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�/yYZRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��.y�7ZRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�8w[Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�7�	�Q[Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��6�	�[Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��5�	�%[Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��4�	�+[Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�3�	�K[Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���=��%\Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��<��+\Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�;��K\Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�:��=\Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�9u[[Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��D��%]Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�CyY\Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��By�7\Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�Aw[\Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�@y\Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�?��Q\Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��>��\Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��Kw�]Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�JyY]Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��Iy�7]Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�Hw[]Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�Gy]Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�F��Q]Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��E��]Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�O�Q^Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�N�^Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�Mwc]Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�Lw�]Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�Rc�M^Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�Qc�A^Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�P�/^Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�W�	�=^Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��V�	�^Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�U�G^Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Tcc^Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Sc�^Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705

e�r+��V��:��eD�k�
7999b3417dab3aca80a1f8a57c6a7b9f98efab7f9c530e0131e8ee2cbd026459D�j�
42ea2b85b1cebb4239ade45fc36a1b309a29b95be50d26bf314165428aeb66acD�i�
f659cc4a3ded31fe85ee2123860696b26f1983182f66c76b6a76d0e5dc5f3d2fD�h�
035b347d3201307242fcde833202a8aa1505b93cbfed75f9f4aa400f16f19cefD�g�
c4c001caa89f5bff6fb1c4dbee4050dbbb93bd7c79c16d2c309103992c0b7987D�f�
104ab2ef65171e91197d612304922a2a41a03bb8e9cbd65666f2899ffca2d489D�e�
6629074551d9fb3315ab487254009bfbf5ff68dc9d1c73b4aa5c866e5448129cD�d�
eeb0a2f82f3dc57694d35b3eaf181212193a3ecdcce63837ee1d869a138901d0D�c�
1ffc8e6c986e1cc0d0bec287cc7ad4bbb77cd0ccc1bcb147a4d5be35dbe062eaD�b�
311a90d5eda02bf4ce86639848bc226ee6a17f1a66b1f15375a48b77a3d6b9acD�a�
5d260748ee7254fcf65c3e3312e541e2f9883d21279926f45ee85ad44eb5b4e7D�`�
7709c0d2acd7ad42cb32f7de9cac262193958bda0a1f863ea37484f52147282aD�_�
62597c6811ab1a4372c93868c223a056ac2947a911f6b318ab3df4ead1b06de3
�%/�%���\�	�_Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�[�G_Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Zcc_Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Yc�_Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�Xc�M_Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��a�	�_Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��`�	�%_Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��_�	�+_Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�^�	�K_Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�]�	�=_Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�f�	�=`Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��e�	�`Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�d�G`Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�ccc`Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�bc�`Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�k�	�Q`Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��j�	�`Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��i�	�%`Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��h�	�+`Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�g�	�K`Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�o�QaJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�n�aJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�m�YaJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�l�aJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�rc�MaPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�qc�AaPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�p�/aJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�w��KbJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�v��=bJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�u�GaJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�tccaPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�sc�aPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�}w[bRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�|ybRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�{��QbJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��z��bJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��y��%bJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��x��+bJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#��	�=cJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	�cJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��GcJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�yYbRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��~y�7bRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�wcRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-��	�QcJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148���	�cJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%cJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+cJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�KcJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���
��%dJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+dJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+���KdJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�
��=dJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�	u[cRobbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3����%eJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�yYdRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7dRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[dRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�ydRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���QdJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148����dJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��w�eNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�yYeRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7eRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[eRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�yeRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���QeJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148����eJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'��QfJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
��fJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�wceNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�w�eNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�"c�MfPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�!c�AfPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V� �/fJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�'�	�=fJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��&�	�fJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�%�GfJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�$ccfPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�#c�fPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���,�	�gJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�+�GgJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�*ccgPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�)c�gPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�(c�MgPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��1�	�gJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��0�	�%gJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��/�	�+gJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�.�	�KgJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�-�	�=gJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�6�	�=hJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��5�	�hJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�4�GhJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�3cchPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�2c�hPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�;�	�QhJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��:�	�hJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��9�	�%hJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��8�	�+hJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�7�	�KhJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�?�QiJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�>�iJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�=�YiJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�<�iJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�Bc�MiPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�Ac�AiPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�@�/iJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�G��KjJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�F��=jJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�E�GiJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�DcciPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Cc�iPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�Mw[jRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�LyjRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�K��QjJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��J��jJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��I��%jJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��H��+jJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�R�	�=kJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��Q�	�kJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�P�GkJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�OyYjRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��Ny�7jRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�XwkRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�W�	�QkJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��V�	�kJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��U�	�%kJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��T�	�+kJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�S�	�KkJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���]��%lJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��\��+lJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�[��KlJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�Z��=lJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�Yu[kRobbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860

e�r+��V��:��eD�x�
ee54ecaecccdbbb8de156e19a27d770e04d61778a19ef2dc30478b7fcfe65865D�w�
664f64a4a6b87e761d7b0bc0efba577178e77a23ec390ffb222b9caee6c3206aD�v�
557d4fb63564285a746012864ee4fa67be9d0f1756df5771b7f9380de46393c5D�u�
61afac8f37a4ea3ff4615ff2c44e669f884f9d092a45699fc0fd2dcac09465d8D�t�
82932d0635147c1a6bbad3358a167d3e6f1a59a1ee3cce64d41ef8729a3f2993D�s�
ebce0b46fb13981f4746adf603b6f96c83356c88ae4ed0053fdb5b506fbb97b1D�r�
63c3055a3e9d4079dcbfedfed3e049509ed10bdc0f3de7959902ff8cfcec5e9fD�q�
05a40b72da0cf303bc79e3b58cda8c7f7edb3f19a201eca57225af9a1e012bebD�p�
c7a38de9170db3ea671c715e4f878f1c3731c4a067bcb77c2c9827c8cd02d694D�o�
1a506ab0d1bb5fe446384f454d2e3cccb4d626df0d87e0effd61680d6a9d026bD�n�
e769db0a6566751d86087f44601cb2aedbda527c4a514beaa8e8a1f4a9d2d02eD�m�
bcebc5d5ae20b6fbf0a5f35a2831414d8ad7aa1ea1720883560416fbd5db15b7D�l�
a4e5c86a1cca9f1fc22a2b9ee7b057a8c3cf9a4e26ee74373e8878ad6288731a
3m�>�9�3��d��%mJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�cyYlRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��by�7lRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�aw[lRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�`ylRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�_��QlJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��^��lJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��kw�mNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�jyYmRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��iy�7mRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�hw[mRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�gymRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�f��QmJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��e��mJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�o�QnJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�n�nJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�mwcmNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�lw�mNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�rc�MnPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�qc�AnPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�p�/nJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�w�	�=nJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��v�	�nJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�u�GnJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�tccnPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�sc�nPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���|�	�oJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�{�GoJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�zccoPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�yc�oPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�xc�MoPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`���	�oJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%oJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+oJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�~�	�KoJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�}�	�=oJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#��	�=pJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	�pJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��GpJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�ccpPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�pPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-��	�QpJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��
�	�pJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��	�	�%pJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+pJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�KpJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240of!flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������
��'
��-
��2
��8
��=
��D
��K
��O
��R
��W
��\
��a
��f
��k
��o
��r
��w
��}
��
��
��

��
��
��
��"
��'
��,
��1
��6
��;
��?
��B
��G
��M
��R
��X
��]
��d
��k
��o
��r
��w
��|
��
��
��
��
��
��
��
��"
��(
��-
��4
��;
��?
��B
��G
��L
��Q
��V
��[
��_
��b
��g
��m
��r
��x
��}
��
��
��
��
��
��
��!
��&
��+
��/�2�7�=�B�H�M�T�[�_
�b�g�l
�q�v�{����
����$�+�/�2�7�<�A�F�K �O
��r��'��QqJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
��qJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�
�YqJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J��qJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�c�MqPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�AqPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/qJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+���KrJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$���=rJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"��GqJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�ccqPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�qPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�w[rRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�yrRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���QrJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148����rJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298����%rJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+rJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�"�	�=sJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��!�	�sJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"� �GsJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�yYrRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7rRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�(wsRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�'�	�QsJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��&�	�sJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��%�	�%sJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��$�	�+sJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�#�	�KsJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���-��%tJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��,��+tJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�+��KtJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�*��=tJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�)u[sRobbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��4��%uJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�3yYtRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��2y�7tRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�1w[tRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�0ytRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�/��QtJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��.��tJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��;w�uNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�:yYuRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��9y�7uRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�8w[uRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�7yuRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�6��QuJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��5��uJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�?�QvJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�>�vJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�=wcuNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�<w�uNicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�Bc�MvPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�Ac�AvPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�@�/vJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�G�	�=vJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��F�	�vJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�E�GvJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�DccvPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Cc�vPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���L�	�wJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�K�GwJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�JccwPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Ic�wPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�Hc�MwPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��Q�	�wJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��P�	�%wJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��O�	�+wJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�N�	�KwJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�M�	�=wJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�V�	�=xJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��U�	�xJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�T�GxJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�SccxPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Rc�xPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�[�	�QxJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��Z�	�xJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��Y�	�%xJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��X�	�+xJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�W�	�KxJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240

e�r+��V��:��eD��
e319773b66bb4f0227b1608807845710d392639797e4f0e6714024b71cb7b1f7D��
56b6f928a45667b9da2599adf7728717580afc5e3ce24bbe5dfa41d4e9881447D��
648913500d3bbad2fc637cb3b8d8bfeafa3a89bbf0fb33504657bab719b25763D��
bd9209ce7471aae3638a5d0464764e35ae7dd88dd1526747997c8bbec7ceb786D��
bd55b6e53bef2770d4702bf6fb6bcd13145e761a809da1a07423a7e1e3898f82D��
de291c1622d5eebba6a97c0060a631087ecd9651815e7294c243b6f31e580508D��
ec3383b51ed106826513f9c2945df6ff25b528b122a9b848b069c9e8d6cb5e46D�~�
b929a42b8d0177a7813b33484e7fc53ee017c678c48081d067dcde010be775d9D�}�
70d313100de0a9a28bad9868e3267b01f56634e7b633d7519f3153020d8c77b7D�|�
82b2eaccefb7228d0de8dd9a88417b5a3b5cd4911bacf3931b092c0c35f16e7aD�{�
88e98b9e84008f81960ec7ef7833a591eded866cb407e6fef47c13d1ecb21d53D�z�
8ee9327d2fb76742bd611491c6f916eebd397da0976737f7b48eec36a25080b9D�y�
f2ef03a6ec5037c50e7f13a6a7c2465e14b247e48ec9b158e91bbf86094e3dd1
��r��'�_�QyJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�^�yJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�]�YyJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�\�yJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�bc�MyPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�ac�AyPeter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�`�/yJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�g��KzJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�f��=zJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�e�GyJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�dccyPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�cc�yPeter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�mw[zRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�lyzRobbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�k��QzJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��j��zJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��i��%zJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��h��+zJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�r�	�={Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��q�	�{Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�p�G{Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�oyYzRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��ny�7zRobbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�xw{Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�w�	�Q{Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��v�	�{Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��u�	�%{Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��t�	�+{Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�s�	�K{Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���}��%|Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��|��+|Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�{��K|Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�z��=|Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�yu[{Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3����%}Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�yY|Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7|Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[|Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�y|Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q|Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��~��|Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��w�}Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�
yY}Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��	y�7}Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[}Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�y}Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q}Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148����}Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'��Q~Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
��~Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�
wc}Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�w�}Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�c�M~Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�A~Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/~Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#��	�=~Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	�~Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G~Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc~Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�~Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%����	�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��GJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�ccPeter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c�Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�c�MPeter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��!�	�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298�� �	�%Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�KJavier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#��	�=Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�&�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��%�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�$�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�#cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�"c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�+�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��*�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��)�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��(�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�'�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�/�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�.��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�-�Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�,��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�2c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�1c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�0�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�7��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�6��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�5�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�4cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�3c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�=w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�<y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�;��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��:���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��9��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��8��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�B�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��A�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�@�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�?yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��>y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�Hw�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�G�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��F�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��E�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��D�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�C�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���M��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��L��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�K��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�J��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�Iu[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��T��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�SyY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��Ry�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�Qw[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�Py�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�O��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��N���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��[w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�ZyY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��Yy�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�Xw[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�Wy�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�V��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��U���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�_�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�^��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�]wc�Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�\w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460

e�r+��V��:��eD��
36aad460808510bfa2e38f113711d7d1b1ec88d77ddb1badbedd8829e5c8dd02D��
456aa067cc96e03aaa605e52a86cc973f7a8dab09337cce112097a4608dd143aD��
c4bb36e81ea1d28a9b054d4a06f11d8ff53cc6d3f1e8523504685e0998b38dd6D��
27bf800e475fe735de26f8983bba34eab9261ed1b48593690d77e5bc7d0acde1D��
93a54cb9f013c14a0d42bbb9abed4ec7186612d1288e74148ff8fa20ccc973a6D�
�
2445bee7e1332244f8b40961bfe9f59880197fd2e4ea9800c0b288239d229acbD��
6c1525a5d4f0e9045c028f3d1abe0c4e7e9aa2e3216a1472b79d3f60b02d135dD��
e0b87fa8a61f451d3299d6569707241d3342eab4af1de892fd6bf8e03d5551d8D�
�
4bb74807b09db308a56c244e21970f4698de871955175c9b552234229de92f91D�	�
dc1039bae026e06f606e2a26e159743f3cf3ed19a75609cb5664372c17b4d90cD��
4011ecba5e1b135d1f741f84948ead212a82a060f0cf75bab01b2a37fdd319c0D��
504528b2f64bf9e246a93ff851b9fbf624d77355d1d57587ae1acaa4522c8fcbD��
fa679cc7ff7900d485618ebb16638390e1b2e4a43f1278263dc8722680e307ab
v&Qv�W�bc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�ac�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�`�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�g�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��f�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�e�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�dcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�cc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���l�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�k�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�jcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�ic��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�hc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��q�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��p�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��o�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�n�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�m�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�v�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��u�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�t�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�scc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�rc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�{�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��z�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��y�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��x�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�w�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�~��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�}�Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�|��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+���K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$���=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�
w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��
���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��	��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#��	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�w�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-��	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!�����%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+���K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$���=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�u[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��$��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�#yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��"y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�!w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z� y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148�����Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��+w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�*yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��)y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�(w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�'y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�&��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��%���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�/�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�.��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�-wc�Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�,w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�2c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�1c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�0�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�7�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��6�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�5�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�4cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�3c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���<�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�;�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�:cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�9c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�8c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��A�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��@�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��?�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�>�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�=�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�F�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��E�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�D�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Ccc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Bc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�K�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��J�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��I�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��H�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�G�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�O�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�N��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�M�Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�L��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�Rc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�Qc�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�P�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�W��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�V��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�U�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Tcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Sc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�]w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�\y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�[��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��Z���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��Y��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��X��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�b�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��a�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�`�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�_yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��^y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733

e�r+��V��:��eD��
81c536f389863d868ed8bc21eae1b2225ce8631429c5df133d0e769c3f340f77D��
324c9d5ad49eb48866d128a022079508c40c45aa4d4176abc382f606369448d0D��
7179cfedeaf917db1ff4e9e2c9261746c977c39ff98d06e7bed342cca2633c45D��
9eb8a6c91f46c6b191c972052582bf84913f5b8b77d733b9a22599022ce86a8bD��
20d48e214a59a2848b7152ea8c378eda0ab10d93902bef3627ec70603b8ad96fD��
1b94bec42529799dff727dd6082c4b038c96227041b81d95f21ee5457cb4c089D��
4ed29d175fb03385533dbaacc9824611743ebcc84d3ce5fa6f376a5568058d49D��
9a5aad884099ccb669c4d020f69ddfec584bec4cb676f93818cd67346ee348d0D��
7d9adf9e27536faf7c726121ff0e58d8a0d0c473168713c55c95d74da74c2ebfD��
938086442b2d90233bb54c18a12a65965685e408b96dafa4e36c18a4179676dfD��
0d89f6cb70bf9117dfd174a86c11de319ac44c664effcaa3b959f00d436ae1a2D��
92dc223c986a6952b0510b50be70d54b8def042975f883b9a1ecb8d0f62a138bD��
f566582c4354cf859dbaad8604aeac5c8344f7e81c02de69fe4124ea1537501c
ZR���Zy�hw�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�g�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��f�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��e�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��d�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�c�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
4��h�9�4��oy�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�nw[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�my�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�l��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��k���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��j��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240f�iu[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
������'�u�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�t��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�swc�Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�rw��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460��qw��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�pyY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733
v&Qv�W�xc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�wc�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�v�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�}�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��|�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�{�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�zcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�yc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%����	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�~c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#��	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#��	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�
�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�	cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-��	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�
�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+��Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+���K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$���=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�#w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�"y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�!��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148�� ���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298����%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�(�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��'�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�&�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�%yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��$y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�.w�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�-�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��,�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��+�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��*�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�)�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���3��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��2��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�1��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�0��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�/u[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��:��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�9yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��8y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�7w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�6y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�5��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��4���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��Aw��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�@yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��?y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�>w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�=y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�<��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��;���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�E�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�D��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�Cwc�Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�Bw��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�Hc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�Gc�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�F�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�M�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��L�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�K�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Jcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Ic��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���R�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�Q�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Pcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Oc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�Nc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��W�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��V�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��U�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�T�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�S�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�\�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��[�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�Z�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Ycc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Xc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�a�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��`�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��_�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��^�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�]�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240

e�r+��V��:��eD�,�
7ed3fc20ba01570a826ffa2af023ade0d8581765238cc534b73fe6e9508c4bebD�+�
6a3415f454a536cd4bddf7dbc03ff8c17e3484e1d6e9df356fd2660f6f7a96b3D�*�
2e5c474731992282d7faabe7c8d55f7253fbce05507a987f3bd332681c4e839cD�)�
97484ec3860cbfbbd5c2af0639469ee8d66a3f43238adbf11b9b14a0c86c978aD�(�
37726d4a426ccbdf697e55aa4f02f394d32283a3df6de51d99714a596409ae64D�'�
e446b1822c2b1f232e747d463041aa38f581221d371740705042a6966578d818D�&�
87c30f42a079f461de618eaafd1eeb3225bf684cb0b4fe11da401f0550be3c80D�%�
3cd32436440b9a64a4f9971f907fba98209aeed82000b3d7441689e93ed58cb6D�$�
6765ca1b27d1b3812e3c6442a00515395c3887ebcddeefb849912f45c005c54eD�#�
3ea9a16edeb166326b2db578b5d4fbc8f9700179808b798dd4c33c6f0d273beaD�"�
573cc1166190452dbe3b43b1be7bef29a1ffa0ed9f8dbfd29b063674c60834d3D�!�
78d3877b596cc832e4549e218cae35c884640fcb1d8e5764ee09a774a110fb45D� �
b301b3885fb4d5b57bd90b729ff75d74dc31e2f35a8ae3b5efa64901202f1497
��r��'�e�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�d��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�c�Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�b��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�hc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�gc�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�f�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�m��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�l��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�k�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�jcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�ic��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�sw[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�ry�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�q��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��p���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��o��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��n��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�x�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��w�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�v�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�uyY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��ty�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�~w�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�}�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��|�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��{�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��z�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�y�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!�����%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+���K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$���=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�u[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��
��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�	yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148�����Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�
y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148�����Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�wc�Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#��	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���"�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�!�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a� cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��'�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��&�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��%�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�$�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�#�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�,�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��+�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�*�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�)cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�(c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�1�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��0�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��/�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��.�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�-�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�5�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�4��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�3�Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�2��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�8c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�7c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�6�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765of�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������"�W#�]$�b&�h'�o(�u)�x*�}+�,�-�.�/�0�1�2�#3�(4�.5�36�:7�A8�E9�H:�M;�R<�W=�\>�a@�eA�hB�mC�sD�xE�~F�G�
H�I�J�K�L�"M�'N�,O�1P�5Q�8S�=T�CU�HV�NW�SX�ZY�aZ�e\�h]�m^�r_�w`�|a�b�c�d�
e�f�g�h�#i�*j�1k�5l�8m�=n�Bo�Gp�Lq�Qr�Us�Xt�]u�cv�hx�ny�sz�z{�|�}�~�
�������!��%��(��/��7��>��F��M��U��\��d��k��r��z����	��������'
)
��)�+�=��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�<��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�;�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�:cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�9c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�Cw[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�By�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�A��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��@���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��?��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��>��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�H�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��G�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�F�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�EyY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��Dy�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�Nw�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�M�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��L�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��K�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��J�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�I�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���S��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��R��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�Q��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�P��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�Ou[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��Z��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�YyY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��Xy�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�Ww[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�Vy�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�U��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��T���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��aw��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�`yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��_y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�^w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�]y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�\��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��[���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�e�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�d��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�cwc�Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�bw��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460

e�r+��V��:��eD�9�
63a16686d243cda459362fe273e2bf3e64a84899038415039c265f34388b8257D�8�
0eb359490eab964f970cb8d6fd9987a38a3e3f9c585348941c53fb1b709c71f1D�7�
a4dd90b3a38f048451db9452be71e7a4b4d0cfa945c1fb18335881ddf88355f3D�6�
f020458306c1798b97bbe293da7347160996bd9a1e89d548f4012bde28cc4a52D�5�
86614c497d063d072a270460ce1367ee6647bfa57eb10ec1f02b27e267bfff67D�4�
4c61a98e630cf29009706ab099ff7870c3593c7eb39e9d0edb5e059359012e52D�3�
b4fb6c1de92fa5a737add5cf91cb77255e46b3c6bd53cb56fb0440dba5b32f9dD�2�
00608301be4450298d9a4f75fc3a36ab657c6083731a7fe1510fb0044564bb52D�1�
81c248f72126ea7b1e33a7f47a8133ab505675f4db87438422eb0a47bb6f2bf0D�0�
82bf486bffe227eaa4681fdcf6cb4c2225d25b5dbdad8b4009f3da4a506834efD�/�
6457ba14ffee5554b41e56b32c8a9f8c2873e5ebe04d17cbb12e0e3e6edd3933D�.�
201819cd83614093dbe14240fec542722aadee2886e13b2006ee8f6f0c063950D�-�
bbc7199164da8d3b64fe85a385ca152120db612e702d3318ac67877b9c25e534
v&Qv�W�hc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�gc�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�f�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�m�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��l�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�k�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�jcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�ic��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���r�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�q�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�pcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�oc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�nc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��w�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��v�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��u�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�t�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�s�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�|�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��{�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�z�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�ycc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�xc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-��	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��~�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�}�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+��Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�
��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$���=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�
cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�	c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.���Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148�����Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298����%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240����+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#��	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733
ZR���Zy�w�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-��	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���#��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��"��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�!��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$� ��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�u[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��*��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�)yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��(y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�'w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�&y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�%��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��$���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��1w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�0yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��/y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�.w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�-y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�,��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��+���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'�5�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�4��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�3wc�Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�2w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�8c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�7c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�6�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�=�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��<�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�;�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�:cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�9c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%���B�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�A�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�@cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�?c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�>c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`��G�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��F�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��E�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�D�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#�C�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#�L�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��K�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�J�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Icc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Hc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�Q�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��P�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��O�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��N�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�M�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�U�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�T��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�S�Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�R��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�Xc�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�Wc�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�V�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
)
��)�+�]��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�\��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233�"�[�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�Zcc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�Yc��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�a�2��g�cw[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�by�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�a��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��`���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��_��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��^��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240
�e�U���#�h�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233��g�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"�f�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987g�eyY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��dy�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733

e�r+��V��:��eD�F�
53f42f617e8184218d75676860dfcd10bd810905d61d6d241b88ff372c208b42D�E�
3704909dce1c80a6e3fa47ea59c51797dbe73c34511a242cf1e0756e078fba23D�D�
d9821c48f2918944061117f3ab8c87a78a29d2649124aeb7f47f886ec7903dd6D�C�
251baa632d0d33e46681b76fba3f93cc9ea07b9084a6dbc7bb018c50a1abb9b1D�B�
13c2180392f13ede0d3e45cf8895eb123d78ede2ff65fcaf4c05232a7cba595bD�A�
dfe598bbcefc64fd6bb542cf6d1966fef6a3995e68fa2b6cc2ed34220ca65ee8D�@�
c0e72c1dbf2c72f272577dc891736d1403dd928b5e9f236721ea261f99677b61D�?�
1e1c43fd5f02a819df67f4ea70bbc1d3725d96664de7ae2da966f9456b5ececfD�>�
dfcf30fce1599be0699955042c34db80273d1dc14cc38af5a8f91b02ab70060bD�=�
40778cececacdc153601f3e0bdde3c295376d9e7a17eef328a28fd1f1d7e2f2eD�<�
c67c4c4063b74aae72efd079229bf2ca2167a39844fe319e3e726d3df81c4767D�;�
764b6da4f9a89bd034bdb5f3c7e3d13f7fcd081d64b01ef179ecd51b31ec0e20D�:�
82d9617a439490782837e05a5e05310b0748f064a0556d264fbc615afd85671b
ZR���Zy�nw�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.e7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�-�m�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��l�	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298��k�	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��j�	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*�i�	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��o�!���s��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240��r��+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�+�q��K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�$�p��=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233f�ou[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.e7.9bB�- Bump for signing
- Resolves: #1892860
3m�>�9�3��z��%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240g�yyY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��xy�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�ww[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�vy�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�u��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��t���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
Em�>�9�E��w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.12e��- Font CVE fixes and bump SBAT (CVE-2022-2601)
- Resolves: RHEL-23460g�yY�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.11ct�- Bump sbat
- Resolves: CVE-2022-28733��y�7�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.10c#�- Backport the relevant CVE fixes from the 2022-05-24 drop
- Resolves: CVE-2022-28733g�~w[�Robbie Harwood <rharwood@redhat.com> - 2.02-087.el7.9bB�- Bump for signing
- Resolves: #1892860z�}y�Robbie Harwood <rharwood@redhat.com> - 2.02-0.87.el7.8b(��- Fix accidental reboot in grub_exit
- Resolves: #1892860�.�|��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148��{���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.el7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298
����'��Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
���Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213k�wc�Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.14e���- Rebuild for signing
- Related: RHEL-23460~�w��Nicolas Frayer <nfrayer@redhat.com> - 2.02-087.el7.13e�6@- safemath: add grub_cast for gcc < 5.1
- Related: RHEL-23460
v&Qv�W�c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V��/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
A
�hA�#�
�	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�
cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�	c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�%/�%����	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705�W�c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
`�+��`���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240�#��	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233
A
�hA�#��	�=�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.2`8�- Fix another batch of CVEs
  Resolves: CVE-2020-14372
  Resolves: CVE-2020-25632
  Resolves: CVE-2020-25647
  Resolves: CVE-2020-27749
  Resolves: CVE-2020-27779
  Resolves: CVE-2021-20225
  Resolves: CVE-2021-20233���	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.1_��- Fix keyboards that report IBM PC AT scan codes
  Resolves: rhbz#1892240�"��G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
�R����-�!�	�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.7`�Z�- Fix boot failures in ppc64le caused by storage race condition (diegodo)
  Resolves: rhbz#1942148�� �	��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.6`B@- Fix ppc64le performance issues (diegodo)
  Resolves: rhbz#1759298���	�%�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.5`@�- Add the at keyboard patches that weren't included
  Resolves: rhbz#1892240���	�+�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.4`@�- add keylayouts and at_keyboard modules to EFI binary
  Resolves: rhbz#1892240�*��	�K�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87.e7.3`?z@- at_keyboard: use set 1 when keyboard is in Translate mode (rmetrich)
  Resolves: rhbz#1892240
��r��'�%�Q�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.81]{��- Only make grub2-tools Obsoletes and Provides grub2-tools-efi for x86_64
  Resolves: rhbz#1748019�
�$��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.80\�e�- Rebuild with correct build target for signing
  Resolves: rhbz#1693213�+�#�Y�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.79\�@- Ignore the modification time when doing RPM verification of /boot/efi files
  Resolves: rhbz#1496952�J�"��Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.78\�+@- Prevent errors from diskfilter scan of removable drives
  Resolves: rhbz#1446418
- Avoid grub2-efi package to overwrite existing /boot/grub2/grubenv file
  Resolves: rhbz#1497918
- Remove glibc32 and glibc-static(x86-32) BuildRequires
  Resolves: rhbz#1614259
v&Qv�W�(c�M�Peter Jones <pjones@redhat.com> - 2.02-0.84_p@- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�Q�'c�A�Peter Jones <pjones@redhat.com> - 2.02-0.83_�@- Fix several CVEs:
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311�V�&�/�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.82^x��- Prepend prefix when HTTP path is relative
- efi/http: Export {fw,http}_path variables to make them global
  Resolves: rhbz#1616395
- efi/http: Enclose literal IPv6 addresses in square brackets
- efi/net: Allow to specify a port number in addresses
- efi/ip4_config: Improve check to detect literal IPv6 addresses
- efi/net: Print a debug message if parsing the address fails
  Resolves: rhbz#1732765
#
���#l�/gu�Robbie Harwood <rharwood@redhat.com> 0.7.0-24\��@- Add a safety timeout to epoll
- Resolves: #1687899y�.g�
�Robbie Harwood <rharwood@redhat.com> 0.7.0-23\��- Use pthread keys for thread local storage
- Resolves: #1618375q�-g�Robbie Harwood <rharwood@redhat.com> 0.7.0-22\��- Add hack to support read-only root
- Resolves: #1542567{�,g��Robbie Harwood <rharwood@redhat.com> 0.7.0-21[o�- Always choose highest requested debug level
- Resolves: #1505741�"�+�G�Javier Martinez Canillas <javierm@redhat.com> - 2.02-0.87_C��- Fix TFTP timeouts when trying to fetch files larger than 65535 KiB
  Resolves: rhbz#1869987a�*cc�Peter Jones <pjones@redhat.com> - 2.02-0.86_��- Fix a mis-merge
  Related: CVE-2020-15705�r�)c��Peter Jones <pjones@redhat.com> - 2.02-0.85_��- Couple more late fixes.
  Resolves: CVE-2020-10713
  Resolves: CVE-2020-14308
  Resolves: CVE-2020-14309
  Resolves: CVE-2020-14310
  Resolves: CVE-2020-14311
  Resolves: CVE-2020-15705
I�u�r��IQ�7g?�Colin Walters <walters@verbum.org> 0.10.23-16Q�U@- Drop PyXML BR (#914060)N�6i7�Bastien Nocera <bnocera@redhat.com> 0.10.23-15Q8�@- Remove gmyth plugin��5g��Robbie Harwood <rharwood@redhat.com> 0.7.0-30`�Z�- Always free ciphertext data in gp_encrypt_buffer
- Resolves: #1887438w�4g�	�Robbie Harwood <rharwood@redhat.com> 0.7.0-29^��- Make syslog of call status configurable
- Resolves: #1373421��3g�%�Robbie Harwood <rharwood@redhat.com> 0.7.0-28]�m�- Fix double free of popt context when querying version
- Resolves: #1752810��2g�+�Robbie Harwood <rharwood@redhat.com> 0.7.0-27]5�@- Update docs to reflect actual behavior of krb5_principal
- Resolves: #1553094��1g��Robbie Harwood <rharwood@redhat.com> 0.7.0-26\Ɋ@- Avoid uninitialized free when allocating buffers
- Resolves: #1699331x�0g��Robbie Harwood <rharwood@redhat.com> 0.7.0-25\�8�- Fix explicit NULL deref on some enctypes
- Resolves: #1699331
^K�fn�^i�>im�Wim Taymans <wtaymans@redhat.com> - 0.10.23-23X���- Rebuild with hardened flags
Resolves: #1420764� �=i�Y�Wim Taymans <wtaymans@redhat.com> - 0.10.23-22XG��- h264parse: Ensure codec_data has the required size when reading number of SPS
Resolves: rhbz#1400839�"�<i�]�Wim Taymans <wtaymans@redhat.com> - 0.10.23-21XF�@- Remove insecure NSF plugin
- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400839O�;c?�Daniel Mach <dmach@redhat.com> - 0.10.23-20R�U�- Mass rebuild 2014-01-24O�:c?�Daniel Mach <dmach@redhat.com> - 0.10.23-19R�k�- Mass rebuild 2013-12-27��9g�9�Colin Walters <walters@verbum.org> 0.10.23-18Q��@- Move soundtouch-devel BR to outside RHEL conditional, since
  it is available there.�1�8g�}�Colin Walters <walters@verbum.org> 0.10.23-17Q�UA- Hack the gtk-doc to remove plugin docs that are not shipped
- Drop mythtv, opencv sources that are no longer buildable
V��i��"�Fi�]�Wim Taymans <wtaymans@redhat.com> - 0.10.23-21XF�@- Remove insecure NSF plugin
- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400839O�Ec?�Daniel Mach <dmach@redhat.com> - 0.10.23-20R�U�- Mass rebuild 2014-01-24O�Dc?�Daniel Mach <dmach@redhat.com> - 0.10.23-19R�k�- Mass rebuild 2013-12-27��Cg�9�Colin Walters <walters@verbum.org> 0.10.23-18Q��@- Move soundtouch-devel BR to outside RHEL conditional, since
  it is available there.�1�Bg�}�Colin Walters <walters@verbum.org> 0.10.23-17Q�UA- Hack the gtk-doc to remove plugin docs that are not shipped
- Drop mythtv, opencv sources that are no longer buildableQ�Ag?�Colin Walters <walters@verbum.org> 0.10.23-16Q�U@- Drop PyXML BR (#914060)N�@i7�Bastien Nocera <bnocera@redhat.com> 0.10.23-15Q8�@- Remove gmyth plugin�&�?i�e�Wim Taymans <wtaymans@redhat.com> - 0.10.23-24ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix the build
- Resolves: RHEL-16792
Y\�F���Y��Mg�9�Colin Walters <walters@verbum.org> 0.10.23-18Q��@- Move soundtouch-devel BR to outside RHEL conditional, since
  it is available there.�1�Lg�}�Colin Walters <walters@verbum.org> 0.10.23-17Q�UA- Hack the gtk-doc to remove plugin docs that are not shipped
- Drop mythtv, opencv sources that are no longer buildableQ�Kg?�Colin Walters <walters@verbum.org> 0.10.23-16Q�U@- Drop PyXML BR (#914060)N�Ji7�Bastien Nocera <bnocera@redhat.com> 0.10.23-15Q8�@- Remove gmyth plugin�&�Ii�e�Wim Taymans <wtaymans@redhat.com> - 0.10.23-24ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix the build
- Resolves: RHEL-16792i�Him�Wim Taymans <wtaymans@redhat.com> - 0.10.23-23X���- Rebuild with hardened flags
Resolves: #1420764� �Gi�Y�Wim Taymans <wtaymans@redhat.com> - 0.10.23-22XG��- h264parse: Ensure codec_data has the required size when reading number of SPS
Resolves: rhbz#1400839
W�\����WQ�Ug?�Colin Walters <walters@verbum.org> 0.10.23-16Q�U@- Drop PyXML BR (#914060)N�Ti7�Bastien Nocera <bnocera@redhat.com> 0.10.23-15Q8�@- Remove gmyth plugin�&�Si�e�Wim Taymans <wtaymans@redhat.com> - 0.10.23-24ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix the build
- Resolves: RHEL-16792i�Rim�Wim Taymans <wtaymans@redhat.com> - 0.10.23-23X���- Rebuild with hardened flags
Resolves: #1420764� �Qi�Y�Wim Taymans <wtaymans@redhat.com> - 0.10.23-22XG��- h264parse: Ensure codec_data has the required size when reading number of SPS
Resolves: rhbz#1400839�"�Pi�]�Wim Taymans <wtaymans@redhat.com> - 0.10.23-21XF�@- Remove insecure NSF plugin
- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400839O�Oc?�Daniel Mach <dmach@redhat.com> - 0.10.23-20R�U�- Mass rebuild 2014-01-24O�Nc?�Daniel Mach <dmach@redhat.com> - 0.10.23-19R�k�- Mass rebuild 2013-12-27
^K�fn�^i�\im�Wim Taymans <wtaymans@redhat.com> - 0.10.23-23X���- Rebuild with hardened flags
Resolves: #1420764� �[i�Y�Wim Taymans <wtaymans@redhat.com> - 0.10.23-22XG��- h264parse: Ensure codec_data has the required size when reading number of SPS
Resolves: rhbz#1400839�"�Zi�]�Wim Taymans <wtaymans@redhat.com> - 0.10.23-21XF�@- Remove insecure NSF plugin
- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400839O�Yc?�Daniel Mach <dmach@redhat.com> - 0.10.23-20R�U�- Mass rebuild 2014-01-24O�Xc?�Daniel Mach <dmach@redhat.com> - 0.10.23-19R�k�- Mass rebuild 2013-12-27��Wg�9�Colin Walters <walters@verbum.org> 0.10.23-18Q��@- Move soundtouch-devel BR to outside RHEL conditional, since
  it is available there.�1�Vg�}�Colin Walters <walters@verbum.org> 0.10.23-17Q�UA- Hack the gtk-doc to remove plugin docs that are not shipped
- Drop mythtv, opencv sources that are no longer buildable
V��i��"�di�]�Wim Taymans <wtaymans@redhat.com> - 0.10.23-21XF�@- Remove insecure NSF plugin
- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400839O�cc?�Daniel Mach <dmach@redhat.com> - 0.10.23-20R�U�- Mass rebuild 2014-01-24O�bc?�Daniel Mach <dmach@redhat.com> - 0.10.23-19R�k�- Mass rebuild 2013-12-27��ag�9�Colin Walters <walters@verbum.org> 0.10.23-18Q��@- Move soundtouch-devel BR to outside RHEL conditional, since
  it is available there.�1�`g�}�Colin Walters <walters@verbum.org> 0.10.23-17Q�UA- Hack the gtk-doc to remove plugin docs that are not shipped
- Drop mythtv, opencv sources that are no longer buildableQ�_g?�Colin Walters <walters@verbum.org> 0.10.23-16Q�U@- Drop PyXML BR (#914060)N�^i7�Bastien Nocera <bnocera@redhat.com> 0.10.23-15Q8�@- Remove gmyth plugin�&�]i�e�Wim Taymans <wtaymans@redhat.com> - 0.10.23-24ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix the build
- Resolves: RHEL-16792
�\�F����i�kcs�Wim Taymans <wtaymans@redhat.com> - 1.4.5-4WF�@- rebuild for libdvdnav update
- Resolves: #1340047��jc�7�Wim Taymans <wtaymans@redhat.com> - 1.4.5-3U��- Update audiomixer unit test for big endian
- add missing patch
- Resolves: #1226909c�icg�Wim Taymans <wtaymans@redhat.com> - 1.4.5-2U���- Update ORC backup file
- Resolves: #1174403\�hcY�Wim Taymans <wtaymans@redhat.com> - 1.4.5-1UQ�@- Update to 1.4.5
- Resolves: #1174403�&�gi�e�Wim Taymans <wtaymans@redhat.com> - 0.10.23-24ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix the build
- Resolves: RHEL-16792i�fim�Wim Taymans <wtaymans@redhat.com> - 0.10.23-23X���- Rebuild with hardened flags
Resolves: #1420764� �ei�Y�Wim Taymans <wtaymans@redhat.com> - 0.10.23-22XG��- h264parse: Ensure codec_data has the required size when reading number of SPS
Resolves: rhbz#1400839

e�r+��V��:��eD�S�
62ccf282c2df0d4b0fb164fedda7d42b0e9be1966f8da03fdcebfb08cf4e5456D�R�
e6abdcee27c8de20b83368d087e14b888bef04262eb07ab80e58e528334e1a1cD�Q�
2468aa7b84cd02bdd3dadf04f5dd64bbffc5ae57ff7ef4a973bc74b29757bf6fD�P�
677cbb3bd9f4a461b86460be4a5a9ef23ab126d06907725c3ffe789009559936D�O�
73c486ff61695559ce4daae66d613f19b44873db66b308ac0f3d693c35e6bc5cD�N�
ce776b97b4d788033910fe00975ced115a86f293d3c25e4ef91029227b0d3a15D�M�
8ff288d2044bc096fa50399fcc642f5cb7c09ba23f131fb8b2386f6228076ff1D�L�
2aa040acfde2b250770d5a5742e1a2a67ac343654200b1286fcf39302661446cD�K�
99fafc8a49fe4f04b587c0c5dfb8876f9377969f4f143426ab749dc0f84a48a8D�J�
0b299d62c2e3249e8aa1132f170b5b2eb81a8441f5fcb1b29f9970da5b40d33dD�I�
8819df992dd160364ba0aee29998326c7fce6c403594c9abe3dc7e8c293bea83D�H�
b6fa4027fc4b1885bba1e19874919c93e8cbaa34816975d67e07e866d7a53bf3D�G�
4e09aa7b08c80287291584ba0426ddf0d69699ff7e4f0bc6cc8e1a788e10bc57
yz�U�|�y\�rcY�Wim Taymans <wtaymans@redhat.com> - 1.4.5-1UQ�@- Update to 1.4.5
- Resolves: #1174403� �qe�]�Wim Taymans <wtaymans@redhat.com> - 1.10.4-4ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix build
- Resolves: RHEL-16793i�peq�Wim Taymans <wtaymans@redhat.com> - 1.10.4-3Y�d�- Disable wayland sink plugin
- Resolves: #1488978j�oes�Wim Taymans <wtaymans@redhat.com> - 1.10.4-2X�C�- Disable plugins
- Fix origin
- Resolves: #1429587x�ne�
�Wim Taymans <wtaymans@redhat.com> - 1.10.4-1X�O@- Update to 1.10.4
- Remove unbuilt plugins
- Resolves: #1429587�&�mc�k�Wim Taymans <wtaymans@redhat.com> - 1.4.5-6XG��- Fix h264 and h265 buffer size checks
- Fix mpegts pat parsing and add more size checks
Resolves: rhbz#1400898��lc�#�Wim Taymans <wtaymans@redhat.com> - 1.4.5-5XF�@- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400898
�
�n��i�zeq�Wim Taymans <wtaymans@redhat.com> - 1.10.4-3Y�d�- Disable wayland sink plugin
- Resolves: #1488978j�yes�Wim Taymans <wtaymans@redhat.com> - 1.10.4-2X�C�- Disable plugins
- Fix origin
- Resolves: #1429587x�xe�
�Wim Taymans <wtaymans@redhat.com> - 1.10.4-1X�O@- Update to 1.10.4
- Remove unbuilt plugins
- Resolves: #1429587�&�wc�k�Wim Taymans <wtaymans@redhat.com> - 1.4.5-6XG��- Fix h264 and h265 buffer size checks
- Fix mpegts pat parsing and add more size checks
Resolves: rhbz#1400898��vc�#�Wim Taymans <wtaymans@redhat.com> - 1.4.5-5XF�@- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400898i�ucs�Wim Taymans <wtaymans@redhat.com> - 1.4.5-4WF�@- rebuild for libdvdnav update
- Resolves: #1340047��tc�7�Wim Taymans <wtaymans@redhat.com> - 1.4.5-3U��- Update audiomixer unit test for big endian
- add missing patch
- Resolves: #1226909c�scg�Wim Taymans <wtaymans@redhat.com> - 1.4.5-2U���- Update ORC backup file
- Resolves: #1174403
k\���k�&�c�k�Wim Taymans <wtaymans@redhat.com> - 1.4.5-6XG��- Fix h264 and h265 buffer size checks
- Fix mpegts pat parsing and add more size checks
Resolves: rhbz#1400898��c�#�Wim Taymans <wtaymans@redhat.com> - 1.4.5-5XF�@- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400898i�cs�Wim Taymans <wtaymans@redhat.com> - 1.4.5-4WF�@- rebuild for libdvdnav update
- Resolves: #1340047��~c�7�Wim Taymans <wtaymans@redhat.com> - 1.4.5-3U��- Update audiomixer unit test for big endian
- add missing patch
- Resolves: #1226909c�}cg�Wim Taymans <wtaymans@redhat.com> - 1.4.5-2U���- Update ORC backup file
- Resolves: #1174403\�|cY�Wim Taymans <wtaymans@redhat.com> - 1.4.5-1UQ�@- Update to 1.4.5
- Resolves: #1174403� �{e�]�Wim Taymans <wtaymans@redhat.com> - 1.10.4-4ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix build
- Resolves: RHEL-16793
G���C�Gi�	cs�Wim Taymans <wtaymans@redhat.com> - 1.4.5-4WF�@- rebuild for libdvdnav update
- Resolves: #1340047��c�7�Wim Taymans <wtaymans@redhat.com> - 1.4.5-3U��- Update audiomixer unit test for big endian
- add missing patch
- Resolves: #1226909c�cg�Wim Taymans <wtaymans@redhat.com> - 1.4.5-2U���- Update ORC backup file
- Resolves: #1174403\�cY�Wim Taymans <wtaymans@redhat.com> - 1.4.5-1UQ�@- Update to 1.4.5
- Resolves: #1174403� �e�]�Wim Taymans <wtaymans@redhat.com> - 1.10.4-4ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix build
- Resolves: RHEL-16793i�eq�Wim Taymans <wtaymans@redhat.com> - 1.10.4-3Y�d�- Disable wayland sink plugin
- Resolves: #1488978j�es�Wim Taymans <wtaymans@redhat.com> - 1.10.4-2X�C�- Disable plugins
- Fix origin
- Resolves: #1429587x�e�
�Wim Taymans <wtaymans@redhat.com> - 1.10.4-1X�O@- Update to 1.10.4
- Remove unbuilt plugins
- Resolves: #1429587
yz�U�|�y\�cY�Wim Taymans <wtaymans@redhat.com> - 1.4.5-1UQ�@- Update to 1.4.5
- Resolves: #1174403� �e�]�Wim Taymans <wtaymans@redhat.com> - 1.10.4-4ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix build
- Resolves: RHEL-16793i�eq�Wim Taymans <wtaymans@redhat.com> - 1.10.4-3Y�d�- Disable wayland sink plugin
- Resolves: #1488978j�
es�Wim Taymans <wtaymans@redhat.com> - 1.10.4-2X�C�- Disable plugins
- Fix origin
- Resolves: #1429587x�e�
�Wim Taymans <wtaymans@redhat.com> - 1.10.4-1X�O@- Update to 1.10.4
- Remove unbuilt plugins
- Resolves: #1429587�&�c�k�Wim Taymans <wtaymans@redhat.com> - 1.4.5-6XG��- Fix h264 and h265 buffer size checks
- Fix mpegts pat parsing and add more size checks
Resolves: rhbz#1400898��
c�#�Wim Taymans <wtaymans@redhat.com> - 1.4.5-5XF�@- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400898
�
�n��i�eq�Wim Taymans <wtaymans@redhat.com> - 1.10.4-3Y�d�- Disable wayland sink plugin
- Resolves: #1488978j�es�Wim Taymans <wtaymans@redhat.com> - 1.10.4-2X�C�- Disable plugins
- Fix origin
- Resolves: #1429587x�e�
�Wim Taymans <wtaymans@redhat.com> - 1.10.4-1X�O@- Update to 1.10.4
- Remove unbuilt plugins
- Resolves: #1429587�&�c�k�Wim Taymans <wtaymans@redhat.com> - 1.4.5-6XG��- Fix h264 and h265 buffer size checks
- Fix mpegts pat parsing and add more size checks
Resolves: rhbz#1400898��c�#�Wim Taymans <wtaymans@redhat.com> - 1.4.5-5XF�@- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400898i�cs�Wim Taymans <wtaymans@redhat.com> - 1.4.5-4WF�@- rebuild for libdvdnav update
- Resolves: #1340047��c�7�Wim Taymans <wtaymans@redhat.com> - 1.4.5-3U��- Update audiomixer unit test for big endian
- add missing patch
- Resolves: #1226909c�cg�Wim Taymans <wtaymans@redhat.com> - 1.4.5-2U���- Update ORC backup file
- Resolves: #1174403
k\���k�&�c�k�Wim Taymans <wtaymans@redhat.com> - 1.4.5-6XG��- Fix h264 and h265 buffer size checks
- Fix mpegts pat parsing and add more size checks
Resolves: rhbz#1400898��c�#�Wim Taymans <wtaymans@redhat.com> - 1.4.5-5XF�@- vmncdec: Sanity-check width/height before using it
Resolves: rhbz#1400898i�cs�Wim Taymans <wtaymans@redhat.com> - 1.4.5-4WF�@- rebuild for libdvdnav update
- Resolves: #1340047��c�7�Wim Taymans <wtaymans@redhat.com> - 1.4.5-3U��- Update audiomixer unit test for big endian
- add missing patch
- Resolves: #1226909c�cg�Wim Taymans <wtaymans@redhat.com> - 1.4.5-2U���- Update ORC backup file
- Resolves: #1174403\�cY�Wim Taymans <wtaymans@redhat.com> - 1.4.5-1UQ�@- Update to 1.4.5
- Resolves: #1174403� �e�]�Wim Taymans <wtaymans@redhat.com> - 1.10.4-4ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix build
- Resolves: RHEL-16793
L����Lb�'ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574c�&_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)��%_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)b�$ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574� �#e�]�Wim Taymans <wtaymans@redhat.com> - 1.10.4-4ey��- Patch CVE-2023-44446: MXF demuxer use-after-free
- Disable gtk-doc to fix build
- Resolves: RHEL-16793i�"eq�Wim Taymans <wtaymans@redhat.com> - 1.10.4-3Y�d�- Disable wayland sink plugin
- Resolves: #1488978j�!es�Wim Taymans <wtaymans@redhat.com> - 1.10.4-2X�C�- Disable plugins
- Fix origin
- Resolves: #1429587x� e�
�Wim Taymans <wtaymans@redhat.com> - 1.10.4-1X�O@- Update to 1.10.4
- Remove unbuilt plugins
- Resolves: #1429587
a���R�a��/_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)b�.ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574b�-ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574c�,_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)��+_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)c�*_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)��)_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)b�(ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574

e�r+��V��:��eD�`�
d5da28b2cc382844aa578c0eb19c23535d011518b699a177d00f377554f5c80aD�_�
86993bde440204eca01ab08264c50ea2e67b216b8b0460a9abd7ed1e48864926D�^�
835e86766eabc1d9ae0e8b151d9721a415b5dfdc6b9dc31497b790dc7f51e60dD�]�
aaa642c4d8ab309bd427dfe250bcf2154390e1fe39eeec98c816058e6da39c2fD�\�
42f1179fa155a1a3b4448c2b7429ab632d2e5b7216612cb0f5458e96d9c9e738D�[�
a20718245cbc3ce096de1da99acc9aadce7082881bcdc0b1576352b2959e8db8D�Z�
fbfc27e8e45f88c94b069c77e301bd007e2e4c2d7e71b268fcaa0c9bee8f84a6D�Y�
dee28e194d7127f17697a1e4475e1ffb525b9887c34d90564152f147605360acD�X�
c697cda85543d0498850f1a43781d8a7a9027a93e2d04cb19345ead2d9caab5cD�W�
f7c28e4b2e40bd7978b5bd740987494914a4fb3430ca45bea2cc9a5f94c01b50D�V�
4459ade066985609ab1ac51574d24bb466645a717a2ff3a30e417a8b91609a87D�U�
4c591b2e577a321d2a3be5e390eecceec9fe2e18c4d4f269ef41f4ecb0ef6c0cD�T�
052c8eb21db8776433111192ff5a74c5160dfebb1bfcc701324165599256b321
`��C�Q�`��7_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)b�6ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574c�5_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)��4_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)b�3ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574c�2_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)��1_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)c�0_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)
��5�C�R��V�?y7�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.0-2Q&@- Obsolete gupnp-valac�>_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)��=_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)b�<ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574c�;_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)��:_�3�David King <dking@redhat.com> - 3.22.30-7a�Z@- Fix treeview a11y refcounting (#1965195)
- Avoid cellarea resize crash (#1962215)b�9ce�Ray Strode <rstrode@redhat.com> - 3.22.30-6_�P�- Fix leak on VT switch
  Resolves: #1882574c�8_k�David King <dking@redhat.com> - 3.22.30-8b��- Further treeview a11y refcount fix (#1965195)
&d�,���&p�Gg}�Richard Hughes <rhughes@redhat.com> - 1.0.2-5[)�+ Update to latest upstream version
- Resolves: #1569980l�Fgu�Bastien Nocera <bnocera@redhat.com> - 1.0.1-1X�	@+ gupnp-1.0.1-1
- Rebase to 1.0.1
Resolves: #1386985��Eq��Debarshi Ray <rishi@fedoraproject.org> - 0.20.13-1UlI@- Update to 0.20.13 and re-enable vala bindings
Resolves: #1225451M�D_?�Daniel Mach <dmach@redhat.com> - 0.20.3-3R�U�- Mass rebuild 2014-01-24M�C_?�Daniel Mach <dmach@redhat.com> - 0.20.3-2R�k�- Mass rebuild 2013-12-27��By�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.3-1Q�?@- 0.20.3 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.3.news��Ay�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.2-1QiH�- 0.20.2 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.2.news��@y�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.1-1Q5�@- 0.20.1 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.1.news
8�0��\�8��Oq��Debarshi Ray <rishi@fedoraproject.org> - 0.20.13-1UlI@- Update to 0.20.13 and re-enable vala bindings
Resolves: #1225451M�N_?�Daniel Mach <dmach@redhat.com> - 0.20.3-3R�U�- Mass rebuild 2014-01-24M�M_?�Daniel Mach <dmach@redhat.com> - 0.20.3-2R�k�- Mass rebuild 2013-12-27��Ly�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.3-1Q�?@- 0.20.3 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.3.news��Ky�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.2-1QiH�- 0.20.2 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.2.news��Jy�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.1-1Q5�@- 0.20.1 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.1.newsV�Iy7�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.0-2Q&@- Obsolete gupnp-valat�Hg��Bastien Nocera <bnocera@redhat.com> - 1.0.2-6`�[�+ gupnp-1.0.3-3
- Fix DNS rebind issue
- Resolves: #1964706
*��N�z*M�W_?�Daniel Mach <dmach@redhat.com> - 0.20.3-2R�k�- Mass rebuild 2013-12-27��Vy�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.3-1Q�?@- 0.20.3 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.3.news��Uy�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.2-1QiH�- 0.20.2 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.2.news��Ty�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.1-1Q5�@- 0.20.1 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.1.newsV�Sy7�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.0-2Q&@- Obsolete gupnp-valat�Rg��Bastien Nocera <bnocera@redhat.com> - 1.0.2-6`�[�+ gupnp-1.0.3-3
- Fix DNS rebind issue
- Resolves: #1964706p�Qg}�Richard Hughes <rhughes@redhat.com> - 1.0.2-5[)�+ Update to latest upstream version
- Resolves: #1569980l�Pgu�Bastien Nocera <bnocera@redhat.com> - 1.0.1-1X�	@+ gupnp-1.0.1-1
- Rebase to 1.0.1
Resolves: #1386985

e�r+��V��:��eD�m�
8fbe338dd8adc0ef568214985a4b86d964a490b7b5eb963f88ed406169b64c43D�l�
35f5c229e131ffb525fc38628dbe4dc399fd7f6077f047e169dc8e5ddcce20e8D�k�
9f51218b8454129029c134ac7b8c3cfdae6f1bd1938cb010314534defd013717D�j�
cce9b9d8e55d003cd7be906f5603d626c0f14b8e422e5123076eb85b9dab7694D�i�
b716a9548efd53a938625df1910ca436cae1cbf92940422987c01ae7cbb040e3D�h�
dc73b498dea020241c15f040008e6f96731b9a67cfa83b452c60a9d4510edd41D�g�
dacb7b788cec2e57fc23d0ff804942ec81a7a415eee8eca5a9a61540c86d896aD�f�
4634b74cfe7dbc9b83774cbbc50314221241227045a9199072df357ddda72bf3D�e�
28f3ff68224de0783083894b44eefc57e4833a53461ce91f1f4656bbc1b0eb9fD�d�
717c6856842ddb6b4eca2817cbb3adfce002d371a61b322c8c74761e57ae5bcfD�c�
bc77febf9b5e706cc4d68361638309818761fa19dfe82ca91496f40a23d81bacD�b�
ecb7f8d19fb659a35a4a25d22a891cfd89fd55cc12d791df222c33eba1c9dbdbD�a�
160346449f601718afb8de2d7f7e0aeb2ac8a5f4e2163d2f74d1b98233db4002
B�,�J�z�B��_y�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.2-1QiH�- 0.20.2 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.2.news��^y�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.1-1Q5�@- 0.20.1 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.1.newsV�]y7�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.0-2Q&@- Obsolete gupnp-valat�\g��Bastien Nocera <bnocera@redhat.com> - 1.0.2-6`�[�+ gupnp-1.0.3-3
- Fix DNS rebind issue
- Resolves: #1964706p�[g}�Richard Hughes <rhughes@redhat.com> - 1.0.2-5[)�+ Update to latest upstream version
- Resolves: #1569980l�Zgu�Bastien Nocera <bnocera@redhat.com> - 1.0.1-1X�	@+ gupnp-1.0.1-1
- Rebase to 1.0.1
Resolves: #1386985��Yq��Debarshi Ray <rishi@fedoraproject.org> - 0.20.13-1UlI@- Update to 0.20.13 and re-enable vala bindings
Resolves: #1225451M�X_?�Daniel Mach <dmach@redhat.com> - 0.20.3-3R�U�- Mass rebuild 2014-01-24
�d�@�^��V�gy7�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.0-2Q&@- Obsolete gupnp-valat�fg��Bastien Nocera <bnocera@redhat.com> - 1.0.2-6`�[�+ gupnp-1.0.3-3
- Fix DNS rebind issue
- Resolves: #1964706p�eg}�Richard Hughes <rhughes@redhat.com> - 1.0.2-5[)�+ Update to latest upstream version
- Resolves: #1569980l�dgu�Bastien Nocera <bnocera@redhat.com> - 1.0.1-1X�	@+ gupnp-1.0.1-1
- Rebase to 1.0.1
Resolves: #1386985��cq��Debarshi Ray <rishi@fedoraproject.org> - 0.20.13-1UlI@- Update to 0.20.13 and re-enable vala bindings
Resolves: #1225451M�b_?�Daniel Mach <dmach@redhat.com> - 0.20.3-3R�U�- Mass rebuild 2014-01-24M�a_?�Daniel Mach <dmach@redhat.com> - 0.20.3-2R�k�- Mass rebuild 2013-12-27��`y�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.3-1Q�?@- 0.20.3 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.3.news
&d�,���&p�og}�Richard Hughes <rhughes@redhat.com> - 1.0.2-5[)�+ Update to latest upstream version
- Resolves: #1569980l�ngu�Bastien Nocera <bnocera@redhat.com> - 1.0.1-1X�	@+ gupnp-1.0.1-1
- Rebase to 1.0.1
Resolves: #1386985��mq��Debarshi Ray <rishi@fedoraproject.org> - 0.20.13-1UlI@- Update to 0.20.13 and re-enable vala bindings
Resolves: #1225451M�l_?�Daniel Mach <dmach@redhat.com> - 0.20.3-3R�U�- Mass rebuild 2014-01-24M�k_?�Daniel Mach <dmach@redhat.com> - 0.20.3-2R�k�- Mass rebuild 2013-12-27��jy�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.3-1Q�?@- 0.20.3 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.3.news��iy�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.2-1QiH�- 0.20.2 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.2.news��hy�9�Peter Robinson <pbrobinson@fedoraproject.org> 0.20.1-1Q5�@- 0.20.1 release
- http://ftp.gnome.org/pub/GNOME/sources/gupnp/0.20/gupnp-0.20.1.news
5�+�K�l5�R�w_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�ve[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�u_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�t_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�s_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�r_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�q_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993t�pg��Bastien Nocera <bnocera@redhat.com> - 1.0.2-6`�[�+ gupnp-1.0.3-3
- Fix DNS rebind issue
- Resolves: #1964706
	&��F�f�&^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�~_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�}_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�|_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�{_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993e�z_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�y_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�x_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)
"*�6�b��"^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)
1*�6�X�1a�_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256T�_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�
_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�
_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�	_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)
%�$N�Z�|%T�_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)
7�.�^���7r� _��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993
"��I�m�"r�(_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�'_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�&e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�%_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�$_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�#_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�"_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�!_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)
	/��L�z�/x�1_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�0_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�/_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�._��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�-_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�,_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�+_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�*_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�)_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)
"��T�m�"x�9_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�8_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�7_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�6_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�5_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�4_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�3_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�2e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268
B��T�m��B[�A_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�@_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�?_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�>_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�=_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�<_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�;_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�:e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268
�� �A�
�r�H_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�G_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�Fe[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�E_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�D_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�C_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�B_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993
"��I�m�"r�P_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�O_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�Ne[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�M_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�L_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�K_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�J_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�I_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)
	/��L�z�/x�Y_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�X_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�W_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�V_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�U_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�T_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�S_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�R_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�Q_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)

e�r+��V��:��eD�z�
cc2af8b460ae945f1afdf5f03ea0b48e40aa3372a33d96e0408d1256c8c0294eD�y�
a0b60429c7fcd5fba41b9a28504facb63c1539487333911e73e7e2b166b38981D�x�
96f852d003908ae51e7c33a2d18e329760dd559b5ca3c8a594e3d2a5ebf41ce5D�w�
2590f93594e0978b11599b182212244c231fcb0808dff97b691b518fbd531adaD�v�
72fedcf3bf921b3e8efb6e27a94cc4edfe624334e5b7a143442d707cfb625b06D�u�
93d59adb2af4416388006f622bdf8c0f758944b16c04ac683b05b66a90cd48c7D�t�
527d093e43a30a0f0ec3101a8926eeba2b14e4496c495e70a1d5a3ceca45adbdD�s�
34a08308f948f94b0ad18d9d233e22453d984465c89a58935ec1185d071e7f4dD�r�
0b42148789300af59e74814b7d8cb50a3c1453dc197a498f2f37cdc75a6a97d7D�q�
8453856c66fc79e7ec946e471ab4cddd8112886e40b99a72093c616592b2258fD�p�
938d5007ce1dff2b3235913a2a5efe8141b51ff690ea6d5b59b6289df55ab4f8D�o�
b95af4b262010256013a4265ab61dfb37bf37e1d4ca12de8b007b315ae8a9b1cD�n�
51af7b29f1554b6ee4cfc1be4f18e91dcb17d8795d87ad960cb26d3fe381cc64
/��T�m�/i�a_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�`_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�__[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993e�^_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�]_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�\_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�[_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�Ze[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268
"�!��u��"i�i_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�h_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�g_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�f_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�e_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�de[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�c_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�b_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)
�!��u��s�q_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�p_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�o_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�n_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�m_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�le[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�k_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�j_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)
3�=�^�'�3|�y_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�x_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�w_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�ve[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�u_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�t_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�s_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256T�r_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)
	M�"�m��)�M^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�~_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�}_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�|_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�{_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�z_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)
,*�6�p��,a�
_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�	_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993e�_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)
"�$N�Z��"a�_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�
_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)
%�$N�Z�|%T�_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)
"�0�T~	�"e�"_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�!_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r� _��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256
��3�a���^�*e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�)_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�(_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�'_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�&_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�%_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�$_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�#_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)
"*�6�b��"^�2e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�1_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�0_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�/_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�._o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�-_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�,_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�+_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)
/*�6�X�/q�:_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�9_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�8_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�7_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�6_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�5_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�4_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�3_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)
"�0�T~	�"e�B_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�A_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�@_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�?_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�>e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�=_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�<_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�;_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256
"�0�T~	�"e�J_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�I_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�H_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�G_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�Fe[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�E_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�D_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�C_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256
��3�a���^�Re[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�Q_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�P_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�O_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�N_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�M_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�L_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�K_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)
"*�6�b��"^�Ze[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�Y_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�X_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�W_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�V_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�U_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�T_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�S_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)

e�r+��V��:��eD��
ace18d3c4c3acb71a8d4c5a6930f0ae58e655462938d91d3ef45aef7694df479D��
79eacef92a2947aefaab902e53fada60dc27d9c173b1e175f1ce4db04d6c653eD��
59b2eac344b965618bc03745e27bb5c92278b9fa7c3a6327c3f89fdda6289a54D��
eb18e0e118e44349b3d8917b223e6ca7e2331d41d2e49ec2e8a65f091985bfb7D��
f94ef4ce18a021edb2b5a72fc87092d88e8c7b4aac3c605213fea20cdeefb002D��
a38a894774d443bd314d09acaa9ee6056116e25f757c9e76290fe30450b9ca95D��
78de7ead3aa002c4e670d2a6bb86af61059a4efe2b86257958242df65bc50d42D��
3cf6225627d15b57e6db240be4821a47a55d2bf482e4fe8f1928862282e7998eD��
073a61debf16645920e116641fcf09bdcef80147f54754057c18515f5ebe1f8cD�~�
09277f1295e2db1f4f90bd3fce359dd8150009233cbba997650480e544b67766D�}�
474549f2d0c95b83d89f1d651d078459863a9e1f202ab7c4c64e77e2735fab8aD�|�
b9b11e2c45c327237aea9d0fd84d0d41db9d2a4137822d95f71cedd3ae9145c2D�{�
858c36d8de6e26caf93ad7dc07224b2b333fcf1617a211b7303e44cdd15a6f3d
/*�6�X�/q�b_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�a_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�`_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�__�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�^_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�]_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�\_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�[_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)
"�0�T~	�"e�j_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�i_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�h_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�g_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�fe[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�e_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�d_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�c_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256
"�0�T~	�"e�r_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�q_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�p_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�o_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�ne[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�m_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�l_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�k_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256
��3�a���^�ze[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�y_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�x_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�w_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256q�v_��Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�u_[�Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�t_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�s_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)
"*�6�b��"^�e[�Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_��Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�_g�Ondrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_w�Ondrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256e�~_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�}_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�|_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�{_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)
/*�6�X�/q�
_�Ondrej Holy <oholy@redhat.com> - 1.30.4-2X�PA- Add explicit gvfs-client requirements
- Resolves: #1386993[�	_[Ondrej Holy <oholy@redhat.com> - 1.30.4-1X�P@- Update to 1.30.4
- Resolves: #1386993T�_M�Ondrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�_�	�Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)e�_o�Ondrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�_��Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�G�Ondrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)
"�0�T~	�"e�_oOndrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_�Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�_�Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�GOndrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�e[Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�
_�Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�_gOndrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_wOndrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256
"�0�T~	�"e�_oOndrej Holy <oholy@redhat.com> - 1.36.2-5`��- Fix udisks2 volume monitor leaks (rhbz#1944813)|�_�Ondrej Holy <oholy@redhat.com> - 1.36.2-4^�1�- Fix udisks2 volume monitor crashes when stopping drive (rhbz#1758237)r�_�Ondrej Holy <oholy@redhat.com> - 1.36.2-3\f��- Force NT1 protocol version for workgroup support (#1619719)�R�_�GOndrej Holy <oholy@redhat.com> - 1.36.2-2\R�@- Prevent spawning new daemons if outgoing operation exists (#1632960)
- CVE-2019-3827: Prevent access if any authentication agent isn't available (#1673887)^�e[Kalev Lember <klember@redhat.com> - 1.36.2-1Z�@- Update to 1.36.2
- Resolves: #1569268x�_�Ondrej Holy <oholy@redhat.com> - 1.30.4-5Z��- Fix network backend crashes when creating proxy failed (#1465302)a�_gOndrej Holy <oholy@redhat.com> - 1.30.4-4Y��- Rebuild against newer libgphoto2 (#1500216)i�_wOndrej Holy <oholy@redhat.com> - 1.30.4-3X���- Handle SecurID password prompt
- Resolves: #1440256
P�3�t��PJ�"Y?Daniel Mach <dmach@redhat.com> - 1.5-7R�U�- Mass rebuild 2014-01-24J�!Y?Daniel Mach <dmach@redhat.com> - 1.5-6R�k�- Mass rebuild 2013-12-27�� c�+Petr Stodulka <pstodulk@redhat.com> - 1.5-5R��- fix issue with nonblocking open for PAR and OFL file
  Resolves: rhbz#1028052����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.5-4Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild��W�ADaniel Drake <dsd@laptop.org> - 1.5-3P�6@- Fix "gzip --rsyncable" functionality by removing a spurious blank line from
  the patch.����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.5-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildT�_MOndrej Holy <oholy@redhat.com> - 1.36.2-7b�U�- Fix unapplied patch (#2093816)s�_�	Ondrej Holy <oholy@redhat.com> - 1.36.2-6b�x@- Use O_RDWR to fix fstat when writing on SMB share (#2093816)offlrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������7��?��G��O��W��_��g��o��w���������� ��(��1��9��A��H��P��Y��a��i��q��y����
������"��*��2��:��B��J��R��Z��b��j��r��z��
���"�)�1�7�>�D�J�Q�W�^�e�k�q�x�~�����"�)�+�.�2�4�7�;�>�@�D�G�I�M�Q�S�V�X�Z�\�`�d��i��n��s��x��z��}�����������������!�#�&	�(
�*�,�0
�4
)���c��)d�)akRyan O'Hara <rohara@redhat.com> - 1.5.18-3Wi,@- Fix TCP user timeout patch for 1.5.18 releasel�(a{Ryan O'Hara <rohara@redhat.com> - 1.5.18-2Wb��- Add TARGET to install-bin for haproxy-systemd-wrappera�'aeRyan O'Hara <rohara@redhat.com> - 1.5.18-1WaC@- Update to stable release 1.5.18 (#1344012)��&g�%Jakub Martisko <jamartis@redhat.com> - 1.5-11b^�@- fix an arbitrary-file-write vulnerability in zgrep
Resolves: CVE-2022-1271�)�%g�mJakub Martisko <jamartis@redhat.com> - 1.5-10Y�z�- doc change: missing grep options are now mentioned in the zgrep 
  man pages/help message
  Resolves: #1437002V�$cMPetr Stodulka <pstodulk@redhat.com> - 1.5-9X�f@- fix zfoce
  Resolves: #1382054�
�#c�3Petr Stodulka <pstodulk@redhat.com> - 1.5-8U�- Gzip overwrite existing files when user choose "no" on yes/no question.
  It's due to wrong dupicit declaration of yesno() function in gzip.h
  which is compiled wrong with -O2 option.
  Resolves: rhbz#1201689
���I�d��V�1s=Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544j�0esRyan O'Hara <rohara@redhat.com> - 1.5.18-9.1`��@- Fix health checks for flapping servers (#1947750)|�/a�Ryan O'Hara <rohara@redhat.com> - 1.5.18-9\v{�- Detect down servers with mutliple tcp-check connect rules (#1677420)c�.aiRyan O'Hara <rohara@redhat.com> - 1.5.18-8[Xf@- Build with USE_GETADDRINFO option (#1598491)]�-a]Ryan O'Hara <rohara@redhat.com> - 1.5.18-7Z�- Rebuild with openssl-1.0.2k (#1509139)l�,a{Ryan O'Hara <rohara@redhat.com> - 1.5.18-6Y#@- Use KillMode=mixed in systemd service file (#1444709)q�+a�Ryan O'Hara <rohara@redhat.com> - 1.5.18-5X�~@- Use soft-static allocation for haproxy UID/GID (#1386130)q�*a�Ryan O'Hara <rohara@redhat.com> - 1.5.18-4X,J@- Return correct exit codes from systemd-wrapper (#1391990)
�l�j���o�7soRichard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$�6s�WRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B�5s�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n�4smRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
�3s�)Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992��2s�/Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056
p��_r�pn�>smRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
�=s�)Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992��<s�/Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056V�;s=Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544��:u�;Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500��9u�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{�8s�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983
:� ���Du�;Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500��Cu�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{�Bs�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o�AsoRichard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$�@s�WRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B�?s�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056
�l�j���o�JsoRichard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$�Is�WRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B�Hs�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n�GsmRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
�Fs�)Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992��Es�/Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056
=��_�?�=n�QsmRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
�Ps�)Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992��Os�/Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056��Nu�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193��Mu�;Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500��Lu�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{�Ks�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983
:� ���Wu�;Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500��Vu�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{�Us�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o�TsoRichard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$�Ss�WRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B�Rs�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056
t�����$�^s�WRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B�]s�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n�\smRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
�[s�)Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992��Zs�/Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056V�Ys=Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544��Xu�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193

e�r+��V��:��eD��
07cfec6beda5578439d467fa4a51b7e846ea94e1eb455753928367e7fd96ac68D��
35fc790f76f1d12e738a6b5cd1438085704844f9c267638a15f9cc080376b10dD��
9a93379d2c2af5db3ccd19b3b12e93f6dee917f2156fc18048525a7a90b313caD��
c425b045fd266e2130faf0b97fe7cadc5218ad8cbb8e87ffbafe1d35b166ff43D��
e083624285f3f8668aeebe5e4297e96c9e4ea9ed3cece7a3318166272f0fe11aD��
4cf62f2fe312ff9b70310eeb760aecc8141285cba4ffec167b47f1cd26cb8fecD��
95e6995373810d5b756222856d1b5d2f7d82bcb15022cc12282cbc282404516fD�
�
c1f39d4de68160899478e6a3a13d87ca0cbb510af261d0319a2c3f3690cf263fD��
bc29e9309d0d6c8bcbf454c1d73fd5eda133e3cd0a96c01283bd3c2830a03310D��
233182440f451ea41600279219e708b82494832752dd921ec2f2e4c0ab2a7353D�
�
d39fb02417c772d1ee5c9eb6d9a3981e59719475b6865e25c7e431882fec497bD�	�
fd358c591bdefefe4f8f4b730734f8e570c3f50680413739ef8785c99d73fdddD��
12aa178b2c59b3f4c2d815f73b977ffeb7703da8b0da0e7a3a6f02c9aebee2a4
o����o�
�es�)	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992��ds�/	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056V�cs=	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544��bu�;Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500��au�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{�`s�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o�_soRichard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983
���!�1���ku�	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{�js�	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o�iso	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$�hs�W	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B�gs�	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n�fsm	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286
ae�@�	a�$�qs�W
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B�ps�
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n�osm
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
�ns�)
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992��ms�/
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056��lu�;	Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500
<���a�<�
�xs�)Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992��ws�/Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056��vu�
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193��uu�;
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500��tu�
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{�ss�
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o�rso
Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983
���!�1���~u�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{�}s�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o�|soRichard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$�{s�WRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B�zs�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n�ysmRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286
}e��*�}���#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.8.1.3-10Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildm�gwTomas Radej <tradej@redhat.com> - 1:1.8.1.3-9P7l�- Switched from SysV to systemd
- Spec rearrangements���!�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.8.1.3-8P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuildb�uSAlexander Kurtakov <akurtako@redhat.com> 1:1.8.1.3-7O~�- Switch to servlet 3.0 by default.G�g+Tomas Radej <tradej@redhat.com> - 1:1.8.1.3-6OX�@- Fixed symlink��u�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193��u�;Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500
�s���I��b�uS
Alexander Kurtakov <akurtako@redhat.com> 1:1.8.1.3-7O~�- Switch to servlet 3.0 by default.G�g+
Tomas Radej <tradej@redhat.com> - 1:1.8.1.3-6OX�@- Fixed symlink��
w�'Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-15ch�@- Fix possible remote code execution vulnerability
- Resolves: CVE-2022-41853�8�	w�{Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-14VZ�- Remove dependency on initscripts
- Add After=network.target to systemd service
- Resolves: rhbz#1283893, rhbz#1269717Q�g?Daniel Mach <dmach@redhat.com> - 1:1.8.1.3-13R�k�- Mass rebuild 2013-12-27��w�Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-12Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571�	�w�Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-11Q��- Fix incorrect permissions on systemd unit file
- Resolves: rhbz#963911
.b�S�>�.�8�w�{
Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-14VZ�- Remove dependency on initscripts
- Add After=network.target to systemd service
- Resolves: rhbz#1283893, rhbz#1269717Q�g?
Daniel Mach <dmach@redhat.com> - 1:1.8.1.3-13R�k�- Mass rebuild 2013-12-27��w�
Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-12Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571�	�w�
Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-11Q��- Fix incorrect permissions on systemd unit file
- Resolves: rhbz#963911���#�
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.8.1.3-10Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildm�gw
Tomas Radej <tradej@redhat.com> - 1:1.8.1.3-9P7l�- Switched from SysV to systemd
- Spec rearrangements��
�!�
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.8.1.3-8P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
�n$�!���	�w�Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-11Q��- Fix incorrect permissions on systemd unit file
- Resolves: rhbz#963911���#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.8.1.3-10Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildm�gwTomas Radej <tradej@redhat.com> - 1:1.8.1.3-9P7l�- Switched from SysV to systemd
- Spec rearrangements���!�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.8.1.3-8P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuildb�uSAlexander Kurtakov <akurtako@redhat.com> 1:1.8.1.3-7O~�- Switch to servlet 3.0 by default.G�g+Tomas Radej <tradej@redhat.com> - 1:1.8.1.3-6OX�@- Fixed symlink��w�'
Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-15ch�@- Fix possible remote code execution vulnerability
- Resolves: CVE-2022-41853
x$h��'�m�"gwTomas Radej <tradej@redhat.com> - 1:1.8.1.3-9P7l�- Switched from SysV to systemd
- Spec rearrangements��!�!�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.8.1.3-8P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuildb� uSAlexander Kurtakov <akurtako@redhat.com> 1:1.8.1.3-7O~�- Switch to servlet 3.0 by default.G�g+Tomas Radej <tradej@redhat.com> - 1:1.8.1.3-6OX�@- Fixed symlink��w�'Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-15ch�@- Fix possible remote code execution vulnerability
- Resolves: CVE-2022-41853�8�w�{Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-14VZ�- Remove dependency on initscripts
- Add After=network.target to systemd service
- Resolves: rhbz#1283893, rhbz#1269717Q�g?Daniel Mach <dmach@redhat.com> - 1:1.8.1.3-13R�k�- Mass rebuild 2013-12-27��w�Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-12Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571
6a�L�<�6q�)]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)��(w�'Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-15ch�@- Fix possible remote code execution vulnerability
- Resolves: CVE-2022-41853�8�'w�{Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-14VZ�- Remove dependency on initscripts
- Add After=network.target to systemd service
- Resolves: rhbz#1283893, rhbz#1269717Q�&g?Daniel Mach <dmach@redhat.com> - 1:1.8.1.3-13R�k�- Mass rebuild 2013-12-27��%w�Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-12Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571�	�$w�Mikolaj Izdebski <mizdebsk@redhat.com> - 1:1.8.1.3-11Q��- Fix incorrect permissions on systemd unit file
- Resolves: rhbz#963911��#�#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1:1.8.1.3-10Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
���+k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T�*k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
2��2�G�.k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications��-k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�,]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�kb��P�2}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.1ah�- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�.�1q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�0k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��/k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
���4k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T�3k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
2��2�G�7k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications��6k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�5]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�kb���;q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�:q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�9k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��8k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
),�)��>k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�=]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)�P�<}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.2a��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases
�5���@k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�?k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�Dq�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��Cq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�Bq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�Ak�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
E��E��Gk�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry time�P�F}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.4a�Z@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�F�EW�7Luboš Uhliarik <luhliari@redhat.com>a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�5���Ik�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�Hk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�Mq�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��Lq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�Kq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�Jk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
������Qm�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-88[+�@- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple
  SIGUSR1�P�P}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.5b<]@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�:�Oq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�Nq�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
4�4�T�Sk�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq�R]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
hkh��Vk�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�U]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)��Tk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�5���Xk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�Wk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
����N�Zy�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos_���- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�S�Yk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues

e�r+��V��:��eD�!�
1032b8922d675f553db7b6424ba04c52bf5594bf148d3c80cf447060379be540D� �
fbb00aafe5d8bd8b4ce85814f2d529e893f31e915c6393c651859d9dd4be56abD��
3d4ce04e90a019a713860f38b262e7e948563f62770c6d7fa6bafd59e0ad0580D��
82d5ee0b6f067209f21584e5acc7fc2bea3ab64f1d41f52bbe4bddc612f4670dD��
f359b38fcffcd9d7ae7daab258f4fd7abea1c839790269254b9b1fbebcb55ba1D��
80b89881a4e050f35e7e02a7da9f7eeb5a152b057a835557cd8472b6f91d182aD��
57e3a74cb68c72426ee6a022b286950bbc4ac0c0a450be5d5e07d0a0ac91fcc0D��
6598e08634815038cb179701fefe7d97564cc4df49d4858c66ac323e5c9c5628D��
1562216c2581239f50ab2fbbcd1a38b49ace932313a42d97acd2fa2767606ffdD��
18b6542a7872436ef0c7efd318aadaca8d2c6de3a49d4cd5fd54986bf4b9109eD��
1243b5c5c37f8cff61bef905abb14b3fec79b4baf0f8804006af238bbc09108fD��
760d5445bc23c3428607195fc5e872474f29cb02a1ec8cc53a0bc41b6771e204D��
4d58a246d4453df6a19b52d675c58ebe8d648d62ede5f2fc0cbcb709d686a098
�5���\k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�[k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�`q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��_q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�^q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�]k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
j��>j�P�d}�%CentOS Sources <bugs@centos.org> - 2.4.6-98.el7.centos.6c��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�)�cq�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�bq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�aq�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
kb��-�iq�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��hq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�gq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�fk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��ek�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
O��>�OF�nOAJohnny Hughes <johnny@centos.org>d-b�- Manual CentOS Debranding�"�mq�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)�lq�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�kq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�jq�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
kb��-�sq�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��rq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�qq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�pk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��ok�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
��>��xq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-99.1dJc�- Resolves: #2190143 - mod_rewrite regression with CVE-2023-25690�"�wq�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)�vq�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�uq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�tq�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
4�4�T�zk�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq�y]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
hkh��}k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�|]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)��{k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�5���k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�~k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
#��#�P�}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.1ah�- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�.�q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
���k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T�k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
2��2�G�k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications��k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�kb���q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�
q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�	k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
),�)��k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�
]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)�P�}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.2a��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases
�5���k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
E��E��k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry time�P�}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.4a�Z@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�F�W�7Luboš Uhliarik <luhliari@redhat.com>a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�5���k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
������!m�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-88[+�@- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple
  SIGUSR1�P� }�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.5b<]@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�:�q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
4�4�T�#k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq�"]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
hkh��&k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�%]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)��$k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�5���(k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�'k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
����N�*y�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos_���- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�S�)k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
�5���,k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�+k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�0q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��/q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�.q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�-k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
j��>j�P�4}�%CentOS Sources <bugs@centos.org> - 2.4.6-98.el7.centos.6c��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�)�3q�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�2q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�1q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
kb��-�9q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��8q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�7q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�6k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��5k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
O��>�OF�>OAJohnny Hughes <johnny@centos.org>d-b�- Manual CentOS Debranding�"�=q�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)�<q�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�;q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�:q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
kb��-�Cq�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��Bq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�Aq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�@k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��?k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
��>��Hq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-99.1dJc�- Resolves: #2190143 - mod_rewrite regression with CVE-2023-25690�"�Gq�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)�Fq�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�Eq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�Dq�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
4�4�T�Jk�? Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq�I]� Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
hkh��Mk�I Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�L]m Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)��Kk�9 Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�5���Ok�9 Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�Nk�% Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
#��#�P�R}�% CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.1ah�- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�.�Qq�m Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�Pk�= Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
���Tk�9!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T�Sk�?!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
2��2�G�Wk�%!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications��Vk�I!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�U]m!Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�kb���[q�/!Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�Zq�m!Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�Yk�=!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��Xk�9!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
),�)��^k�I"Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�]]m"Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)�P�\}�%!CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.2a��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases

e�r+��V��:��eD�.�
4317de17f229764365281623322d3bfc068eeae3772e61937438e1e190c1251eD�-�
80b0aaff62516f728ee4d1972185e7b7b5f5d15ea67da82dd19429fac70a5b23D�,�
0094b5e088ab7669b50681c5ee1c139c5ea4b295dff26681ef9aabc6f5a119dbD�+�
601f376aa7ef59f60e13ba11f0a9a7286b883a945173b5b829fe2e939b6b3d1eD�*�
8fefb0595d7ec2b0969e86042785c698809542ecd2b793434519146c6285a65eD�)�
ab57b19bedc00d6be037859d8d8126fff6c0f4421a2b085376f188106987b7e2D�(�
2efed6a1834b9396c783a23359a0750766c22f944cdc5953485f45050af967feD�'�
27c88f137de5866849397dd80af6fd026191916624a901d7d157db89d720351bD�&�
1900d58b22825187824aca7c1c6d194d7a401d5fcf0c433dc2037ac97141b1fdD�%�
4112f1f23e8f476ae869ef1e7ba7b1dcd072616c0fcd173ce6f6a784d7d9f05fD�$�
5ca852164720791fe6e270a360e14b479b57e0fa1f71c93c1e582a9179353c61D�#�
a52b0985bc9791dee53f7a73f22051cc229824892249b53b748eaad81619a0bfD�"�
fd5c2fb9ea8fe33dda81b2c13693c8901313964b621a4845172a14c12df1439a
�5���`k�9"Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�_k�%"Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�dq�k"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��cq�/"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�bq�m"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�ak�="Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
E��E��gk�I#Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry time�P�f}�%"CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.4a�Z@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�F�eW�7"Luboš Uhliarik <luhliari@redhat.com>a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�5���ik�9#Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�hk�%#Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�mq�k#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��lq�/#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�kq�m#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�jk�=#Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
������qm�7$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-88[+�@- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple
  SIGUSR1�P�p}�%#CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.5b<]@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�:�oq�#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�nq�7#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
4�4�T�sk�?$Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq�r]�$Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
hkh��vk�I$Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�u]m$Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)��tk�9$Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�5���xk�9$Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�wk�%$Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
����N�zy�%$CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos_���- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�S�yk�=$Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
�5���|k�9%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�{k�%%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�q�k%Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��q�/%Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�~q�m%Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�}k�=%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
j��>j�P�}�%%CentOS Sources <bugs@centos.org> - 2.4.6-98.el7.centos.6c��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�)�q�c%Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�q�%Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�q�7%Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
kb��-�	q�k&Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��q�/&Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�q�m&Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�k�=&Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��k�9&Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
O��>�OF�OA&Johnny Hughes <johnny@centos.org>d-b�- Manual CentOS Debranding�"�
q�U&Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)�q�c&Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�q�&Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�
q�7&Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
kb��-�q�k'Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��q�/'Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�q�m'Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�k�='Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��k�9'Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
��>��q�'Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-99.1dJc�- Resolves: #2190143 - mod_rewrite regression with CVE-2023-25690�"�q�U'Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)�q�c'Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�q�'Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�q�7'Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
4�4�T�k�?(Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq�]�(Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
hkh��k�I(Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�]m(Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)��k�9(Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�5���k�9(Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�k�%(Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
#��#�P�"}�%(CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.1ah�- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�.�!q�m(Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S� k�=(Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
���$k�9)Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T�#k�?)Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
2��2�G�'k�%)Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications��&k�I)Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�%]m)Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�kb���+q�/)Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�*q�m)Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�)k�=)Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��(k�9)Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
),�)��.k�I*Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�-]m*Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)�P�,}�%)CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.2a��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases
�5���0k�9*Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�/k�%*Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�4q�k*Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��3q�/*Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�2q�m*Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�1k�=*Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
E��E��7k�I+Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry time�P�6}�%*CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.4a�Z@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�F�5W�7*Luboš Uhliarik <luhliari@redhat.com>a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�5���9k�9+Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�8k�%+Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�=q�k+Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��<q�/+Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�;q�m+Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�:k�=+Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
������Am�7,Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-88[+�@- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple
  SIGUSR1�P�@}�%+CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.5b<]@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�:�?q�+Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�>q�7+Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
4�4�T�Ck�?,Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq�B]�,Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
hkh��Fk�I,Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec�E]m,Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)��Dk�9,Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�5���Hk�9,Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�Gk�%,Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
����N�Jy�%,CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos_���- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�S�Ik�=,Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issuesof�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|����������������������>�C�H�J�M�O�R�T�W�[�^�`�d�g�i�m �q!�s"�v#�x$�z%�|&�'�(�	)�*�+�,�-�.�/�"0�$1�'2�+3�.4�05�46�77�98�=9�A:�C;�F<�H=�J?�L@�PA�TB�YC�^E�cF�hG�nH�uI�|J�K�
L�M�N�O�&P�-Q�4R�;S�BT�IU�PV�WW�^X�eZ�l[�t\�{]�^�
_�`�a�b�&c�-d�4e�;f�Bg�Ih�Pi�Wj�^k�em�ln�so�yq�}r�t�u�
w�x�y�z�{�"}�$~�'�*��-��0��4��6��9��<��?
�5���Lk�9-Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G�Kk�%-Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���d��-�Pq�k-Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��Oq�/-Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�Nq�m-Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�Mk�=-Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
j��>j�P�T}�%-CentOS Sources <bugs@centos.org> - 2.4.6-98.el7.centos.6c��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�)�Sq�c-Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�Rq�-Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�Qq�7-Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
kb��-�Yq�k.Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��Xq�/.Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�Wq�m.Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�Vk�=.Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��Uk�9.Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
O��>�OF�^OA.Johnny Hughes <johnny@centos.org>d-b�- Manual CentOS Debranding�"�]q�U.Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)�\q�c.Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�[q�.Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�Zq�7.Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session

e�r+��V��:��eD�;�
e58be69903032ce19789e8066ac18b837e6cf4b67db9460c5dbac4897f678352D�:�
b750d9875369ddf78843edcdbe9053b4d4a7e6d7bc2ca858b563d14bf5a16e4bD�9�
93736c157e6c574d78df16b0ccdcb3d5d5bc0856fb66a7d43da85bfe6d0149a6D�8�
1cd00988d4a50430747550422159355a53806a543c45da98d1b08a6114cde7cdD�7�
6f853b40dd81bacb35a8698a21c1a1d6663fa911cc8c99485387e4e10aa1cec1D�6�
0261a6827bcb70a4d4e0bbabff124f88c79ad1171f8d19e379a2e019e4867abfD�5�
5fbeceddf0bf8f98be4ae1abfe85a15497949baa0f03eb2097d8bd245122c6caD�4�
796aeedf2cba1ce6592411175e3cf65482a97625d933bb4da8a28f0d16cf34f0D�3�
c96966864df3d8f7e446dbab1aaaf13a2bc50887d2c246af4d21658831913c1cD�2�
d70d1392ce3021f70e51c4dc35c2fa251da70e2e0b7384fc3ca8003c9c2f59bfD�1�
b021fb63d01712466969d8b248713efeb2085fedebff3f3d2e0f0500cd70ea47D�0�
6c3c6e8e517dcf759d5a75600d88260d972e071d18adcef801da195de54076b6D�/�
a07b8c2dfe81595e9e9b35a3f4a4c913496728d0ab4422f3a5e00e2c9d5174ad
kb��-�cq�k/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content��bq�//Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.�aq�m/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S�`k�=/Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues��_k�9/Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
��>��hq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-99.1dJc�- Resolves: #2190143 - mod_rewrite regression with CVE-2023-25690�"�gq�U/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)�fq�c/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:�eq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�dq�7/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
ND�:��N�
�n[�;0Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V�mY�U0Jarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296��lY�)0Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x�kY�0Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426��jY�?0Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8�iY�0Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274
Y�
{�U�Y��uk�1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�tk{1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�sk�+1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module��r[�O0Honggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699��q[�C0Honggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
�p[�;0Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b�o[m0Honggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412
�y����_�|c_1Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��{m�1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��zm�1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�yk�1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��xk�1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�wky1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��vk�1Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death
zr�v�|�zz�k�2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��k�2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�ky2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��k�2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��k�2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�~k{2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�}k�+2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module
�|������
k�3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�	ky3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��k�3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��k�3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar_�c_2Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��m�2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��m�2Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regression
���y����k�4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar}�m�3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��m�3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�c_3Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��
m�3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��m�3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�k�3Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()
�y����_�c_4Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��m�4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��m�4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�k�4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��k�4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�ky4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��k�4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death
x|�n�r�xp�ky5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��k�5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��k�5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�k{5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�k�+5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module}�m�4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��m�4Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal
�{�z���q�&k{6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�%k�+6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module_�$c_5Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��#m�5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��"m�5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�!k�5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()�� k�5Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows
rx�~�|�r��-m�6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��,m�6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�+k�6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��*k�6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�)ky6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��(k�6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��'k�6Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar
�������4m�7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�3k�7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��2k�7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�1ky7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��0k�7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��/k�7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar_�.c_6Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks
�z���p�;ky8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��:k�8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��9k�8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar}�8m�7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��7m�7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�6c_7Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��5m�7Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows
�{�z���}�Bm�8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��Am�8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�@c_8Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��?m�8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��>m�8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�=k�8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��<k�8Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows
zr�v�|�zz�Ik�9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��Hk�9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�Gky9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��Fk�9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��Ek�9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�Dk{9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�Ck�+9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module
�|������Pk�:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�Oky:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��Nk�:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��Mk�:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar_�Lc_9Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��Km�9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��Jm�9Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regression
���y���
�Wk�+;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module}�Vm�:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��Um�:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�Tc_:Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��Sm�:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��Rm�:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�Qk�:Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()
��}
����^m�;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�]k�;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��\k�;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�[ky;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��Zk�;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��Yk�;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�Xk{;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse
�z���p�eky<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��dk�<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��ck�<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�bk{<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�ak�+<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module_�`c_;Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��_m�;Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows

e�r+��V��:��eD�H�
982b829b97c5eb8400e883ee7e5cd1199ec463fe88265cc6be5560667a3366eeD�G�
a22140d2598b1d94d1cef9f4d960ba6d9726634bd9bec4682f6338583e5bedbeD�F�
449b85f4d50008df3b5663b39feaa09ec5df8f99f0a2327e0e8e846345963022D�E�
f74f11e10a148e5f0fa3445db786553e080cb5d020e255c3b688dfd528ab6f2cD�D�
c3b0298c3bbfa69481b4841885e4c53580433e8d4610ea22939be12d797bd88aD�C�
7690f944ed218f74b3624308e1a4d4ddbbef310d2d09257774fdfdadf5cd3916D�B�
9550ba6de8671ca79fa26dead08e944ef94706fde1c73e99c2c59e595b752061D�A�
7a99b195e228185309513ea38f47665d85c3f48be1efc08b2131eebb4af1771cD�@�
476abb9c019d06d8fbb8b7d20433405022b208c2c777b1de0c036fff3108fc7eD�?�
b1f22640d57b95b5f307687ba9cae4a938f5332030e06b6e6ade62170f059a4fD�>�
faf21678af2663e54fcc8f5016f8bcab54c797e4a2817cccba232b0e673d3370D�=�
4c96449444e550b77b9d63a86b708d50e9b146f62a64f89fbfce2abfa49c871fD�<�
1b1b3c99c21402de3620ed1fecbd44518682eccd70866a5c3c361b33f649f188
�{�z��
���lk�=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��kk�=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar_�jc_<Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��im�<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��hm�<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�gk�<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��fk�<Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows
����}�tm�=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��sm�=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�rc_=Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��qm�=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��pm�=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�ok�=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��nk�=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�mky=Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po
rx�~�|�r��{m�>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��zm�>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�yk�>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��xk�>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�wky>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��vk�>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��uk�>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar
�������k�?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��k�?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�k{?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�k�+?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module}�~m�>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��}m�>Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�|c_>Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks
����q�
k{@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�	k�+@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module_�c_?Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��m�?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��m�?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�k�?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��k�?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�ky?Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po
rx�~�|�r��m�@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��m�@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�k�@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��k�@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�
ky@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��k�@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��k�@Takao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar
�������m�ATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�k�ATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��k�ATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�kyATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��k�ATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��k�ATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar_�c_@Ray Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks
�z���p�kyBTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��k�BTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��k�BTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar}�m�ATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��m�ATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�c_ARay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��m�ATakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows
�{�z���}�&m�BTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��%m�BTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�$c_BRay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��#m�BTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��"m�BTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�!k�BTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()�� k�BTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows
zr�v�|�zz�-k�CTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��,k�CTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�+kyCTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��*k�CTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��)k�CTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�(k{CTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�'k�+CTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module
�|���
���4k�DTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��3k�DTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�2k{DTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�1k�+DTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module_�0c_CRay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��/m�CTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��.m�CTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regression
�������;k�ETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar_�:c_DRay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��9m�DTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��8m�DTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�7k�DTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��6k�DTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�5kyDTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po
�y����_�Bc_ERay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��Am�ETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��@m�ETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�?k�ETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��>k�ETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�=kyETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��<k�ETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death
x|�t�z�xz�Ik�FTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��Hk�FTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�GkyFTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��Fk�FTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��Ek�FTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar}�Dm�ETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��Cm�ETakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal
�|����q�Pk{GTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�Ok�+GTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module}�Nm�FTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��Mm�FTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�Lc_FRay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��Km�FTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��Jm�FTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regression
rx�~�|�r��Wm�GTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��Vm�GTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�Uk�GTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��Tk�GTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�SkyGTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��Rk�GTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��Qk�GTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar
�������^m�HTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�]k�HTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��\k�HTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�[kyHTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��Zk�HTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��Yk�HTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar_�Xc_GRay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks
�z�����ek�ITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL barq�dk{ITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-4\�O�- Resolves: #1693926 - Commit hangul preedit with mouse�
�ck�+ITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-3\��@- Resolves: #1671187 - ibus.conf does not set QT_IM_MODULE with qt5 ibus module}�bm�HTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��am�HTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�`c_HRay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��_m�HTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows

e�r+��V��:��eD�U�
2c9b86ff8b1784c1b3fe907125539409c664ed05d051c38e8a810200fe93b330D�T�
d7aa835b93bc87305149d24877aa4eb93af26e9c534bda18564bb0727392139cD�S�
2aa53317687b50178bded94e1bdf4d35e70e1210e700ac30dff774aab3e3736bD�R�
a01dae3f1eb932f0bc862e5f5466508b803a3d1c7bbc6b989e42cef1534de0e3D�Q�
488103f93db3517ddb11caa529814abccd07f454858bec9681eec8375c544207D�P�
f24fba7955a7d873bfbd39bae28a5c850f2c27928e1cd98d54264fe51a7d4befD�O�
ff13cc6851b7555532b91dc5f8a9c7b73fb8f47f0f39be06ad101f6250c679c5D�N�
e9ccc19a3fa831005a0f5568fdabe7c13acd32de915df5fe49983a0214fb34d3D�M�
d4c752f14b919fcec87f8f21c7401dc7c9b2ceb39af9d43b03be700c06316653D�L�
32a6e9291813e4daadd971db10a8925ff8233160eb5a5a4fb45d5590f18f2893D�K�
78d39bca758e7f5e4b5122c075cbb2a2c1d8ab9c258b4f91f4744f9ff29a5e8dD�J�
892bbb9cf85d74f25b2bd5cf3702f0da63f86e4093b201704e571b7d86a65f14D�I�
66fc4721d3b2689eac33494f18ab2cf85d9ee8d1dd8532c964f11eeff008e9f1
�y����_�lc_IRay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leaks��km�ITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��jm�ITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�ik�ITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��hk�ITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�gkyITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��fk�ITakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death
rx�~�|�r��sm�JTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-11^�H�- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allows��rm�JTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-10^�@- Resolves: #1777369 - Revert ibus CVE fix because of Qt5 regressionz�qk�JTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-9]�4@- Resolves: #1750835 - Delete duplicated g_dbus_generate_guid()��pk�JTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-8]��@- Resolves: #1750835 - Fix CVE-2019-14822 missing authorization allowsp�okyJTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-7]M`@- Resolves: #1686913 - Fix rpmdiff inspection in ko.po��nk�JTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-6]Ik�- Resolves: #1686913 - ibus-daemon always will exits with parent's death��mk�JTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-5\�s@- Resolves: #1693926 - Commit hangul preedit with clicking out of URL bar
��+fb�yYoKJiri Vanek <jvanek@redhat.com> 1.6.2-4W�~�- fixed typo in provides
- Resolves: rhbz#1299537�A�xY�+KJiri Vanek <jvanek@redhat.com> 1.6.2-3W�-@- added --family to make it part of javas alternatives alignment
- java-javaver-openjdk collected into preffered_java 
- Resolves: rhbz#1299537�N�wY�EKJiri Vanek <jvanek@redhat.com> 1.6.2-1V��- updated to 1.6.2
- fixed also rhbz#1303437 - packagp}�vm�JTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-14d�8�- Resolves: #2175871 - Update ibus-2175871-x11-Xephyr-query.patch��um�JTakao Fujiwara <tfujiwar@redhat.com> - 1.5.17-13d��@- Resolves: #2175871 - Avoid to hang the process with SIGUSR1 signal_�tc_JRay Strode <rstrode@redhat.com> - 1.5.17-12_��@- Resolves: #1882009 - Fix GVariant leakse owns /etc/bash_completion.d but it should not own it 
- generated maven metadata (isntalled but not used. 
set -e 
   _pompart="need" 
   _jarpart="tobe" 
_filelist=".mfiles" 
install -dm 755 /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-fragments 
for _dir in /usr/lib/java %{_javajnidir} /usr/share/java; do 
    if [ -f /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64$_dir/$_jarpart ]; then 
	_jpath="/builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64$_dir/$_jarpart" 
    fi 
done 
python -m /usr/share/java-utils/maven_depmap   \
          -p "/usr" -n "" \
          /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-fragments/icedtea-web \
          /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-poms/$_pompart \
        >> ${_filelist} 
sed -i 's:/builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64::' ${_filelist} 
sort -u -o ${_filelist} ${_filelist} 


- Resolves: rhbz#1299537
���Y�}Y]KJiri Vanek <jvanek@redhat.com> 1.7.1-1Z7��* bump to 1.7.1
- Resolves: rhbz#1475411��|U�/KJiri Vanek <jvanek@redhat.com> 1.7-3Y�Z@- javaws specific manpage renmed from -suffix to .suffix
- Resolves: rhbz#1475411q�{U�KJiri Vanek <jvanek@redhat.com> 1.7-2Y�BA- gathered various patches from usptream
- Resolves: rhbz#1475411�g�zU�{KJiri Vanek <jvanek@redhat.com> 1.7-1Y�B@- updated to itw 1.7 and sync from fedora
- added forgotten slaves of itweb-settings policyeditor
- Own %{_datadir}/%{name} dir
- Mark non-English man pages with %lang
- Install COPYING as %license
- last three by Ville Skytta <ville.skytta@iki.fi> via 1481270
- for sake of rpms added patch0, bashCompDirHardcodedAgain.patch to hardcode bashcompletion dir
- removed maven macros in favour of manual handling (bug)
- Resolves: rhbz#1475411
(�Z�R�(b�YoLJiri Vanek <jvanek@redhat.com> 1.6.2-4W�~�- fixed typo in provides
- Resolves: rhbz#1299537�A�Y�+LJiri Vanek <jvanek@redhat.com> 1.6.2-3W�-@- added --family to make it part of javas alternatives alignment
- java-javaver-openjdk collected into preffered_java 
- Resolves: rhbz#1299537�N�Y�ELJiri Vanek <jvanek@redhat.com> 1.6.2-1V��- updated to 1.6.2
- fixed also rhbz#1303437 - packags��Y�SKJiri Vanek <jvanek@redhat.com> 1.7.1-4_���- Added Patch6, altjava.patch to make usage of alt-java prefferd over java
- Resolves: rhbz#1901639��Y�KKJiri Vanek <jvanek@redhat.com> 1.7.1-3]0_A- Added Patch5, testTuning.patch to make tests pass inclean envirnment
- Resolves: rhbz#1724958�
�~Y�CKJiri Vanek <jvanek@redhat.com> 1.7.1-2]0_@- added patch1, patch4 and patch11 to fix CVE-2019-10182
- added patch2 to fix CVE-2019-10181
- added patch3 and patch33 to fix CVE-2019-10185
- Resolves: rhbz#1724958 
- Resolves: rhbz#1725928 
- Resolves: rhbz#1724989e owns /etc/bash_completion.d but it should not own it 
- generated maven metadata (isntalled but not used. 
set -e 
   _pompart="need" 
   _jarpart="tobe" 
_filelist=".mfiles" 
install -dm 755 /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-fragments 
for _dir in /usr/lib/java %{_javajnidir} /usr/share/java; do 
    if [ -f /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64$_dir/$_jarpart ]; then 
	_jpath="/builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64$_dir/$_jarpart" 
    fi 
done 
python -m /usr/share/java-utils/maven_depmap   \
          -p "/usr" -n "" \
          /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-fragments/icedtea-web \
          /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-poms/$_pompart \
        >> ${_filelist} 
sed -i 's:/builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64::' ${_filelist} 
sort -u -o ${_filelist} ${_filelist} 


- Resolves: rhbz#1299537
���Y�Y]LJiri Vanek <jvanek@redhat.com> 1.7.1-1Z7��* bump to 1.7.1
- Resolves: rhbz#1475411��U�/LJiri Vanek <jvanek@redhat.com> 1.7-3Y�Z@- javaws specific manpage renmed from -suffix to .suffix
- Resolves: rhbz#1475411q�U�LJiri Vanek <jvanek@redhat.com> 1.7-2Y�BA- gathered various patches from usptream
- Resolves: rhbz#1475411�g�U�{LJiri Vanek <jvanek@redhat.com> 1.7-1Y�B@- updated to itw 1.7 and sync from fedora
- added forgotten slaves of itweb-settings policyeditor
- Own %{_datadir}/%{name} dir
- Mark non-English man pages with %lang
- Install COPYING as %license
- last three by Ville Skytta <ville.skytta@iki.fi> via 1481270
- for sake of rpms added patch0, bashCompDirHardcodedAgain.patch to hardcode bashcompletion dir
- removed maven macros in favour of manual handling (bug)
- Resolves: rhbz#1475411
(�Z�R�(b�
YoMJiri Vanek <jvanek@redhat.com> 1.6.2-4W�~�- fixed typo in provides
- Resolves: rhbz#1299537�A�Y�+MJiri Vanek <jvanek@redhat.com> 1.6.2-3W�-@- added --family to make it part of javas alternatives alignment
- java-javaver-openjdk collected into preffered_java 
- Resolves: rhbz#1299537�N�Y�EMJiri Vanek <jvanek@redhat.com> 1.6.2-1V��- updated to 1.6.2
- fixed also rhbz#1303437 - packagv��
Y�SLJiri Vanek <jvanek@redhat.com> 1.7.1-4_���- Added Patch6, altjava.patch to make usage of alt-java prefferd over java
- Resolves: rhbz#1901639��	Y�KLJiri Vanek <jvanek@redhat.com> 1.7.1-3]0_A- Added Patch5, testTuning.patch to make tests pass inclean envirnment
- Resolves: rhbz#1724958�
�Y�CLJiri Vanek <jvanek@redhat.com> 1.7.1-2]0_@- added patch1, patch4 and patch11 to fix CVE-2019-10182
- added patch2 to fix CVE-2019-10181
- added patch3 and patch33 to fix CVE-2019-10185
- Resolves: rhbz#1724958 
- Resolves: rhbz#1725928 
- Resolves: rhbz#1724989e owns /etc/bash_completion.d but it should not own it 
- generated maven metadata (isntalled but not used. 
set -e 
   _pompart="need" 
   _jarpart="tobe" 
_filelist=".mfiles" 
install -dm 755 /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-fragments 
for _dir in /usr/lib/java %{_javajnidir} /usr/share/java; do 
    if [ -f /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64$_dir/$_jarpart ]; then 
	_jpath="/builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64$_dir/$_jarpart" 
    fi 
done 
python -m /usr/share/java-utils/maven_depmap   \
          -p "/usr" -n "" \
          /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-fragments/icedtea-web \
          /builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64/usr/share/maven-poms/$_pompart \
        >> ${_filelist} 
sed -i 's:/builddir/build/BUILDROOT/icedtea-web-1.7.1-4.el7_9.x86_64::' ${_filelist} 
sort -u -o ${_filelist} ${_filelist} 


- Resolves: rhbz#1299537
���Y�Y]MJiri Vanek <jvanek@redhat.com> 1.7.1-1Z7��* bump to 1.7.1
- Resolves: rhbz#1475411��U�/MJiri Vanek <jvanek@redhat.com> 1.7-3Y�Z@- javaws specific manpage renmed from -suffix to .suffix
- Resolves: rhbz#1475411q�U�MJiri Vanek <jvanek@redhat.com> 1.7-2Y�BA- gathered various patches from usptream
- Resolves: rhbz#1475411�g�U�{MJiri Vanek <jvanek@redhat.com> 1.7-1Y�B@- updated to itw 1.7 and sync from fedora
- added forgotten slaves of itweb-settings policyeditor
- Own %{_datadir}/%{name} dir
- Mark non-English man pages with %lang
- Install COPYING as %license
- last three by Ville Skytta <ville.skytta@iki.fi> via 1481270
- for sake of rpms added patch0, bashCompDirHardcodedAgain.patch to hardcode bashcompletion dir
- removed maven macros in favour of manual handling (bug)
- Resolves: rhbz#1475411
4�Z��4��{�NDavid Kaspar [Dee'Kej] <dkaspar@redhat.com> - 9.49.46-1[�@- ifup-post: fix incorrect condition for RESOLV_MODS (bug #1610411)��{�NDavid Kaspar [Dee'Kej] <dkaspar@redhat.com> - 9.49.45-1[W�- network: parsing of /proc/mounts returned (bug #1572659)
- netconsole: LSB header added (bug #1508489)
- ifdown-eth: no longer needed 'pidof -x dhclient' condition removed (bug #1559384)��Y�SMJiri Vanek <jvanek@redhat.com> 1.7.1-4_���- Added Patch6, altjava.patch to make usage of alt-java prefferd over java
- Resolves: rhbz#1901639��Y�KMJiri Vanek <jvanek@redhat.com> 1.7.1-3]0_A- Added Patch5, testTuning.patch to make tests pass inclean envirnment
- Resolves: rhbz#1724958�
�Y�CMJiri Vanek <jvanek@redhat.com> 1.7.1-2]0_@- added patch1, patch4 and patch11 to fix CVE-2019-10182
- added patch2 to fix CVE-2019-10181
- added patch3 and patch33 to fix CVE-2019-10185
- Resolves: rhbz#1724958 
- Resolves: rhbz#1725928 
- Resolves: rhbz#1724989
+���&�+c�aiNJan Macku <jamacku@redhat.com> - 9.49.53-1^Ǿ�- rwtab: Add support for chrony (bug #1838260)��a�CNJan Macku <jamacku@redhat.con> - 9.49.52-1^�x�- ifup-eth: Switch to bc utility, which supports floating point computations (bug #1609687)Z�aWNJan Macku <jamacku@redhat.com> - 9.49.51-1^r
@- Fix inline comment - (bug #1773798)��a�CNJan Macku <jamacku@redhat.com> - 9.49.50-1^h�- Wait for scope link addresses as well as for scope global addresses - ipv6 (bug #1773798)��a�]NJan Macku <jamacku@redhat.com> - 9.49.49-1]Z�@- ifup-eth: Check that device name is set (bug #1741830)
- Add option for IPv6 GRE tunnel (bug #1691552)�a�a�cNJan Macku <jamacku@redhat.com> - 9.49.48-1]Ik�- network: don't fail with IFDOWN_ON_SHUTDOWN (bug #1693977)
- Configure autorelabel service to output to journal and to console if set (bug #1634661)
- Fix changelog typo^�a_NJan Macku <jamacku@redhat.com> - 9.49.47-1\��- Fix file permissions for /var/log/dmesg
���}�OFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1n�qoNJan Macku <jamacku@redhat.com> - 9.49.53-1.el7_9.1_���- rwtab: Allow updating mlocate.db (bug #1880095)
Y��Y� �"��;OFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o|�}�!}�OFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v� }�qOFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�$�uOFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�#��UOFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�'��kOFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�&��3OFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��%��OFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
&�'&�}�*}�PFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�)}�qPFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\�(}?OCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Brandingther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|�-�uPFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�,��UPFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� �+��;PFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�
l��y�0��kPFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�/��3PFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��.��PFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
w��w� �4��;QFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}�3}�QFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\�2}?PCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y�1��kPFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�6�uQFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�5��UQFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�9��kQFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�8��3QFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��7��QFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��\�<}?QCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|�;��qQFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�:��kQFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|�?�uRFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�>��URFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� �=��;RFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�
l��y�B��kRFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�A��3RFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��@��RFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�D��qRFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�C��kRFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
����a�F��;RFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�E��%RFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
��|�H�uSFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�G��USFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�K��kSFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�J��3SFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��I��SFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�M��qSFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�L��kSFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
8��8��P��SFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�O��;SFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�N��%SFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
l��y�S��kTFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�R��3TFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��Q��TFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�U��qTFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�T��kTFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
Z��8�Z\�Z}?TCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|�Y�sTFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��X��TFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�W��;TFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�V��%TFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
� ���y�]��kUFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y�\��kUFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�[��3UFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ
���V�_��%UFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|�^��qUFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��W�\�d}?UCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8�cw�{UJulien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|�b�sUFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��a��UFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�`��;UFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config

e�r+��V��:��eD�b�
5eee4ed6f4cdcbe1b9de452b76bc924f965eab492a06b0b7f5bb0bbb156d824fD�a�
c59e261df9c78880ac906231fc2cce51d269a2a4bdd58d5cccea75abe0465c0bD�`�
558dc0f83e3862c9b965afa5b391a230262f95f6a63563d97c9110ca4deccd16D�_�
d91d835f435d138d7db35fab1aba38aaba2d467d57ccdc15593e6e37665d9e9dD�^�
0c844b3fd55943ad6df491c0f9396667119e7d8f737d079ca70e1e354c04d769D�]�
7dfa4db17abc05d6bf097a9695e02d8f0889d219fe48c90d147cef40ee6a34e0D�\�
833dc73a5ec23e1c5d73db93091846da2a990c4c750e903a4a09f3a61282dab0D�[�
779491f4aff62cb66747a794b7b823e9645eed730e157ff87a8425bfd96871c9D�Z�
509cf9ac14798ddb50f8710817ee91492ef1e1b1a27d3921e30b5434858dc294D�Y�
8b49fbdabac5e8dd32d8de8826af7fee4b0eeab0828f5ad71004efba08ce1b40D�X�
74fb87c43d42d2e134909edffc5d2d759fa9ac176e342697b6d590d62ca8a11fD�W�
2310b0e53fdf17749832f558cf06510e127435a1cce7658a84665de1bf9fa2e7D�V�
08dfe3130e723092bcc8145c8b90e71cc35804a68abc5879143350368fece38b
X��X��g�VFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa��P�f�#VFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a�e�EVFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�h}�cVFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�i}�GVFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��j}�VFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �m��;VFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}�l}�VFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�k}�qVFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
_��_��p�WFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa��P�o�#WFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[�n{?VCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�q}�cWFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�r}�GWFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��s}�WFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �v��;WFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}�u}�WFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�t}�qWFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
B�B��y�XFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa�[�x{?WCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m�w��UWFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�z}�cXFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�{}�GXFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��|}�XFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� ���;XFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}�~}�XFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}}�qXFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
2�2[�{?XCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|��uXFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UXFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.


�o�}�cYFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�}�GYFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��}�YFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� ���;YFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}�}�YFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qYFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�
�uYFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�	��UYFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�l��!�
}�GZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[�{?YCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding����YFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��}�ZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� ���;ZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}�}�ZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��uZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
.l�.[�{?ZCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\���3ZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����ZFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��}�[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� ���;[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o}�}�[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�q[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��u[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���U[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y���k[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\���3[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����[Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
&�'&�}�"}�\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�!}�q\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\� }?[CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Brandingther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|�%�u\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�$��U\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� �#��;\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�
l��y�(��k\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�'��3\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��&��\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
w��w� �,��;]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by oˁ}�+}�]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\�*}?\CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y�)��k\Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupof
!flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������D��F��H��K��M��P��S��U��Z��]��_��d��g��h��i��j��m��p��q��r��s��v��y��z��{��|��������������
��
���������������"�%�(�,�.�1�4�7�:�<�>�@�C�E�H�K�M�R�U�W�\�_�`�a�b�e�h�i�j�k�n�q��r��s��t��w��z��{��|��}��
�
�
�
�	
�
�
�
�
�
�
�
�
� 
�$
�&
�)
�,
�/
�2
�4
�6
�8
�;
�=
�@
�C
�E
 �Jther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�.�u]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�-��U]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�1��k]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�0��3]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��/��]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��\�4}?]CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|�3��q]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�2��k]Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|�7�u^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�6��U^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� �5��;^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�
l��y�:��k^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�9��3^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��8��^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�<��q^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�;��k^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
����a�>��;^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�=��%^Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
��|�@�u_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�?��U_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�C��k_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�B��3_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��A��_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�E��q_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�D��k_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
8��8��H��_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�G��;_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�F��%_Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
l��y�K��k`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�J��3`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��I��`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�M��q`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�L��k`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
Z��8�Z\�R}?`CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|�Q�s`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��P��`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�O��;`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�N��%`Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
� ���y�U��kaFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y�T��kaFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�S��3aFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ
���V�W��%aFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|�V��qaFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��W�\�\}?aCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8�[w�{aJulien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|�Z�saFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��Y��aFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�X��;aFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
X��X��_�bFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa߁P�^�#bFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a�]�EbFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�`}�cbFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�a}�GbFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��b}�bFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �e��;bFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�}�d}�bFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�c}�qbFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
_��_��h�cFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa�P�g�#cFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[�f{?bCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding

e�r+��V��:��eD�o�
96d4abfe67bd7a9d955276cf0a4e0987e05c018e86c09903e0f0417e753e77acD�n�
8087b4408319998ae1d6b166c84ecab64a54cea6ca23c0fa10d0108446ac99c1D�m�
e7250202a7c16893d5954675d11df0fab80808b7c4c5c285328f1c4315027ceeD�l�
017eff95084da1072645aceed55c7d64fe45d437ca48fa5ec6446759047a4d0dD�k�
708df0316ccfbaa7713f5cc4d0174450936ff711924ac55e5527b630498ef3d4D�j�
a7f79e36bdad845ee95ab0dcf81c2ac21d35da133b48c0cb448fbd6f1f3a5ceaD�i�
acedb410f50fe7ddd7938fec4bc88806e9f316f2c58569efa76c504f5ef11916D�h�
4206286662c3bca7d5dec45b6571835c5c580374921fcc382635bbf1caddac77D�g�
9a646552f12a087de4493fe8a4dfec0a5fb87521f568758c6136443c9644c22fD�f�
8089409b82d6904e6a2853e0d520b54e8935468e99ddd4cec8394dcee0e731d7D�e�
bbc75e7ebe20ce9f9b3a0c5ed5ebce0ec757c6a71b928408b3219bb857294882D�d�
f07e21fd43e16c0797d167891e1f8dd87c7bcf4ac4177307aec21e25a55ece03D�c�
ef279f239f0fe62929c62165d00a4076c51667ba82c640a3790df88dfa67ffa1�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�i}�ccFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�j}�GcFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��k}�cFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �n��;cFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�}�m}�cFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�l}�qcFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
B�B��q�dFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa�[�p{?cCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m�o��UcFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�r}�cdFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�s}�GdFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��t}�dFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �w��;dFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}�v}�dFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�u}�qdFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
2�2[�z{?dCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|�y�udFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�x��UdFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.


�o�{}�ceFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�|}�GeFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��}}�eFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� ���;eFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}�}�eFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�~}�qeFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��ueFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UeFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�l��!�}�GfFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[�{?eCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding����eFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��}�fFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �	��;fFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
�}�}�fFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qfFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��ufFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�
��UfFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
.l�.[�{?fCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\�
��3fFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����fFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��}�gFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� ���;gFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
	�}�}�gFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qgFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��ugFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UgFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y���kgFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\���3gFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����gFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
&�'&�}�}�hFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qhFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\�}?gCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Brandingther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|��uhFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UhFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ���;hFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o


l��y� ��khFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\���3hFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����hFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
w��w� �$��;iFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
�}�#}�iFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\�"}?hCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y�!��khFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�&�uiFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�%��UiFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�)��kiFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�(��3iFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��'��iFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��\�,}?iCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|�+��qiFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�*��kiFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|�/�ujFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�.��UjFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� �-��;jFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o

l��y�2��kjFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�1��3jFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��0��jFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�4��qjFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�3��kjFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
����a�6��;jFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�5��%jFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
��|�8�ukFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�7��UkFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�;��kkFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�:��3kFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��9��kFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�=��qkFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�<��kkFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
8��8��@��kFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�?��;kFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�>��%kFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
l��y�C��klFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�B��3lFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��A��lFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�E��qlFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�D��klFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
Z��8�Z\�J}?lCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|�I�slFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��H��lFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�G��;lFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�F��%lFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
� ���y�M��kmFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y�L��kmFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�K��3mFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ
���V�O��%mFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|�N��qmFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��W�\�T}?mCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8�Sw�{mJulien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|�R�smFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��Q��mFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�P��;mFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
X��X��W�nFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
%�P�V�#nFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a�U�EnFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag
&-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
'd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�X}�cnFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�Y}�GnFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��Z}�nFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �]��;nFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
,�}�\}�nFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�[}�qnFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
_��_��`�oFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
.�P�_�#oFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[�^{?nCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding
/-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
0d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�a}�coFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�b}�GoFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��c}�oFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �f��;oFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
5�}�e}�oFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�d}�qoFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
B�B��i�pFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
8[�h{?oCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m�g��UoFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.

e�r+��V��:��eD�|�
951d300e30de3f44fa83fea5bff378fb53589245060530b325e00fa9f6c7f5d3D�{�
13e6e0aca27ac928a13a8392353c51dcc310d1458f84cf2c8811620996c73fc2D�z�
065be8dcad1accb013d907c343f946bf2aee0c7ebe74cc8d43c80d008e10fed5D�y�
d2df50179ec4ae53b3b02398bb8ed1d376fddb157a0b2c4996e0c09559793409D�x�
3268859dec4857e91df2b98be2c4c1039a81c1208032d1627ffafee642953fc2D�w�
9fe30f8f94bda5cdd5390de29d8a6c4c8f6dbbb9aeec90fb2dbf9da761d3e515D�v�
9277a339164ce4554d7e44a5274d72e8acdef0f65c7e2f5ae1558953312edbfcD�u�
f3480d9490430ccdec35a8db1fdcd4f48fc92476fd17dea7b616fd9995372e88D�t�
6fc0812fc250d841a58cd125c88d60ba6c53d4c751c3c985ba925f28e597e5adD�s�
47f19899e75c7c9a5b74f30643d69d0ccff2cf5451546d7ad1a727bccaaf0ea4D�r�
ceba479b3f7e61b1f98d50e4797543b538d563b420b419155fedeead08a06b2eD�q�
d2db9132b158642ca3acdce95a3018565ff05f4497c6fa76140e7a98a3a959f3D�p�
3bc9984dc4e0e90245e74d760cf04b6707669b3289dc3e70c040cdfde4d44319
9-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
:d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�j}�cpFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�k}�GpFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��l}�pFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �o��;pFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
?�}�n}�pFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�m}�qpFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
2�2[�r{?pCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|�q�upFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�p��UpFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.


�o�s}�cqFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�t}�GqFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��u}�qFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �x��;qFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
E�}�w}�qFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�v}�qqFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�z�uqFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�y��UqFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�l��!�}}�GrFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[�|{?qCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding��{��qFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��~}�rFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� ���;rFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
J�}�}�rFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qrFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��urFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UrFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
.l�.[�{?rCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\���3rFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����rFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��}�sFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �
��;sFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
O�}�	}�sFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qsFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��usFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UsFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y���ksFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\���3sFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��
��sFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
&�'&�}�}�tFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qtFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\�}?sCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Brandingther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|��utFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UtFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ���;tFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
S
l��y���ktFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\���3tFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����tFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
w��w� ���;uFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
W�}�}�uFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\�}?tCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y���ktFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��uuFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UuFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�!��kuFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\� ��3uFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����uFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��\�$}?uCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|�#��quFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�"��kuFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|�'�uvFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�&��UvFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� �%��;vFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
[
l��y�*��kvFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�)��3vFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��(��vFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�,��qvFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�+��kvFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
����a�.��;vFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�-��%vFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
��|�0�uwFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�/��UwFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�3��kwFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�2��3wFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��1��wFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�5��qwFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�4��kwFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupof
�flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������
"�O
#�T
$�W
(�X
)�Y
*�Z
+�]
-�`
1�a
2�b
3�c
4�f
6�i
;�j
<�k
=�l
>�o
@�r
A�s
B�t
C�u
D�x
F�z
G�}
H�~
I�
K�
L�
M�
N�

P�
Q�
R�
T�
U�
V�
X�
Y�!
Z�$
\�'
]�*
^�,
_�.
`�0
a�3
b�5
d�8
e�;
f�=
g�B
h�E
i�G
j�L
k�O
o�P
p�Q
q�R
r�U
t�X
x�Y
y�Z
z�[
{�^
}�a
��b
��c
��d
��g
��j
��k
��l
��m
��p
��r
��u
��v
��y
��{
��~
��
��
��
��
��

��

��
��
��
��
��
��
��"
��$
��&
��(
��+
��-
��0
��3
��5
��:
��=
��?
��D
��G
��H
��I
��J
��M
��P
��Q
8��8��8��wFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�7��;wFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�6��%wFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
l��y�;��kxFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�:��3xFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��9��xFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�=��qxFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�<��kxFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
Z��8�Z\�B}?xCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|�A�sxFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��@��xFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�?��;xFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�>��%xFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
� ���y�E��kyFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y�D��kyFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�C��3yFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ
���V�G��%yFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|�F��qyFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��W�\�L}?yCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8�Kw�{yJulien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|�J�syFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��I��yFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�H��;yFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
X��X��O�zFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
l�P�N�#zFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a�M�EzFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag
m-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
nd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�P}�czFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�Q}�GzFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��R}�zFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �U��;zFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
s�}�T}�zFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�S}�qzFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
_��_��X�{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
u�P�W�#{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[�V{?zCentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding
v-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
wd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�Y}�c{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�Z}�G{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��[}�{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �^��;{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
|�}�]}�{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�\}�q{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
B�B��a�|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
~[�`{?{CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m�_��U{Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�b}�c|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�c}�G|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��d}�|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �g��;|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
��}�f}�|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�e}�q|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
2�2[�j{?|CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|�i�u|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�h��U|Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.

e�r+��V��:��eD�	�
26057397691d0e4487c2c746c43e15367dce434090f9495b535dab7657e51a9cD��
0720c43c680146e7a676c6340d3f1529fb116ef0c12105b5b84f41a448512564D��
44df7609ed5e477add5d58e49530bb036fc2ff1d94098c85b2111eeb85a31168D��
0b22b530fe470f3e466de0b4c9a662510b4feffc3540c2add9689e58fe543a56D��
e8fcf04ec6289d6ed5e26623877c40ac8ff5d22653e6acfb45465877e4ff0dc5D��
46014250185344e990623d8284713f5bcea7006c7779fc959f7da3d39032c89bD��
addcd00db9e64f493d8286287e758d561f51abb09ce1ba2dd73f4b708c60e866D��
cd7ab4d402e24250450215dd316bc8db5cbabc2abdaf16110521f6e623589deaD��
95ca57f8286ce2eaacee848405bb95f1e3ae571def5526f34c8d1abdb873b30cD��
c3063c4a546358bcf8640da753ea13f90ccbb18da78588f7c8a9b3011eccfd55D��
ac419246df9921713ed1c65bf7621fa6b5266999545f33a73aab328bcd38d3f0D�~�
7bfce38ec77185d1696e388cecf4163509c7884933ded369897a1fcf77610b49D�}�
da1dc98d83517de259389f28cb15535a0c5b895342f95881d9cdb88529401e7a


�o�k}�c}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�l}�G}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��m}�}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �p��;}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
��}�o}�}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�n}�q}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�r�u}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�q��U}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�l��!�u}�G~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[�t{?}CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding��s��}Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��v}�~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �y��;~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
��}�x}�~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�w}�q~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�{�u~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�z��U~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
.l�.[�~{?~CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\�}��3~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��|��~Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��}�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� ���;Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
��}�}�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�}�qFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��uFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���UFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y���kFlorence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\���3Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ����Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
&�'&�}�
}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�	}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\�}?CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Brandingther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|�
�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ���;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
�
l��y���k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\���3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ�����Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
w��w� ���;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
��}�}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\�}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y���k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y���k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\���3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ�����Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��\�}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|���q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y���k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host groupther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
d��d|��u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m���U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ���;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
�
l��y�"��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�!��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ�� ���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�$��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�#��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
����a�&��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�%��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
��|�(�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�'��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y�+��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�*��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��)���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�-��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�,��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
8��8��0���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�/��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�.��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
l��y�3��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�2��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��1���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
�|�5��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin�y�4��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group
Z��8�Z\�:}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|�9�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��8���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�7��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config�V�6��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file
� ���y�=��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y�<��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�;��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ
���V�?��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|�>��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��W�\�D}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8�Cw�{�Julien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|�B�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��A���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a�@��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
X��X��G��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
��P�F�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a�E�E�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag
�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�H}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�I}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��J}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �M��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
��}�L}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�K}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
_��_��P��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
��P�O�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[�N{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding
�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�Q}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�R}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��S}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �V��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
}�U}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�T}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
B�B��Y��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
�[�X{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m�W��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts


�o�Z}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�[}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��\}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �_��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
ˁ}�^}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�]}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
2�2[�b{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|�a�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�`��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.


�o�c}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!�d}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
}}��e}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �h��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
с}�g}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�f}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�j�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�i��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�l��!�m}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[�l{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding��k���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server

e�r+��V��:��eD��
b11d559c42557a76fa28ec310e056c9da6ea2279ff9e9d2550f053c95a60eb4cD��
1838c4a50fba6cc7f01b473b8ebeaa6c7edb92cac0662a563b2b802ffa0fb3aaD��
185387ed3f5744ba48ddfaf8a3d5ccc041f095dff1ea382c043dbe6835d3e739D��
26b65e8ddb2e0f1b106113ae92e86c40572c636fadb1825dfa21ea13c21ecc4cD��
fe9ddea76d491834446326906a81c67139192d20db46b613104c60028b90693bD��
86cef284a27c740098bf41032dcb527c08c5847589bc56cd6dda05d37f714bdcD��
83da2d9387fb7b54637b838d32f6027693e46e5eaa5f85a337fda688683830f5D��
80ce6a4a15f013d38eba7effe54a0be427263f17ea3cccd5f299625962e17ef3D��
7362e3afa20e7270f6bd0843928dbc50fc58aee6b6187699194d02979a9c9b4bD�
�
56a814e3eeaf048c77ba188904c435aeaea3d62cc3a5cb3e815e9921e1d60166D��
0f9586b6d0d300edc438c789f89bb5cc08cc5ad9ef33210f4da2aa9cb0977f06D��
505e596b1b77d05f545fd3684fbdd8591bf9ca308db67ff0a6b36dd0a1341c17D�
�
d3b825ecf0857cf7486c9085c1579cac88394eb38dbc27d654ff8a989aa9f4f2piwinsx}���������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������9:o*�8�F�Tbp2~]�m���%��2��?��LԁY�f�s�.�
C�X�'m�4��A��N��[Âhׂu���-�)C�6X�Cm�P��]��j��w���n�؄+�8=�EY�R�_��l��yȅ��� �-*�:J�G�T��a��n��{҆��"*�/C�<[�Is�V��c��p��}և
��$ �19�>Q�Ki�X��e��r������ǈ&Ԉ3�@�M��Z	�g	!�t	)�	E�	g�	��(	��5	��B	��O	ĉ\	؉i	�v	��
�
&�
:�*
O�7
e�D
��Q
��^
��k
ӊx
�	�%�?�,[�9y*%'*06<BHNTZ`flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|�����������������������S��`��m��z��Ԍ�!�.D�;Y�Hl�U��b�o
7�|
��	
ԍ$�#s�0��=̍J�W�d�q7�~R�s���%Ԏ2�?.�Ln�Y��fʎs��&�
g���'��4��A-�N[�[��h��u���C�q�)��6��C�P�]>�ji�w������+9�8`�E��R��_ܑl�y4�W�|� ��-Ӓ:��G*�TC�a��n�{h�̓9�"��/�<y�IΓV>�c��p	�}s�
۔=�$��1�>y�K�XC�e��r � {� �!E�&!��3""�@"B�M"`�Z"s�g"��t"��"��"ɖ"�(#�5#9�B#l�O#��\#ϖi$�v$X�$~�$��$��*$��7$ԗD$�Q$��^%�k
}}��n}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �q��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
ف}�p}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�o}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�s�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�r��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
.l�.[�v{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\�u��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��t���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
}}��w}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
Y��Y� �z��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
ށ}�y}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v�x}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�|�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m�{��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
l��y���k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role�\�~��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ��}���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
#�%#�}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\��}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Brandingther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
a��a|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
�
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
"��$"�}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\��
}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y��	��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller rolether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
a��a|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��
��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
�
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
r��r� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
�\��}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync pluginther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V����%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�(�|�� �u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�a����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
�k��\��"��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���!���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��$��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��#��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��&��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��%��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
���\��*��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���)���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server���(���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��'��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��,��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��+��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��.��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��-��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�����\��3��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ\��2}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|��1�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���0���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��/��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��5��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��4��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��7��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��6��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugineSJSY_ekqw}��������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������
��S
��V
�Y
�Z
�[
�\
�_
�b
�c
�d
�e
�h
�j
�m
�n
�q
�s
�v
�w
�z
�|
�
၀
぀
䁀
偀
灀
聀
遀
ꁀ
쁀
큀


� 
�"
�$
�&
�*
���,
���.
���3
���5
���7
���<
���?��@��A��B��E��H	��I
��J��K��N��Q��R��S��T��W��Z��[��\��]��`��b��e��f ��i"��k#��n%��o&��r(��t)��v*��y+��{-��}.��/��1��2��3��
4��
6��7��8��9��:��;��<��=��>��"?��$@��&A��+B��-C��/D��4E��7I��8
��S�\��<}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8��;w�{�Julien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|��:�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���9���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��8��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
U��U���?��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa
��P��>�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a��=�E�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag
�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss
�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��@}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��A}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���B}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��E��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�}��D}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��C}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
\��\���H��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa�P��G�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[��F{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sssd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��I}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��J}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���K}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��N��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o
�}��M}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��L}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
?�?���Q��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa[��P{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m��O��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sssd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��R}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��S}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���T}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��W��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�}��V}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��U}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
/�/[��Z{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|��Y�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��X��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�o��[}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��\}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���]}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��`��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o�}��_}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��^}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��b�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��a��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��!��e}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[��d{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding���c���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
||���f}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��i��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o!�}��h}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��g}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��k�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��j��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
+k�+[��n{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\��m��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���l���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server

e�r+��V��:��eD�#�
58790e773666a310f1c4417f46de1fb127437bce225ed0d9cbf6b4a08054ae98D�"�
d315bb2c28ee908b28dcdf583c02c6e2135a1e2a504eab6b1b0b1ea2366cd38cD�!�
78d5b1f2129f41fe187e0ac04949364deea63d749d50862bb7767f1e00444a71D� �
5dd078d9c34f67aacb48cc5f22103833d14b4bfa4bc86f6a4d5ba09de9cdbdcbD��
e0fb73f01affcb06ca29acf2c378ce6d3035f42a90552ed157bd34ccf137226fD��
6dcf38b2dd21eea79940f1fdaf48332d6c3ecaa1fd0add17464537dd24fef021D��
fe59e0e08fdd30fac03b78e5e5afd3169677c15d89d0797bddd5d5e796f2e43aD��
06e8b2bd304cd09ba4be27cd71f6e46da23994939ba405275e37c1d39b91f75bD��
f2a56e1e7ae1606a974d68a45c31824b05cfcb8ff28d94b4d090080e6e76c3a7D��
5e7f113d0a50e93468c406b83d0079441feedc8fdc94a3867761526c5cf7b4adD��
724104b78d65c37a7c944beaca3bddc2e94e0e2766838104816b951ec6b107c5D��
133710e665511ae5f9d0928eba116d6f2d1f06f71afbe0e7013e3d46a1238e21D��
878d2dbcd884adb9e2de690242d04710df89bee67b51aa86e9468e01de78341b
||���o}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��r��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o'�}��q}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��p}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��t�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��s��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��v��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���u���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��"��v��y}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\��x}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Branding�y��w��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
���� ��{��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o,�}��z}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offsetther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��}�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��|��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���~���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
"��$"�}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\��}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller rolether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
a��a|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o0
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��
��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��	��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
r��r� ��
��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o5\��}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync pluginther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V����%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�(�|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�a����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V����%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
���\��"��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���!���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server��� ���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��$��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��#��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��&��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��%��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�����\��+��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ\��*}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|��)�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���(���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��'��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��-��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��,��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��/��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��.��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��S�\��4}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8��3w�{�Julien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|��2�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���1���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��0��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
U��U���7��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipaF�P��6�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a��5�E�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tagG-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sssHd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��8}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��9}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���:}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��=��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by oM�}��<}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��;}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
\��\���@��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipaO�P��?�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[��>{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS BrandingP-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sssQd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��A}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��B}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���C}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��F��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by oV�}��E}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��D}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
?�?���I��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipaX[��H{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m��G��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.Y-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sssZd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��J}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��K}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���L}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��O��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o_�}��N}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��M}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
/�/[��R{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|��Q�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��P��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�o��S}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��T}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���U}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��X��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by oe�}��W}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��V}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��Z�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��Y��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��!��]}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[��\{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding���[���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
||���^}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��a��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by oj�}��`}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��_}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��c�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��b��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
+k�+[��f{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\��e��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���d���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
||���g}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��j��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by oo�}��i}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��h}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��l�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��k��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��n��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���m���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��"��v��q}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\��p}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Branding�y��o��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role

e�r+��V��:��eD�0�
76813e1abc18c641eb46092531885c18b9c6ddd5e9dc4e228b79d8c1701b18aaD�/�
3b2f3d7b1d885c5edc646e442aa9d94f1445bf4eedc14e0b85c4b0d8f69524a8D�.�
dab287aa189bc4e289c79998917467ba4a97037e00fe28be6d93e2537aed7bb7D�-�
98fb1fad0191aec5d51055b0a98b319339dfdb3295a687465da5a1122d7998b7D�,�
4f37e8e35d62af3023fa7e8393ded5ec181f09c19bbdf8f8210919d800c883acD�+�
97cdaffa439041e92b0a8642fd10637591e412ee471c5dd1572dd88e2d6decc7D�*�
78c54e3e24da878a2395d1db2fe940598eade355a2ed7955fe408e1151a3bdebD�)�
b98e50cb5344b27eeecb7c8f6a0bd8ae65ea51bfc626a744f6d64347692558a8D�(�
bdfe37339f1054699a6343f8d578f712a70a609276a9b8ed1eee991f37771614D�'�
3a9e272508ed53c6c3ca36cc4d1c537b9a6096425aa6339399939cfb7a44d1c2D�&�
c8dfb7c69048e40d89f055121f7bf399c85c51f08160824fe50d9434c253a4a3D�%�
50b41570ec21f348d3c7adf1b62909fcf0674e4f13126166d7667664345d4f42D�$�
908fa60367f005eeb06ef2422874df47c562ea782942062b68547373fdaa4040
���� ��s��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by ou�}��r}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offsetther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��u�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��t��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��w��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���v���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
"��$"�}��{}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\��z}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y��y��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��x��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller rolether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
a��a|��~�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��}��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ��|��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by oy
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
r��r� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o~\��}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync pluginther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��	��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��
��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��
��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�(�|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�a����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA configbR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������K��:L��=N��@R��AS��BT��CU��FW��I[��J\��K]��L^��O`��Ra��Sb��Tc��Ud��Xf��Zg��]h��^i��ak��cl��fm��gn��jp��lq��nr��qt��sv��uw��wx��{z��~{��|��}�������	������
������������������������#���%���'���,���/���0���1���2���5���8���9���:���;���>���A���B���C���D���G���J���K���L���M���P���R���U���V���Y���[���_���e���k���r���y���������	����������#Á�)ā�/Ł�5Ɓ�;ǁ�Bȁ�IɁ�Oʁ�Vˁ�\́�b
�k��\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V����%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
���\����3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y����k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V����%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|����q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�����\��#��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ\��"}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|��!�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection��� ���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��%��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��$��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��'��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��&��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��S�\��,}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8��+w�{�Julien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|��*�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���)���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��(��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
U��U���/��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa��P��.�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a��-�E�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��0}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��1}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���2}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��5��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}��4}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��3}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
\��\���8��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa��P��7�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[��6{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��9}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��:}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���;}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��>��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}��=}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��<}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
?�?���A��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa�[��@{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m��?��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��B}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��C}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���D}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��G��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}��F}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��E}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
/�/[��J{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|��I�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��H��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�o��K}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��L}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���M}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��P��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}��O}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��N}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��R�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��Q��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��!��U}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[��T{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding���S���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
||���V}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��Y��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o��}��X}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��W}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��[�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��Z��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k�+�~��_i��Michal Ruprich <mruprich@redhat.com> - 3.1.6-1X���- Resolves: #913329 - [RFE] include iperf3 in RHEL 7
- initial build[��^{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\��]��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���\���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
3A���3���e=�{�Michal Ruprich - 3.1.7-2X@- Related: #913329 - [RFE] include iperf3 in RHEL 7
                   - adding requires to spec file for devel package�:��di�
�Michal Ruprich <mruprich@redhat.com> - 3.1.7-1X�C�- Related: #913329 - [RFE] include iperf3 in RHEL 7
                   - adding latest version before including iperf3 in RHEL-7~��ci��Michal Ruprich <mruprich@redhat.com> - 3.1.6-1X���- Resolves: #913329 - [RFE] include iperf3 in RHEL 7
- initial build���b]�5�Stepan Broz <sbroz@redhat.com> - 3.1.7-3d��@- Resolves: #2224558 - iperf3: memory allocation hazard and crash
  (CVE-2023-38403)���a=�{�Michal Ruprich - 3.1.7-2X@- Related: #913329 - [RFE] include iperf3 in RHEL 7
                   - adding requires to spec file for devel package�:��`i�
�Michal Ruprich <mruprich@redhat.com> - 3.1.7-1X�C�- Related: #913329 - [RFE] include iperf3 in RHEL 7
                   - adding latest version before including iperf3 in RHEL-7
�s�2��~��ki��Michal Ruprich <mruprich@redhat.com> - 3.1.6-1X���- Resolves: #913329 - [RFE] include iperf3 in RHEL 7
- initial build���j]�5�Stepan Broz <sbroz@redhat.com> - 3.1.7-3d��@- Resolves: #2224558 - iperf3: memory allocation hazard and crash
  (CVE-2023-38403)���i=�{�Michal Ruprich - 3.1.7-2X@- Related: #913329 - [RFE] include iperf3 in RHEL 7
                   - adding requires to spec file for devel package�:��hi�
�Michal Ruprich <mruprich@redhat.com> - 3.1.7-1X�C�- Related: #913329 - [RFE] include iperf3 in RHEL 7
                   - adding latest version before including iperf3 in RHEL-7~��gi��Michal Ruprich <mruprich@redhat.com> - 3.1.6-1X���- Resolves: #913329 - [RFE] include iperf3 in RHEL 7
- initial build���f]�5�Stepan Broz <sbroz@redhat.com> - 3.1.7-3d��@- Resolves: #2224558 - iperf3: memory allocation hazard and crash
  (CVE-2023-38403)

e�r+��V��:��eD�=�
596e62671849cfd110b4ac4c57b171fec5bb07301be496f20b9b86d591947ebeD�<�
1eac2001120394176840294e989343eb699519e8284843a3cdd14f5fb3f39a95D�;�
7d3b3df85df3f1d47ab959aa42eea6f3302b166b9e37ef92779c1c8acedfd671D�:�
0e0b806579667e86ea70685a838f8c23073e5084c9c3135588b05d5d395ec9d3D�9�
73be1cce35dd9bd5fb59093ba5faf459b1f723fec8ccad9d13b18e6e1b249b10D�8�
30f252a9be101e11f5009f24025e69ac8850c0e429134629fceda20f9508a261D�7�
559d3f3c580f94eb5e25df5db277b1e4076d0d1911bd304941680178b21d9e5fD�6�
31535d62fcdd33c68d7c941c0b2b9e56b4f4749c5c04518d19b67a70214a8012D�5�
b4ef197940e3c4fa8fa6153875480c974b0ffa36f4534e7c04d901e91440e53cD�4�
514e7d973b405b3d0028fc7df9e3b46ac3dbc49e864417967dad13ed6c1a344dD�3�
46fcca6c6687e1d7465d0f99ea219de21f84bde74cc822721a5e55a13bf97a0cD�2�
e85016af12ca079ec7dcd10cfe41ca3eb0ae74f337e7db981ea8289ce132cc0bD�1�
1b0076a98d327d7bc0db69b985d05e02f9d0e927d5d7645ad2a14dba64ceaf52
VA��[�VW��reM�Josef Ridky <jridky@redhat.com> - 0:1.8.18-4X�+�- Fix RPMDiff issues and rebuild�%��qe�g�Josef Ridky <jridky@redhat.com> - 0:1.8.18-3X��@- Fix issues with warning: dereferencing type-punned pointer 
  will break strict-aliasing rules from RPMDiffR��peC�Josef Ridky <jridky@redhat.com> - 0:1.8.18-2X���- Fix issue in file sources_��oe]�Josef Ridky <jridky@redhat.com> - 0:1.8.18-1X�@- New upstream release 1.8.18 (#1398658)���n]�5�Stepan Broz <sbroz@redhat.com> - 3.1.7-3d��@- Resolves: #2224558 - iperf3: memory allocation hazard and crash
  (CVE-2023-38403)���m=�{�Michal Ruprich - 3.1.7-2X@- Related: #913329 - [RFE] include iperf3 in RHEL 7
                   - adding requires to spec file for devel package�:��li�
�Michal Ruprich <mruprich@redhat.com> - 3.1.7-1X�C�- Related: #913329 - [RFE] include iperf3 in RHEL 7
                   - adding latest version before including iperf3 in RHEL-7
=���#��=R��yeC�Josef Ridky <jridky@redhat.com> - 0:1.8.18-2X���- Fix issue in file sources���xk�S�Pavel Cahyna <pcahyna@redhat.com> - 0:1.8.18-10a�{�- Protect against negative values to memmove that caused
  "ipmitool sol activate" to crash against an IBM DataPower appliance
  (#1951480) and IP-131 Dayton blades in a SGI ICE-X (#2025519)
  Cherry-picked from upstream PR#78.i��wsc�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-9^_�@- Disable -fstrict-aliasing (RPMDiff issue)^��vsM�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-8^^F�- Backport fix for CVE-2020-5208o��ue}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-7Zy��- Remove debug prints shown without -v option (#1483163)���te�=�Josef Ridky <jridky@redhat.com> - 0:1.8.18-6Y�{�- Hide unrequested verbose output (#1483163)
- Fix doc for check input values (#1495098)o��se}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-5X�s�- Remove RPMDiff fix file (#1439269) related to #1398658
�V�����i��sc�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-9^_�@- Disable -fstrict-aliasing (RPMDiff issue)^��sM�Václav Doležal <vdolezal@redhat.com> - 0:1.8.18-8^^F�- Backport fix for CVE-2020-5208o��~e}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-7Zy��- Remove debug prints shown without -v option (#1483163)���}e�=�Josef Ridky <jridky@redhat.com> - 0:1.8.18-6Y�{�- Hide unrequested verbose output (#1483163)
- Fix doc for check input values (#1495098)o��|e}�Josef Ridky <jridky@redhat.com> - 0:1.8.18-5X�s�- Remove RPMDiff fix file (#1439269) related to #1398658W��{eM�Josef Ridky <jridky@redhat.com> - 0:1.8.18-4X�+�- Fix RPMDiff issues and rebuild�%��ze�g�Josef Ridky <jridky@redhat.com> - 0:1.8.18-3X��@- Fix issues with warning: dereferencing type-punned pointer 
  will break strict-aliasing rules from RPMDiff
<��<�Q��i�;�Sinny Kumari <skumari@redhat.com> - 2.4.11.1-1W�- Resolves: #1274367 - [7.3 FEAT] iprutils package update
- Resolves: #1297921 - IPR: Raid migration fails to kick while executing through command line�J��a�5�Jakub Čajka <jcajka@redhat.com> - 2.4.8-1U�J@- Resolves: #1182038 - [7.2 FEAT] iprutils package update - ppc64/ppc64le
- Resolves: #1183460 - RHEL7.1 BE: iprutils: Set known zeroed after format�w��g�	�Pavel Cahyna <pcahyna@redhat.com> - 1.8.18-11d��- Add upstream ipmievd patch to check received msg id against expectation
  Fixes problem where SEL response is not recognized correctly
  when SEL request times out
  Resolves: rhbz#2224569���k�S�Pavel Cahyna <pcahyna@redhat.com> - 0:1.8.18-10a�{�- Protect against negative values to memmove that caused
  "ipmitool sol activate" to crash against an IBM DataPower appliance
  (#1951480) and IP-131 Dayton blades in a SGI ICE-X (#2025519)
  Cherry-picked from upstream PR#78.
!L�)�!���	i�/�Sinny Kumari <skumari@redhat.com> - 2.4.16.1-1[(�@- Resolves: #1587834 - vpdupdate takes over an hour on system with 104 drive
- Resolves: #1521052 - iprutils package update for POWER
- Resolves: #1547891 - iprconfig unable to Download microcode on all applicable devices
- Resolves: #1576013 - iprconfig tools shows wrong error message, while creating raid using RI SSDs and normal SSDst��i��Sinny Kumari <skumari@redhat.com> - 2.4.15.1-1Y��- Resolves: #1456500 - iprutils package update to 2.4.15.1���i��Sinny Kumari <skumari@redhat.com> - 2.4.14.1-1X���- Resolves: #1384382 - [7.4 FEAT] iprutils package update - ppc64/ppc64le���i�E�Sinny Kumari <skumari@redhat.com> - 2.4.13.1-1W�:�- Rebase to upstream release 2.4.13.1
- Resolves: #1369259 - Fix known zeroed state tracking�/��i�w�Sinny Kumari <skumari@redhat.com> - 2.4.12.1-1W�t@- Resolves: #1364131 - Integrate various important bug fixes for iprutils in
  RHEL7.3 by updating iprutils to 2.4.12
p�?�dx�pw��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��i�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)\��
iS�Chris Leech <cleech@redhat.com> - 6.2.0.874-11\�@- 1649401, 1649413 iscsiuio updatesw��[��Than Ngo <than@redhat.com> - 2.4.17.1-3]9��- Resolves: #1763626 - iprconfig hangs while raiding drives on crow3Y��[[�Than Ngo <than@redhat.com> - 2.4.17.1-2\{��- Related: #1643408 - fix rpmdiff issue`��
[i�Than Ngo <than@redhat.com> - 2.4.17.1-1\w�@- Resolves: #1643408 - iprutils package update
 m�n� \��iS�Chris Leech <cleech@redhat.com> - 6.2.0.874-11\�@- 1649401, 1649413 iscsiuio updates}��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forking
!�y�!�N��i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��i�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)
wY�k�ww��#i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���"i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��!i�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)}�� i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)
�m�n�}��)i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��(im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��'i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��&i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���%i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���$i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forking
co��{�c���/i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���.i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��-i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���,i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��+i�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)���*i�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning
z-��z���5i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition���4i�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}��3i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��2im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��1i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��0i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value
���m���i��;im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��:i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��9i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���8i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���7i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��6i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session
S�s�k�S���Bi��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���Ai�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��@i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���?i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure conditionw��>i��Chris Leech <cleech@redhat.com> - 6.2.0.874-22a^�@- 1946578 fix segfault on case mismatch in config/record file���=i�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}��<i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at once
,-���,\��IiS�Chris Leech <cleech@redhat.com> - 6.2.0.874-11\�@- 1649401, 1649413 iscsiuio updatesw��Hi��Chris Leech <cleech@redhat.com> - 6.2.0.874-22a^�@- 1946578 fix segfault on case mismatch in config/record file���Gi�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}��Fi��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��Eim�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��Di�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��Ci�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value
!�y�!�N��Oi�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���Ni��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���Mi�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��Li��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���Ki�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��Ji�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)
Y�k�w��Vi��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���Ui�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��Ti�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)\��SiS�Chris Leech <cleech@redhat.com> - 6.2.0.874-11\�@- 1649401, 1649413 iscsiuio updates}��Ri��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��Qim�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��Pi�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)
�m�n�}��\i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��[im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��Zi�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��Yi�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���Xi��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���Wi�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forking

e�r+��V��:��eD�J�
d4448c84868ba851628434b5cedc79248ebbc6aeda79ecb6339065c844d6d809D�I�
b41a681dfb0b8b82973c7815eeee4cc5e3fc5e27cb13f55d251186c29146a4f3D�H�
3e0a8c76f0c416e9b2f67cade48b3e2606a3fc3b47348110c033aa2cc1835a00D�G�
372372d382848eb9ecb5e551dd606aa646c12d3683f43b876ed5191e7a529c3eD�F�
77269448e020f6a70c9a9ee15224c6dffd91e47f8c5a0c05dc8281dec47ff3f1D�E�
447681bd8d74b001a4a5461694a948bba8dce453c2c054b8fb5d38408b7888a3D�D�
144001826455a5ca11b8e1701396ee66db5af5d0c7831453aba1309eb708a6c2D�C�
147c8de55409cc60a709e9f72364ee69759e7361564a732c0fd192e6fdd46d75D�B�
092cc13ed7af9de7e0332c1da0285f190396f1b75256ecd162899d06cf9b0e1aD�A�
d65cdceba1822f154d19bc4845ed70da24d2b51bcaadb12af03fe2668101a3eaD�@�
ddf90c0ec436cf18228ba0646f73776e9a121426e0c05038fb1f4378646ff646D�?�
e1163c5b5240558b24ddea7085492d62d63dd722ce6b4775724583c2ebcffdf2D�>�
a551edad1e9e549e9010c83ff60ebed361a870676f10b405c22b4a301de84699
!�y�!�N��bi�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���ai��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���`i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��_i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���^i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��]i�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)
aY�k��a���hi�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��gi�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)���fi�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}��ei��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��dim�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��ci�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)
���m���i��nim�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��mi�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��li�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���ki��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���ji�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��ii��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session
��a�S����ti��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���si�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��ri��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���qi�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition���pi�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}��oi��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at once
�-���w��zi��Chris Leech <cleech@redhat.com> - 6.2.0.874-22a^�@- 1946578 fix segfault on case mismatch in config/record file���yi�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}��xi��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��wim�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��vi�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��ui�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value
fs�e�
f�"��i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���~i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���}i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��|i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���{i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition
-����-���i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��i�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)\��iS�Chris Leech <cleech@redhat.com> - 6.2.0.874-11\�@- 1649401, 1649413 iscsiuio updatesw��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-22a^�@- 1946578 fix segfault on case mismatch in config/record file���i�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement
���m���i��
im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���
i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���	i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session
s���s���i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session���i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition�g��i�g�Chris Leech <cleech@redhat.com> - 6.2.0.874-12][�- 1389071 handle newer ISCSI_ERR_NOP_TIMEDOUT code from the kernel
- 1624670 Login negotiation failed due to CHAP_N values do not match
          (rec update race condition)}��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at once
z-��z���i�)�Chris Leech <cleech@redhat.com> - 6.2.0.874-13]_�@- 1724579 iscsiuio update, allow processing requests in DHCP failure condition���i�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at oncei��im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value
���m���i��im�Chris Leech <cleech@redhat.com> - 6.2.0.874-19^��@- 1851250 fix libiscsi for libcrypto requirement�"��i�]�Chris Leech <cleech@redhat.com> - 6.2.0.874-18^���- 1809945 backport new CHAP modes for FIPS environments (SHA1 and SHA256 only, no SHA3 in OpenSSL-1.0.2)�N��i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-17]��@- 1518367 boot from iSCSI not establishing all sessions persistently
- 1667965 A manual restart of iscsi.service modifies records node.startup value���i��Chris Leech <cleech@redhat.com> - 6.2.0.874-16]�W�- upstream iscsiuio/configure.ac changes were breaking build hardening���i�5�Chris Leech <cleech@redhat.com> - 6.2.0.874-15]�@- 1396651 Update service files, support sd_notify instead of pid files, stop forkingw��i��Chris Leech <cleech@redhat.com> - 6.2.0.874-14]x�- 1598647 update boot gateway information during sync_session
z�s�z���$��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��#���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)w��"i��Chris Leech <cleech@redhat.com> - 6.2.0.874-22a^�@- 1946578 fix segfault on case mismatch in config/record file���!i�1�Chris Leech <cleech@redhat.com> - 6.2.0.874-21a�- 1989972 set proper attr in rpm db for lockfiles, fixes rpm verificiation warning}�� i��Chris Leech <cleech@redhat.com> - 6.2.0.874-20_ts@- 1881245 iscsiadm regression when discovering many targets at once
�/����)��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��(�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��'��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��&���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��%��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��.��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���-��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��,�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���+��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��*�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���4��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��3�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���2��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��1�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��0��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��/���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��8���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��7��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��6���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��5�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��>�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���=��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��<�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���;��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��:�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��9��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��C�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��B��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��A���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��@��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��?���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��I��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��H���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��G�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���F��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��E�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���D��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���L��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��K���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��J��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����Q��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��P�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��O��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��N���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��M��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��V��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���U��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��T�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���S��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��R�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���\��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��[�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���Z��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��Y�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��X��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��W���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��`���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��_��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��^���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��]�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)

e�r+��V��:��eD�W�
68ad96ff2728b35a2bfef5e46685a550d379ee6937f9081450a2c2f4c5e5c68cD�V�
562577dc40b07d4f6bfc5f0a837b2a0772968b369b1e30f1b6c11338772ecc1aD�U�
0daf2f065c20c572dbd4c2cd864cef8c197f640a926ce017c7343205b4e5e77dD�T�
9f2c5064a36e0190d1fb7f175cee62952c7e32951856a1ec5c9a427f2148aac2D�S�
df41fca55a3d1bff5343ac8fd47f2dabaf9e5da86bb0851f46af715e74c7cd59D�R�
eeff2dd2126e05da5903de0991d891313049be87f35dda8f67c383779761163fD�Q�
829050a62694fea5287076cdabeec66b15fe994809fcdd5931ebb992d47fecd4D�P�
dd6a74f8a692f2fe556164b50fc2c03bcb46f1e09f4aa5d99bc036cfaf80970fD�O�
7454f4ffa83154415c00c37d9cb1e5e253feeb7dd34081b445318d2340ae4e42D�N�
a7388c34d0bff23da18ea8026b4ad61a7789dc2606148be90e9c8b6440e41fbdD�M�
f6017656fae735dfc5831c4b635cb2dda2cae8615a1d0a4b66898f7a6b9f168bD�L�
bbd3efd923fc7315be5c5ab97b3a2459859dcca70068d448ba1d7a8aca4b9af0D�K�
6d01edd55d9f52f8ba1366e53274676bc33d48854b4465e49a15f474ddd0672f
'���{��f�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���e��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��d�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���c��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��b�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��a��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��k�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��j��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��i���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��h��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��g���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��q��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��p���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��o�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���n��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��m�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���l��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���t��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��s���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��r��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����y��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��x�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��w��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��v���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��u��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��~��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���}��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��|�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���{��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��z�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���
��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��
�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��	��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1����]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1����]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$�����+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q�����Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^����5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����!��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t�� �i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��&��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���%��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��$�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���#��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��"�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���,��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��+�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���*��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��)�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��(��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��'���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��0���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��/��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��.���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��-�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��6�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���5��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��4�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���3��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��2�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��1��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��;�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��:��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��9���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��8��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��7���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��A��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��@���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��?�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���>��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��=�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���<��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���D��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��C���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��B��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021bR5RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������ρ�nЁ�tс�zҁ�Ӂ�ԁ�
Ձ�ց�ׁ�؁�$ف�)ځ�.ہ�4܁�8݁�>ށ�C߁�I�L၄Q⁄Vい\䁄`恄f灄k聄q遄tꁄy끄~쁅큅���!�&�,���0���6���;���A���D���I���N���T���X���^��c��i��l��q��v��|����	��
������
����$��(��.��3��9��<��A��F��L��P��V��[��a��d��i��n��t ��x!��~"��#��	$��%��&��'��(�� )��&*��++��1,��4-��9.��>/��D0��H1��N2��S3��Y4��\
�/����I��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��H�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��G��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��F���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��E��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��N��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���M��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��L�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���K��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��J�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���T��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��S�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���R��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��Q�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��P��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��O���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��X���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��W��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��V���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��U�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��^�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���]��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��\�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���[��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��Z�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��Y��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��c�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��b��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��a���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��`��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��_���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)

e�r+��V��:��eD�d�
1316ac625663f9009c64a89e399d60b4191a5bea7e69797e85132da3ccbcbc77D�c�
a714e0889c00122a44ccbbd66032e67123e1f75d8cdad594e32de4c09400de94D�b�
60e92e4b5eccd578699334e15aeedbd39648619e8c4fcfdafec19e48fe080697D�a�
c5658a365bac1d6a010849f23983b9904b689b2d9191ee2bb6e12c828ec3855dD�`�
973367a3a9c98b25bdcff626cce24fd23fe78725e3f446889ec5a9091fc9c005D�_�
21ed5458a8abe02695e7c68bd4c068debb35056a454d12b095dcc9c2dd435449D�^�
236b16f4eff9a720f06ea780d58be74598f1326a04d143dea2ea6a3bf5dfb061D�]�
467ea07622b7bd1dc0694405f23e3047a904f677d60e58b4778fc8e889c2d224D�\�
a746cbe3d7985ed9de3d8ea2565a0ba9d0e55c9e16d298d608b40797a31b231bD�[�
4bf12266defcaeaaa70a5bbe431d815b7c435f5f95d2be12d8be7de214533e53D�Z�
0fa3ba7dae428c14500eba9a62de5fd03fb07234b8db1fea572d45fa78f0e0d7D�Y�
4a764611d924b3be2baab6d6ffd5fc562fe6a7c2c08cede4d58bb7259f7a0f35D�X�
fe20198b1c59cd2bd81f50412b770ffdbe657e59f816450e2235e0863704f4d5
H`�O��H�1��i��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��h���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��g�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���f��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��e�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���d��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���l��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��k���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��j��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����q��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��p�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��o��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��n���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��m��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��v��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���u��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��t�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���s��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��r�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���|��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��{�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���z��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��y�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��x��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��w���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��~���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��}�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��
��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��	���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1����]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1����]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��
�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$�����+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q�����Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^����5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/������5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�����+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���$��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��#�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���"��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��!�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T�� ��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��(���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��'��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��&���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��%�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��.�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���-��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��,�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���+��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��*�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��)��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��3�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��2��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��1���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��0��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��/���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��9��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��8���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��7�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���6��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��5�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���4��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���<��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��;���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��:��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����A��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��@�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��?��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��>���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��=��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��F��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���E��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��D�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���C��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��B�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���L��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��K�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���J��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��I�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��H��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��G���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��P���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��O��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��N���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��M�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��V�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���U��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��T�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���S��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��R�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��Q��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��[�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��Z��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��Y���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��X��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��W���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��a��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��`���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��_�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���^��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��]�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���\��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���d��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��c���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��b��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021

e�r+��V��:��eD�q�
ed293f56a8fa1ff864e007c158a2833d672efa0618a2cd57b24f8ee570b7df80D�p�
f9157874165a2f0bfd45d4225d6b6665f3447d99d8b0b7c31b884b462c45218eD�o�
3f3a9c60625ad194ae3406fcef007e24a583db933f244ad66404e2ce22e8628bD�n�
4214383e3e5d362039f4752421a5c4dd66c7a5aad772859a41684a0b984c5373D�m�
b91c19d3211778e075a890f5366a6f8e279f0f8516238accd9f976e88ae5d259D�l�
203db2e870a8753e2c1ba5897367c0822ee2a5c79b866fa6486effebd9f23b96D�k�
c21af136e37b18345d2d844866515fe9c44bedd736b4e98701ea2e6a2210c5a4D�j�
e26a698ca51f4049464d83df1c17062a826cf136c188c2d3994ed01f90974ab6D�i�
55b8fbe53a3211935d82bafb555f9585fbe02d4aad743ea7bfe9b68c31fff322D�h�
7046aa1eabc63c20c57732ab2750fd10c21bc29fbb4198fbd9497b0323bb525dD�g�
71ab07234942e8c84134be2b225f1e3f417e7974f4dcf6a080e9820b68b1b81cD�f�
247fc0e92238ee99057179d386718ac73601d9dcbbf86ef80e98ec27d4c7d86fD�e�
3820c04e5244db590096c735cfebaf9c275d7ef5d644f71712940bd565f671e7
�/����i��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��h�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��g��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��f���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��e��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��n��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���m��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��l�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���k��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��j�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���t��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��s�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���r��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��q�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��p��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��o���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��x���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��w��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��v���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��u�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��~�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���}��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��|�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���{��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��z�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��y��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1����]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��	��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$�����+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q�����Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��
��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/������5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��
��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�����+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F�� ���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��&�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���%��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��$�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���#��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��"�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��!��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��+�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��*��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��)���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��(��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��'���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��1��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��0���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��/�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���.��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��-�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���,��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���4��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��3���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��2��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����9��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��8�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��7��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��6���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��5��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��>��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���=��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��<�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���;��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��:�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���D��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��C�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���B��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��A�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��@��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��?���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��H���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��G��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��F���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��E�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��N�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���M��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��L�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���K��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��J�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��I��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��S�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��R��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��Q���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��P��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��O���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��Y��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��X���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��W�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���V��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��U�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���T��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���\��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��[���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��Z��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����a��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��`�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��_��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��^���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��]��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��f��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���e��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��d�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���c��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��b�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)

e�r+��V��:��eD�~�
cc95d52dd6acca1790e3c4f0dd8c26d939c93423de333d2066dece7bf767d545D�}�
22bfec4ae12f95ec0baa30ad642504987294442f2a28150fd5c850b8aeb04373D�|�
5e65bcb053440eb744a0b29be0f36cc5c82a7fab303e26ad6ee2a714bfd4651cD�{�
ab9a79dcba43eba518e5c0bd8261fae155c1951f0d9f9de1194a57e26a1c43f4D�z�
9a949108d90656bc8587b16aed99265931bfd33e4912eebc815b4acd99d709f0D�y�
e6ffa74bab49f49dde242d6ce151c85a071ed9f55bbfe61e19f182d53a82496cD�x�
081e9334981d1b4b5c7b0096cade8b94d105829885494e80e9e2ca16d37b30a4D�w�
544b35d1b0c600d66cc166c5f116fe849ac376a65105997c84d89296afb22861D�v�
48b1742bdd262f815457ccce6a8412a9c65dc9affb811fc52a31da14b7fe7f4eD�u�
740cba8784afe4330523ae1c3ed41bce93c5537dad8f467cf1fdc17ea21f53e1D�t�
ffd9abc7bf1c18a5121be12799691f3e50e09ec00e67de327db03a1cf7a29d6cD�s�
9653063ff86adaa3cf63420a5d68c5ebb55e16a3bbe27a79314e37a1bf604fdfD�r�
bb99b24bb6932637a09babfa34970f02619096864977bef0bf48a0e701ea428a
35\�D�3���l��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��k�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���j��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��i�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��h��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��g���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��p���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��o��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��n���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��m�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��v�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���u��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��t�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���s��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��r�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��q��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��{�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��z��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��y���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��x��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��w���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1����]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���~��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��}�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���|��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$�����+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q�����Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^����5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����	��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���
��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��
�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��#�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��"��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��!���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1�� ��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��)��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��(���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��'�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���&��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��%�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���$��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���,��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��+���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��*��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����1��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��0�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��/��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��.���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��-��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��6��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���5��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��4�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���3��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��2�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���<��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��;�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���:��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��9�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��8��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��7���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��@���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��?��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��>���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��=�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��F�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���E��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��D�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���C��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��B�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��A��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��K�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��J��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��I���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��H��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��G���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��Q��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��P���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��O�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���N��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��M�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���L��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���T��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��S���Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��R��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/����Y��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��X�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��W��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��V���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��U��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(��^��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package���]��+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){��\�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���[��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��Z�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3���d��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��c�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���b��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��a�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��`��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��_���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F��h���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��g��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��f���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��e�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)

e�r+��V��:��eD��
fde70f28b5a0ce727403a12e9a6a39a8f953d1975000b7be4be8c5434c4d3556D�
�
830680293bf892ad9b57630cd1fd50d4415343677c361c32b8b849c399daeb14D�	�
c38c420b6dbc3c61cd71784ca87f3a88f4a61d461e77b66508742c89d1d7e1fdD��
ec2503de79ebe13134bfc568d71d9a2c99d9f6d109eb2f80a8198fb2e331bb9fD��
a2e99881f1afb105ba6355f4eef86e839d3ccf60d9543490c748c71e96cb2256D��
c017fccf387f4e86a1ff26de3d85c015ae1bdfc53bf1e30acf131d4aa4f5011fD��
83e709af69a954f17415b836c06c639e57234896cfbc5a9d849530590fd960efD��
d512882b1e6a2e0854dd99d20a3bdcbbfa71dd8002a9647e11460a803a49a486D��
f563d696d882905f6633fed7a3fe77d0876a29170b14175715b53e21a84887b1D��
591c8ad60cbb62f0c95441ec820072142ae5392cedd248fc81f71eb1d8a699fbD��
13c3f114dacf10594cbfa9365b4107f3ea7e4dbc3dd4f7d0362049b983ea8f56D��
33293b1fe8b0638219c4a88ea8d7217eb55c5b4e227d7945c14a9121db97e4d1D��
9fc87325642e8e0a01c8a46507e124f43ad0d86942ddd1f2e5d1722588e7359c
'���{��n�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���m��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��l�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���k��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��j�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��i��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t��s�iJan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��r��'Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��q��Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��p��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��o���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��y��]Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��x��Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��w�	oAugusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���v��5Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��u�[Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���t��5Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
$G$���|��+Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q��{��Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)�^��z��5Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
�/������5Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���iJan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��~��Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��}��OJan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package
 ��pM �(����OJan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�����+Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){���	oAugusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)
35\�D�3�����5Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���
��5Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��	�iJan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
������F����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����OJan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��
�	oAugusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{���	oAugusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���iJan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
\.x��\t���iJan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1����]Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M����Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
H`�O��H�1��!��]Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M�� ��Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){���	oAugusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)�����5Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)
�`�T����&Y�)Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��%Y�Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���$Y�?Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��#Y�Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274�^��"��5Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021
u%�0�u���,[�OHonggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���+[�CHonggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��*[�;Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��)[mHonggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��([�;Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��'Y�UJarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296
��&2����0�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��/�	�UAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��.�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���-�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��4�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��3{�UJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���2�	�!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���1�	�!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������6��f8��l9��p:��v;��{<��=��>��	?��@��A��B��C��#D��)E��,F��1G��6H��<I��@J��FK��KL��QM��TN��YO��^P��dQ��hS��nT��sU��yV��|W��X��Y��Z��[��\��]��!^��&_��,`��0a��4c��6d��:e��>f��@g��Eh��Gi��Ij��Nk��Ql��Sm��Wn��[o��^p��bq��fr��jt��mu��rv��uw��xx��}y��z��{��	|��
}��~����������#���'���+���.���3���6���9���=���@���D���G���J���N���Q���T���V���Z���]���_���a���d���g���i���m���p���r���t
����:��6�wAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��5�yAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
��&2����:�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��9�	�UAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��8�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���7�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��>�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��={�UJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���<�	�!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���;�	�!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��@�wAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��?�yAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
r/;�r���E�	�!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���D�	�!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���C�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��B�	�UAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��A�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665
"T"�-��G�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��F{�UJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
����:��I�wAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��H�yAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
WKz��W���N�	�!	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���M�	�	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��L�	�U	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��K�	�	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665�0��J�cAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�f���-��Q�	�Q	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��P{�U	Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���O�	�!	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665
����:��S�w	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��R�y	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
:K��:�:��W�	�k
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��V�	�
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���U{�

Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690�0��T�c	Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�Aa���:��[�	�k
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��Z�	�+
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��Y�	�-
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903�:��X�	�k
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903
`��`���^�7
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��]�Y
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963���\�	�
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903
0x��0�:��b�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903�:��a�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��`�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���_{�
Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690
q A�q���f�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903�:��e�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��d�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��c�	�-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903
�q���:��j�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��i�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081���h�7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��g�YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963

e�r+��V��:��eD��
e6bd9014923fd5db4edcfc633f2800d2d9eda0bd0b416f22bfe615c9c8abf000D��
9c883d2d32a12c3f672b6e40119adf476d62ae4bacb40ce0a88634b864d19701D��
bbc54477e470a694a3032e391624ba33b9753f81d283b60a19dca7c1c52b35c4D��
efd5c472cec8f06ea30eaa8cef287b401fcdf4b0a30e6b2531888ea03f1f9549D��
ef07f2b266e0d616931d672568f5c39d7789f51adb7332df77df77b19e7882a4D��
e9fa16cde65d0d202fe417fb0585d64a534cd25d39e715a1fb32a75e6620e475D��
dfee136c3e1717a2003cc2ab23a101250a304de173d85ce35e611d5481bc08efD��
e43708faf11f54060a6b8d9ee565f6c43fdf9b7c1d5537257443dcfe58320462D��
880ff35253177a36cd35ad8763cde4cb91281f1e945561e8856f21de6d706dbbD��
bea9e14dd6778afded7cb4e5d5a5f3fa3b0fefe9bafbf913cd21dd494fc8a966D��
2ef14c819a2c602bcce68d1f84b1e8143bb560f7737ba254e3b07d9c4302af67D�
�
c5741b7e80a2b537f19292e12c2a7fc0a403f25be8a24c117ecec3e7b88a182aD��
bc12fc1a4e756efa8689dfeed9925dee6bea368e4e5e865c6972641a3d1f894d
B�+B�d��m�	�?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��l�	�YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081���k�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081
4A���4���r�7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��q�YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��p�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��o�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081�:��n�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081
cA�c���u�	�+
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081�:��t�	�k
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��s�	�k
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081
�Ja��:��x�	�k
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081�d��w�	�?
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��v�	�Y
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081
gA���g���}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���|�7
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��{�Y
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��z�	�k
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��y�	�k
Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081
�,m���r���	�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:���	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809�:���	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��~�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809
�AR���:���	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:���	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809�j���	�KAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:���	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809
��]���:��	�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O���	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024����'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
�AJ���j��
�	�KAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:���	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809�r���	�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��
�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809
�A�k�����1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735����'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�:���	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:���	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809
�6x��"���	�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9���	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735����	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735
ZBPqZ����'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
dX���9���	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735����	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735����1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735
�Y����Z��#�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��"�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��!�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"�� �	�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
��+m��9��'�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��&�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��%�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���$�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
�Y����Z��+�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��*�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��)�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��(�	�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
0��0�_��.�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��-�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���,�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
aB��a�9��3�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��2�	�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��1�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��0�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��/�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735
/���6�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��5�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��4�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
��G��"��9�	�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�_��8�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��7�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
ZBPqZ���=�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��<�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��;�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��:�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��@�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��?�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��>�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
�>/���9��D�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��C�	�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�
��B�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��A�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
/���G�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��F�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��E�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
q�Gq�Q��J�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��I�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��H�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
>/q�m��N�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��M�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�
��L�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��K�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�!
��P��Q�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���P�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��O�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��T�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��S�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��R�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���V�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
ZBPqZ���Z�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��Y�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��X�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��W�	�iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��]�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��\�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��[�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��^�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
~p~�m��a�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735���`�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�!
��P��d�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���c�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��b�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��g�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��f�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��e�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��h�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
gO]~g���m�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��l�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��k�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�,��j�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383

e�r+��V��:��eD�%�
339e96b8a52bc311433f3ed0ce535dd62f4808232fb75bf0eaf2b4f0cd82f726D�$�
04a4cfccd1c263a0f3de420c2200f1e9d5485e3f5734a0c08f2c01c3be01b144D�#�
230daa889ac4a0bede450aeb0258b6c9db6746486271506eb2037b877bbce588D�"�
40afa7c237d384eb15a196fb651eecd913e28b743ba7734e05849c45323ff597D�!�
a58a0b8408d78f804c67f0633541c402b9020555a4986e3fde782bf8544f5f06D� �
e4b6df13c59f0686bb12ef575deeaeb4ba581e4d0dd1d2595bf0d7ed9ad2e65fD��
e8b67a41970fcee6a5eee5fa362a4648b27e47a04ae221fba0de5f5bc2c64e37D��
0ec52bd7a95347c5c330df35b5067f28cdd262383f84e176598367ad11c98a27D��
4e6c5997489d089dba27aefe96602ec7208298c2e48067c3ef634fd5a6da5f0dD��
7a53443e34cc7fe98a4371e9025389c86bc36e38ca424a98b85b4224bbcac1c8D��
f261f44a0301705f4e2b2a56556cdb340ae2487517c8ca12013301b3a983bd58D��
bd48e9a406f3a105ecd028149cc4b8df348dc33f19ec4151daa74115a22b11feD��
7a967bdf7823255236452e9a45977d7f6c253c9f3c88f18a80ae1ceb606319fd
q�Gq�Q��p�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��o�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��n�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��r�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��q�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��t�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���s�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
0��0�_��w�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��v�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���u�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
Y*hY�
��z�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��y�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��x�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��|�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���{�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
 	7 ����'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�M��~�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��}�gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
q�Gq�Q���	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_���AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
���Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,���[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�	7��_��	�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�M���Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
Y*hY�
���Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��
�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,���[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M���Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
)�)�_���AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�n���_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
Y*hY�
���Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q���	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,���[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M���Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
����Q���	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�n���_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
/>/�
���Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��!�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383��� �Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��$�	�CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��#�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��"�gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��%�_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
�d��Q��'�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529���&�1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
/>/�
��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��(�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��+�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���*�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��.�	�CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��-�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��,�gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��/�_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
dd���0�1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
�p��,��2�[ Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���1� Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��5�	�C Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��4� Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��3�g Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��6�_ Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���8�	�} Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���7�1 Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
F?F�t��:�k Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��9�	�o Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�p��,��<�[!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���;�!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��?�	�C!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��>�!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��=�g!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��@�_!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���B�	�}!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���A�1!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
t?Ft�M��E�"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�t��D�k!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��C�	�o!Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�f��F�	�C"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191
���n��G�_"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���I�	�}"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���H�1"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���Lq�A"Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��K�k"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��J�	�o"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���N�3"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��M�M"Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
C.C�f��P�	�C#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��O�#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695
���n��Q�_#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���S�	�}#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���R�1#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458bR	RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{���������������������z���|���������������	������������������������������!���$���%���'���)���+���.���/���0���2���5���6���8���:���<���?���@���B���E���F�GÁ�Iā�LŁ�NƁ�Pǁ�Qȁ�Sʁ�Vˁ�X́�Ź�]΁�_ρ�bЁ�dс�gҁ�iӁ�lՁ�nց�qׁ�sہ�v܁�x݁�{ށ�}⁌が䁌偌
恌灌职遌ꁌ끌쁌"큌%'+�/�2�6�:�>���A���F���I���L���Q���U���Y���]���a���e���j��n��s��w��{��������

)?F)���Vq�A#Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��U�k#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��T�	�o#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���X�3#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��W�M#Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
\d\���Z�	�}$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���Y�1$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���]q�A$Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��\�k$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��[�	�o$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���_�3$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��^�M$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��b�	�?$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��a�	�g$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��`�
$Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
\d\���d�	�}%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���c�1%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���gq�A%Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��f�k%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��e�	�o%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���i�3%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��h�M%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��l�	�?%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��k�	�g%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��j�
%Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630

e�r+��V��:��eD�2�
fec7ec65b7db46bf359cb0e984f68dfa1d760320e274306052a510c5d288ed1aD�1�
55baaa197af05067cb206423655392e7b0a52e3ee9144a1fde30de40eb599d5aD�0�
3f7b46638efdb99c13fe45aa513af69cad728c4ffca568196d21fed273ba7f97D�/�
c50443dc25797f6103ba04c6929511b3b0ddfbc2d0ba5c3b956094079715ca98D�.�
5aa6c18760291c5e22fa5fd2f7960f92c9547071b62e9766ae30bbe111f5e714D�-�
824340802392135f9a064de630acd55a619c7b8240b3aa7ae13f664637c0f023D�,�
2bf9825999c7f3930c1032ad0b77786e49c18ee2996e142adc2d28d3b61709edD�+�
3278f8dbfd0afa8e751afeffde943cb66ed2c2a57495f39ce66a95c3bf852edeD�*�
542eec90efcf10ac7a2c505eed834595826e5ac255df60ccfed65594368d644cD�)�
3a95d1dbf8e717a5e29b32daea78a11867867d80343e09ffc29f6c9dedd70720D�(�
4261abb467f2744c5f43003c5dff6813e00cd4a52c72325f233dddfa3008e983D�'�
dc69ec026bc1c217d4ab702f2ab40cc5fe01355f2ba29351877fb7a58751e541D�&�
0ee22c6eb0445485cec58e7d73154100a461cce8a0bf2a9e3b8350e6ad3d073e
9�9���n�3&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��m�M&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��q�?&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��p�	�g&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��o�
&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��s�
�&Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc؁O��r�	�&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926�eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��v�g&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��u�	�&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��t�	�e&Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr�
9�9���x�3'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��w�M'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��{�?'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��z�	�g'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��y�
'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��}�
�'Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc߁O��|�	�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926�eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2���g'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D���	�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��~�	�e'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr�
��&2�����	�(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o���	�U(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L���	�(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665����	�(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-���	�Q(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��{�U(Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665����	�!(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665����	�!(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��
�w(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��	�y(Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
��&2�����	�)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��
�	�U)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L���	�)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665����	�)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-���	�Q)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��{�U)Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665����	�!)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665����	�!)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:���w)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{���y)Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
r/;�r����	�!*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665����	�!*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665����	�*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o���	�U*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L���	�*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665
"T"�-���	�Q*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��{�U*Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
����:���w*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{���y*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
WKz��W���"�	�!+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���!�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o�� �	�U+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L���	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665�0���c*Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�f���-��%�	�Q+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��${�U+Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���#�	�!+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665
����:��'�w+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��&�y+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
:K��:�:��+�	�k,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��*�	�,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���){�
,Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690�0��(�c+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�Aa���:��/�	�k,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��.�	�+,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��-�	�-,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903�:��,�	�k,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903
`��`���2�7,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��1�Y,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963���0�	�,Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903
0x��0�:��6�	�k-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903�:��5�	�k-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��4�	�-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���3{�
-Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690
q A�q���:�	�-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903�:��9�	�k-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��8�	�+-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��7�	�--Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903
�q���:��>�	�k.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��=�	�k.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081���<�7-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��;�Y-Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963
B�+B�d��A�	�?.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��@�	�Y.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081���?�	�+.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081
4A���4���F�7.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��E�Y.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��D�	�k.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��C�	�k.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081�:��B�	�k.Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081
cA�c���I�	�+/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081�:��H�	�k/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��G�	�k/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081
�Ja��:��L�	�k/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081�d��K�	�?/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��J�	�Y/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081
gA���g���Q�0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���P�7/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��O�Y/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��N�	�k/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��M�	�k/Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081
�,m���r��U�	�[0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��T�	�k0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809�:��S�	�k0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��R�	�0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809
�AR���:��Y�	�k0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��X�	�k0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809�j��W�	�K0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��V�	�k0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809
��]���:��]�	�k1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��\�	�1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809���[�1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���Z�'0Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
�AJ���j��a�	�K1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��`�	�k1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809�r��_�	�[1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��^�	�k1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809
�A�k����e�12Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735���d�'1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�:��c�	�k1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��b�	�k1Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809
�6x��"��j�	�;2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��i�	�i2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��h�	�i2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��g�	�i2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���f�	�2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735
ZBPqZ���n�'2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��m�	�+2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��l�	�Q2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��k�	�i2Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735

e�r+��V��:��eD�?�
58f0137ac65f40eaa3ff281ba91bb68d78f71041a8ab7a9d08578d3ba06cc792D�>�
054e750bc6d0c6d60f45a6fb60b3bc08bf7902623d269b106db0969e6a028abbD�=�
56e522d6f6a849ac7522778022a72719f7d1b252990db7cf3bed6b06f753b096D�<�
4f005504d21283f588231c70d4fdfecc7393a4b60fa72b1498f6aba2985e1d0bD�;�
46de5f99129eb78da5ff4975f706a21b2b68e99ac0a5aba0c19ea1b67daa44c9D�:�
3831827b92fb33007bdf9bb579f1947d04221cf988fdfd40615012e00b9500a3D�9�
89218a788c99c93aaa563b09b3f7b71ed061025bda32116e0f5ad78d034e5d94D�8�
086c33b98ecb7adbc59297b29fb3fc219e4beda421611ef17471f6cc8e0a9b6fD�7�
98887262492c65c2f5769777ce9b0419c04f0f6dbf264e6ea58451ec3eb69bd6D�6�
6b024502ff2b69fb4876076ce49575439e5b94cae11c486cd7c59b464106d825D�5�
e648ee67624dc2ef09455b433a6f9e43ed3a673d6a32275422c2cd824c5d2e02D�4�
b62cc8d7fa7e89475ac858e1c622dd266841dcd23fd2841b274d435990854ddeD�3�
3c68468d65b23e5a50cce88db5e3d11674fb488c8e0bf375200f6f529c438a20
dX���9��s�	�i3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��r�	�i3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��q�	�i3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���p�	�3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735���o�13Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735
�Y����Z��w�	�+3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��v�	�Q3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��u�	�i3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��t�	�;3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
��+m��9��{�	�i4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��z�	�i4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��y�	�i4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���x�'3Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
�Y����Z���	�+4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��~�	�Q4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��}�	�i4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��|�	�;4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
0��0�_���A4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	�4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809����'4Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
aB��a�9���	�i5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"���	�;5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9���	�i5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�i5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�i5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735
/���
�'5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��	�	�+5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
��G��"��
�	�;6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�_���A5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	�5Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
ZBPqZ����'6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�i6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q���	�6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_���A6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	�6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
�>/���9���	�i7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"���	�;7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�
���6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q6Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
/����'7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
q�Gq�Q���	�7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_���A7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	�7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
>/q�m��"�	�Q8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��!�	�i8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�
�� �7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q7Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�!
��P��%�	�8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���$�'8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��#�	�+8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��(�	�q8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��'�	�8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��&�A8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���*�8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��)�8Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
ZBPqZ���.�'9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��-�	�+9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��,�	�Q9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��+�	�i9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��1�	�9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��0�A9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��/�	�9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��3�9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��2�	�q9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
~p~�m��5�	�Q:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735���4�9Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�!
��P��8�	�:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���7�':Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��6�	�+:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��;�	�q:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��:�	�:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��9�A:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���=�:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��<�:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
gO]~g���A�';Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��@�	�+;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��?�	�Q;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�,��>�[:Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383
q�Gq�Q��D�	�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��C�A;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��B�	�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��F�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��E�	�q;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��H�[;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���G�;Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
0��0�_��K�A<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��J�	�<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���I�'<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
Y*hY�
��N�<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��M�	�q<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��L�	�<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��P�[<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���O�<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
 	7 ���S�'=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�M��R�<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��Q�g<Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
q�Gq�Q��V�	�=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��U�A=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��T�	�=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��X�=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��W�	�q=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��Z�[=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���Y�=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�	7��_��]�A>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�M��\�=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��[�g=Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
Y*hY�
��`�>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��_�	�q>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��^�	�>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��b�[>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���a�>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��e�	�C>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��d�>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��c�g>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
)�)�_��g�A?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�n��f�_>Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
Y*hY�
��j�?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��i�	�q?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��h�	�?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��l�[?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���k�?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��o�	�C?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��n�?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��m�g?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
����Q��q�	�@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�n��p�_?Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111

e�r+��V��:��eD�L�
6982c05564f03f4db81df93b42eeb29b22e1c82675c42eaf1077f90bf1847c7aD�K�
2c301bfa4814d7a20e642e7fec605dacbeef49885fa13f382cd7c85e03e827dfD�J�
5c3e30fe5f331dff8d929397fe55cd6da4c97325fd1c26f6c51b2567a15414e5D�I�
556772de85dcdb8d7bf429e3cca280e03ffdcdd1ee99bff14fef8b64b6c102a5D�H�
d76bb9d2f1d62a9fed452572a310fc87fca445e6330ebfd58bbedafcd6dc171bD�G�
6c8d7f6e3e1e16170883c18ddcbe50ef6eb86c9a8222fb7fe4f75b91670adc57D�F�
be2cf27ae12e4ffcf8e8d79ef82ec36c4c7d67299d1b3bf9e1ceb0325e08de8bD�E�
0150773cdef45797820d481008b2e7297bc32060b190f3493a27354e52ffb8baD�D�
f676e5412e87446863b10f16b82807f5a4324279353554edb7aeb3cfa9143061D�C�
a33d9ecd05eaa2248f7384075877e78357534a302081fc03a9b5f0dcc71df48fD�B�
06d6c8fc8acd6bccaac9dcec5bc4fadf0a2b38f66fac335962e0352a7d2bf9bfD�A�
60647855ba6fb280673a3654ce82ab9610ce8bcdca3ea825ad3ea4023b200fdcD�@�
ea3f0bb12ce7b5c386ca301b0f16f7dddafa4ed5f63b2ab2cd2fe297d066f387
/>/�
��s�@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��r�	�q@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��u�[@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���t�@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��x�	�C@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��w�@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��v�g@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��y�_@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
�d��Q��{�	�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529���z�1@Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
/>/�
��}�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��|�	�qAAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,���[AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���~�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502bRuRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������
������
������"��%��(��*��.��1��3��5��8��;��=��A��D��F��H��K��N ��P!��S"��V#��X$��Z%��]&��`'��b(��e)��g*��j+��l,��o-��q/��s0��u1��x2��y3��{4��}5��7��8��9��:��;��	<��
=��>��?��@��A��B��C��D��E��F��G�� H��"I��$J��%K��'L��*M��,N��.O��1P��3Q��6R��8S��;T��=U��@V��BW��EX��G\��J]��L^��O_��Qc��Td��Xe��\f��^g��bh��fi��hj��mk��ol��qm��vo��yp��{q��r��s��t��

L	7L�f���	�CAAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M���AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���gAAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n���_AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
dd����1AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
�p��,���[BAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383����BAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��	�	�CBAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M���BAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���gBAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��
�_BAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\����	�}BAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1BAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
F?F�t���kBAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��
�	�oBAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�p��,���[CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383����CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�CCAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M���CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���gCAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n���_CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\����	�}CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1CAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
t?Ft�M���DAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�t���kCAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<���	�oCAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�f���	�CDAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191
���n���_DAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\����	�}DAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1DAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)��� q�ADJiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t���kDAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<���	�oDAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���"�3DAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��!�MDAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
C.C�f��$�	�CEAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��#�EAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695
���n��%�_EAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���'�	�}EAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���&�1EAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���*q�AEJiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��)�kEAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��(�	�oEAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���,�3EAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��+�MEAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
\d\���.�	�}FAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���-�1FAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���1q�AFJiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��0�kFAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��/�	�oFAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���3�3FAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��2�MFAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��6�	�?FAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��5�	�gFAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��4�
FAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
\d\���8�	�}GAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���7�1GAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���;q�AGJiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��:�kGAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��9�	�oGAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���=�3GAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��<�MGAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��@�	�?GAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��?�	�gGAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��>�
GAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
9�9���B�3HAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��A�MHAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��E�?HAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��D�	�gHAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��C�
HAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��G�
�HThomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direcY�O��F�	�HAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926[eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��J�gHAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��I�	�HAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��H�	�eHAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstrZ
9�9���L�3IAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��K�MIAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��O�?IAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��N�	�gIAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��M�
IAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��Q�
�IThomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc`�O��P�	�IAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926beam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��T�gIAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��S�	�IAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��R�	�eIAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstra
��&2����X�	�JAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��W�	�UJAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��V�	�JAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���U�	�JAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��\�	�QJAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��[{�UJJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���Z�	�!JAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���Y�	�!JAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��^�wJAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��]�yJAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
��&2����b�	�KAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��a�	�UKAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��`�	�KAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���_�	�KAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��f�	�QKAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��e{�UKJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���d�	�!KAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���c�	�!KAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��h�wKAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��g�yKAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
r/;�r���m�	�!LAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���l�	�!LAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���k�	�LAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��j�	�ULAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��i�	�LAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665
"T"�-��o�	�QLAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��n{�ULJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
����:��q�wLAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��p�yLAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
WKz��W���v�	�!MAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���u�	�MAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��t�	�UMAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��s�	�MAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665�0��r�cLAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062

e�r+��V��:��eD�Y�
e1931c2c08f74962ec1d742c785c518f1942b86d552b9e27d9cb776d4c555f8aD�X�
758d2c3a908dc2f48b1ab2c25ec323231a54e2b646281ebbd88192b61617775eD�W�
518082fd34ea1c14e44917a04af17aa6e3307369f369dbe369f0fdf4e5b8e1eaD�V�
5013f655f5321c66d30f6ab553d640e8a1df541105200e36eeae415ca903a7acD�U�
f97dd6a530e0dc37dde8d1e71e04e877196e4f36ac6754904cd6a5e8e0e4990fD�T�
9512843f182c5c1950953d11669afc9c97394a90e3b4ebda1834fab7b5a97d88D�S�
5001584535af6ba52a00d1913b2b5f60df1239116a2cbcff84db48a9359bd3a3D�R�
c6fc833a542f540c1edc0431e34f06b0cd121fc635294ae62ae5d48fab254ddfD�Q�
242b3c3eb9d45d48b5e607845d5fbc380afca79449f49cf9cd801ea4a95ef419D�P�
124b95517eeee9deb9fa4cef2707b16c5530d6c6f263462b2c3deb2f8811b3d8D�O�
917745f55091ed42757a3d445e0f98ebd8e84ff75ab716acbdd8f6e1c584a8fdD�N�
2e1ba328190cee6e94f98145224aec06902152d1cc3188f06c1ac84dc0887d0bD�M�
7a5f1f1bd0da49fe22b1022a7bf998826161eacca343e82125f1b036b9cdbdac
�f���-��y�	�QMAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��x{�UMJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���w�	�!MAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665
����:��{�wMAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��z�yMAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
:K��:�:���	�kNAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��~�	�NAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���}{�
NJiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690�0��|�cMAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�Aa���:���	�kNAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z���	�+NAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[���	�-NAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903�:���	�kNAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903
`��`����7NAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k���YNAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963����	�NAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903
0x��0�:��
�	�kOAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903�:��	�	�kOAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E���	�OAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���{�
OJiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690
q A�q����	�OAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903�:��
�	�kOAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z���	�+OAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[���	�-OAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903
�q���:���	�kPAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:���	�kPAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081����7OAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k���YOAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963
B�+B�d���	�?PAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1���	�YPAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081����	�+PAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081
4A���4����7PAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k���YPAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:���	�kPAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:���	�kPAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081�:���	�kPAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081
cA�c����	�+QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081�:���	�kQAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:���	�kQAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081
�Ja��:�� �	�kQAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081�d���	�?QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1���	�YQAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081
gA���g���%�RAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���$�7QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��#�YQAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��"�	�kQAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��!�	�kQAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081
�,m���r��)�	�[RAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��(�	�kRAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809�:��'�	�kRAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��&�	�RAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809
�AR���:��-�	�kRAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��,�	�kRAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809�j��+�	�KRAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��*�	�kRAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809
��]���:��1�	�kSAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��0�	�SAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809���/�SAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���.�'RAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
�AJ���j��5�	�KSAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��4�	�kSAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809�r��3�	�[SAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��2�	�kSAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809
�A�k����9�1TAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735���8�'SAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�:��7�	�kSAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��6�	�kSAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809
�6x��"��>�	�;TAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��=�	�iTAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��<�	�iTAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��;�	�iTAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���:�	�TAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735
ZBPqZ���B�'TAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��A�	�+TAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��@�	�QTAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��?�	�iTAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
dX���9��G�	�iUAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��F�	�iUAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��E�	�iUAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���D�	�UAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735���C�1UAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735
�Y����Z��K�	�+UAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��J�	�QUAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��I�	�iUAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��H�	�;UAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
��+m��9��O�	�iVAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��N�	�iVAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��M�	�iVAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���L�'UAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
�Y����Z��S�	�+VAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��R�	�QVAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��Q�	�iVAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��P�	�;VAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
0��0�_��V�AVAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��U�	�VAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���T�'VAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
aB��a�9��[�	�iWAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��Z�	�;WAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��Y�	�iWAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��X�	�iWAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��W�	�iWAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735
/���^�'WAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��]�	�+WAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��\�	�QWAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
��G��"��a�	�;XAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�_��`�AWAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��_�	�WAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
ZBPqZ���e�'XAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��d�	�+XAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��c�	�QXAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��b�	�iXAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��h�	�XAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��g�AXAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��f�	�XAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
�>/���9��l�	�iYAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��k�	�;YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�
��j�XAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��i�	�qXAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
/���o�'YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��n�	�+YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��m�	�QYAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
q�Gq�Q��r�	�YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��q�AYAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��p�	�YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
>/q�m��v�	�QZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��u�	�iZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�
��t�YAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��s�	�qYAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529

e�r+��V��:��eD�f�
dc1cfb04b799c30dca02faae2f75f5cc94d83b63b11cf8e7acb33ed1b252117fD�e�
2b1a27963b4d2d2d4589a7d96e361c8f4359cb51ad10f5e108215c381d491ba3D�d�
cb3ea59253d078a2c7a60ff6f6c3f55bf94679248c132be8e27c534245acd6c8D�c�
1ab3f90a7eed6a0e8f44c9833e1def98bdbceb194f37062e21cfb6fb030563e2D�b�
3b5a17995e4660d4c305944c4a13cd1bd8bdda18b9d69d13031b2b1044e1cd77D�a�
aa3730bd40f0c5b60ded75b15d9a0b7f845a26219a0a739f877d6d2ac7161c6fD�`�
0c8fb84a63da81ffc9727d465f04ac197820bce6473ad8ca5f2d241c6cdfb9a7D�_�
7de0016fd49560394d1c4f5584dd396e5b41989957702068ef31979934c299ddD�^�
f13d571f41792afa9d08465580b23f08ff7dd564e51f40e42a9b9f3a0ff77b62D�]�
1f0f6113c67eb17059e2588bc76ce4d1ce793113d638c89faf42684d92ac2c3eD�\�
6d23e0e03a7a536fe3cae17f34dc45960c361e2ee84b11158681f3db86dbb0b3D�[�
f0c9b7b923d47df8b92aa0c427d4754da9c2d22e9eb87e436c06305406998a3cD�Z�
96d0ea79b3da11f9b3d85598dae3187e501c54728cd8509492569f9dc2c1670f
�!
��P��y�	�ZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���x�'ZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��w�	�+ZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��|�	�qZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��{�	�ZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��z�AZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���~�ZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��}�ZAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
ZBPqZ����'[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�i[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q���	�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_���A[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
���[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
~p~�m��	�	�Q\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735����[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�!
��P���	�\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809����'\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��
�	�+\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=���	�q\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q���	�\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��
�A\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a����\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
���\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
gO]~g����']Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�,���[\Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383
q�Gq�Q���	�]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_���A]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	�]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
���]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,���[]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383����]Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
0��0�_���A^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	�^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809����'^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
Y*hY�
��"�^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��!�	�q^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q�� �	�^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������v��w��x��y��z�� {��%|��)}��-~��1��5���9���>���B���G���K���O���S���V���[���^���a���e���h���l���o���r���v���y���|���~������������	���������������������������"���$���'���*���,���.���1���4���6���9���;���>���@���C���E���G���I���L���M���O���Q���S���V���W���X���Z���]���^���`���b���d���g�hÁ�jā�mŁ�nƁ�oǁ�qȁ�tɁ�vˁ�x́�ý�{΁�~ρ�Ё�с�ҁ�Ӂ�
ԁ�Ձ�ց�ׁ�؁�ف�ځ�
�p��,��$�[^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���#�^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
 	7 ���'�'_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�M��&�^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��%�g^Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
q�Gq�Q��*�	�_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��)�A_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��(�	�_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��,�_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��+�	�q_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��.�[_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���-�_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�	7��_��1�A`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�M��0�_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��/�g_Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
Y*hY�
��4�`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��3�	�q`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��2�	�`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��6�[`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���5�`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��9�	�C`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��8�`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��7�g`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
)�)�_��;�AaAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�n��:�_`Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
Y*hY�
��>�aAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��=�	�qaAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��<�	�aAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��@�[aAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���?�aAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��C�	�CaAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��B�aAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��A�gaAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
����Q��E�	�bAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�n��D�_aAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
/>/�
��G�bAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��F�	�qbAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��I�[bAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���H�bAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��L�	�CbAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��K�bAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��J�gbAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��M�_bAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
�d��Q��O�	�cAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529���N�1bAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
/>/�
��Q�cAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��P�	�qcAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��S�[cAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���R�cAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��V�	�CcAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��U�cAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��T�gcAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��W�_cAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
dd���X�1cAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
�p��,��Z�[dAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���Y�dAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��]�	�CdAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��\�dAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��[�gdAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��^�_dAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���`�	�}dAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���_�1dAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
F?F�t��b�kdAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��a�	�odAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�p��,��d�[eAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���c�eAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��g�	�CeAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��f�eAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��e�geAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��h�_eAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���j�	�}eAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���i�1eAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
t?Ft�M��m�fAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�t��l�keAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��k�	�oeAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�f��n�	�CfAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191
���n��o�_fAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���q�	�}fAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���p�1fAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���tq�AfJiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��s�kfAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��r�	�ofAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���v�3fAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��u�MfAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577

e�r+��V��:��eD�s�
8fab540ec8ac058e28cb3e62a08c210f00ce22695ad5a2b0412d48e0f77c285aD�r�
2ff94d80fcae8e5f2ae6416eb0e955f4149e7639722b5426b2b8f12150cc14bbD�q�
313a86e45fc4b42084c618c11f233c1ab6950f5af7ce19f962ea3fd1020736ebD�p�
da4cd5b16857b9f434f773471d103d61dba9fbe99a3264cfce051444c342cf1bD�o�
009c4fd4d1a151a215ef1a31eb4f5b076e16ad5bd1c6bed249571dfdde69a686D�n�
bd09647e7e930afde068aa13eae3a3f7166bcf0d4918c52f525b47c511c7b692D�m�
030b52a92f3fd60b2df1b1fee6a964377bc4d80776dbdfcfae051132e0c3815cD�l�
811548ea9fa1b1fd4ba32a27977ce75a08bd90e1f90d50bbdfaabe36480c3f46D�k�
b7c575cffd422a15f77eaeb8f4a41cc6e965c486511f363df2d62887b7934eb0D�j�
66c5f4e48d6872789f81a04ef48fceb67a1705aadd369b0ccff804cb0eefeda9D�i�
a18aeb73905ede9c9bd2f5ab9736372813b7662678482ea5ad4990ce21b77ae9D�h�
985cd3c30e1357c60af6a5b4425c5d16eca3e6970da5871aca65ecca4c468cd1D�g�
1a73f880c24703aeacd0795c62a4ddd8fe4db2ca199a961180176c9713e3fdf2
C.C�f��x�	�CgAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��w�gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695
���n��y�_gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���{�	�}gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���z�1gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���~q�AgJiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��}�kgAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��|�	�ogAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9����3gAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���MgAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
\d\����	�}hAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1hAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���q�AhJiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t���khAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<���	�ohAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9����3hAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���MhAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��
�	�?hAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��	�	�ghAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E���
hAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
\d\����	�}iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���q�AiJiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t���kiAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��
�	�oiAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9����3iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���MiAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d���	�?iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x���	�giAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E���
iAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
9�9����3jAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���MjAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^���?jAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x���	�gjAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E���
jAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T���
�jThomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direcہO���	�jAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926�eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2���gjAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D���	�jAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7���	�ejAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr�
9�9��� �3kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���MkAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��#�?kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��"�	�gkAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��!�
kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��%�
�kThomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc�O��$�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926�eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��(�gkAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��'�	�kAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��&�	�ekAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr�
��&2����,�	�lAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��+�	�UlAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��*�	�lAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���)�	�lAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��0�	�QlAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��/{�UlJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���.�	�!lAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���-�	�!lAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��2�wlAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��1�ylAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
��&2����6�	�mAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��5�	�UmAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��4�	�mAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���3�	�mAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��:�	�QmAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��9{�UmJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���8�	�!mAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���7�	�!mAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��<�wmAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��;�ymAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
r/;�r���A�	�!nAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���@�	�!nAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���?�	�nAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��>�	�UnAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��=�	�nAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665
"T"�-��C�	�QnAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��B{�UnJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
����:��E�wnAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��D�ynAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
WKz��W���J�	�!oAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���I�	�oAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��H�	�UoAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��G�	�oAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665�0��F�cnAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�f���-��M�	�QoAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��L{�UoJiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���K�	�!oAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665
����:��O�woAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��N�yoAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
:K��:�:��S�	�kpAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��R�	�pAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���Q{�
pJiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690�0��P�coAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�Aa���:��W�	�kpAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��V�	�+pAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��U�	�-pAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903�:��T�	�kpAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903
`��`���Z�7pAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��Y�YpAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963���X�	�pAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903
0x��0�:��^�	�kqAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903�:��]�	�kqAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��\�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���[{�
qJiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690
q A�q���b�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903�:��a�	�kqAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��`�	�+qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��_�	�-qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903
�q���:��f�	�krAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��e�	�krAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081���d�7qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��c�YqAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963
B�+B�d��i�	�?rAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��h�	�YrAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081���g�	�+rAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081
4A���4���n�7rAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��m�YrAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��l�	�krAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��k�	�krAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081�:��j�	�krAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081
cA�c���q�	�+sAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081�:��p�	�ksAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��o�	�ksAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081
�Ja��:��t�	�ksAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081�d��s�	�?sAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��r�	�YsAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081
gA���g���y�tAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���x�7sAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��w�YsAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��v�	�ksAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��u�	�ksAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081

e�r+��V��:��eD��
496ca22ef6b436dbee6813613f31f2ebe1718fbe7c53d90796a6f3f18ee0a331D��
3fc86cf389acff5dfff9dfd65e25b9d96d358214bd2bd236061ed31d647ad9bbD�~�
fd17cae7a3075f2ad58ed62ad9a2bb016b9d0ecbda3ed31b464e395e00f4dcb9D�}�
5435c138b53b3d77c61b682fd1142b6ebad9946a7aafbb1f722f6f9a4896a265D�|�
e1e1b8adc5317dafcd61f9374708c3ef7388ecd2591a47bb2dfdedc0eee9d389D�{�
8b93611a7e50ab8b817c59d6ef504cf63f14b1ba210b4da69add3f3176898478D�z�
f22ced6e5193aa0b22495fa95e9de588c04f9afa2d6070faf801306fc7e68363D�y�
c2800a0089be75b093cde6c6c8289a71707f6b56b3e1e3655e237dd5229856efD�x�
7fa5ad9d67b6a38b005e9e2a1e8217c78399fa4a6135965a3d32ed6d2ab0889cD�w�
1282baff4a36da2985cd30f9ea8f45ff5c8aa9ed747e858cf20363a7b30022abD�v�
769a4e98dcdf66de7159dd3adbff251c61fcb448ebdacbcc474122895e9cf709D�u�
2ced5602fa70385602b80de9a0a4dd9347186ade416907e8bb7fd066af18f6e3D�t�
00dfecc575f562ca6c58f3290ca7fda9b19bbacf629d7c687dc4242984f8bb37
�,m���r��}�	�[tAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��|�	�ktAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809�:��{�	�ktAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��z�	�tAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809
�AR���:���	�ktAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:���	�ktAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809�j���	�KtAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��~�	�ktAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809
��]���:���	�kuAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O���	�uAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809����uAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024����'tAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
�AJ���j��	�	�KuAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:���	�kuAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809�r���	�[uAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:���	�kuAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809
�A�k����
�1vAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735����'uAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�:���	�kuAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��
�	�kuAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809
�6x��"���	�;vAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9���	�ivAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�ivAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�ivAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735����	�vAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735
ZBPqZ����'vAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+vAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�QvAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�ivAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
dX���9���	�iwAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�iwAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�iwAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735����	�wAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735����1wAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735
�Y����Z���	�+wAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�QwAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�iwAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"���	�;wAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
��+m��9��#�	�ixAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��"�	�ixAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��!�	�ixAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735��� �'wAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
�Y����Z��'�	�+xAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��&�	�QxAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��%�	�ixAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��$�	�;xAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
0��0�_��*�AxAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��)�	�xAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���(�'xAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
aB��a�9��/�	�iyAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��.�	�;yAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��-�	�iyAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��,�	�iyAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��+�	�iyAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735
/���2�'yAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��1�	�+yAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��0�	�QyAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
��G��"��5�	�;zAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�_��4�AyAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��3�	�yAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
ZBPqZ���9�'zAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��8�	�+zAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��7�	�QzAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��6�	�izAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735bRGRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������߁� �#ၑ%偑(恑,灑0聑2遑6ꁑ:끑<쁑A큑CEJ�M�O�S�W�Z���^���b���f���i���n���q���t���y���}�������	��
����������#��'	��*
��/��2��5
��9��<��@��C��F��J��M��P��R��V��Y��[��]��`��c��e��i��l ��n!��p"��s#��v$��x%��{'��~(��)��*��+��,��
-��
.��/��0��1��2��3��4��5�� 6��!7��#8��%9��':��*;��+<��,=��.>��1?��2@��4A��6B��8C��;D��<E��>F��A
q�Gq�Q��<�	�zAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��;�AzAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��:�	�zAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
�>/���9��@�	�i{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��?�	�;{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�
��>�zAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��=�	�qzAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
/���C�'{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��B�	�+{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��A�	�Q{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
q�Gq�Q��F�	�{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��E�A{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��D�	�{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
>/q�m��J�	�Q|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��I�	�i|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�
��H�{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��G�	�q{Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�!
��P��M�	�|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���L�'|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��K�	�+|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��P�	�q|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��O�	�|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��N�A|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���R�|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��Q�|Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
ZBPqZ���V�'}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��U�	�+}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��T�	�Q}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��S�	�i}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��Y�	�}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��X�A}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��W�	�}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��[�}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��Z�	�q}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
~p~�m��]�	�Q~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735���\�}Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�!
��P��`�	�~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���_�'~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��^�	�+~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��c�	�q~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��b�	�~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��a�A~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���e�~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��d�~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
gO]~g���i�'Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��h�	�+Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��g�	�QAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�,��f�[~Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383
q�Gq�Q��l�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��k�AAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��j�	�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��n�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��m�	�qAndrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��p�[Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
0��0�_��s�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��r�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���q�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
Y*hY�
��v��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��u�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��t�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��x�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���w��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
 	7 ���{�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�M��z��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��y�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695

e�r+��V��:��eD�
�
832470ee4b64e39723111ada3304a733f57c404fb89c7383123a52f33bbde6d6D��
bd49c65cde81a93d80eed77c33ebfb093577ce199e9c182c9d77e73774072f37D��
7b1c52bbe226abacf3c7479ca52c3d631af47e215754ccfb2ad53c6226e13392D�
�
42867004de7a228cf85955e79762cca11cfedcace4742b7caa46109e8131839aD�	�
76640b341c1b50d068385f178412bff6541f41c567500e0f8e16463cdeb30c40D��
6e70e53e5187df893930a8cf3cec44c126d94196925b1a43fa27f481acdeb5bbD��
e14e58cd6c0a61d873c99c10de7e5a36ec844b84147e4656a784e33c1b0715b4D��
81b502f5e282e58db43c00894f89f50523953165c64a408ef983aa2829145c7aD��
30f27f7cbabd3d9bee929e1fa43a3ac2a916c5a427598ee5e816dd100518994dD��
ee0b6ee143ba37c13abc5858fef0725d5b30992afdcaff90babcd5af1ac812c8D��
67c66396a0ecb57afd6c3a2f070e239f41c72943e3c3994c64e68c02a4cc1829D��
4b31ab8ebd6b1481a2299adfff2b7d616abc0233760f8745ec256b96b86d0077D��
7479424a5b57460d14eb031904fe5f6c5eacebff7fa6b708fb1b98b33a6b3900
q�Gq�Q��~�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��}�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��|�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,���[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�	7��_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
Y*hY�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��
�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��
�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
)�)�_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
Y*hY�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,���[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
����Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
/>/�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,���[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f�� �	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��!�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
�d��Q��#�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529���"�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
/>/�
��%��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��$�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��'�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���&��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��*�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��)��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��(�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��+�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
dd���,�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
�p��,��.�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���-��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��1�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��0��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��/�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��2�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���4�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���3�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
F?F�t��6�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��5�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�p��,��8�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���7��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��;�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��:��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��9�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��<�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���>�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���=�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
t?Ft�M��A��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�t��@�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��?�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�f��B�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191
���n��C�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���E�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���D�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���Hq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��G�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��F�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���J�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��I�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
C.C�f��L�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��K��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695
���n��M�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���O�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���N�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���Rq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��Q�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��P�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���T�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��S�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
\d\���V�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���U�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���Yq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��X�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��W�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���[�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��Z�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��^�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��]�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��\�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
\d\���`�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���_�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���cq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��b�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��a�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���e�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��d�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��h�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��g�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��f�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
9�9���j�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��i�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��m�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��l�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��k�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��o�
��Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc\�O��n�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926^eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��r�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��q�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��p�	�e�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr]
9�9���t�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��s�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��w�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��v�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��u�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��y�
��Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direcc�O��x�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926eeam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��|�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��{�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��z�	�e�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstrd

e�r+��V��:��eD��
a706d40bf0fcf24324c24d5742ca54450b84792752d49ed7af95192bcd3e4527D��
2f7c6c553d364083a3603f33a066c8031c3bc2f1e9c8bb2d64b355daf9a42c2bD��
71e8109b89c2bfa0c40687b649c02bd70e7702214ec1fb76fe606db76ace6affD��
0a35810bd924f95ae2af1ba31051f64c8683e42b953329a6af07ea00495f96a2D��
c7627b2a018e4b1db2b6131608528eae404bf3c43ab252995b1d5f7196ab97e1D��
614205bf0041e0a5d32d64bd0743218a5ed52c6dcd8e5880076d87abff2016b2D��
bc495afc92d333d543576431a1cfc03dccc3bda5282057211d2065d0032129f1D��
f3ebae8493971694208c96d6d6286e660e797bed742700585d403ce9fd145072D��
39bc056b01daeb577a1d13e5d56959179803eea2c53c39eeff982663bc189df1D��
7afb4c27414189dd2a2cc1df1ce6c80ad77c0eb59aca381a22a3f4033f950c67D��
1497a77c838103e684f02aef90dea21228feaeec08fb162ab52cb8db75cd682fD��
97077fe95c5fd7927b97fea9e945e2065d9ef3dd5ca4eb757666fdc5b42ad749D��
56b0e8da36b334813521cd572d937eb75a589047d4c9a956b630d239792bf4e6
��&2�����	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o���	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��~�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���}�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:���w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{���y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
��&2����
�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��	�	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665����	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��
{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:���w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{���y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
r/;�r����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665����	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o���	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665
"T"�-���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
����:���w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{���y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
WKz��W����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665����	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o���	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665�0���c�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�f���-��!�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'�� {�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665
����:��#�w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��"�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
:K��:�:��'�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��&�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���%{�
�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690�0��$�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�Aa���:��+�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��*�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��)�	�-�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903�:��(�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903
`��`���.�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��-�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963���,�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903
0x��0�:��2�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903�:��1�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��0�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���/{�
�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690
q A�q���6�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903�:��5�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��4�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��3�	�-�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903
�q���:��:�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��9�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081���8�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��7�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������H��CI��EJ��HK��JL��LM��MN��OO��RP��TQ��VR��YS��[T��^U��`V��cW��eX��hY��jZ��m[��o_��r`��ta��wb��yf��|h��i��j��k��
l��m��n��o��p��q��r��!s��#t��'u��+v��.w��2x��6y��:{��=|��B}��E~��H��M���Q���U���Y���]���a���f���j���o���s���w���{���~���������	���
������������������!���$���&���*���-���/���1���4���7���9���=���@���B���D���G���J���L���O���R���T���V���Y���\���^���a���c���f���h���k
B�+B�d��=�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��<�	�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081���;�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081
4A���4���B�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��A�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��@�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��?�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081�:��>�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081
cA�c���E�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081�:��D�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��C�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081
�Ja��:��H�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081�d��G�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��F�	�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081
gA���g���M��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���L�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��K�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��J�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��I�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081
�,m���r��Q�	�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��P�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809�:��O�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��N�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809
�AR���:��U�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��T�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809�j��S�	�K�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��R�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809
��]���:��Y�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��X�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809���W��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���V�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
�AJ���j��]�	�K�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��\�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809�r��[�	�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��Z�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809
�A�k����a�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735���`�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�:��_�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��^�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809
�6x��"��f�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��e�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��d�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��c�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���b�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735
ZBPqZ���j�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��i�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��h�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��g�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
dX���9��o�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��n�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��m�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���l�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735���k�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735
�Y����Z��s�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��r�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��q�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��p�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
��+m��9��w�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��v�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��u�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���t�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
�Y����Z��{�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��z�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��y�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��x�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
0��0�_��~�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��}�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���|�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826

e�r+��V��:��eD�'�
6182e47b9746410469ab21c90f69c924a80ceff0a394abd6a25a441e8d6cc49eD�&�
b554df264228a60d69e256e2f70f55d320abe544bb18085a944c35b983f83b21D�%�
214fc2bc53e4979642949a2ce8ea6bd43bff20e98fa27016ae4ad1be3c189b60D�$�
f154f7fbe4285c64fd5d8032253657798d0717ac258ce5a8ece9b6e798df388cD�#�
d2490b1f0f83f60017971858b0aa1f5aba0285093f3b53cdaa0e5a1dd65b282bD�"�
f82689a8168490ea030790e836a9ce025ac23d19836b5ef4eb2d441b7d99d8a0D�!�
11babb3c74159846537e70da4fb01e148e8741a334bdc4689a5eb16b24a1a181D� �
12efe5e7e0fc2ad175b1c36f053e1a4532e1f85d27fe3489623cb945a5908677D��
5941cfa3708aa1d7eae457e8f0abc55a55d5a84eadb56473770f0a82215aa495D��
c204a4ffd212c3a27c0afea8e7c43b386fac6da8dfb78049b8fff2cea01ea128D��
3d985b2d2ec13d506f3e32f82236c706a953bf9178605bd7e9c559e99fe33c06D��
d17c2ab42cfa6667afaac7434e92be20fd0330b7a2cf8ad897daec993049f5e9D��
a3cd127f94e232f4ccaddd486ee240986e25b65c51ab664b49ec511d5310482c
aB��a�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"���	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735
/����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
��G��"��	�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
ZBPqZ���
�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��
�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
�>/���9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"���	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
/����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
q�Gq�Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
>/q�m���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�!
��P��!�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809��� �'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��$�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��#�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��"�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���&��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��%��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
ZBPqZ���*�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��)�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��(�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��'�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��-�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��,�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��+�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��/��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��.�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
~p~�m��1�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735���0��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�!
��P��4�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���3�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��2�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��7�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��6�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��5�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���9��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��8��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
gO]~g���=�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��<�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��;�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�,��:�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383
q�Gq�Q��@�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��?�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��>�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��B��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��A�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��D�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���C��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
0��0�_��G�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��F�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���E�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
Y*hY�
��J��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��I�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��H�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��L�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���K��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
 	7 ���O�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�M��N��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��M�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
q�Gq�Q��R�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��Q�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��P�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��T��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��S�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��V�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���U��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�	7��_��Y�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�M��X��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��W�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
Y*hY�
��\��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��[�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��Z�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��^�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���]��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��a�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��`��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��_�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
)�)�_��c�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�n��b�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
Y*hY�
��f��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��e�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��d�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��h�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���g��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��k�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��j��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��i�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
����Q��m�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�n��l�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
/>/�
��o��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��n�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��q�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���p��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��t�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��s��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��r�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��u�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
�d��Q��w�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529���v�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
/>/�
��y��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��x�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��{�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���z��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��~�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��}��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��|�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
dd����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458

e�r+��V��:��eD�4�
60639db656637bac71a8495c83b9cc351c89b200e836ed3343dfa6bca29e3956D�3�
09c09056918a1d0fcf94103b7cc7f9728ea6f763a2c2d3db5a1a470846afc777D�2�
43d76c869fe744e94bf344aa66f638f4afcac144a43ed4d8336d4147ae3bb81eD�1�
29bd25debd6689e7eb9f2261280bdb1b0233f6d1bf8099f49d31d530c4432eb0D�0�
e55f9021fa118e217df9db527f05fb35638c68975d0977584ac974b8c6a6bddfD�/�
903dd1548295c69291a624080d2c82e710a22a8ff376f018d6fd3a0f4d907c85D�.�
5f5b887dfc9f6ab8986542411f965a160cefec2bd50e34635046cb950eb7d93dD�-�
60f47d3d5a4d59ab230916a44b7ecff881116a21de176de5276bd96e52ac5c3eD�,�
61ce4b03660d33874c07cc8931ddbfe63af33129c020331fef0850ec847167e3D�+�
13c47236e82fe68997766cf6d15ce0201350f4f534beee1f7e77dbee3e461cf0D�*�
f5e02cd3cf204b648c7dd511674fd8b54070efe7521303ff43080cfcb8b074a3D�)�
6dce766bf15259d4d1a7aba1acd135a56d9bb61b6d653cef2da6590e890d9fd9D�(�
ad1b644027e6c6f011f3ffcc714aa27825b548561a43f88debe325f3ed0dee5e
�p��,���[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\����	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
F?F�t��
�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��	�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�p��,���[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��
�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\����	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
t?Ft�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�t���k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<���	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�f���	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191
���n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\����	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���q�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t���k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<���	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9����3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
C.C�f�� �	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695
���n��!�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���#�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���"�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���&q�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��%�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��$�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���(�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��'�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
\d\���*�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���)�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���-q�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��,�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��+�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���/�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��.�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��2�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��1�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��0�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
\d\���4�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���3�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���7q�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��6�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��5�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���9�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��8�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��<�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��;�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��:�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
9�9���>�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��=�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��A�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��@�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��?�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��C�
��Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direcށO��B�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926�eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��F�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��E�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��D�	�e�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr�
9�9���H�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��G�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577bRRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{���������������������o���q���t���u���w���y���{���~����������������Á�
ā�Ł�Ɓ�ǁ�ȁ�Ɂ�ʁ�ˁ�́�́�΁� ρ�!Ё�#с�&ҁ�(Ӂ�*ԁ�-Ձ�/ց�2ׁ�4؁�7ف�9ځ�<ہ�>܁�A݁�CၖF⁖H䁖K偖M遖PꁖT끖X쁖Z큖_ac�g�k�o�r�v���{�����������������������������"��%��(��*��-��0��2��4��7	��:
��<��?��B
��D��G��I��K��M��P��Q��R��T��W��X��Z��]��^��_��a��d��f
�69��^��K�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��J�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��I�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��M�
��Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc�O��L�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926�eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��P�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��O�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��N�	�e�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr�
��&2����T�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��S�	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��R�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���Q�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��X�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��W{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���V�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���U�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��Z�w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��Y�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
r/;�r���_�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���^�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���]�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��\�	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��[�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665
"T"�-��a�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��`{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
����:��c�w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��b�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
:K��:�:��g�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��f�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���e{�
�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690�0��d�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�Aa���:��k�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��j�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��i�	�-�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903�:��h�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903
���`��:��o�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081���n�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��m�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963���l�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903
lA"l�1��r�	�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081���q�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081�:��p�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081
�X���:��v�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��u�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081�:��t�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081�d��s�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081
Rq�R�:��{�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��z�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809���y��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���x�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��w�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201
�AJ���j���	�K�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��~�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809�r��}�	�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��|�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809
�A�k�����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809

e�r+��V��:��eD�A�
919e733f2ea0f03322ddd4ac6824dcb44dd6d5fcaabb66ccb9afee48b8b78718D�@�
0b44e2a7472e36fcf462b7b85a5bbc147c95150b55e8d7e6dc3fe4977c7cdc76D�?�
f707cfc509f1fd8d7d482b5937245f4dbfc078d16c4defb7fef772d41daac079D�>�
c253a31b070bc89bcd355eeb3c549a299fb205b9c6badcc9d3e7254057f26ef3D�=�
6a35640d03a1109ec551440c9e15e05aac57712c85cd6644b826678181e23b5dD�<�
b436b196f3c2735dddfe5727a948d1a2e443bdebffd7018905aa2558baba56d9D�;�
3daac146d8edbefdb34bcb729d74336de8f1afbaee929dc55464706da7615618D�:�
46a04b65f068cbfdca98fdfb989911df818cda7f362078f3f1fdede4d819cc71D�9�
8b0d31d3b3732537ed9539107e868dbb4725488aa14e7a5070bee4b31e133318D�8�
1724001fdb91ff6c4e1fcf64bccf981017dfd7ab649f21c1333810e6cbd8e9c6D�7�
029a613293d1ba49b765f0f2ec6fc0b71f6fd43fb1ceff50f43e05dc84f98d20D�6�
bf1fe8afbf03b29de5f3eba68d356ac251478692658c6449b4cda08c73d4d4f8D�5�
5a11f15beb55665259230a77f5624af4b896062e2a61b610d31d355500431f88
�6x��"���	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735����	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735
ZBPqZ����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��
�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��	�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
aB��a�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"���	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��
�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735
/����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
��G��"���	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
ZBPqZ����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
>/q�m��"�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��!�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�
�� ��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�!
��P��%�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���$�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��#�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��(�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��'�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��&�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���*��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��)��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
/���-�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��,�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��+�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
q�Gq�Q��0�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��/�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��.�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��2��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��1�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��4�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���3��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
0��0�_��7�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��6�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���5�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
Y*hY�
��:��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��9�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��8�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��<�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���;��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�	7��_��?�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�M��>��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��=�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
Y*hY�
��B��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��A�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��@�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��D�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���C��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��G�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��F��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��E�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
����Q��I�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�n��H�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
/>/�
��K��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��J�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��M�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���L��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��P�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��O��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��N�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��Q�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
dd���R�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
�p��,��T�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���S��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��W�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��V��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��U�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��X�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���Z�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���Y�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
t?Ft�M��]��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�t��\�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��[�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�f��^�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191
���n��_�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���a�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���`�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���dq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��c�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��b�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���f�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��e�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
\d\���h�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���g�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���kq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��j�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��i�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���m�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��l�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��p�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��o�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��n�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
9�9���r�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��q�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��u�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��t�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��s�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��w�
��Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc&�O��v�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926(eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��z�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��y�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��x�	�e�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr'
��&2����~�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��}�	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��|�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���{�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:���w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{���y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665

e�r+��V��:��eD�N�
c62386a6973d93798bd5a17ee72907932c0796c21589648ab5f313805f6ae46cD�M�
fa80c361dec771feb54951286af7bb8032aef89cd8ded021b942b091ad431e5dD�L�
5c0a4fb7b658b9dca77b858ff98bd534bbc056c94aa438b11b253b1da80720a4D�K�
a3461547f0108720d6413695a5d1110d735d6a9359910eca40e788f625bab184D�J�
5b66719aa307b84457c7ac3edc58f4b71cc65248e0ef006e5fee0c3e52896b5fD�I�
707c34f7fa9d4787f56722da43ebdb1458d9855c217691d5688c6bde0306a2b7D�H�
575e728d855d72fba88b860be7518db2c8fa0dc1add9046074dd5d320e1156bbD�G�
be582ab129bf0e7739face571fb544ef2d038667883f4d15867fa2c2c302f748D�F�
c72c2effb396db8fd12fe1bf50dc5ae0543a4d684cc6990bc2a8f8c1c707bd2aD�E�
9deefb8ac4e6a1d43c4894b9e5daf58d70b43a9f12952164dc89a1d15e5a400cD�D�
0380151eff2395148f47a991620ec2bd74e74d330969f2c6d6c0a064a0278166D�C�
895038cbd6764ef3eb9ee3cd61f7aeb95255a9dab0f3a8da8ecf81d235a2abc1D�B�
3f73609586cbfb03e673487d50c8317cc03657e173b51bd38b9491c79062a838
r/;�r���	�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665����	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665����	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o���	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665
"T"�-���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��
{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
����:��
�w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{���y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
:K��:�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���{�
�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690�0���c�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�Aa���:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[���	�-�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903
���`��:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081����7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k���Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963����	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903
lA"l�1���	�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081����	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081
�X���:�� �	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081�d���	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081
Rq�R�:��%�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��$�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809���#��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���"�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��!�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201
�AJ���j��)�	�K�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��(�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809�r��'�	�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��&�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809
�A�k����-�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735���,�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�:��+�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��*�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809
�6x��"��2�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��1�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��0�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��/�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���.�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735
ZBPqZ���6�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��5�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��4�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��3�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
aB��a�9��;�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��:�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��9�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��8�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��7�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735
/���>�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��=�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��<�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
��G��"��A�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�_��@�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��?�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
ZBPqZ���E�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��D�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��C�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��B�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��H�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��G�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��F�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
>/q�m��L�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��K�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�
��J��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��I�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�!
��P��O�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���N�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��M�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��R�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��Q�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��P�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���T��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��S��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
/���W�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��V�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��U�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
q�Gq�Q��Z�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��Y�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��X�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��\��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��[�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��^�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���]��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
0��0�_��a�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��`�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���_�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
Y*hY�
��d��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��c�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��b�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��f�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���e��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�	7��_��i�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�M��h��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��g�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
Y*hY�
��l��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��k�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��j�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��n�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���m��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��q�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��p��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��o�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������ ��k!��m"��p#��r$��u%��w)��z*��~+��,��.��	/��0��
1��2��3��4��5�� 6��%7��)8��-9��2:��6;��;<��>=��A>��E?��H@��LA��OB��RC��TD��WE��ZF��\G��^H��aI��dJ��fK��iL��lM��nN��qP��sQ��uR��wS��zT��{U��|V��~W��X��Y��Z��\��]��	^��_��`��a��b��c��d��e��f��g��!k��$l��(m��,n��.o��2p��6q��8r��=s��?t��Au��Fv��Iw��Kx��Oy��Sz��V{��Z|��^}��b~��e��j���m���p���u���y���}���������	���������
����Q��s�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�n��r�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
/>/�
��u��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��t�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��w�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���v��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��z�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��y��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��x�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
dd���|�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
�p��,��~�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���}��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\����	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
t?Ft�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�t���k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<���	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106

e�r+��V��:��eD�[�
dfbc0cbaf5fb588c23fcfdacafa9024ed6efd13bfbb1cf69316269cbaee79463D�Z�
dfa6a2ee9076eba358c12de54d5d936a15a282109538f6772bdb75582afd0584D�Y�
1112275758e024da6aed300ab9d35464cd221ed62c67a573bd71242d60a699bfD�X�
109d66ff27fd10890453e0e8e39139cafcd73f6341aac559e6f00b019b08a12fD�W�
1b30b4a38b3fef0e81dd1879d3e9b159f739eadedc3e869eb5947a4bd3b25968D�V�
fae889b06ab0ce312053475d9327bbc3ab774b5205f23a802574f40fb6dd1621D�U�
05a1a1334799c302fd4621a4dab067e901b9fbea4d7d269ebc6e9bea8d855923D�T�
0f67dd341c128a15768806e3944c813d90260a364561887b61378a18ff049547D�S�
0a551f7e2a238413dc99c1846c2fa6ce5424327eb7cae6cffdcc8530fe613c92D�R�
7a192ba7047354c7646edd4e2c5e44dc140a332186434319479f733ea0d3a469D�Q�
f1014b0e635f3231b9775aea6acf589330dd8192d714a231b5392dff24ffc861D�P�
fa816cfd764e59f3d6af36d6fe658eaf2ad7d0af0472a9bef2ab112995965b1fD�O�
5d35f8e8e692daf8ad4f89ccba227841148704f4f1a52d100f8d5555f6e2c562
�f���	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191
���n��	�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\����	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���
�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���q�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��
�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<���	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9����3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
\d\����	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���q�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t���k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<���	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9����3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d���	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x���	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E���
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
9�9����3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%���M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^���?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x���	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E���
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��!�
��Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direch�O�� �	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926jeam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��$�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��#�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��"�	�e�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstri
��&2����(�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��'�	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��&�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���%�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��,�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��+{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���*�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���)�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��.�w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��-�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
��&2����2�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��1�	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��0�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�EA- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665���/�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.1.ea_�E@- Update to aarch64-shenandoah-jdk8u272-b05-shenandoah-merge-2020-08-28.
- Add additional s390 log2_intptr case in shenandoahUtils.cpp introduced by JDK-8245464
- Resolves: rhbz#1876665
�f� ��-��6�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��5{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���4�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���3�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665
����:��8�w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��7�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
r/;�r���=�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665���<�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���;�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��:�	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��9�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665
"T"�-��?�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��>{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665
����:��A�w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��@�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
WKz��W���F�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b08-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b08 (EA).
- Resolves: rhbz#1876665���E�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b07-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b07.
- Resolves: rhbz#1876665�o��D�	�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b06-0.0.ea_���- Update to aarch64-shenandoah-jdk8u272-b06.
- Update tarball generation script to use PR3799, following inclusion of JDK-8245468 (TLSv1.3)
- Resolves: rhbz#1876665�L��C�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b05-0.2.ea_�E@- Enable JFR on x86, now we have JDK-8252096: Shenandoah: adjust SerialPageShiftCount for x86_32 and JFR
- Resolves: rhbz#1876665�0��B�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�f���-��I�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Include a test in the RPM to check the build has the correct vendor information.
- Use 'oj_' prefix on new vendor globals to avoid a conflict with RPM's vendor value.
- Improve quoting of vendor name
- Resolves: rhbz#1876665�'��H{�U�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.272.b09-0.1.ea_�9�- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Resolves: rhbz#1876665���G�	�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b09-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u272-b09 (EA).
- Resolves: rhbz#1876665
����:��K�w�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-1_��@- Add backport of JDK-8215727: "Restore JFR thread sampler loop to old / previous behaviour"
- Resolves: rhbz#1876665�{��J�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.272.b10-0_��- Update to aarch64-shenandoah-jdk8u272-b10.
- Switch to GA mode for final release.
- Update release notes for 8u272 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- Delay tzdata 2020b dependency until tzdata update has shipped.
- Adjust JDK-8062808/PR3548 following constantPool.hpp context change in JDK-8243302
- Adjust PR3593 following g1StringDedupTable.cpp context change in JDK-8240124 & JDK-8244955
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
:K��:�:��O�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��N�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���M{�
�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690�0��L�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.275.b01-0_�:�- Update to aarch64-shenandoah-jdk8u275-b01 (GA)
- Update release notes for 8u275.
- Resolves: rhbz#1895062
�Aa���:��S�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��R�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��Q�	�-�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903�:��P�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903
`��`���V�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��U�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963���T�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903
0x��0�:��Z�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b03-0.0.ea_�`@- Update to aarch64-shenandoah-jdk8u282-b03 (EA)
- Update release notes for 8u282-b03.
- Resolves: rhbz#1903903�:��Y�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b02-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b02 (EA)
- Update release notes for 8u282-b02.
- Resolves: rhbz#1903903�E��X�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Extend RH1750419 alt-java fix to include external debuginfo, following JDK-8252395 in 8u282-b01
- Resolves: rhbz#1901690���W{�
�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.282.b01-0.1.ea_�j�- Added patch600: rh1750419-redhat_alt_java.patch
- Replaced alt-java placeholder with real patched alt-java
- Removed patch529: rh1566890-CVE_2018_3639-speculative_store_bypass.patch
- Removed patch531: rh1566890-CVE_2018_3639-speculative_store_bypass_toggle.patch
- Both surpassed by new patch
- Resolves: rhbz#1901690
q A�q���^�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u282-b07 (EA)
- Update release notes for 8u282-b07.
- Fix placement issue in release notes, caught by comparing with vanilla version.
- Resolves: rhbz#1903903�:��]�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b06-0.0.ea_��- Update to aarch64-shenandoah-jdk8u282-b06 (EA)
- Update release notes for 8u282-b06.
- Resolves: rhbz#1903903�Z��\�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b05-0.0.ea_�=�- Update to aarch64-shenandoah-jdk8u282-b05 (EA)
- Update release notes for 8u282-b05 and make some minor corrections.
- Resolves: rhbz#1903903�[��[�	�-�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b04-0.0.ea_��@- Update to aarch64-shenandoah-jdk8u282-b04 (EA)
- Update release notes for 8u282-b04.
- Remove upstreamed patch PR3519
- Resolves: rhbz#1903903
�q���:��b�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��a�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081���`�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-1`&�- Cleanup package descriptions and version number placement.
- Resolves: rhbz#1908963�k��_�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.282.b08-0`��- Update to aarch64-shenandoah-jdk8u282-b08 (GA)
- Update release notes for 8u282-b08.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908963
B�+B�d��e�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��d�	�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081���c�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081
4A���4���j�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��i�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��h�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��g�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081�:��f�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081
cA�c���m�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.1.ea`S@�- Re-organise S/390 patches for upstream submission, separating 8u upstream from Shenandoah fixes.
- Add new formatting case found in memprofiler.cpp on debug builds to PR3593 patch.
- Resolves: rhbz#1938081�:��l�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.0.ea`F�- Update to aarch64-shenandoah-jdk8u292-b05 (EA)
- Update release notes for 8u292-b05.
- Resolves: rhbz#1938081�:��k�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b04-0.0.ea`B@- Update to aarch64-shenandoah-jdk8u292-b04 (EA)
- Update release notes for 8u292-b04.
- Resolves: rhbz#1938081
�Ja��:��p�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b07-0.0.ea`\{@- Update to aarch64-shenandoah-jdk8u292-b07 (EA)
- Update release notes for 8u292-b07.
- Resolves: rhbz#1938081�d��o�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b06-0.0.ea`X��- Update to aarch64-shenandoah-jdk8u292-b06 (EA)
- Update release notes for 8u292-b06.
- Require tzdata 2020f due to JDK-8259048
- Resolves: rhbz#1938081�1��n�	�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b05-0.2.ea`S@�- Update to aarch64-shenandoah-jdk8u292-b05-shenandoah-merge-2021-03-11 (EA)
- Update release notes for 8u292-b05-shenandoah-merge-2021-03-11.
- Extend s390 patch to fix issue caused by JDK-8252660 backport and lack of JDK-8188813 in 8u.
- Revise JDK-8252660 s390 failure to make _soft_max_size a jlong so pointer types are accurate.
- Resolves: rhbz#1938081
gA���g���u��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���t�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-1`pA�- Add CVE numbers.
- Require tzdata 2021a due to JDK-8260356
- Resolves: rhbz#1938201�k��s�Y�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-0`n�@- Update to aarch64-shenandoah-jdk8u292-b10 (GA)
- Update release notes for 8u292-b10.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1938201�:��r�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b09-0.0.ea`c�- Update to aarch64-shenandoah-jdk8u292-b09 (EA)
- Update release notes for 8u292-b09.
- Resolves: rhbz#1938081�:��q�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b08-0.0.ea`_@- Update to aarch64-shenandoah-jdk8u292-b08 (EA)
- Update release notes for 8u292-b08.
- Resolves: rhbz#1938081
�,m���r��y�	�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:��x�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809�:��w�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O��v�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809
�AR���:��}�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:��|�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809�j��{�	�K�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:��z�	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809
��]���:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b02-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b02 (EA)
- Update release notes for 8u302-b02.
- Resolves: rhbz#1967809�O���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b01-0.0.ea`��@- Update to aarch64-shenandoah-jdk8u302-b01 (EA)
- Update release notes for 8u302-b01.
- Switch to EA mode.
- Resolves: rhbz#1967809�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.292.b10-2`��@- Add JDK-8266929 backport for RH1960024.
- Resolves: rhbz#1960024���~�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
�AJ���j���	�K�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b05-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b05 (EA)
- Update release notes for 8u302-b05.
- Remove JDK-8266929/RH1960024 as now upstream.
- Resolves: rhbz#1967809�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b04-0.0.ea`�\�- Update to aarch64-shenandoah-jdk8u302-b04 (EA)
- Update release notes for 8u302-b04.
- Resolves: rhbz#1967809�r���	�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.1.ea`�@- Update to aarch64-shenandoah-jdk8u302-b03-shenandoah-merge-2021-06-23 (EA)
- Update release notes for 8u302-b03-shenandoah-merge-2021-06-23.
- Resolves: rhbz#1967809�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b03-0.0.ea`�h@- Update to aarch64-shenandoah-jdk8u302-b03 (EA)
- Update release notes for 8u302-b03.
- Resolves: rhbz#1967809
�A�k����	�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-0`�t�- Update to aarch64-shenandoah-jdk8u302-b08 (EA)
- Update release notes for 8u302-b08.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b07-0.0.ea`��- Update to aarch64-shenandoah-jdk8u302-b07 (EA)
- Update release notes for 8u302-b07.
- Resolves: rhbz#1967809�:���	�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b06-0.0.ea`�E�- Update to aarch64-shenandoah-jdk8u302-b06 (EA)
- Update release notes for 8u302-b06.
- Resolves: rhbz#1967809

e�r+��V��:��eD�h�
8468dd2d01e7228ce1d031241b5387d85911912180e2b91324d509c7631724aeD�g�
e2c654e3afba7eae27baf8ba94d32ce0d7b64ee9e4d712f07c55fe5511ac0e78D�f�
906005c50af3c97fba3c5a02b14b7ce32f662a5eafb00675e8750675b8323966D�e�
ecf0213aa5f1df68903633d6e37f83ba74657dcdfef00998680e1d13d4107e9bD�d�
d8cc4f7ba48ecdc9de7b819650b043bff67e2a0f66f0100cff7b2021dfdb7019D�c�
cd7ecade58c83774da56075ecbc93181d0299693efa4a31b09f39a234ea8c0d8D�b�
42a032cda37e42e63ccb183ecdaa7710140521828aa8549a8f19dd0bc7fbea36D�a�
88bc32f0b32b7bb8891d9dd012f0481bd2103ca60cadb3ebc387b8645c331524D�`�
c2c9b259e70aede7a57ebe7fa8a93a475866d4cce68f6b903edb0875c829bc6cD�_�
fe81316791b5a33fb6e458bc981914e5a5c7d16da0e818f6b455b94fd257fbd8D�^�
eb68e76343740b950f6fb531ed5af6afc884e16c3ca61bdb35b1d2115d73f0c4D�]�
eb2e226e824b06855d4cf867531fb5f3409412d883d6e56543603660748ecfbbD�\�
7f67e4364ed1e323c02f8bdeafb086bb8d6633c2da0a3139a1a54be82a87bdec
�6x��"���	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��
�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735���
�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735
ZBPqZ����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
dX���9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&A- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735����	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b01-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b01 (EA)
- Update release notes for 8u312-b01.
- Switch to EA mode.
- Remove "-clean" suffix as no 8u312 builds are unclean.
- Related: rhbz#1999735����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.302.b08-1a;H�- Remove non-Free test and demo files from source tarball.
- Related: rhbz#1999735
�Y����Z���	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m���	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"���	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
��+m��9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9���	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
�Y����Z��#�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��"�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��!�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"�� �	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735
0��0�_��&�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��%�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���$�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
aB��a�9��+�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��*�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�9��)�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.1.eaaP`�- Update to aarch64-shenandoah-jdk8u312-b04 (EA)
- Update release notes for 8u312-b04.
- Related: rhbz#1999735�9��(�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b03-0.1.eaaM��- Update to aarch64-shenandoah-jdk8u312-b03 (EA)
- Update release notes for 8u312-b03.
- Related: rhbz#1999735�9��'�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b02-0.1.eaaG&@- Update to aarch64-shenandoah-jdk8u312-b02 (EA)
- Update release notes for 8u312-b02.
- Related: rhbz#1999735
/���.�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��-�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��,�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
��G��"��1�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�_��0�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��/�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
ZBPqZ���5�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��4�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��3�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��2�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��8�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��7�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��6�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
�>/���9��<�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�"��;�	�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b04-0.2.eaaQ�@- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999735�
��:��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��9�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
/���?�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��>�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��=�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735
q�Gq�Q��B�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��A�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��@�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
>/q�m��F�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��E�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735�
��D��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��C�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�!
��P��I�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���H�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��G�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��L�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��K�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��J�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���N��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��M��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
ZBPqZ���R�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��Q�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��P�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�9��O�	�i�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.1.eaaU��- Update to aarch64-shenandoah-jdk8u312-b05 (EA)
- Update release notes for 8u312-b05.
- Related: rhbz#1999735
q�Gq�Q��U�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��T�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��S�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��W��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��V�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
~p~�m��Y�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735���X��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�!
��P��\�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���[�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��Z�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929
���=��_�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��^�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��]�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366
a�a���a��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502�
��`��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422
gO]~g���e�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�Z��d�	�+�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.3.eaaf�@- Add patch to improve performance of common separators in Scanner.useLocale
- Move alt-java patch to correct section.
- Resolves: rhbz#1862929�m��c�	�Q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b05-0.2.eaaex�- Update to aarch64-shenandoah-jdk8u312-b05-shenandoah-merge-2021-10-07
- Update release notes for 8u312-b05-shenandoah-merge-2021-10-07.
- Resolves: rhbz#1999735�,��b�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383
q�Gq�Q��h�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��g�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��f�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��j��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��i�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��l�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���k��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
0��0�_��o�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��n�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809���m�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826
Y*hY�
��r��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��q�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q��p�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,��t�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���s��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
 	7 ���w�'�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.312.b07-1aim@- Update to aarch64-shenandoah-jdk8u312-b07 (EA)
- Update release notes for 8u312-b07.
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2011826�M��v��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��u�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
q�Gq�Q��z�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�_��y�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�P��x�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b04-0.1.eaa��- Update to aarch64-shenandoah-jdk8u322-b04 (EA)
- Update release notes for 8u322-b04.
- Require tzdata 2021c as of JDK-8274407.
- Switch to EA mode.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Related: rhbz#2022809
/>/�
��|��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��{�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��~�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���}��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
�	7��_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
Y*hY�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,���[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��	�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
)�)�_���A�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.322.b06-1a�@- Update to aarch64-shenandoah-jdk8u322-b06 (EA)
- Update release notes for 8u322-b06.
- Switch to GA mode for final release.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Resolves: rhbz#2039366�n��
�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111

e�r+��V��:��eD�u�
dda309e14f66aa1f8ced19d835b7e6ff04827b05e42baed38cfbde2ea01b3351D�t�
d6029c8033366f8fa025ecb16d28c0d7ebe9ff2aa2c4b0f27fd5af20a22fc2d0D�s�
52d1677bb4b0b6cf9d2e5dcd4c9cb2e58dee114d048654302dd20d27a8d31eceD�r�
f926be88eca8a48d3a20210809bb3b3034814e0660e27737f39f9db9589b332dD�q�
1a8bb6d0d5d3a9bbd2452e189a4bddbc5fb7dd910ae645de886896daf57d324bD�p�
9984ba09f2a5bb2165cfe6589c4861a4ae3214b1932e9978e0648e075937b182D�o�
ab64f5672ee9bcce92e16118c4c13b43b53597bb1ec2a50445c04cb3b9eeef74D�n�
a9b3782c3c170d426ed6352d73a207121cb78d86ee04aff09e0065659d0cddb7D�m�
ac4d6d11bf69e5b905738e3547274f544c6780aad810056708d4cdb6ef2f2842D�l�
b1e27eaa8378961d1d5aa1cfe6e8b864169425ac61e6881ca154a93ccff6d67aD�k�
8a6cef14e08d6e8b37d66e40c1ac1a7bedf36720f015c5cf16ef968d5bd61eb9D�j�
7315923a129e703d18cf9c04318c3fce2223c31b6b9d9f8742322e1c2bfd100dD�i�
8e64b7d56dda27658b854cd7ae4711c43c6b16b97ee01075b4c86e7bea44f202
Y*hY�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=��
�	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529�Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529
�p��,���[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
����Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529�n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
/>/�
����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=���	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������������#���&���+���.���1���5���8���<���?���B���F���I���L���N���R���U���W���Y���\���_���a���e���h���j���l���o���r���t���w���z���|���~������������	���������������������������������!���#���&���'�(Á�*ā�-Ł�.Ɓ�0ǁ�2ȁ�4Ɂ�7ʁ�8ˁ�:́�=́�>΁�?ρ�AЁ�Dс�Fҁ�HӁ�Iԁ�KՁ�Nց�Pׁ�R؁�Uف�Wځ�Zہ�\܁�_݁�aށ�d߁�f�iၛk偛n恛p灛s聛u쁛x큛y{����	�������
�p��,���[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383�����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f���	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M����Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r���g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n���_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
�d��Q���	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b01-0.1.eab\@- Update to shenandoah-jdk8u332-b01 (EA)
- Update release notes for shenandoah-8u332-b01.
- Switch to EA mode.
- Related: rhbz#2047529����1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
/>/�
��!��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b09-1b]R�- Update to shenandoah-jdk8u332-b09 (GA)
- Update release notes for 8u332-b09.
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-04-19 @ 1pm PT.
- Resolves: rhbz#2073422�=�� �	�q�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.332.b06-0.1.eab]R�- Update to shenandoah-jdk8u332-b06 (EA)
- Update release notes for shenandoah-8u332-b06.
- Resolves: rhbz#2047529
�p��,��#�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���"��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��&�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��%��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��$�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��'�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
dd���(�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
�p��,��*�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���)��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��-�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��,��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��+�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��.�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���0�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���/�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
F?F�t��2�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��1�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�p��,��4�[�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.345.b01-1b�- Update to shenandoah-jdk8u345-b01 (GA)
- Update release notes for 8u345-b01.
- Resolves: rhbz#2112383���3��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.342.b07-1b��- Update to shenandoah-jdk8u342-b07
- Update release notes for shenandoah-8u342-b07.
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Remove redundant "REPOS" variable from tarball script
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Rebase JDK-8186464 patch so it applies after JDK-8190753
- Resolves: rhbz#2106502
L	7L�f��7�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��6��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�r��5�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-1cIO@- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- * This tarball is embargoed until 2022-10-18 @ 1pm PT. *
- Resolves: rhbz#2133695
���n��8�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���:�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���9�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
t?Ft�M��=��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695�t��<�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u372-b05 (GA)
- Update release notes for shenandoah-8u372-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��;�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
�f��>�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191
���n��?�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���A�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���@�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���Dq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��C�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��B�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���F�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��E�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
C.C�f��H�	�C�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b07-0.1.eac���- Update to shenandoah-jdk8u362-b07 (EA)
- Update release notes for shenandoah-8u362-b07.
- Switch to EA mode for 8u362 pre-release builds.
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Drop tzdata patches for 2022d & 2022e (JDK-8294357 & JDK-8295173) which are now upstream
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150191�M��G��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.352.b08-2cK�@- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Add test to ensure timezones can be translated
- Related: rhbz#2133695
���n��I�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.362.b08-1c�G�- Update to shenandoah-jdk8u352-b08 (GA)
- Update release notes for shenandoah-8u352-b08.
- Fix broken links and missing release notes in older releases.
- Drop RH1163501 patch which is not upstream or in 11, 17 & 19 packages and seems obsolete
  - Patch was broken by inclusion of "JDK-8293554: Enhanced DH Key Exchanges"
  - Patch was added for a specific corner case of a 4096-bit DH key on a Fedora host that no longer exists
  - Fedora now appears to be using RSA and the JDK now supports ECC in preference to large DH keys
- Resolves: rhbz#2160111
\d\���K�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���J�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���Nq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��M�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��L�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���P�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��O�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
\d\���R�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���Q�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���Uq�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��T�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��S�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���W�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��V�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��Z�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��Y�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��X�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
\d\���\�	�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b01-0.1.ead� �- Update to shenandoah-jdk8u382-b01 (EA)
- Update release notes for shenandoah-8u382-b01.
- Switch to EA mode.
- Remove JDK-8271199 patch which is now upstream.
- Related: rhbz#2221106���[�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.372.b07-1d>�@- Update to shenandoah-jdk8u372-b07 (GA)
- Update release notes for shenandoah-8u372-b07.
- Require tzdata 2023c due to inclusion of JDK-8305113 in 8u372-b07
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Include JDK-8271199 backport early ahead of 8u382 (RH2175317)
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
- Resolves: rhbz#2159458
)?F)���_q�A�Jiri Vanek <jvanek@redhat.com> - 1:1.8.0.392.b08-1e%<�- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11319�t��^�k�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b05-1d�8�- Update to shenandoah-jdk8u382-b05 (GA)
- Update release notes for shenandoah-8u382-b05.
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�<��]�	�o�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.382.b04-0.1.ead��@- Update to shenandoah-jdk8u382-b04 (EA)
- Update release notes for shenandoah-8u382-b04.
- Related: rhbz#2221106
9�9���a�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��`�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��d��d�	�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-0.1.eae��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��c�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��b�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
9�9���f�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��e�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��i�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��h�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��g�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��k�
��Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc�O��j�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926�eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��n�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��m�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��l�	�e�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr�
9�9���p�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-2e-%�- Revert jcmd move as jcmd will not operate without tools.jar
- Related: RHEL-13577�%��o�M�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-1e%<�- Update to shenandoah-jdk8u392-b08 (GA)
- Update release notes for shenandoah-8u392-b08.
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Regenerate PR2462 patch following JDK-8315135
- Add backport of JDK-8312489 heading upstream for 8u402 (see OPENJDK-2095)
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12212
- Resolves: RHEL-13574
- Resolves: RHEL-13575
- Resolves: RHEL-13576
- Resolves: RHEL-11319
- Resolves: RHEL-13577
�69��^��s�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b06-1e��@- Update to shenandoah-jdk8u402-b06 (GA)
- Update release notes for shenandoah-8u402-b06.
- Drop local copy of JDK-8312489 which is now included upstream
- Switch to GA mode.
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-17914
- Resolves: RHEL-20965�x��r�	�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.402.b01-0.1.eae�L@- Update to shenandoah-jdk8u402-b01 (EA)
- Update release notes for shenandoah-8u402-b01.
- Switch to EA mode.
- Sync NEWS with vanilla branch version.
- Related: RHEL-17914�E��q�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.392.b08-3e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19630
K,K�T��u�
��Thomas Fitzsimmons <fitzsim@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Invoke xz in multi-threaded mode
- generate_source_tarball.sh: Add WITH_TEMP environment variable
- generate_source_tarball.sh: Multithread xz on all available cores
- generate_source_tarball.sh: Add OPENJDK_LATEST environment variable
- generate_source_tarball.sh: Update comment about tarball naming
- generate_source_tarball.sh: Reformat comment header
- generate_source_tarball.sh: Reformat and update help output
- generate_source_tarball.sh: Do a shallow clone, for speed
- generate_source_tarball.sh: Eliminate some removal prompting
- generate_source_tarball.sh: Make tarball reproducible
- generate_source_tarball.sh: Prefix temporary direc�O��t�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�!@- Update to shenandoah-jdk8u412-b01 (EA)
- Update release notes for shenandoah-8u412-b01.
- Switch to EA mode.
- Related: RHEL-30926tory with temp-
- generate_source_tarball.sh: Remove temporary directory exit conditions
- generate_source_tarball.sh: Set compile-command in Emacs
- generate_source_tarball.sh: Remove REPO_NAME from FILE_NAME_ROOT
- generate_source_tarball.sh: Move PROJECT_NAME and REPO_NAME checks
- generate_source_tarball.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- generate_source_tarball.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: shellcheck: Do not use -a (SC2166)
- generate_source_tarball.sh: shellcheck: Do not use $ on arithmetic variables (SC2004)
- Use backward-compatible patch syntax
- generate_source_tarball.sh: Ignore -ga tags with OPENJDK_LATEST
- generate_source_tarball.sh: Remove trailing period in echo
- generate_source_tarball.sh: Use long-style argument to grep
- generate_source_tarball.sh: Add license
- generate_source_tarball.sh: Add indentation instructions for Emacs
- Remove -T0 argument from systemtap tar invocation
- Related: RHEL-30926�eam tag style (shenandoah8ux-by) in preparation for eventually moving back to official sources
- generate_source_tarball.sh: Rename JCONSOLE_JS_PATCH{,_DEFAULT} to JCONSOLE_PATCH{,_DEFAULT} for brevity
- generate_source_tarball.sh: Adapt OPENJDK_LATEST logic to work with 8u Shenandoah fork
- generate_source_tarball.sh: Adapt version logic to work with 8u
- generate_source_tarball.sh: Add quoting for SCRIPT_DIR and JCONSOLE_PATCH (SC2086)
- generate_source_tarball.sh: Update examples in header for clarity
- generate_source_tarball.sh: Create directory in TMPDIR when using WITH_TEMP
- generate_source_tarball.sh: Only add --depth=1 on non-local repositories
- Move maintenance scripts to a scripts subdirectory
- icedtea_sync.sh: Update with a VCS mode that retrieves sources from a Mercurial repository
- jconsole.desktop.in: Restored by running icedtea_sync.sh
- policytool.desktop.in: Likewise.
- Restore IcedTea sources correctly in spec file
- discover_trees.sh: Set compile-command and indentation instructions for Emacs
- discover_trees.sh: shellcheck: Do not use -o (SC2166)
- discover_trees.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- discover_trees.sh: shellcheck: Double-quote variable references (SC2086)
- generate_source_tarball.sh: Add authorship
- icedtea_sync.sh: Set compile-command and indentation instructions for Emacs
- icedtea_sync.sh: shellcheck: Double-quote variable references (SC2086)
- icedtea_sync.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: Set compile-command and indentation instructions for Emacs
- openjdk_news.sh: shellcheck: Double-quote variable references (SC2086)
- openjdk_news.sh: shellcheck: Remove x-prefixes since we use Bash (SC2268)
- openjdk_news.sh: shellcheck: Remove deprecated egrep usage (SC2196)
- generate_source_tarball.sh: Handle an existing checkout
- generate_source_tarball.sh: Sync indentation with java-21-openjdk version
- generate_source_tarball.sh: Support using a subdirectory via TO_COMPRESS
- Related: RHEL-30926
�8���2��x�g�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b08-1f�@- Update to shenandoah-jdk8u412-b08 (GA)
- Update release notes for shenandoah-8u412-b08.
- Complete release note for Certainly roots
- Switch to GA mode.
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Related: RHEL-30926�D��w�	��Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b07-0.1.eaf�- Update to shenandoah-jdk8u412-b07 (EA)
- Update release notes for shenandoah-8u412-b07.
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- Resolves: RHEL-30926�7��v�	�e�Andrew Hughes <gnu.andrew@redhat.com> - 1:1.8.0.412.b01-0.1.eae�r�- Turn off xz multi-threading on i686 as it fails with an out of memory error
- Normalise whitespace
- Move to upstr�
gg���yw�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��{��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��z��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��~��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��}��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���|��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K�����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���w�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ����;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��	��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��
���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907

e�r+��V��:��eD��
43ba47c5fe93e659e2128f88d812fbff89a0212d3f97b085a69f6ec65e2a1b2aD��
9b6758993720f8e305448717bc270151ffeedba84a7961f0c5e110065eb6f188D��
17ed16fa6fa0dce15c8b3485e9d01613b70ef05e54ce42b4ead591c57c7f47aaD��
d2619ceca8fca7e9ee19cea2143fbd219429e9f9b06409934c366c8d6fb4cefbD�~�
447af92c743509fb44207fbeccdb5f8b9f35865517ad94009935976e7e5339edD�}�
07b97f3f2c7b61f7d3f1361ef0cb40ea95320f3213ff8441345dd39ed092edffD�|�
176be26252edd9349f87c81796fa0c0c19ed3e8dbd43a82b201b7ebab75624edD�{�
f8d118dd0c38e6be586da71c24bb8639d30d388d9b57e276ec52b9ac2f649eadD�z�
a2e3eec180d90a42cea830a8b5f0fa6890394a9b51d4349667c8010da5d2d418D�y�
88ac66f78b2cf64dc6ea2d02f58193bd752cb598be4fa33a9328f2bf4d42de00D�x�
aba0487fc98846f969d23ad65f98b2fddc20c5a9ecbd166216fb523452d2cb47D�w�
0768c02eab146e2f88cb0c3f41aee2d4f7b14dbdde274b3955f2155eb21cf944D�v�
322851c3e3042c4bb07d4bb68b94af8a35852bcac51ee3546cab4f53bc08392b
ff� ����;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��
��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K�����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ����;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb���� {�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K�����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
+��9+�	��$��}�Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#��#��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082���"���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527���!��	�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��){�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��(��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��'��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#��&��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#��%��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#��-��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082���,���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527���+��	�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���*{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
R�J��R�#��2��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��1��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#��0��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#��/��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	��.��}�Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082
d��{��7{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��6��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��5��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082���4{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��3{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228
�d\��#��;��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��:��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[��9��1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���8{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#��?��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��>{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��=��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��<��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811
\XX�\�[��C��1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���B{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��A{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��@��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��G��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��F��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��E��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��D��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���Km�S�Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��J{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��I��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��H{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
?W:�?�W��O��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���N{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���M{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��L{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��S��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��R{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��Q{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��P��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936
�\�����W{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��V{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���Um�S�Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��T{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��[{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��Z��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��Y��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���X{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������_{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���^{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��]{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��\{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
W���W� ��c{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��b{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��a��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��`��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1���$��g{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��f{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��e��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��dw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��k��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��j��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���i{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���h{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��o��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��nw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��m{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��l{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���r{�;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���q{�7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��p{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��v{�GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��u{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��t��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��s��)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����z{�AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��y{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��x��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��ww�Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��~��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��}��)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���|{�;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���{{�7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q����]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��w�Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{�GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��w�Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{�GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���{�AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������	{�AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��
{�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��
��'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531

e�r+��V��:��eD��
34157ccac81b1fd2400592605aa6918ce36609a1d9a3b2cf1b602234d548488dD��
e912503786155640b2280491e5de73ce270fcfcaf9fc882663359bec6597f790D�
�
385d88da6f3dbafec168b9405c82b40252b4f9d9df0ef1b7328108f1b7de4898D��
e813e31fc27015fa715af1d13ab9191ba9af31d93085ac2e76e58359305bc66aD��
5c04fbcd46e3e025d84e9e8ddf45f002a83926d8117b74d5e0012aa43c934978D�
�
d965d09a6d6db58488fc06f0a1f491c8769c8295f4e6dfaec5bf9e496cc72debD�	�
efe004dfc7fcd0160427a7f637f2cab140b7a315eee7143e1894e834e4a70487D��
c76cdef35908893f12eaa11205c3140dbd9f989ea6e01fd9bc00741c05bdb4c5D��
a6859e4664d6b26565182fc6c6f79171ac40e3aabb90299e00efc46e4acf5bc3D��
8ef9940c8eab06db4d162a8e62feb96b91bf5674ca74e3d18247cbacdb1fedd1D��
e63709673c8670886d3e9e2205785adba63f0186853bcf74298fcce168c18f0dD��
839aadc2fbe0a7a4b708e39eb1e3e9359bbbad64641fd674e425f561de5d004aD��
0f0fa59eb6e08ac74519d59b709ce746a54f5ac7294b9ef563943eea5bdc327d
[��{��{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��w�Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{�GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
,^���,�+��{�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{�AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422
D%}~�D��� {�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��"{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��!m�]Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�������%{�AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��${�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��#��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���*{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��){�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��({�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��'��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��&��'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��,{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��+m�]Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�^���#��0��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��/��'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���.{�AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��-{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$��4m�]Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���3{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��2{�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��1{�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��5{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V��9��'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���8{�AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��7{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���6{�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
vXY�v�$��>m�]Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���={�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��<{�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��;{�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��:��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531bRdRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{��������������������������� ���$���)���-���2��7��;��?��C��G��K��O��S��W	��[
��_��c��g
��k��o��r��v��z��~������	���������� ��"��%��*��, ��0!��4"��5#��9$��>&��?'��B(��C)��G*��K+��M,��Q-��T.��X/��[0��^1��b2��e3��h4��l5��n6��q7��t8��w9��z:��};��<��=��>��?��	@��A��B��D��E��F��H��I��J��"K��%M��(N��+P��.Q��0R��3S��7U��9V��<X��@Y��CZ��F\��J]��N^��T_��Y`��^a��cb��gc��l
���;��?{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��Bm�]Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���A{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422���@{�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
���;��C{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��
W��4��G��cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��F��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��E��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���D{�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���K{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��J{�SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��I{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���H��9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
W�;��M{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��Lm�]	Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��Q��c	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��P��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��O��	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���N{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��T{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��S{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���R��9	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
��
W��4��X��c
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��W��]
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��V��
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���U{�5
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��[{�S
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��Z{�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���Y��9
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��^}�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��]��]
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��\��G
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
��
W��4��b��cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��a��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��`��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���_{�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��e{�SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��d{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���c��9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��h}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��g��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��f��GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��l{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���k��9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��j��cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��i��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373
*U*�&��n��GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��m{�SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������q}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��p}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��o��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��t��c
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��s��]
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��r{�EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��w{�S
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��v{�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���u��9
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��z}�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��y��]
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��x��G
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��}{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��|{�E
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���{}�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&����GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��~{�SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&��	��GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��{�SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��
��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��
{�EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q����]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106

e�r+��V��:��eD��
47f52ae65081a918aa822fb28261dafe5b707b012d7f07714f3beff7a4d49f45D��
d7d58e3708a957c3e2d7c60c347de4ffa8baf7169446426889d9fd0618af02c9D��
637c8c01ec07ac21fcb709f52f870af6526eaa83bd2915683f8a6f983072e500D��
da13c76a95a624d2a68550bf3fcf6a40650e79fef0cb040d51e46aa293093fb8D��
580eedc42430dabee13298aaafa5f6d0828a7c8ee03e48cc34e248044b273c98D��
2f0d2a97bc011f105608fc115346133185d5789361484a950ec00bcc5e36bc70D��
1e8d63f3eb80cd678a21631ab2ebcb9b62ce51bba0f293bfe51b327fad1145e2D��
102055158159425115e1f789e5fc2320b09a7a6f4b5b764de3614f437bfa3e71D��
f878ae8eff1fab58c570c743d050866a386253258cd06a481221516b31ab7bc9D��
134406c95bb0e98bfe18a35cc06ff8a3deca7248e9196efcee6eb05a7a0dcd55D��
ff8272f92c772a5d757bacb85570f4468e0c2c40956746d49494f1daa5041086D��
98d431e1523dbb3f7b2df74717a2e41dc1d70f15e80c7fdb07bb88cc13a58c4dD��
47479ca82c3c2c2c7d65a383dba4f54f39f315bfe0571d1d9129c0d4101abdd8
�r�_��{�EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdG���m�AJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�������}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��"{�UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���!{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#�� ��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��%{�EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,��${�_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdL���#m�AJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
!�%!���({�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��'��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.��&��WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��+{�_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdO���*m�AJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��){�UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��.{�yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��-��gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��,{�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
i�i�.��0��WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��/{�EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��3{�UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���2{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��1��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v��7��gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��6{�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��5{�_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdT���4m�AJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����9{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y��8{�yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966
I��I�,��<{�_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdW���;m�AJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��:{�UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��@}�=Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��?{�yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��>��gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��={�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����C{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��Bs�[Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��As�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
I��I�,��F{�_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd[���Em�AJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��D{�UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��J}�=Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��I{�yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��H��gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��G{�
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��N�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��M�#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��Ls�[Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��Ks�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
s��O��s��T�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Ss�5Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��R�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��QyAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��P�cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��OyAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��YyAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��X�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��W�#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���Vw�?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Uw�!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�K�Lt���^�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��]s�5Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��\�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��[yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��Z�cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��cs�5Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��b�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��ayAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���`w�?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��_w�!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�}-���
��gw�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���fw�?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��ew�!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��d�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��l�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��kyAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��jw�WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��iw�ESeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��hi�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��qw�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���pw�?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��ow�!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��n�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��ms�5Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
{&{�&��tw�WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��sw�ESeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��ri�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
gg���uw�3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��w��;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��v��QAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��{��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��z��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��y��yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���x��7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��~{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��}��
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��|��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���w�3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ����;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����QAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ��
��;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��	��QAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��
��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907

e�r+��V��:��eD�)�
70b5a86232c1ba2b2535285ea1e7951e1c2ce4779402d9ef8b14a9e2574922c4D�(�
386d6eeb6ec186c7d3ac868781a062f7659e7f29629bf7919767ced443ced16eD�'�
6afa89d1f93f0c18b712d80864bb7c05453680e7c2ef4267277d1a05fc5f3ed5D�&�
91265a7a7ea601e581e1e9d0927369baa2509184619fcbfe483ba909db979caaD�%�
7b73f05a3cad8a9e27146ed66584c90db157d3c8dd9073156714b06d53ae16b4D�$�
569c3afb20ee7aa02a316df5870c65b53bb314376059e9e761ab3e81622b3891D�#�
245bfc9c157989c74777ef47e429b5b2823da6b25f940cc71fd0fae7aa230185D�"�
5effb3b9f9c3b2e58564ce52ef1e7d855cc8030a6d8903d0d257eb9a2f166a73D�!�
708f19a2413ea0ae0ab9a7619a05c06675c69004d477b56b71ac6ec988ee1cc4D� �
c1a1ba3ae8f745008a0b7e5c0e4663241db1a386d16bd54eef846e125686cebaD��
02f897ee795a6592d97ca15c780cbdd6ca2bc2a793d53ef279ad3f01f27d472cD��
f72a7e95336d9380f37c46d2de0b736c876a15b4c1e7dbb4c351ca2552bbc411D��
6eb48672224acb21d0dbc83835af74ba98ee85d8e9d3991623af2bc0d57d6761
ff� ����;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����QAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
+��9+�	�� ��}Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082�����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��%{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��$��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��#��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#��"��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#��!��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#��)��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082���(��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527���'��	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���&{�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
R�J��R�#��.��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��-��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#��,��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#��+��AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	��*��}Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082
d��{��3{�} Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��2��A Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��1��A Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082���0{�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��/{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228
�d\��#��7��A Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��6��A Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[��5��1 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���4{�5 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#��;��A!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��:{�} Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��9��5 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��8��7 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811
\XX�\�[��?��1!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���>{�5!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��={�}!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��<��A!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��C��5!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��B��7!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��A��A!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��@��A!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���Gm�S"Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��F{�}"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��E��5"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��D{�}!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
?W:�?�W��K��)"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���J{�;"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���I{�7"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��H{�O"Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��O��5#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��N{�G"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��M{�}"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��L��A"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936
�\�����S{�7#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��R{�O#Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���Qm�S#Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��P{�}#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��W{�}#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��V��A#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��U��)#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���T{�;#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������[{�;$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���Z{�7$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��Y{�O$Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��X{�G#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
W���W� ��_{�G$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��^{�}$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��]��A$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��\��)$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1���$��c{�O%Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��b{�}$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��a��]$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��`w�$Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��g��A%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��f��)%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���e{�;%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���d{�7%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��k��]%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��jw�%Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��i{�G%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��h{�}%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���n{�;&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���m{�7&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��l{�}%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��r{�G&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��q{�}&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��p��A&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��o��)&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����v{�A&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��u{�}&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��t��]&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��sw�&Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��z��A'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��y��)'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���x{�;'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���w{�7'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��~��]'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��}w�'Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��|{�G'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��{{�}'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��w�(Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{�G(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���{�A'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������{�A(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����](Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���
{�(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��	{�](Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
[��{��{�})Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��
��])Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��w�)Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{�G)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������e��tf��ug��wh��{i��~j��k��l��m��n��
o��p��r��s��t��u�� v��%w��)x��.y��3z��7{��;|��?}��C~��G��K���O���S���W���[���_���c���g���k���n���r���v���z���~���������
������������������!���&���(���,���0���1���5���:���;���>���?���C���G���I���M���P���T���W���Z���^���a���d���h���j���m���p���s���v���y���{���~���������������
���
�������������Á�ā�!Ɓ�$ǁ�'Ɂ�*ʁ�,ˁ�/́�3΁�5
,^���,�+��{�])Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����')Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{�A*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���{�)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422

e�r+��V��:��eD�6�
5830fa7abe16fd9ef562c14318f17462eb9ebe4e2473b4b94827dab6efc8cb5bD�5�
33f79495a144745f0bf779634202c2e16ec9ce1d545d08ada1d51ff124397d75D�4�
bbfa941de4ca08de5ac2912c49346b26f8b10f79c9dedcc1c73b7593d728b8d9D�3�
5732a4798be4c87badb456e95d85a69fdcc47d79f536cdf10bf8bfe8ac5353abD�2�
f97f8b49e1c67b65e3bc3821a5542f91cff1d9241f858a36d041fae368a1f2fcD�1�
08b94d6efe931c32344ea97bafacefaf26b7ab57c499ee718b7466ba31c94321D�0�
a5344af6f4e55dc3241835e173e61da3faccff81e74b16a504ca025d31166199D�/�
82943aa98d57823fabd6521b0364b533551b4f5b299febc13bc41d5342b5583cD�.�
2d39e047ddef688bbc3b526d384126a7602bf927866cbbd6d9306cf24221253dD�-�
0781ec76d6ef76f218a16289f31a21e27af4064a2fa1f213a49828a67e50c669D�,�
d434ab93e69642120974f37b28bf06b2fc55a8b51e2bb5b62b339413bcc1b605D�+�
6bba16931590ee051b717e6cc7eaf6319e483746bab088b484dada27e5f230d5D�*�
4660a5a7faa79cea2990c384533fca3da9b3ac6afdf6f55b36b2cad51352c3e0
D%}~�D���{�*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]*Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�������!{�A+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{�� {�}+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���&{�+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��%{�]+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��${�{+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��#��A+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��"��'+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��({�}+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��'m�]+Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�^���#��,��A,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��+��',Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���*{�A,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��){�},Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$��0m�],Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���/{�,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��.{�],Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��-{�{,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��1{�},Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V��5��'-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���4{�A-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��3{�}-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���2{�5,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
vXY�v�$��:m�]-Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���9{�-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��8{�]-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��7{�{-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��6��A-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531
���;��;{�}-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��>m�].Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���={�.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422���<{�5-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
���;��?{�}.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��
W��4��C��c.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��B��].Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��A��.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���@{�5.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���G{�/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��F{�S.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��E{�.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���D��9.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
W�;��I{�}/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��Hm�]/Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��M��c/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��L��]/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��K��/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���J{�5/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��P{�S/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��O{�/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���N��9/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
��
W��4��T��c0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��S��]0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��R��0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���Q{�50Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��W{�S0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��V{�0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���U��90Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��Z}�0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��Y��]0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��X��G0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
��
W��4��^��c1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��]��]1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��\��1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���[{�51Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��a{�S1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��`{�1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���_��91Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��d}�1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��c��]1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��b��G1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��h{�2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���g��92Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��f��c2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��e��]2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373
*U*�&��j��G2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��i{�S2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������m}�2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��l}�2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��k��]2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��p��c3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��o��]3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��n{�E2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��s{�S3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��r{�3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���q��93Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��v}�3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��u��]3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��t��G3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��y{�4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��x{�E3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���w}�3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&��{��G4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��z{�S4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������~}�4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}}�4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��|��]4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��{�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���{�4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&����G5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��{�S5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������}�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��
��W5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��	{�E5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q��
��]6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���{�5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�r�_��{�E6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���}�6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���{�6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A6Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217

e�r+��V��:��eD�C�
6b0ef069c7763a3ba0b61d3804a6919fa06467de6088cbbcda7c568dfc3309b0D�B�
62730a490f70fb743015316019c09c1992ef54947750f054eaaf08ff9a387163D�A�
e3e0d812a13816d47ae085d4f88c2d0f4d8affad6568434ab0f720442981017bD�@�
d81b0c0ebf60fb1b4d6ccb36f93b9d93064cf246ecff7f7c16b2ddbb61c57c91D�?�
0a5287477758b2371bd5090dfacaf9dd93c3f1cc379245204f8a143593599b48D�>�
f24dce379d6c501f95ff094a43c786cc4932cecf9af4ed5ad162b4159d5a2007D�=�
645b31999a5a9633d017660dd3029d098a23145a02bcc776967acb3d0414464cD�<�
e2febf7854a5223cbd8ac5101e3cb5cc8a2a9ac22a6ed7712ad25b139199fee2D�;�
107479062ac7d45131a7f63b41712cb8d8bbc15a68e65ae36bc4612536690957D�:�
c6578be082e094285bfff45773f10ef576902f4e6d7f9f5a58b810e7e4d8ab9aD�9�
d64ee0696017c879c9cac304b66dad0523eafec9464a87a647d5b5c2a19e2466D�8�
db87f894acc24775904c7b50e997fa12818c4c6368e17139307fd37433372e1eD�7�
5e128b028063e43ec93a59c4107b46344a43bc260f99578b7c4a2b788885cc7e
�������}�7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{�7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��!{�E8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,�� {�_7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Updł��m�A7Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
!�%!���${�8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��#��A8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.��"��W8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��'{�_8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdȂ��&m�A8Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��%{�U8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��*{�y8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��)��g8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��({�
8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
i�i�.��,��W9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��+{�E9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��/{�U9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���.{�9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��-��A9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v��3��g9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��2{�
9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��1{�_9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd͂��0m�A9Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����5{�:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y��4{�y9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966
I��I�,��8{�_:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdЂ��7m�A:Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��6{�U:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��<}�=:Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��;{�y:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��:��g:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��9{�
:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����?{�;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��>s�[:Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��=s�:Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
I��I�,��B{�_;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdԂ��Am�A;Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��@{�U;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��F}�=;Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��E{�y;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��D��g;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��C{�
;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��J�<Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��I�#<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��Hs�[;Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��Gs�;Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
s��O��s��P�<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Os�5<Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��N�{<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��My<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��L�c<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��Ky<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��Uy=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��T�=Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��S�#=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���Rw�?<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Qw�!<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�K�Lt���Z�=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Ys�5=Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��X�{=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Wy=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��V�c=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��_s�5>Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��^�{>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��]y>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���\w�?=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��[w�!=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�}-���
��cw�>Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���bw�?>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��aw�!>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��`�>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��h�{?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��gy?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��fw�W>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��ew�E>Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��di�>Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��mw�?Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���lw�??Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��kw�!?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��j�?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��is�5?Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
{&{�&��pw�W?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��ow�E?Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��ni�?Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
gg���qw�3@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��s��;@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��r��Q@Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��w��A@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��v��A@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��u��y@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���t��7@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��z{�}@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��y��
@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��x��@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���{w�3AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��}��;AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��|��QAAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����AAAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����AAAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����yAAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���~��7AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��{�}AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ����;BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����QBAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��
��ABAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��	��ABAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����yBAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��
{�}BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ����;CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����QCAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����ACAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����ACAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����yCAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907

e�r+��V��:��eD�P�
3e729bea301dda80bd7dad924182af1a8859d3473da42b7cb9ed78adebef8963D�O�
1b9fbe198a3af7e79bb697022c8043d39441c77daf5446b0e0b8e7f5c18603c8D�N�
5a64f67b760664231aa056ce36899a472656f882e163cec3ee2c913fe4b34140D�M�
b1355c30321cdcfe6f3fc6298e8e7995196ed2edc8127aa23cee6fb0def56d65D�L�
5dc4485c972bd78d1637297056bbcc819f90e800c1681f449d5ab226d2b8772bD�K�
b620f989048c7f2f276ae3cbc4a5217f51cff7aad191e75030d927f8022e7c5aD�J�
8b57170fd0541d89c862ecea52f823ede947a5b16983a9646cf0c6e4970996b4D�I�
fed7b567e393c86119acb36d69b38b769bcb51e24ddcf415141d81230fdc54a8D�H�
f87df491c22e76385180845739c13ba05724afcded006f1e0f2114ff956460e9D�G�
5b9c35a49f05bdae1d6d9ae13688adb2f1aa9eed15604ea80e3126af3ad89c77D�F�
1a762e2d8882a0c051d0a322eb97ba3c2fbdb843e16699bb702cecd284f238faD�E�
905c6cb39018d44fe1113513cbf517b142fbc537206ae23c0ce00c299f5e39a4D�D�
7f18b428cb0449058380cba27d10eac85a6389b6c3393ef6454032f2dda04023
+��9+�	����}DJayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#����ADAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082�����DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����	DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��!{�}DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#�� ��ADAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����ADAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����ADAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����ADAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#��%��AEAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082���$��EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527���#��	EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���"{�5DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
R�J��R�#��*��AEAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��)��AEAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#��(��AEAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#��'��AEAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	��&��}EJayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082
d��{��/{�}FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��.��AFAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��-��AFAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082���,{�5EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��+{�}EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228
�d\��#��3��AFAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��2��AFAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[��1��1FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���0{�5FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#��7��AGAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��6{�}FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��5��5FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��4��7FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811
\XX�\�[��;��1GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���:{�5GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��9{�}GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��8��AGAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��?��5GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��>��7GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��=��AGAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��<��AGAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���Cm�SHJiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��B{�}HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��A��5HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��@{�}GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
?W:�?�W��G��)HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���F{�;HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���E{�7HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��D{�OHSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��K��5IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��J{�GHAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��I{�}HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��H��AHAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936
�\�����O{�7IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��N{�OISeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���Mm�SIJiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��L{�}IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��S{�}IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��R��AIAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��Q��)IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���P{�;IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������W{�;JAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���V{�7JAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��U{�OJSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��T{�GIAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
W���W� ��[{�GJAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��Z{�}JAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��Y��AJAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��X��)JAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936bR7RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������с�<ҁ�?Ӂ�BՁ�Fց�Jׁ�P؁�Uف�Zځ�_ہ�c܁�h݁�mށ�p߁�q�sၡw⁡zち{䁡}偢恢灢聢
遢ꁢ끢쁢!�%�*�/�3�7���;���?���C���G���K���O���S���W���[���_��c��g��j��n��r��v��z��~��	��
��
����
��������"��$��(��,��-��1��6��7��:��;��?��C��E��I��L ��P!��S"��V#��Z$��]%��`&��d'��f(��i)��l*��o+��r,��u-��w.��z/��|0��1��2��3��4��	5��6��
1���$��_{�OKSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��^{�}JAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��]��]JAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��\w�JJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��c��AKAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��b��)KAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���a{�;KAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���`{�7KAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��g��]KAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��fw�KJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��e{�GKAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��d{�}KAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���j{�;LAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���i{�7LAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��h{�}KAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��n{�GLAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��m{�}LAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��l��ALAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��k��)LAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����r{�ALAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��q{�}LAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��p��]LAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��ow�LJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��v��AMAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��u��)MAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���t{�;MAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���s{�7MAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��z��]MAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��yw�MJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��x{�GMAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��w{�}MAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��~w�NJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��}{�GNAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���|{�AMAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{{�}MAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������{�ANAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}NAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]NAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���{�NAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]NAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{NAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����ANAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'NAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
[��{��
{�}OAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��	��]OAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��w�OJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{�GOAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
,^���,�+��{�]OAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{OAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��
��AOAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'OAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�AOAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{�APAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}PAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]PAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���{�OAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422
D%}~�D���{�PAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]PAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{PAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����APAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'PAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}PAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]PJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510

e�r+��V��:��eD�]�
bd616a68bac2dba0c3050b8d3da7ce5d016fa05d03d2c3ca41e478309141d6d8D�\�
026420613efcc87726ba91b165fc0b746ce24ff329555220967db5cc979a803aD�[�
5dfcf8baeded2f96a2597b878a1006d7eb03d4d61927a000e1528dd9008b0671D�Z�
d47daec1adb6903ec50993bb856136c6ca6c1d28610a211a0082c8b683162941D�Y�
bce793675eea8330ee5714f685ee6bf75de56dd9f106dbbe3149d9fa9d144416D�X�
acb345f09856db7783a06a30026e252117dbee4274e86ea5b3c2959410f22b01D�W�
a71605698db58a372ff02ab6d78041cca4507c94f4bdc16507ec30994e53892fD�V�
fdcabd5524523efc4fa2f438cdb2f40de42b6606b73bbff9e8f65e21ea81f437D�U�
0e30ee127b67a51aaff1ffe3ae0cb616b808bc21850fe2f23be2b229a8bb8853D�T�
f81e7c1a0f24f7ca56cedc1938c0e1bba78c74ad082589529118fe1d795d6748D�S�
5f692d98607238270b572db3bdedd64d8b9eb468b0cc08cead1d6b23aae63718D�R�
7f5933636add693e7d9a57c9d29615c25c2163009b4d680b43a93c0f252fc3c4D�Q�
d91a5237171093f889f2e37c55c5cbf4f02728ff2fb050c08f0547c1c7cf5f63
�������{�AQAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}QAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]QAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���"{�QAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��!{�]QAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z�� {�{QAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����AQAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'QAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��${�}QAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��#m�]QJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�^���#��(��ARAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��'��'RAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���&{�ARAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��%{�}RAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$��,m�]RJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���+{�RAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��*{�]RAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��){�{RAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��-{�}RAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V��1��'SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���0{�ASAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��/{�}SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���.{�5RAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
vXY�v�$��6m�]SJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���5{�SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��4{�]SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��3{�{SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��2��ASAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531
���;��7{�}SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��:m�]TJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���9{�TAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422���8{�5SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
���;��;{�}TAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��
W��4��?��cTAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��>��]TAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��=��TAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���<{�5TAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���C{�UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��B{�STAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��A{�TAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���@��9TAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
W�;��E{�}UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��Dm�]UJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��I��cUAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��H��]UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��G��UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���F{�5UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��L{�SUAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��K{�UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���J��9UAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
��
W��4��P��cVAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��O��]VAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��N��VAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���M{�5VAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��S{�SVAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��R{�VAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���Q��9VAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��V}�VAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��U��]VAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��T��GVAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
��
W��4��Z��cWAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��Y��]WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��X��WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���W{�5WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��]{�SWAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��\{�WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���[��9WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��`}�WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��_��]WAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��^��GWAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��d{�XAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���c��9XAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��b��cXAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��a��]XAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373
*U*�&��f��GXAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��e{�SXAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������i}�XAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��h}�XAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��g��]XAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��l��cYAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��k��]YAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��j{�EXAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��o{�SYAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��n{�YAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���m��9YAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��r}�YAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��q��]YAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��p��GYAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��u{�ZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��t{�EYAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���s}�YAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&��w��GZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��v{�SZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������z}�ZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��y}�ZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��x��]ZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��|��WZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{{�EZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��{�[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���~{�ZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��}��AZAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&����G[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��{�S[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������}�[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����][Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q��	��]\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���{�[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A[Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�r�_��{�E\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���}�\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��
}�\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���{�\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.��
��W\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd8���m�A\Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U\Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�������}�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{�]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��{�E^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,��{�_]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd=���m�A]Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217

e�r+��V��:��eD�j�
0b25bab3a8a0341d22387d3674f6676645e3d3d497d2de92de115a56fa012b1bD�i�
33ead8c29c4da7be1c35398bea14adbd1069eb04196df8a75ddffab71562e778D�h�
0de12d2701881f7f8bd093302babcb112ad65af4943bd2e0d2bcb2884f12012dD�g�
89818b9dde137228b185c849e8eec7f90bed6867be5b294a8b8121f52776af6aD�f�
f2a450757e610e9d7a49050e04cab12edad074ddca95fd92a67972bd61fcbabaD�e�
0f4b94a13ab49a4fb2ac8ff3106cdaa6e83e43757720457189e685e7a55ed6d6D�d�
970a62a2a5e145cc2c8fa7e55e770b427abb4943c6d8e85bb81c928a192bb407D�c�
22d64046fb95580843be1a65bdeaa8f2a9beca7721f0af5f20f9263a59cc2977D�b�
c76bb943b6a1a6711f5c6301f55730c1b173e983e6b7b095c9d0135c7b6a52f0D�a�
7abbb0853851a20592aac6a51b52bbe28466f3f0ee1d83a240a39b4e4f336537D�`�
2f2f67956f80076c79a81d009a5aee971589176deeda7985a84ca07ae0164a5aD�_�
3603a5475d52875262a18bc253888633c218b9df5c6fbdfad0972c07da32b981D�^�
72866ddd3fc9bb8286ebd7b4f6c5d977fc3e7925268a253cfefe4511c6e90150
!�%!��� {�^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��#{�_^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdA���"m�A^Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��!{�U^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��&{�y^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��%��g^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��${�
^Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
i�i�.��(��W_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��'{�E_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��+{�U_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���*{�_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��)��A_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v��/��g_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��.{�
_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��-{�__Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdF���,m�A_Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����1{�`Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y��0{�y_Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966
I��I�,��4{�_`Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdI���3m�A`Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��2{�U`Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��8}�=`Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��7{�y`Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��6��g`Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��5{�
`Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����;{�aAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��:s�[`Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��9s�`Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
I��I�,��>{�_aAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdM���=m�AaJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��<{�UaAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��B}�=aAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��A{�yaAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��@��gaAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��?{�
aAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��F�bSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��E�#bAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��Ds�[aAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��Cs�aAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
s��O��s��L�bAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Ks�5bJiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��J�{bAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��IybAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��H�cbAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��GybAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��QycAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��P�cSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��O�#cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���Nw�?bAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Mw�!bAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�K�Lt���V�cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Us�5cJiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��T�{cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��SycAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��R�ccAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��[s�5dJiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��Z�{dAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��YydAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���Xw�?cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Ww�!cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�}-���
��_w�dSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���^w�?dAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��]w�!dAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��\�dAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��d�{eAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��cyeAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��bw�WdAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��aw�EdSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��`i�dJiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��iw�eSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���hw�?eAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��gw�!eAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��f�eAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��es�5eJiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
{&{�&��lw�WeAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��kw�EeSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��ji�eJiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
gg���mw�3fAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��o��;fAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��n��QfAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��s��AfAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��r��AfAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��q��yfAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���p��7fAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��v{�}fAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��u��
fAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��t��fAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���ww�3gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��y��;gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��x��QgAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��}��AgAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��|��AgAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��{��ygAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���z��7gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��{�}gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��~��gAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ����;hAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����QhAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����AhAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����AhAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����yhAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7hAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����
{�1hAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��	{�}hAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
hAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����hAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ����;iAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����QiAndrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����AiAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����AiAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����yiAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���
��7iAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1iAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}iAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
iAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����iAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
+��9+�	����}jJayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#����AjAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082�����jAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����	jAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��{�}jAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����AjAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����AjAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����AjAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����AjAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#��!��AkAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082��� ��kAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����	kAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���{�5jAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736

e�r+��V��:��eD�w�
3038e1befe3903f7b2bfb4fb5ed1ee07a0ba36db33ae2aae4ba05e4040d2b65fD�v�
1619875cba8598818f4bb31d4ba22a7d88804cab9b8ed1e66cb4cf18b1b446cbD�u�
ecd28bfd8a7f97d111587dec88746bdc8143ed9ea22a73f2c05141e5361dc7c2D�t�
0f91ee82a0f353071438675ca34ab961c867b90d20e8e45c2472604fdc1165ecD�s�
d5fa6533d980b7889d1404f6dda42ce2de80411d4079bd78b7ce3257cb36e5deD�r�
d24b5e95b20420b1e37b28037c9bd5175c6fbfd17e6a78347fb26b2792a126efD�q�
237858b698163e9a4615ec1ab98636d66cd7e26deb3512708bd88164019a1994D�p�
2e548be4d940969b8feee6cc4ffb8dde5ac295e684713eba0f96b20f287e7b40D�o�
cd2e66ab8554e43fed6cf3a6fe7067b925de6a4ebe0acd82af46e341ce011229D�n�
5ec49c65245b5b4768c2ac475d313f22f92daa8114cbfc555c7189d5844f7b24D�m�
f1402f59f4309e9a2ad497a9699c098b61381170de7f600a6a7636db589400d5D�l�
155a01df2abb9e5b0463d2bbe0314d3147245d1540cc0e5026de16abc670d0e6D�k�
19cc17be5a8b2b11edcbc35b6648252c7d5913d500ab82bda2d44c47f0d3f440
R�J��R�#��&��AkAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��%��AkAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#��$��AkAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#��#��AkAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	��"��}kJayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������9��:��;��<��?�� @��#B��&C��(D��+E��/G��1H��4J��8K��;L��>N��BO��FP��LQ��QR��VS��[T��_U��dV��iW��lX��mY��oZ��s[��v\��w]��y^��}_��`��a��b��
c��d��e��f��g��h��!j��&l��+m��/n��3o��7p��;q��?r��Cs��Gt��Ku��Ov��Sw��Wx��[y��_z��c{��f|��j}��n~��r��v���z���}��������������������������� ���$���(���)���-���2���3���6���7���;���?���A���E���H���L���O���R���V���Y���\���`���b���e���h���k
d��{��+{�}lAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��*��AlAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��)��AlAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082���({�5kAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��'{�}kAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228
�d\��#��/��AlAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��.��AlAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[��-��1lAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���,{�5lAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#��3��AmAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��2{�}lAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��1��5lAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��0��7lAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811
\XX�\�[��7��1mAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���6{�5mAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��5{�}mAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��4��AmAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��;��5mAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��:��7mAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��9��AmAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��8��AmAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���?m�SnJiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��>{�}nAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��=��5nAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��<{�}mAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
?W:�?�W��C��)nAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���B{�;nAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���A{�7nAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��@{�OnSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��G��5oAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��F{�GnAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��E{�}nAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��D��AnAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936
�\�����K{�7oAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��J{�OoSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���Im�SoJiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��H{�}oAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��O{�}oAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��N��AoAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��M��)oAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���L{�;oAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������S{�;pAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���R{�7pAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��Q{�OpSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��P{�GoAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
W���W� ��W{�GpAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��V{�}pAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��U��ApAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��T��)pAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1���$��[{�OqSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��Z{�}pAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��Y��]pAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Xw�pJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��_��AqAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��^��)qAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���]{�;qAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���\{�7qAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��c��]qAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��bw�qJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��a{�GqAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��`{�}qAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���f{�;rAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���e{�7rAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��d{�}qAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��j{�GrAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��i{�}rAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��h��ArAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��g��)rAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����n{�ArAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��m{�}rAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��l��]rAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��kw�rJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��r��AsAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��q��)sAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���p{�;sAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���o{�7sAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��v��]sAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��uw�sJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��t{�GsAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��s{�}sAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��zw�tJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��y{�GtAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���x{�AsAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��w{�}sAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������}{�AtAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��|{�}tAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��{��]tAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���{�tAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]tAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{tAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����AtAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��~��'tAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
[��{��{�}uAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]uAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��w�uJiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{�GuAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
,^���,�+��{�]uAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��
{�{uAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��	��AuAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'uAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�AuAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{�AvAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}vAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��
��]vAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���{�uAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422
D%}~�D���{�vAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]vAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{vAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����AvAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'vAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}vAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]vJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�������{�AwAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}wAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]wAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���{�wAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]wAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{wAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����AwAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'wAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;�� {�}wAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]wJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510

e�r+��V��:��eD��
e87677e240924426b72cfef3f1ea5a1e88a7a4f5e9fd2f778a2cc3fa1a10069aD��
76f4f248ab4aaef273c6428865ba506ee4dcc78c5a1d7c81a8d95a729a9ac4a0D��
f7f969b6625cce5d7207b8a291d03841700e7b868361f6f98ce61bb3cc624622D��
97eec08dd36b082c41af38fa508339931bbf380795208dfcf82213afc0e5486dD��
cb236ed8e588d128b8cdc78afdce6379dcd39b817725c547e7f06734476accd8D��
dff37a0add22b38eab5365de428508592ec00dc762e1cb45853495efb7c80c04D�~�
764c4140bd73b1c0bdc434edd88f8c15595f4b1c04c426277e3e1b098ebe7d16D�}�
64083e41574124b62214c724c95ecf69227a63f84cb8ea3c1b91c9e46909d214D�|�
95793f42b845d0ea4f32a235ac9b117b776a44e3f656a26633a3012f93a31bfeD�{�
f95f722b442bc9d91784e68a17b61860bc39197eaa93b49c63ee4572dd5a1007D�z�
46649389b1065af3dd7807f1fef23cb1e6f50351ea151d97424e8b8a75c616f3D�y�
8bebe621091a0ae4cea699aab647472b02128fdedc6cd35f7a87166bd62ed233D�x�
4c39d29f58affbbc0dca6ea29bd2dd9b75658d24d46f216c7de17b46f021b13e
�^���#��$��AxAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��#��'xAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���"{�AxAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��!{�}xAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$��(m�]xJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���'{�xAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��&{�]xAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��%{�{xAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��){�}xAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V��-��'yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���,{�AyAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��+{�}yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���*{�5xAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
vXY�v�$��2m�]yJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���1{�yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��0{�]yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��/{�{yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��.��AyAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531
���;��3{�}yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��6m�]zJiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���5{�zAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422���4{�5yAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
���;��7{�}zAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��
W��4��;��czAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��:��]zAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��9��zAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���8{�5zAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���?{�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��>{�SzAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��={�zAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���<��9zAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
W�;��A{�}{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��@m�]{Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��E��c{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��D��]{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��C��{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���B{�5{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��H{�S{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��G{�{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���F��9{Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
��
W��4��L��c|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��K��]|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��J��|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���I{�5|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��O{�S|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��N{�|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���M��9|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��R}�|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��Q��]|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��P��G|Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
��
W��4��V��c}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��U��]}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��T��}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���S{�5}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��Y{�S}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��X{�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���W��9}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��\}�}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��[��]}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��Z��G}Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��`{�~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���_��9~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��^��c~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��]��]~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373
*U*�&��b��G~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��a{�S~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������e}�~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��d}�~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��c��]~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��h��cAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��g��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��f{�E~Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��k{�SAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��j{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���i��9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��n}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��m��]Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��l��GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��q{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��p{�EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���o}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&��s��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��r{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������v}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��u}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��t��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��x��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��w{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��{{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���z{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��y��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&��}��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��|{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��~��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�r�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��
��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.��	��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����
m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�������}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
!�%!���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��"{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��!��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C�� {�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642

e�r+��V��:��eD��
4c86c1c3d77ede8a23e4eef1b4c3e4de9e50b799ed8dc0e6a6091ff032631cf6D��
2b98912d64d86fdfe8af76dc95ea23e41332536c8e0ef98223e9a33f2d227f22D��
c77e3e9c9f9cc48a40bb188838bad833e1ea361ee0ba3424abed546f3945d701D��
e78824bc6d2ccd3f5942b851ce6c3323367ca0cfa615dc8c95158aee19c123feD�
�
d1a6eb397fc04c57428b2ed1f9e3077ed639a5877ef02b2312725fb99c17c807D��
30c32ac3292a24f2136302bf5bf2d8ebf572bc2b8c57b4cb3c50ffeb223e144eD��
eb01e604d2abe850e31d2092b9db3c5b0df3ee2c53ee80d31ea248c0962ea297D�
�
9b0f357ea1eeba57c0d266260414871735cb04729cc62e43ab7bc3503538cb95D�	�
bce31a77615b379250e7eba11be12018aecf44bf33cd3d92aba684b157074907D��
56ec7e50303f9b981bec76c83f17fd6d6eaafaf4b44ba798d7dd4592b9c6663dD��
fc6444986c7f47167fd58aa8888952344750766901c89c5c31b69ed13631e92dD��
e6d47a4c88646ebb1f6ff54dd92d1dda1c8abb10bc8530e1cfe498c70ff1db87D��
226ad3151c609e6c6ae4f2fcadec7bd71f08fdb6c976380ebc8d8c0eac5afbfd
i�i�.��$��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��#{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��'{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���&{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��%��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v��+��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��*{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��){�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����(m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����-{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y��,{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966
I��I�,��0{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd��/m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��.{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��4}�=�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��3{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��2��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��1{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����7{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��6s�[�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��5s��Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
I��I�,��:{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- UpdƂ��9m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��8{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��>}�=�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��={�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��<��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��;{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��B��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��A�#�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��@s�[�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��?s��Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
s��O��s��H��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Gs�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��F�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Ey�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��D�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��Cy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��My�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��L��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��K�#�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���Jw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Iw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�K�Lt���R��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Qs�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��P�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Oy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��N�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��Ws�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��V�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Uy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���Tw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Sw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�}-���
��[w��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Zw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Yw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��X��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��`�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��_y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��^w�W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��]w�E�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��\i��Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��ew��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���dw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��cw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��b��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��as�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
{&{�&��hw�W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��gw�E�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��fi��Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
gg���iw�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��k��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��j��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��o��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��n��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��m��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���l��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��r{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��q��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��p���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���sw�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��u��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��t��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907bRRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{���������������������q���s���v���x���{���}���������������������������������������"���$���'���+���-���0Á�4ā�7Ł�:ǁ�>ȁ�BɁ�Hʁ�Mˁ�Ŕ�Ẃ�[΁�`ρ�eЁ�hс�iҁ�kӁ�oԁ�rՁ�sց�u؁�yف�|ځ�~ہ�܁�݁�ށ�߁��ၨ⁨と"䁨'恨+灨/聨3遨7ꁨ;끨?쁨C큨GKO�S�W�[�_�b���f���j���n���r���v���y���~���������������������� ��$��%��)	��.
��/��2��3
��7��;��=��A
��q��#��y��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��x��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��w��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���v��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��|{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��{��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��z���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ��~��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��}��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K�����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ����;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��
��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���	��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��
���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
+��9+�	����}�Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082������Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����	�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082������Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����	�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
R�J��R�#��"��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��!��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#�� ��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	����}�Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082
d��{��'{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��&��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��%��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082���${�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��#{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228

e�r+��V��:��eD��
7086a3c094b4e91c8ec76f30de930c4f4c0d0eb7f9617e94c419d74aabb4f793D��
e9370bcf27554400437736d6d3c4091baa10166592baf0f0a1912084c024255dD��
499aafdde42137b651f07de95acdb9b2b0426c0923756ba0bb98c74731260debD��
694a1661be3ee29b44619821670f2826998a9100cefc0efc36d04db24b211e47D��
1f2763028ec3d49595e594f3c26e4361b3462c3391db1c8dbebdb12aeb792896D��
efa7cbf450462d4d95389173c50afbb6786eb202258fbc8ba90ef57e2459561aD��
4521dde116f75afbb70beca46c5f369e56507e92501cb8051a6caf5aebe62defD��
87e7e547e429b8f05895e13d2852cf0bb18f91a4aba2a1bddc445c950284fc3aD��
54bf6ecd682245bc83076c67fa21c5c7db62c883a50972dc40dbfeda8a121125D��
18a12adf2bee6b8b9f5f9ed18be2ae1759d9d9d3aaeac59fd9a62973cfd8e759D��
e61584e7d9905cb45027e741b94c7b54f6b883091b652d2e13a682d244a0d9c9D��
f3c1504a0f9e8be3e261212092e89009d8b01f3fe0f1804ed10e767846e87d26D��
49275f52aa1c71edc688e6802a1f2c8b136594807077f4aa90e4e2686edd8ddb
�d\��#��+��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��*��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[��)��1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���({�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#��/��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��.{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��-��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��,��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811
\XX�\�[��3��1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���2{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��1{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��0��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��7��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��6��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��5��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��4��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���;m�S�Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��:{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��9��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��8{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
?W:�?�W��?��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���>{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���={�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��<{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��C��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��B{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��A{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��@��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936
�\�����G{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��F{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���Em�S�Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��D{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��K{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��J��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��I��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���H{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������O{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���N{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��M{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��L{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
W���W� ��S{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��R{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��Q��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��P��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1���$��W{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��V{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��U��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Tw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��[��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��Z��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���Y{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���X{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��_��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��^w��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��]{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��\{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���b{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���a{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��`{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��f{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��e{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��d��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��c��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����j{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��i{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��h��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��gw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��n��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��m��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���l{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���k{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��r��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��qw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��p{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��o{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��vw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��u{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���t{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��s{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������y{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��x{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��w��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���~{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��}{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��|{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��{��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��z��'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
[��{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��w��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
,^���,�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��
{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��	��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422
D%}~�D���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��
��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�������{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�^���#�� ��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$��$m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���#{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��"{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��!{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��%{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V��)��'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���({�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��'{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���&{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512

e�r+��V��:��eD�+�
f17e881111b5bdf792e8c6c4ebf56c864fe82ead7236e9d1714054bb3577b4c1D�*�
c538ef407bc0967b16f615b25eb59fae617d84051826819aa6837e85e7ff4db9D�)�
b153786a744ee0f5ed2df73a98fd3332ceb25e5bd7615afa48574656dfca002fD�(�
478b6dae53400cf32a4edf127885888456e0d40687b130621abfb48015757969D�'�
58fb7f4dacffd07cdbe657ec86f4af0d40760828a968dd894a92ea0fc7028255D�&�
0cb275f3f74903e0b995fb60bd6d2d45b6d75c0f10a329bf957ff43cddf17096D�%�
28a98571198ec6a28a437669678c624aad4fa1d5a6a2dd1bfb4884dddc584a5cD�$�
0688bc15522e5a3eee9f6ec2d771f77743a5979f6ac5afa0ec5059daa5926e35D�#�
bb040f65e782eb45f2e750692dccebe3a40db82890f2982e835b5946fb8a3a13D�"�
feeaaecf67702b0e5815ef109a94fbdbbce95e0e6228db0f8c286f9f61a845ddD�!�
9c713d3f8c2da0e96f093a322cd54bca18ff323dd824b4a6cfa730232160f754D� �
e450e9d5bc1c7f5f5f4f8b5d7ce575e0a5756a4bab5ed98be38ec59c1ffb0276D��
529b379f29069f8d8015829e0ce51b950cdfd5764b3d2de634462f2f45957b29
vXY�v�$��.m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���-{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��,{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��+{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��*��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531
���;��/{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��2m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���1{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422���0{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
���;��3{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��
W��4��7��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��6��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��5���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���4{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���;{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��:{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��9{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���8��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
W�;��={�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��<m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��A��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��@��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��?���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���>{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��D{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��C{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���B��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
��
W��4��H��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��G��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��F���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���E{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��K{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��J{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���I��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��N}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��M��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��L��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
��
W��4��R��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��Q��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��P���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���O{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��U{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��T{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���S��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��X}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��W��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��V��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��\{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���[��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��Z��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��Y��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373
*U*�&��^��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��]{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������a}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��`}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��_��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��d��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��c��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��b{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��g{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��f{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���e��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��j}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��i��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��h��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��m{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��l{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���k}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&��o��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��n{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������r}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��q}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��p��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��t��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��s{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��w{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���v{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��u��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&��y��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��x{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������|}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��{}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��z��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��~��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��}{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�r�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��
{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd*���	m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�������
}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd/���m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
!�%!���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd2���m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v����g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
i�i�.�� ��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��#{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���"{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��!��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v��'��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��&{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��%{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd7���$m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����){��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y��({�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966

e�r+��V��:��eD�8�
d17d23e9f3e2cd89c98f84ba07345a6c51f1dc3d67f5d52d483e6f2ed2d93751D�7�
f63528cfd40b5a5fb0d1e92cd4b91403bab6d49b9bd38ad0aef9e293a98a4b2aD�6�
e1b83152038966e7b6a720ab0871b052fb0dc4df9c843243ac9f34f68ff8a58fD�5�
74c5d742dbaa75738c5c52f77416c65b88472bdd5eafe0c39fe63d1816522476D�4�
115dde7a103bd42e620ddd732d36ef609984603c7103f803f2d1d8bac1bef6c9D�3�
28d98e71d3a3f5bef8abd07f0acc8353279545bf2aee26db49d58baded52104eD�2�
4c5528d38245aa14b33d05948eb02c322e95528485c9970733d2e5a577774d6dD�1�
1699532891581ac8f26d0ec07605ccb1d294d5a52f3b72ac2d996d064199d55eD�0�
3391ca1aa9dc6a5e4ed248a618ad059946ec5c65625f2566cbe9773d60646f54D�/�
08f9a253bf2654c7f281ec675c59f7bd4bd0f06ed499e82831fcd79aef82e50bD�.�
4a40dbfa3e0e5c2e7457bda18c82a1c0d3f49f91b8d548c568fea520908bec6bD�-�
e49bddae5537553d4d5a78524aa8b60eccbdcb546e79e3e046c946ef9da09ef0D�,�
679e963c7906dde82f6ac27f545036d5c38c79be36b3c643018742f7c21953c3
I��I�,��,{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd;���+m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��*{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��0}�=�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��/{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��.��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��-{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����3{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��2s�[�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��1s��Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
I��I�,��6{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd?���5m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��4{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��:}�=�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��9{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��8��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��7{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��>��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��=�#�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��<s�[�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��;s��Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
s��O��s��D��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Cs�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��B�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Ay�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��@�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��?y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��Iy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��H��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��G�#�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���Fw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Ew�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665bR}RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{��������������������H��K��N��R��U��X��\��^��a��d��g��j��m��o ��r!��t"��w#��y$��|%��~&��'��(��)��
+��
,��-��.��0��1��3��4�� 5��#6��'8��):��,<��0=��3>��6@��:A��>B��DC��IE��NF��SG��WH��\I��aJ��dK��eL��gM��kN��nO��oP��qQ��uR��xS��zT��~U��V��W��X��Y��Z��[��\��]��#^��'_��+a��/b��3c��7d��;e��?f��Cg��Gh��Ki��Oj��Sk��Wl��[m��^n��bo��fp��jq��nr��rs��ut��zu��~v��w��x��y��z��{��|��
�K�Lt���N��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Ms�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��L�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Ky�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��J�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��Ss�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��R�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Qy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���Pw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Ow�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�}-���
��Ww��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Vw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Uw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��T��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��\�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��[y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��Zw�W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��Yw�E�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��Xi��Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��aw��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���`w�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��_w�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��^��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��]s�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
{&{�&��dw�W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��cw�E�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��bi��Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
gg���ew�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��g��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��f��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��k��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��j��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��i��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���h��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��n{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��m��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��l���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���ow�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��q��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��p��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��u��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��t��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��s��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���r��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��x{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��w��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��v���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ��z��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��y��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��~��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��}��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��|��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���{��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K�����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ����;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��
��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��	���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
+��9+�	����}�Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082������Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527���
��	�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082������Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����	�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
R�J��R�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	����}�Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082
d��{��#{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��"��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#��!��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082��� {�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228
�d\��#��'��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��&��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[��%��1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���${�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#��+��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��*{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��)��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��(��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811

e�r+��V��:��eD�E�
a1c2e9d4603673b1df8482afca3dab078eea9124690469ef6dee7f9d4e663b29D�D�
e9036e2b707bcda2cefdab377479ae65cfc1d4f0da25dc54312d9786b65eb947D�C�
a11deef2840f7fe80ce1b946609ec3aa04069da0557383edb2dd88107312e356D�B�
8127547ec74cf787276b994c2f00085304d697481622d6712560f5c1fde57dd1D�A�
62bf471ba14072212be41f68548e536d8a022b8fffa4c7fdf94b4dc26c4d7d3aD�@�
cb1e709d6fc4d17df3ff827f54f59d30c0e4cb11b30652b60e0f1087d387bdd9D�?�
b5bacd96f28f126743bbc0807bcb665ff0c52ee4b0256b7bcffb9a10f8d18c68D�>�
7bfed40726a8044b0f0685487bd9f5131499f3c91242720ec1c55565601abd18D�=�
c441b3fe43905a4ba494377fd18f7afb8d59b3c95abfb93384cd0577b3568a5cD�<�
2117399e425ef95fb4a8b8d38c39a38d73b5e0ad8f8212f6e467901f5f05ca9cD�;�
31f1aea6422bc6b0072f7c26fc3200a90ac929108eee513f7452415171c8a9bdD�:�
ceb4699a86911fa2a032df43313a18847098f66921adb5fab1298f3791d1b144D�9�
4c7a4b1402ce62b471994dd364f3e883167ad5ba8ebba01d67f8ceee2f63d6a5
\XX�\�[��/��1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���.{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��-{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��,��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��3��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��2��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��1��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��0��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���7m�S�Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��6{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��5��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��4{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
?W:�?�W��;��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���:{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���9{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��8{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��?��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��>{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��={�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��<��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936
�\�����C{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��B{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���Am�S�Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��@{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��G{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��F��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��E��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���D{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������K{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���J{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��I{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��H{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
W���W� ��O{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��N{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��M��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��L��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1���$��S{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��R{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��Q��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Pw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��W��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��V��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���U{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���T{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��[��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Zw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��Y{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��X{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���^{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���]{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��\{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��b{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��a{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��`��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��_��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����f{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��e{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��d��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��cw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��j��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��i��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���h{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���g{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��n��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��mw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��l{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��k{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��rw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��q{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���p{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��o{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������u{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��t{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��s��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���z{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��y{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��x{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��w��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��v��'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
[��{��~{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��}��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��|w��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��{{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
,^���,�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422
D%}~�D���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��
{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��	��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��
m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�������{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�^���#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$�� m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��!{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V��%��'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���${�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��#{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���"{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
vXY�v�$��*m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���){��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��({�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��'{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��&��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531
���;��+{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��.m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���-{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422���,{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512

e�r+��V��:��eD�R�
6bcf5f3e89c2755d81da6331cde8d0f4c05fcdc2ce0250804be9609d9e125125D�Q�
483c0e526fee490fe5e387d8f466ba9336f13e99e38a22801656db9f0ef6fdbfD�P�
89988277f04bdfb0831030270ba38286c5de52d83e5c015250fa99a89d9f5a47D�O�
8ccfeff30f33569622e94d656bd899c28dec3d943fe48b0140ff2230c98cf112D�N�
40e235c4553d138143d79a740ff6929dacaa7d0bb99c84caf67b643e58c12a99D�M�
9c6296e27d68895aa9814be130a3a7bb16cd8fa2ec14d63699d1a6a1223dc662D�L�
e12fcfca359b3c38140cf59ead8a267ef1c024a4ed16d4250b7d14c94300a665D�K�
04ec871279754a00e7006a2f023b95ed305dc36a9ff23d65ed20cbf987b07ffdD�J�
b9cbd1c4954833f2a8f3d68b1cc92407f3df064e044f0f7f335563bf1983963bD�I�
f6fbb6525d675cb023750b0e38502f6e9d30cb7ce70f98d75a7bc6a76d175598D�H�
8e0d749ba5b5f6a9925903f7cb854321aba39a3bc393c295fbbff22c33feb07cD�G�
7f699df3b1a5a03f46da8dc559615cdabf4c01094c12f89d7bbbbb93f3744af6D�F�
8244566af4a36c890bd6abe69ab5f9fd27a7847a32c6063c2ec5fb6de40b84fe
���;��/{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��
W��4��3��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��2��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��1���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���0{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���7{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��6{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��5{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���4��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
W�;��9{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��8m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��=��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��<��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��;���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���:{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��@{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��?{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���>��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
��
W��4��D��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��C��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��B���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���A{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��G{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��F{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���E��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��J}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��I��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��H��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
��
W��4��N��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��M��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��L���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���K{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��Q{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��P{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���O��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��T}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��S��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��R��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��X{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���W��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��V��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��U��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373
*U*�&��Z��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��Y{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������]}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��\}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��[��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��`��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��_��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��^{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��c{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��b{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���a��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��f}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��e��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��d��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��i{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��h{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���g}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&��k��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��j{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������n}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��m}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��l��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��p��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��o{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��s{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���r{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��q��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&��u��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��t{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������x}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��w}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��v��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��z��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��y{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q��}��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���|{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��{��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�r�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��~}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�������	}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��
{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���
{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
!�%!���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v����g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������~�� ��!���%���*���+���.���/���3���7���9���=���@���D���G���J���N���Q���T���X���Z���]���`���c���f���i���k���n���p���s���u���x���z���}������������	���������������������������#���%���(���,���/���2���6���:���@���E���J���O���S���X�]Á�`ā�aŁ�cƁ�gǁ�jȁ�kɁ�mʁ�qˁ�t́�v́�z΁�~ρ�Ё�с�ҁ�Ӂ�ԁ�Ձ�ց�ׁ�#؁�'ف�+ځ�/ہ�3݁�7ށ�;߁�?�CၮG⁮KのO䁮S偮W恮Z灮^聮b遮f
i�i�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v��#��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��"{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��!{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd���� m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����%{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y��${�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966
I��I�,��({�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����'m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��&{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��,}�=�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��+{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��*��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��){�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����/{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��.s�[�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��-s��Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914

e�r+��V��:��eD�_�
b346f29da69c21241a449decf0f47b1117502c6f136b70a23a24f1438e919766D�^�
2596d8e58b7977e350ac45b39a8c22507bf5f23a48e5c5af3025b81016622b58D�]�
a7cb9faf1648281d26c03a5952b9c015a6e302f5018328fa99f1cd9aafbf89c4D�\�
935642d829064a30780cd84c8e1ca654486d06cc675f9a06e246d6b366d333c5D�[�
58b23e3f8226650315902eba6ab9e2d2a81f816aa85d12cebf74af56a8504c16D�Z�
7efe56d9bcad9ff6dc145a50baf931d2125888da4d984a84fd14a509862f3751D�Y�
4851da54ebe84600b0c7af372a59c38094992018f2ffe45bec040b2dd5d380bdD�X�
db00d954c05dbf5ebc5e47f7671980d64911b459229bc83c8dcd6c60c4ce0b90D�W�
d23dd2eb44577c74053a9b0d2df44d8fb4618ffcdc560bc60003b1393107baf1D�V�
b2017332dfd84aebbbfe8b857c333da3eb192f27956aa48ab410bc0ea011ca72D�U�
d297c29388bc4f582e226fb85070d6108bb21fb17acb88d7d2de900bfcc84423D�T�
c6835fc2dc5e5741781c97f0dd76cd871e82a83dded531a6ca44d9a58abd9a2aD�S�
b1fa6d1fdf39dbf8d3397fcaa156e0402d827e1c451d262b62c3899c837fc47a
I��I�,��2{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����1m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��0{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��6}�=�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��5{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��4��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��3{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��:��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��9�#�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��8s�[�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��7s��Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
s��O��s��@��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��?s�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��>�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��=y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��<�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��;y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��Ey�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��D��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��C�#�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���Bw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Aw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�K�Lt���J��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Is�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��H�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Gy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��F�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��Os�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��N�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��My�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���Lw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Kw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�}-���
��Sw��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Rw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Qw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��P��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��X�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Wy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��Vw�W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��Uw�E�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��Ti��Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��]w��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���\w�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��[w�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��Z��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Ys�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
{&{�&��`w�W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��_w�E�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��^i��Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
gg���aw�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��c��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��b��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��g��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��f��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��e��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���d��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��j{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��i��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��h���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���kw�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��m��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��l��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��q��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��p��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��o��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���n��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��t{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��s��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��r���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ��v��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��u��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��z��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��y��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��x��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���w��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����~{�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��}{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��|��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��{���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ����;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p����Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?����y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907�����7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K�����Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
+��9+�	����}�Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082���
���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527���	��	�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#��
��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082������Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����	�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
R�J��R�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	����}�Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082
d��{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082���{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228
�d\��#��#��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��"��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[��!��1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811��� {�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#��'��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��&{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��%��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��$��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811
\XX�\�[��+��1�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���*{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��){�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��(��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��/��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��.��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��-��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��,��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���3m�S�Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��2{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��1��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��0{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395

e�r+��V��:��eD�l�
3bf5af40702f37c01b474763465e7acba66d1f9cca53e59538aa92a72f018a35D�k�
208f92bb62fd7e69ec6decb3b63b18a2c7e51d8c1ea83099de63b56163c9d1d2D�j�
25f4706211e06a217d7143f0aead6ea49f2a47344d314396d09e691a83a51848D�i�
7d5c7ed2663b8b4d93ccdce3e87fa7b84c42697397d9594170591871b706c60dD�h�
5ef7809b46025089f784a5c5eef97c5cb1c0ae4576bd7a05f04c657f2231d054D�g�
14d75975f6b77789e102a09b3e0c65a16a5cd38e795fdb34c4f40cf970a67b93D�f�
f1896e8ffe63eff76d82b6ef313c62631fce45258dee3c4ac0e2ffe4b8e841e6D�e�
b82ab048b9697892096528f61737d1713449b0dfdae049f4533ac7d1e469ad0eD�d�
83d5e8fcf034f22af47eccbbd1c693274a94cfc7afdec007e5cebcb5d3ed2a73D�c�
25ac1048044afca67ce7c131d644b1fbf4661666b58a9bf482f289e5b1905c0fD�b�
12a2e4e010484b9e7bd30fc89af801f0e1e212a2faaaa5017acde6e83cd52964D�a�
b2ab719c45f136d393fa35fa34b5f7ce41406fba2c86e188fc3d3823aabe7688D�`�
1cbeca0135b7f2bc07c9bcd75fc0fe3f09797e00adfb9350ced9cd89eeb77a8e
?W:�?�W��7��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���6{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���5{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��4{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��;��5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��:{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��9{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��8��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936
�\�����?{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��>{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���=m�S�Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��<{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��C{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��B��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��A��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���@{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������G{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���F{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��E{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��D{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
W���W� ��K{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��J{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��I��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��H��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1���$��O{�O�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��N{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��M��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Lw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��S��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��R��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���Q{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���P{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��W��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Vw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��U{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��T{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���Z{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���Y{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��X{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��^{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��]{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��\��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��[��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����b{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��a{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��`��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��_w��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��f��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��e��)�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���d{�;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���c{�7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��j��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��iw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��h{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��g{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��nw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��m{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���l{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��k{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������q{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��p{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��o��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���v{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��u{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��t{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��s��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��r��'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
[��{��z{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��y��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��xw��Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��w{�G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
,^���,�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��~{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��}��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��|��'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422
D%}~�D���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��
{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��	m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�������
{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�^���#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$��m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V��!��'�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531��� {�A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
vXY�v�$��&m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���%{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��${�]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��#{�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��"��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531
���;��'{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��*m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���){��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422���({�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
���;��+{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��
W��4��/��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��.��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��-���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���,{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���3{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��2{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��1{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���0��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373

e�r+��V��:��eD�y�
447bf3552c5156b143306396c3569328e80baec97cb1a11315280cd2f3b38e0eD�x�
dc71096c57fc06718137b2f317d123ac81f3c58557e1d9e42b1d0cceaeb95d38D�w�
f8d95a99893e9265f3f6125f684c56c23afa3834653a04d0e9dbe9360a6aaf5dD�v�
9a2538ebee1a09c61de1b04f3ce4e0727b75e499fc1cbe6df0a72d5507871c0eD�u�
639be57d983a29004b74a7f3b753de3e62c2aca8e576d15d3d5b4ca2b847507aD�t�
48b28be8658e81953a40daf5ae041fd07fe585facbf0a5c985d98cee88b3f0aaD�s�
0dfc6e8ea7cfb111b83da1e6ce7bfc3f5f3c353f61b25a21812ba01aed81cbedD�r�
981af71f35ff127f9a818e70105e8d4597de1eae244d22caa97ea246a29deee1D�q�
0a8fa0a8748dd4667a74653e840521e8d0602e1f9210bb2b27d75c59318081c0D�p�
dc7ff660e8cb322dcf0a071b2f556dfa57cc7a3c0a543524ae2c9b6a807d8262D�o�
248b6271c4100aa6ae97c9a74a7d3b0bf217ed7e074e51ff84d4eb50183ea9a5D�n�
503b6775fa6993e20617e140090892909b171ba5cb9cf102f14e12e8e3722fbfD�m�
993ebb29f0261ce55c92629ffd652f5fd4b867dbb41765fad94a00716ec5e8b1
W�;��5{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��4m�]�Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��9��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��8��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��7���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���6{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��<{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��;{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���:��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
��
W��4��@��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��?��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��>���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���={�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��C{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��B{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���A��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��F}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��E��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��D��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
��
W��4��J��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��I��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��H���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���G{�5�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��M{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��L{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���K��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��P}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��O��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��N��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��T{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���S��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��R��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��Q��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373
*U*�&��V��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��U{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������Y}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��X}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��W��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��\��c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��[��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��Z{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��_{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��^{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���]��9�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��b}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��a��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��`��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��e{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��d{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���c}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&��g��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��f{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������j}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��i}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��h��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��l��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��k{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��o{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���n{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��m��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&��q��G�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��p{�S�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������t}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��s}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��r��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192bRVRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������끮n쁮q큮vz���
�
����������������!���&���'���*���+���/���3��5��9��<��@��C��F��J��M	��P
��T��V��Y
��\��_��b��e��g��j��l��o��q��t��v��y��|�������� ��
!��
#��$��&��'��(��)��+��!,��$.��(/��+0��.2��23��65��<6��A7��F8��K9��O:��T;��Y<��\=��]>��_?��c@��fA��gB��iC��mD��pE��rF��vG��zH��|I��J��K��L��
M��N��O��P��Q��#R��'S��+T��/U��3
i�i�.��v��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��u{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q��y��]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���x{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��w��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�r�_��|{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���{}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��z}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��~��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.��}��W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd���m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�������}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��
{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���	{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��
{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd"���m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
!�%!���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd%���m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v����g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
i�i�.����W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v����g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd*���m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����!{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y�� {�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966
I��I�,��${�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd-���#m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��"{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��(}�=�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��'{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��&��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��%{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����+{��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��*s�[�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��)s��Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
I��I�,��.{�_�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd1���-m�A�Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��,{�U�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��2}�=�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��1{�y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��0��g�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��/{�
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��6��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��5�#�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��4s�[�Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��3s��Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914

e�r+��V��:��eD��
6e91279c2c56161f7ffdfd5a8f8f361d282238b249859e57ac7e8d4b04a799e7D��
c55fbad2b511346ebf2a848c75861a87c98b38738226ac74429144324281ef52D��
f544bc64d6a690d2e5853b042cb5a8c7eb50879dacd1acf3c3eca69966d25370D��
0cb228d7dc8544ea720f5503724f929baf79d69d2a7d1eb9dd47cf361620788eD��
be2825be40e44e47e533b1d6e13b3145e41e073086a22147b77532548436e30dD��
03861872c0b045970aa5d709fc96b48dc78114b5fe454d59dff316eb4753ec08D��
fed1a25dff437173e5198969384d287e1c91872362d72445cda5bf8bc78201f5D��
0bec8227df4692ec640eaf96154a87faa5a1ab3d9c37856f4f8e0c0a98c88525D�~�
8c2a340bb8e3487639e7851ddf9b80b263ca137dee7948eceddfd372f4b80882D�}�
6f89875815ef474fc2dd49d33fb56f30d070a424491a2ab970b04c4b3a36133eD�|�
8b27ff2d6ae464c9929368b71564984ac614007abaed4abfb490c301cdd341deD�{�
c43cc5c86cdd41a4e686f3173df2eca34068dc56d75a5a468786fc13989bd5fdD�z�
d5660d632b89221fe127f4475df5c34071486cde5540e458836be4a6b5ab6bcd
s��O��s��<��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��;s�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��:�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��9y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��8�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��7y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��Ay�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��@��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��?�#�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���>w�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��=w�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�K�Lt���F��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Es�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��D�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Cy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��B�c�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��Ks�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��J�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Iy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���Hw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Gw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�}-���
��Ow��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Nw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Mw�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��L��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��T�{�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Sy�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��Rw�W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��Qw�E�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��Pi��Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��Yw��Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Xw�?�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Ww�!�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��V��Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Us�5�Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
{&{�&��\w�W�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��[w�E�Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��Zi��Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
gg���]w�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��_��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��^��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��c��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��b��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��a��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���`��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��f{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��e��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��d���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���gw�3�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��i��;�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��h��Q�Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��m��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��l��A�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��k��y�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���j��7�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��p{�}�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��o��
�Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��n���Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ��r��;	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��q��Q	Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��v��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��u��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��t��y	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���s��7	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����z{�1	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��y{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��x��
	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��w��	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ��|��;	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��{��Q	Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��~��y	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���}��7	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I����
	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K����	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
+��9+�	����}	Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082�����	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��
{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#��
��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#��	��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082�����	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
R�J��R�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	����}	Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082
d��{��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082���{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228
�d\��#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[����1	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#��#��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��"{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��!��5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^�� ��7	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811
\XX�\�[��'��1	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���&{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��%{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#��$��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��+��5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��*��7	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��)��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��(��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���/m�S	Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��.{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��-��5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��,{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
?W:�?�W��3��)	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���2{�;	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���1{�7	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��0{�O	Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��7��5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��6{�G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��5{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��4��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936

e�r+��V��:��eD��
4b6626a337fe2141755d1e57f9afb5d1914f4b0d752fac9cb28cea90640d95d3D��
e76b18f34fbbf2a1e7810ed95efd446420bc4ee561f16434445b97b5a0d466c4D��
2b55d4f35dce819b798ee136c0dfb0c453985cfd824a8e839552fa2112ae4123D��
649c2ee77e6ebe7b0ada06b4afab6acc21bb572fecb9b419d681640d40847bf0D��
6cd18c7d7a47f7f1e42e63865172f463162be9c7697c5e7b1953c41099a4d25dD��
39b2ee3cdead3a8fa94b2f7fb082014e56dc28992ac2740a46795004ac7dd6c0D�
�
7541eb5333c72fe17aa8e0d7dc2f7f91d8769a57129608043af2b098b5741661D��
20e9c59ba021cc9600dbade71b83e1e1b014eae44d6ba273d5fa6491d9508f08D��
e3d2e4fe4672614c07f199cf8ea78ca12ec2e4c5bfee735cbffb6dca84ba91cdD�
�
e2d9e1fc46982332f4c50e35b6e51f62edc6bd78156642b63e2553d404909efaD�	�
47005db64df1a2026edd49418e5714bd0cc4b55a22af61ad08162f38d849be23D��
a2a0890a1bee535a6e50b46532778911b437fe971d72e228048964d8dd0f7550D��
8b331529abc56930e532f91b8634eaa719301817f62a7a7fbbc720594baf85da
�\�����;{�7	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��:{�O	Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���9m�S	Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��8{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��?{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��>��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��=��)	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���<{�;	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������C{�;	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���B{�7	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��A{�O	Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��@{�G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
W���W� ��G{�G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��F{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��E��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��D��)	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1���$��K{�O		Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��J{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��I��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Hw�	Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��O��A		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��N��)		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���M{�;		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���L{�7		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��S��]		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Rw�		Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��Q{�G		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��P{�}		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���V{�;	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���U{�7	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��T{�}		Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��Z{�G	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��Y{�}	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��X��A	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��W��)	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����^{�A	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��]{�}	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��\��]	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��[w�	
Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��b��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��a��)	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���`{�;	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���_{�7	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��f��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��ew�	Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��d{�G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��c{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��jw�	Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��i{�G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���h{�A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��g{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������m{�A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��l{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��k��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���r{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��q{�]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��p{�{	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��o��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��n��'	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
[��{��v{�}	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��u��]	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��tw�	
Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��s{�G	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
,^���,�+��{{�]	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��z{�{	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��y��A	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��x��'	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���w{�A	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{�A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��~{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��}��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���|{�	
Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422
D%}~�D���{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]	Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�������	{�A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��
{�]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��
��'	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]	Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�^���#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$��m�]	Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V����'	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
vXY�v�$��"m�]	Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���!{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+�� {�]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531
���;��#{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��&m�]	Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���%{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422���${�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
���;��'{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��
W��4��+��c	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��*��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��)��	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���({�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���/{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��.{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��-{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���,��9	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
W�;��1{�}	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��0m�]	Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��5��c	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��4��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��3��	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���2{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��8{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��7{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���6��9	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373

e�r+��V��:��eD� �
f251e57808a6960518cf05f98f4bed5c0b006b5a01550a68ebb9141c79f0a2ddD��
fb53f898a944ec236a811663325ceef801af9d4d3e2c11522ee1bd7a77d9da79D��
35254d0cedc9b7756462a8c23a1b9bbf476fefd2ec13b879640bcc09a53504b6D��
5a103d4f3b121195638cf61cb91fbc034b9c2a6deee845296612dfb590ef0859D��
dab70d9c3e9d60e9a4331d2ccb0d2d3dacfe1d41e355572961045f2ce2c22a34D��
e5bf29d89efc9dcdf73e8e8b84b8aa41793d043e3bf944a0c3659d666a13bb4bD��
2f740a705cf289cc730913827ebc04cd2b4e26e229696914ddce3e48bfee0552D��
2095e4e98eb5962eb97eb3c3165dd036bf0cc42fbb1cfd2c138811047868000fD��
f1844144d5a3c42025f3ef1788373858de7187d6dd96e9bcddac4b3fd027e5c9D��
8477e56cf835d806a8f5345ebff218dfbceb351c7bca81b9aa806a2fa8930f02D��
ce32d3269966c385c52153f1c95ee8578b768a8b69a1d2937f50ab40dc45e380D��
a051479c689a04906459e0f87104834ea707b2ffeb1317695704b03edb4c8b2bD��
47a66548a049d52ad8e7adcde0de98e6768596cb771d5b8ee590193dda421dd4
��
W��4��<��c	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��;��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��:��	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���9{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��?{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��>{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���=��9	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��B}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��A��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��@��G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
��
W��4��F��c	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��E��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��D��	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���C{�5	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��I{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��H{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���G��9	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��L}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��K��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��J��G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��P{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���O��9	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��N��c	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��M��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������X��;Y��?Z��C[��G\��K]��O^��S_��V`��Za��^b��bc��fd��je��mf��rg��vh��{i��j��k��l��	m��n��o��p��q��r��s��"t��#u��&v��'w��+x��/y��1z��5{��8}��<~��?��B���F���I���L���P���R���U���X���[���^���a���c���f���h���k���m���p���r���u���x���{���~������������	������������������������ ���$���'���*���.���2���8���=���B���G���K���P���U���X���Y���[���_���b���c���e���i���l���n���r���v���x�|
*U*�&��R��G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��Q{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������U}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��T}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��S��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��X��c	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��W��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��V{�E	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��[{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��Z{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���Y��9	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��^}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��]��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��\��G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��a{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��`{�E	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���_}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&��c��G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��b{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������f}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��e}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��d��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��h��W	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��g{�E	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��k{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���j{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��i��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&��m��G	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��l{�S	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������p}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��o}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��n��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��r��W	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��q{�E	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q��u��]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���t{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��s��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�r�_��x{�E	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���w}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��v}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���{{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��z��A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.��y��W	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��~{�_	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����}m�A	Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��|{�U	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�������}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��}�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q����]	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��	{�E	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,��{�_	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A	Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
!�%!���{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.��
��W	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A	Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��
{�U	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��{�y	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v����g	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
i�i�.����W	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v����g	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��{�_	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A	Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y��{�y	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966
I��I�,�� {�_	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����m�A	Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��$}�=	Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��#{�y	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��"��g	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��!{�
	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����'{�	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��&s�[	Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��%s�	Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
I��I�,��*{�_	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd����)m�A	Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��({�U	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��.}�=	Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��-{�y	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��,��g	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��+{�
	Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��2�	 Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��1�#	 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��0s�[	Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��/s�	Anton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
s��O��s��8�	 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��7s�5	 Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��6�{	 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��5y	 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��4�c	 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��3y	 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��=y	!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��<�	!Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��;�#	!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���:w�?	 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��9w�!	 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665

e�r+��V��:��eD�-�
7a01c8e4b4c1eaaf03f29bc31b1fe91b81c17591f2d6a358c7e57ae3b8103eb6D�,�
c0938d8860cf5e93761458738a21c3f5f505e71d1669169693c88f8471d51381D�+�
8319e904c4b86f6892579492778456a31dcdbb29d4f7b62060dba26486be2a85D�*�
8f21403b3615c8a3c67833bcb49d11b4c3b80d768a6bdba42abe5d2b299d9cb3D�)�
b22aa8999bea98b78e5fb8b2195a94bb82daa9f6c9469ec768b019d741e439dbD�(�
9592f2b746e7ef4c2e4fd13ac3fad913504fb720911df981e24b63bf2011a6e6D�'�
01b83fa31f2e2ed972aa491423479df2e3e026e54668e3933d3b8b1803fe208bD�&�
50a577d62eed91a0ed5c686f85830b3c9252dff331c94841f673d8f19924250dD�%�
2cee495ddd05e0808ca1e516d0b1ad02fcdf3e46ede1dadb81a285b96ab3648cD�$�
393806557640081ee6c9dd7dc6ee00e307d9ae676a1a267d20fb4793dda538d7D�#�
ba6f42672b28ba6a322e4daf6a3e3fc791a39cdd7e438b6d6954713e77022fa6D�"�
b9b371aa85a094ef9bf89ccec7f948b0f98488eac855ba41f5653f61941610e4D�!�
5c5cbbb79d474d8a08d41a7a9eab16454a6204f748c42ff97d2ca8776ea1fbc8
�K�Lt���B�	!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��As�5	!Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��@�{	!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��?y	!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��>�c	!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��Gs�5	"Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��F�{	"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Ey	"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���Dw�?	!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Cw�!	!Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�}-���
��Kw�	"Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Jw�?	"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Iw�!	"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��H�	"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��P�{	#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Oy	#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��Nw�W	"Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��Mw�E	"Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��Li�	"Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��Uw�	#Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Tw�?	#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Sw�!	#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��R�	#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Qs�5	#Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
{&{�&��Xw�W	#Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��Ww�E	#Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��Vi�	#Jiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
gg���Yw�3	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��[��;	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��Z��Q	$Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��_��A	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��^��A	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��]��y	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���\��7	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��b{�}	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��a��
	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��`��	$Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
gg���cw�3	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-5_�@- Introduced ssbd_arches to denote architectures with SSBD mitigation (currently only x86_64)
- Introduced nm-based check to verify alt-java on ssbd_arches is patched, and no other alt-java or java binaries are patched
- RH1750419 patch amended to emit a warning on architectures where alt-java is the same as java
- Resolves: rhbz#1901695
ff� ��e��;	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��d��Q	%Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��i��A	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��h��A	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��g��y	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���f��7	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
b0bb�{��l{�}	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��k��
	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��j��	%Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ��n��;	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��m��Q	&Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��r��A	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��q��A	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��p��y	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���o��7	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����v{�1	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��u{�}	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��t��
	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��s��	&Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
ff� ��x��;	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�@- Add new Harfbuzz library to package listing and _privatelibs
- Resolves: rhbz#1903907�p��w��Q	'Andrew John Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.1-0.0.ea_�- Update to jdk-11.0.10.0+1
- Update release notes to 11.0.10.0+1
- Use JEP-322 Time-Based Versioning so we can handle a future 11.0.9.1-like release correctly.
- Still use 11.0.x rather than 11.0.x.0 for file naming, as the trailing zero is omitted from tags.
- Revert configure and built_doc_archive hacks to build 11.0.9.1 from 11.0.9.0 sources, and synced with Fedora version.
- Cleanup debug package descriptions and version number placement.
- Switch to EA mode for 11.0.10 pre-release builds.
- Drop JDK-8222286 & JDK-8254177 as applied upstream
- Explicitly request bundled Harfbuzz (too risky to change this so late in the RHEL 7 lifecycle)
- Resolves: rhbz#1903907
��q��#��|��A	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.4-0.0.ea_��- Update to jdk-11.0.10.0+4
- Update release notes to 11.0.10.0+4
- Resolves: rhbz#1903907�#��{��A	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.3-0.0.ea_��A- Update to jdk-11.0.10.0+3
- Update release notes to 11.0.10.0+3
- Resolves: rhbz#1903907�?��z��y	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_��@- Completely revert hacks from previous release, using buildver in configure and tzdata 2020b
- Resolves: rhbz#1903907���y��7	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.2-0.0.ea_�=�- Update to jdk-11.0.10.0+2
- Update release notes to 11.0.10.0+2
- Update tarball generation script to use PR3818 which handles JDK-8171279 changes
- Drop JDK-8250861 as applied upstream.
- Resolves: rhbz#1903907
�0bb����{�1	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-1`>(�- Add backport of JDK-8258836 to fix -Xcheck:jni warnings
- Resolves: rhbz#1897602�{��{�}	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.9-0`��- Update to jdk-11.0.10.0+9
- Update release notes to 11.0.10.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-01-19 @ 1pm PT.
- Resolves: rhbz#1908970�I��~��
	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.8-0.0.ea`2A- Update to jdk-11.0.10.0+8
- Update release notes to 11.0.10.0+8 and add missing JDK-8245051 from b04.
- Resolves: rhbz#1903907�K��}��	'Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.10.0.5-0.0.ea`2@- Update to jdk-11.0.10.0+5
- Update release notes to 11.0.10.0+5
- Drop JDK-8222527 as applied upstream.
- Resolves: rhbz#1903907
+��9+�	����}	(Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082�#����A	(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082�����	(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����		(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527
`X�``�{��	{�}	(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����A	(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A	(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����A	(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����A	(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082
�dXE��#��
��A	)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.3-0.0.ea`_A- Update to jdk-11.0.11.0+3
- Update release notes to 11.0.11.0+3
- Resolves: rhbz#1938082�����	)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`_@- Debug builds need to find their documentation from the release build.
- RHEL 7 builds still include a doc package for debug builds, though debug builds do not build docs.
- Resolves: rhbz#1930527�����		)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.2-0.1.ea`\{@- Perform static library build on a separate source tree with bundled image libraries
- Make static library build optional
- Based on initial work by Severin Gehwolf
- Resolves: rhbz#1930527���
{�5	(Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
R�J��R�#����A	)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A	)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�#����A	)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea`lM@- Update to jdk-11.0.11.0+5
- Update release notes to 11.0.11.0+5
- Resolves: rhbz#1938082�#����A	)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.0.ea`a�A- Update to jdk-11.0.11.0+4
- Update release notes to 11.0.11.0+4
- Resolves: rhbz#1938082�	����}	)Jayashree Huttanagoudar <jhuttana@redhat.com> - 1:11.0.11.0.3-0.1.ea`a�@- Fix issue where CheckVendor.java test erroneously passes when it should fail.
- Add proper quoting so '&' is not treated as a special character by the shell.
- Resolves: rhbz#1938082
d��{��{�}	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#����A	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082�#����A	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082���{�5	)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��{�}	)Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228
�d\��#����A	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#����A	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811�[����1	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���{�5	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736
�;;��#����A	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.6-0.0.ea`pA�- Update to jdk-11.0.11.0+6
- Update release notes to 11.0.11.0+6
- Resolves: rhbz#1938082�{��{�}	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]����5	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^����7	*Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811
\XX�\�[��#��1	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.1-0.0.ea`ٹ�- Update to jdk-11.0.12.0+1
- Update release notes to 11.0.12.0+1
- Switch to EA mode for 11.0.12 pre-release builds.
- Update ECC patch following JDK-8226374 (bug ID yet to be confirmed)
- Remove local JDK-8187450 backport as now included upstream.
- Resolves: rhbz#1967811���"{�5	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-1`u��- Add backport of JDK-8187450 from 11.0.12 to fix RH1937736
- Resolves: rhbz#1937736�{��!{�}	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.9-0`t6@- Update to jdk-11.0.11.0+9
- Update release notes to 11.0.11.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-04-20 @ 1pm PT.
- Resolves: rhbz#1940228�#�� ��A	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.7-0.0.ea`r�- Update to jdk-11.0.11.0+7
- Update release notes to 11.0.11.0+7
- Resolves: rhbz#1938082
�X����]��'��5	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�^��&��7	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.4-0.0.ea`��- Update to jdk-11.0.12.0+4
- Update release notes to 11.0.12.0+4
- Correct bug ID JDK-8264846 to intended ID of JDK-8264848
- Resolves: rhbz#1967811�#��%��A	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.3-0.0.ea`��@- Update to jdk-11.0.12.0+3
- Update release notes to 11.0.12.0+3
- Resolves: rhbz#1967811�#��$��A	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.2-0.0.ea`��- Update to jdk-11.0.12.0+2
- Update release notes to 11.0.12.0+2
- Resolves: rhbz#1967811
zz���+m�S	,Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��*{�}	,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395�]��)��5	,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811�{��({�}	+Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
?W:�?�W��/��)	,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���.{�;	,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���-{�7	,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��,{�O	,Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873
�XX���]��3��5	-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.6-0.0.ea`��- Update to jdk-11.0.12.0+6
- Update release notes to 11.0.12.0+6
- Skip 11.0.12.0+5 as 11.0.12.0+6 only adds a test change
- Resolves: rhbz#1967811� ��2{�G	,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��1{�}	,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��0��A	,Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936
�\�����7{�7	-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��6{�O	-Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873���5m�S	-Jiri Vanek <jvanek@redhat.com> - 1:11.0.12.0.7-1a0��- Minor cosmetic improvements to make spec more comparable between variants
- Related: rhbz#1999936�{��4{�}	-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-0`�@- Update to jdk-11.0.12.0+7
- Update release notes to 11.0.12.0+7
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-07-20 @ 1pm PT.
- Resolves: rhbz#1972395
]a]]�{��;{�}	-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��:��A	-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��9��)	-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���8{�;	-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936
�[������?{�;	.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���>{�7	.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�$��={�O	.Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873� ��<{�G	-Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332

e�r+��V��:��eD�:�
e1f96091d25298a2ba6942bf99057752361acd85a35af09192241146d47a7a08D�9�
48de10d35c7c78cda02151a71c35178d70d58dce2c1dc876ddabcacf02451fd3D�8�
d042e5b60af5791405d9b06cced6de982519177eed1cee3e7edb8c9002315ac6D�7�
724f57980c52e692722c8586a68fbb7ecfc81812bf1d923a920abbdb04014943D�6�
40085a6aba324cf85849d9d215ea0210e30299d2952b61e18b07e9bbd0256068D�5�
9dc6103c894580255acdaca6f10c631843d1f93573f2546118ae35826f597314D�4�
2128f5867b50e91bf6e0f43a02f4d16b03085189d8040f386c115ab75f5a842bD�3�
2ebb08ac7cb76c373713ca2bd23cc2232982bc402088afaa3c55fff250bb8869D�2�
33d81cf734e717eea6795c7c41a630b5e0eecbab4514f5859db6609e50ef0447D�1�
6b0e694fe0bd25769497d03ebe96ad15e93d707736bcee6eb8e89bae4d0f77c1D�0�
e0d5c3c3503d52c16cbaa1ee54130af69d4b939561a49a2a1591e2049fd69279D�/�
740cebdde7c6823d4f1beee23080215f1f12ef9577011c88461d3bf597d1931aD�.�
bf23abfbb52f27d2a18450e2bbc48bb65f02cee123b849b8e4fb9c07a0e91259
W���W� ��C{�G	.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��B{�}	.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��A��A	.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��@��)	.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1���$��G{�O	/Severin Gehwolf <sgehwolf@redhat.com> - 1:11.0.12.0.7-2aZ�- Don't package lib/client and lib/client/classes.jsa which don't exist.
- Resolves: rhbz#1698873�{��F{�}	.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��E��]	.Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Dw�	.Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��K��A	/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��J��)	/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���I{�;	/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���H{�7	/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��O��]	/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Nw�	/Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��M{�G	/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��L{�}	/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
D�D���R{�;	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���Q{�7	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936�{��P{�}	/Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
W���W� ��V{�G	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��U{�}	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332�#��T��A	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��S��)	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936
1�����Z{�A	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��Y{�}	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��X��]	0Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��Ww�	0Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810
@�D�@�#��^��A	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.7-0.1.eaaex�- Update to jdk-11.0.13.0+7
- Update release notes to 11.0.13.0+7
- Resolves: rhbz#1999936�W��]��)	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.1-0.1.eaad'@- Update to jdk-11.0.13.0+1
- Update release notes to 11.0.13.0+1
- Update tarball generation script to use git following OpenJDK 11u's move to github
- Switch to EA mode for 11.0.13 pre-release builds.
- Remove non-Free test from source tarball.
- Related: rhbz#1999936���\{�;	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-4ab�- Reduce disk footprint by removing build artifacts by default.
- Related: rhbz#1999936���[{�7	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.12.0.7-3ab�- Restructure the build so a minimal initial build is then used for the final build (with docs)
- This reduces pressure on the system JDK and ensures the JDK being built can do a full build
- Related: rhbz#1999936
[��q��b��]	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��aw�	1Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��`{�G	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�A- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332�{��_{�}	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Update to jdk-11.0.12.0+8
- Update release notes to 11.0.12.0+8
- Switch to GA mode for final release.
- This tarball is embargoed until 2021-10-19 @ 1pm PT.
- Resolves: rhbz#2012332
�^���J��fw�	2Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��e{�G	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332���d{�A	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��c{�}	1Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
�������i{�A	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��h{�}	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��g��]	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���n{�	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��m{�]	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��l{�{	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��k��A	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��j��'	2Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
[��{��r{�}	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��q��]	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810�J��pw�	3Jiri Vanek <jvanek@redhat.com> - 1:11.0.14.0.8-0.1.eaa�c�- Replaced hardcoded 11 by featurever where appropriate
- Fixed comment of `for slowdebug` to correct `any debug`
- Related: rhbz#2022810� ��o{�G	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.13.0.8-1af�@- Revert addition of libharfbuzz.so after its removal by JDK-8255790
- Resolves: rhbz#2012332
,^���,�+��w{�]	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��v{�{	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��u��A	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��t��'	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���s{�A	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805
^v^���{{�A	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��z{�}	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q��y��]	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810���x{�	3Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422
D%}~�D���{�	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��~{�{	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#��}��A	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V��|��'	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}	4Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]	4Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�������{�A	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366�q����]	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.1.eaa�e�- Update to jdk-11.0.14.0+8
- Update release notes to 11.0.14.0+8
- Switch to EA mode for 11.0.14 pre-release builds.
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Resolves: rhbz#2022810
D%}~�D���
{�	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��	{�]	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531
W�;��{�}	5Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��m�]	5Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
�^���#����A	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531�V����'	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��
{�}	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366
Q��$��m�]	6Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���{�	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422
���;��{�}	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
g��Bg�V����'	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.1-0.1.eabUi�- Update to jdk-11.0.15.0+1
- Update release notes to 11.0.15.0+1
- Switch to EA mode for 11.0.15 pre-release builds.
- Related: rhbz#2047531���{�A	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.1.1-1bO�- Update to jdk-11.0.14.1+1
- Update release notes to 11.0.14.1+1
- Resolves: rhbz#2052805�{��{�}	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1a�Z@- Update to jdk-11.0.14.0+9
- Update release notes to 11.0.14.0+9
- Switch to GA mode for final release.
- This tarball is embargoed until 2022-01-18 @ 1pm PT.
- Resolves: rhbz#2039366���{�5	6Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
vXY�v�$��m�]	7Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���{�	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�+��{�]	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bY^@- Remove security items from release notes that were only in 17u and N/A for 11u
- Related: rhbz#2073422�z��{�{	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-1bV�@- Update to jdk-11.0.15.0+9
- Update release notes to 11.0.15.0+9
- Switch to GA mode for release
- ** This tarball is embargoed until 2022-04-19 @ 1pm PT. **
- Resolves: rhbz#2073422�#����A	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.8-0.1.eabUi�- Update to jdk-11.0.15.0+8
- Update release notes to 11.0.15.0+8
- Resolves: rhbz#2047531
���;��{�}	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510
��Z��$��"m�]	8Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510���!{�	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422��� {�5	7Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
���;��#{�}	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510bR0RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������ā�Ł�	Ɓ�
ǁ�ȁ�Ɂ�ʁ�ˁ�#́�'́�+΁�/ρ�3Ё�7с�;ҁ�?ԁ�CՁ�Gց�Kׁ�O؁�Rف�Vځ�Zہ�^܁�b݁�fށ�i߁�n�rၴw⁴{ふ䁵偵恵
灵聵遵ꁵ끵쁵큵"#�'�+�-�1���4���8���;���>���B���E���H���L���N���Q��T��W��Z��]��_��b��d��g��i	��l
��n��q��t
��w��z��}���������������������� �� !��#"��&$��*%��.&��4'��9(��>)��C+��G,��L-��Q.��V/��]
��
W��4��'��c	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��&��]	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��%��	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���${�5	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
d\��d���+{�	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.15.0.9-2bZ��- Add JDK-8284920 fix for XPath regression
- Related: rhbz#2073422�&��*{�S	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��){�	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���(��9	8Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
W�;��-{�}	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.0.8-1bҨ@- Update to jdk-11.0.16+8
- Update release notes to 11.0.16+8
- Use same tarball naming style as java-17-openjdk and java-latest-openjdk
- Drop JDK-8284920 patch now upstreamed
- Print release file during build, which should now include a correct SOURCE value from .src-rev
- Update tarball script with IcedTea GitHub URL and .src-rev generation
- Use "git apply" with patches in the tarball script to allow binary diffs
- Include script to generate bug list for release notes
- Update tzdata requirement to 2022a to match JDK-8283350
- Make use of the vendor version string to store our version & release rather than an upstream release date
- Explicitly require crypto-policies during build and runtime for system security properties
- Resolves: rhbz#2106510�$��,m�]	9Jiri Vanek <jvanek@redhat.com> - 1:11.0.16.0.8-1b�@- Add additional patch during tarball generation to align tests with ECC changes
- Related: rhbz#2106510
��
W��4��1��c	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��0��]	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��/��	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���.{�5	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��4{�S	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��3{�	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���2��9	9Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
��
W��4��8��c	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��7��]	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��6��	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���5{�5	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��;{�S	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��:{�	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���9��9	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��>}�	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��=��]	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��<��G	:Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192

e�r+��V��:��eD�G�
ec4e31145b2bd5c37f07b12786ef3f1a7f747d2b7545a8f2deb7ca4a1dee6692D�F�
374186860ba10d433ef1b2fc521d6b97c48570d7340740cbe2e83f73df0b05e4D�E�
a4b82389944cd83f755da0bd6b1b81d987f9dc5f28ee78bd23bde637a51321e2D�D�
ab078229f1b5a4b3faba2b28785c5ddc0ff1118b1a2b3480dd2d824f7201a9ceD�C�
1b6f592d463f10e592cc2b035e409be816bd6dc189d7457574d5641fdcf767bcD�B�
22b2f7582ba663c4bb9f008bce4f7a80e69654b30b05c0571864b3b8292f8ff5D�A�
dcd5ebbf96fa4b554ad2a5520ab76814b9eae044e649c9408139b2b07795d5f4D�@�
1bb75937417ce4c985d73d9cf214bfece58dd2abdf6c21d4b1cb0108f070e2ffD�?�
be203dd4714182fcfeef395bb57d7d5e9f418c603b87d6a5eb1ddb4db5253163D�>�
2141ba5b56fde898fffe70f5ebc0e8dd7ef3958b68e0cb81881c570fbfc2a0f2D�=�
8c2b3aa763d6d464e67be783b62d083cadc0aa9caf7fd24997ebcb514c44a4b2D�<�
b322d84f1b35af3ca899bf943ee67782b8ae449a4769e0b3d0b7f455085b669cD�;�
6f4bf52463b1c528e35abf3e53489d86f0214da06151240744c0ab18b50ab903
��
W��4��B��c	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��A��]	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�R��@��	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac6@- Update to jdk-11.0.17+1
- Update release notes to 11.0.17+1
- Switch to EA mode for 11.0.17 pre-release builds.
- Related: rhbz#2130373���?{�5	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.16.1.1-1c�- Update to jdk-11.0.16.1+1
- Update release notes to 11.0.16.1+1
- Add patch to provide translations for Europe/Kyiv added in tzdata2022b
- Add test to ensure timezones can be translated
- Resolves: rhbz#2119512
�\���&��E{�S	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��D{�	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���C��9	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��H}�	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��G��]	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��F��G	;Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
*J��*�>��L{�	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���K��9	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373�4��J��c	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��I��]	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373
*U*�&��N��G	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��M{�S	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������Q}�	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��P}�	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��O��]	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
-��-�4��T��c	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< A- Try to build using system HarfBuzz to avoid build failures with 4.4.1 & gcc 4.8.5
- Related: rhbz#2130373�1��S��]	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.1-0.1.eac< @- Include Aleksey's patch for JDK-8291053 to try and get HarfBuzz to build again
- Related: rhbz#2130373�_��R{�E	<Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�\���&��W{�S	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695�>��V{�	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���U��9	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.7-0.1.eac=q�- Update to jdk-11.0.17+7
- Update release notes to 11.0.17+7
- Resolves: rhbz#2130373
]�_]�}��Z}�	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��Y��]	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192�&��X��G	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192
MtM�>��]{�	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695�_��\{�E	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���[}�	=Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111
*U*�&��_��G	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��^{�S	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������b}�	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��a}�	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��`��]	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��d��W	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��c{�E	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��>��g{�	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-1cF�@- Update to jdk-11.0.17+8 (GA)
- Update release notes to 11.0.17+8
- Switch to GA mode for release
- Resolves: rhbz#2133695���f{�	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��e��A	>Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
*U*�&��i��G	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.1-0.1.eac�@- Update to jdk-11.0.18+1
- Update release notes to 11.0.18+1
- Switch to EA mode for 11.0.18 pre-release builds.
- Drop local copies of JDK-8294357 & JDK-8295173 now upstream contains tzdata 2022e
- Related: rhbz#2150192�&��h{�S	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.17.0.8-2cJ��- Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173
- Update CLDR data with Europe/Kyiv (JDK-8293834)
- Drop JDK-8292223 patch which we found to be unnecessary
- Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream
- Remove unneeded JDK-8291053 patch as we no longer build in-tree HarfBuzz
- Related: rhbz#2133695
�������l}�	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��k}�	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��j��]	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.��n��W	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��m{�E	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
�XT��q��q��]	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192���p{�	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��o��A	?Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�r�_��t{�E	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182���s}�	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��r}�	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192
!�%!���w{�	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#��v��A	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.��u��W	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��z{�_	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd���ym�A	@Jiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��x{�U	@Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�������}}�	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-2c�G�- Add missing release note for JDK-8295687
- Resolves: rhbz#2160111�}��|}�	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.10-1c���- Update to jdk-11.0.18+10 (GA)
- Update release notes to 11.0.18+10
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-01-17 @ 1pm PT. **
- Related: rhbz#2150192�q��{��]	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.18.0.9-0.2.eac��- Update to jdk-11.0.18+9
- Update release notes to 11.0.18+9
- Drop local copy of JDK-8293834 now this is upstream
- Require tzdata 2022g due to inclusion of JDK-8296108, JDK-8296715 & JDK-8297804
- Update TestTranslations.java to test the new America/Ciudad_Juarez zone
- Resolves: rhbz#2150192
i�i�.����W	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��~{�E	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{�	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
�u�_��{�E	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182�,��{�_	AAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd���m�A	AJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
!�%!���{�	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106�.����W	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106
I��I�,��{�_	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd���
m�A	BJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��	{�U	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
?8=?�y��{�y	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��
��g	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
	BAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
i�i�.����W	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.1-0.1.ead��- Update to jdk-11.0.20+1 (EA)
- Update release notes to 11.0.20+1
- Switch to EA mode
- Drop local inclusion of JDK-8274864 & JDK-8305113 as they are included in 11.0.20+1
- Add missing Swing release note
- Related: rhbz#2221106�_��{�E	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.19.0.7-1d9@@- Update to jdk-11.0.19.0+7
- Update release notes to 11.0.19.0+7
- Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113
- Update generate_tarball.sh to add support for passing a boot JDK to the configure run
- Add POSIX-friendly error codes to generate_tarball.sh and fix whitespace
- Remove .jcheck and GitHub support when generating tarballs, as done in upstream release tarballs
- Rebase RH1750419 alt-java patch against 11.0.19+6
- ** This tarball is embargoed until 2023-04-18 @ 1pm PT. **
- Resolves: rhbz#2185182
(XT(�'��{�U	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229���{�	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�#����A	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.7-0.1.ead�D@- Update to jdk-11.0.20+7 (EA)
- Update release notes to 11.0.20+7
- Related: rhbz#2221106
��u���v����g	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642�,��{�_	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd���m�A	CJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
�����{�	DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�y��{�y	CAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966
I��I�,��{�_	DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd���m�A	DJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��{�U	DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\�� }�=	DAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��{�y	DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v����g	DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��{�
	DAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
�}�����#{�	EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.0.8-1d���- Update to jdk-11.0.20.0+8 (GA)
- Update release notes to 11.0.20.0+8
- Switch to GA mode for release
- ** This tarball is embargoed until 2023-07-18 @ 1pm PT. **
- Resolves: rhbz#2221106�&��"s�[	DAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��!s�	DAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
I��I�,��&{�_	EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-1e)1A- Update to jdk-11.0.21+9 (GA)
- Upd#���%m�A	EJiri Vanek <jvanek@redhat.com> - 1:11.0.21.0.9-1e)1@- For non debug subpackages, ghosted all alternatives (rhbz1649776)
- For non system JDKs, if-outed versionless provides.
- Aligned versions to be %{epoch}:%{version}-%{release} instead of chaotic
- Related: RHEL-11320�'��${�U	EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.20.1.1-1d�@- Update to jdk-11.0.20.1+1 (GA)
- Update release notes to 11.0.20.1+1
- Add backport of JDK-8312489 already upstream in 11.0.22 (see OPENJDK-2095)
- Add backport of JDK-8243210 already upstream in 11.0.21 (see RH2229269)
- Update openjdk_news script to specify subdirectory last
- Add missing discover_trees script required by openjdk_news
- Synchronise runtime and buildtime tzdata requirements
- Update README.md to match the version in later RHEL releases
- Resolves: rhbz#2236229ate release notes to 11.0.21+9
- Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies
- Update generate_tarball.sh to be closer to upstream vanilla script inc. no more ECC removal
- Update bug URL for RHEL to point to the Red Hat customer portal
- Change top_level_dir_name to use the VCS tag, matching new upstream release style tarball
- Apply all patches using -p1
- Drop local backport of JDK-8243210 which is upstream from 11.0.21+2
- Add missing JFR alternative ghost
- Move jcmd to the headless package
- Replace -mstackrealign with -mincoming-stack-boundary=2 -mpreferred-stack-boundary=4 on x86_32 for stack alignment
- Disable the serviceability agent on Zero architectures even when the architecture itself is supported
- ** This tarball is embargoed until 2023-10-17 @ 1pm PT. **
- Resolves: RHEL-12217
- Resolves: RHEL-12910
- Resolves: RHEL-12913
- Resolves: RHEL-11320
- Resolves: RHEL-13227
- Resolves: RHEL-13217
^8=?^�\��*}�=	EAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.1-0.1.eae�!@- Update to jdk-11.0.23+1 (EA)
- Update release notes to 11.0.23+1
- Switch to EA mode
- Speed up PPC build by removing ppc64le --with-jobs=1 workaround�y��){�y	EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.7-1e���- Update to jdk-11.0.22+7 (GA)
- Update release notes to 11.0.22+7
- Switch to GA mode for release
- ** This tarball is embargoed until 2024-01-16 @ 1pm PT. **
- Resolves: RHEL-20966�v��(��g	EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.22.0.6-0.1.eae��- Update to jdk-11.0.22+6 (EA)
- Update release notes to 11.0.22+6
- Switch to EA mode
- Drop local copy of JDK-8312489 which is now included upstream
- Resolves: RHEL-21031�C��'{�
	EAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.21.0.9-2e}�@- Restore %{epoch}:%{javaver} versioning to jre, java, jre-headless, java-headless, java-devel & java-sdk
- Resolves: RHEL-19642
n}��n�
��.�	FSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��-�#	FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665�&��,s�[	EAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-2f"@- Fix 11.0.22 release date in NEWS
- Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds�~��+s�	EAnton Bobrov <abobrov@redhat.com> - 1:11.0.23.0.9-1f@- Update to jdk-11.0.23+9 (GA)
- Update release notes to 11.0.23+9
- Switch to GA mode for release
- Require tzdata 2024a due to upstream inclusion of JDK-8322725
- Only require tzdata 2023d for now as 2024a is unavailable in buildroot
- ** This tarball is embargoed until 2024-04-16 @ 1pm PT. **
- Resolves: RHEL-30914
s��O��s��4�	FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��3s�5	FJiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��2�{	FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��1y	FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��0�c	FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665z��/y	FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665
/�<�/z��9y	GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.7-0.0.ea_��B- Update to jdk-11.0.9+7 (EA)
- Resolves: rhbz#1876665�
��8�	GSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.6-0.1.ea_��A- Update static-libs packaging to new layout
- Resolves: rhbz#1876665�P��7�#	GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.6-0.0.ea_��@- Update to jdk-11.0.9+6 (EA)
- Update tarball generation script to use PR3802, handling JDK-8233228 & JDK-8177334
- Resolves: rhbz#1876665���6w�?	FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��5w�!	FAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665
�K�Lt���>�	GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��=s�5	GJiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��F- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��<�{	GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��E- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��;y	GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��D- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�0��:�c	GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.8-0.0.ea_��C- Update to jdk-11.0.9+8 (EA)
- Remove JDK-8252258/RH1868406 now applied upstream.
- Resolves: rhbz#1876665
:��:�S��Cs�5	HJiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665}��B�{	HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Ay	HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665���@w�?	GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��?w�!	GAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665

e�r+��V��:��eD�T�
dd1acce44324d0f78c3fefe9d62e4f6b967b6a1f192ce18c8c0336a4c8adabd0D�S�
d837edc3c03b3b3e816e3578cfb0fb39a5018c0d8b79486829a91303a31fba95D�R�
4159fb078456195a5426e0c1b4c344097b8cea15b93d89a5b0edec624c3dfabaD�Q�
81fe53c540c2219cdfff5019d61db2306219389015797fa7f76cb1b9d772482aD�P�
a1ca7e4977e1aa55e582537db75040c395105cb35ed1d15da80d8a11e4a3f662D�O�
52427e37a69f9019c71338e82cb47b4093f49f6cbe7aaf6c7472b6ece216b3bdD�N�
da6113b8e3f60613882eeec8c8497c068bd46559042351e5cf030ec9ad382d41D�M�
d6beb9da905c4b24c2f8e52152046e20369cddd4a1f98e7babf6ac1658ced21bD�L�
ac4c10593aace7feb58b42351306016a0668d518b590587b3be6a1fabb94aabfD�K�
1aed659e1e3bce0de9d3874074bcf4fc4df05a8018e054fdb5ac7209dd8ffad7D�J�
e95162c5ce19bdda8897921e19c340bcc15ab18c2627b6d8915c79b8754c1505D�I�
e601bbdfd361d5089be7cec55d69d6cc4b85d1c52963c2f8d004de14bd0ccde1D�H�
1ede1f94ef149ac05c9b87696792135237e12c4f7eb09ed33fcb232bee567817
�}-���
��Gw�	HSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Fw�?	HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Ew�!	HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��D�	HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665
|&{�|}��L�{	IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.0.ea_��A- Update to jdk-11.0.9+10 (EA)
- Resolves: rhbz#1876665z��Ky	IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.9-0.0.ea_��@- Update to jdk-11.0.9+9 (EA)
- Resolves: rhbz#1876665�&��Jw�W	HAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��Iw�E	HSeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��Hi�	HJiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
'(�U�'�
��Qw�	ISeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_��- Fix directory ownership of static-libs package
- Resolves: rhbz#1896610���Pw�?	IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Delay tzdata 2020b dependency until tzdata update has shipped.
- Resolves: rhbz#1876665�K��Ow�!	IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-0_�9�- Update to jdk-11.0.9+11
- Update release notes for 11.0.9 release.
- Add backport of JDK-8254177 to update to tzdata 2020b
- Require tzdata 2020b due to resource changes in JDK-8254177
- This tarball is embargoed until 2020-10-20 @ 1pm PT.
- Resolves: rhbz#1876665��N�	IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.10-0.1.ea_�9�- Improve quoting of vendor name
- Resolves: rhbz#1876665�S��Ms�5	IJiri Vanek <jvanek@redhat.com> - 1:11.0.9.10-0.1.ea_��B- Set vendor property and vendor URLs
- Made URLs to be preconfigured by OS
- Moved vendor_version_string to a better place
- Resolves: rhbz#1876665
b&{b�$��Vq�Y	JVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-8R��@- Fix vlock doesn't perform PAM account management or credential reinitialization
  Resolves: #1032140l��Uqk	JVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-7Rz/@- Add PAM config for vlock
  Resolves: #1026819�&��Tw�W	IAndrew Hughes <gnu.andrew@redhat.com> - 1:11.0.9.11-2_�#�- Add backport of JDk-8222537 so the Host header is sent when using proxies.
- Resolves: rhbz#1869530�]��Sw�E	ISeverin Gehwolf <sgehwolf@redhat.com> - 1:11.0.9.11-1_���- Update to jdk-11.0.9.1+1
- RPM version stays at 11.0.9.11 so as to not break upgrade path.
- Adds a single patch for JDK-8250861.
- Resolves: rhbz#1895275�s��Ri�	IJiri Vanek <jvanek@redhat.com> - 1:11.0.9.11-1_���- Move all license files to NVR-specific JVM directory.
- This bad placement was killing parallel installability and thus having a bad impact on leapp, if used.
- Resolves: rhbz#1896609
P�]�J��P���]s�5	JVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-15[qr�- Add man page for kbdinfo, link open man page to openvt man page
  Related: #949015�^��\s�K	JVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-14[(�@- Replace CtrlL_Lock with Caps_Lock in generated us.map
  Resolves: #1441411
- Improve man pages and usage messages quality and consistency
  Resolves: #949015{��[s�	JVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-13X��@- Add compose rules to generated cz.map
  Resolves: #1181581n��Zsm	JVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-12W��- Add eurlatgr console font
  Resolves: #1310286���Ys�G	JVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-11T$�- Include xkb layouts from xkeyboard-config converted to console keymaps
  Resolves: #1122058N��Xa?	JDaniel Mach <dmach@redhat.com> - 1.15.5-10R�U�- Mass rebuild 2014-01-24M��W_?	JDaniel Mach <dmach@redhat.com> - 1.15.5-9R�k�- Mass rebuild 2013-12-27
"pW��"{��es�	KVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-13X��@- Add compose rules to generated cz.map
  Resolves: #1181581n��dsm	KVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-12W��- Add eurlatgr console font
  Resolves: #1310286���cs�G	KVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-11T$�- Include xkb layouts from xkeyboard-config converted to console keymaps
  Resolves: #1122058N��ba?	KDaniel Mach <dmach@redhat.com> - 1.15.5-10R�U�- Mass rebuild 2014-01-24M��a_?	KDaniel Mach <dmach@redhat.com> - 1.15.5-9R�k�- Mass rebuild 2013-12-27�$��`q�Y	KVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-8R��@- Fix vlock doesn't perform PAM account management or credential reinitialization
  Resolves: #1032140l��_qk	KVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-7Rz/@- Add PAM config for vlock
  Resolves: #1026819���^s�%	JVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-16aw�- Fix vlock when console or terminal is closed abruptly
  Resolves: #1486233
9�����9N��la?	LDaniel Mach <dmach@redhat.com> - 1.15.5-10R�U�- Mass rebuild 2014-01-24M��k_?	LDaniel Mach <dmach@redhat.com> - 1.15.5-9R�k�- Mass rebuild 2013-12-27�$��jq�Y	LVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-8R��@- Fix vlock doesn't perform PAM account management or credential reinitialization
  Resolves: #1032140l��iqk	LVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-7Rz/@- Add PAM config for vlock
  Resolves: #1026819���hs�%	KVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-16aw�- Fix vlock when console or terminal is closed abruptly
  Resolves: #1486233���gs�5	KVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-15[qr�- Add man page for kbdinfo, link open man page to openvt man page
  Related: #949015�^��fs�K	KVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-14[(�@- Replace CtrlL_Lock with Caps_Lock in generated us.map
  Resolves: #1441411
- Improve man pages and usage messages quality and consistency
  Resolves: #949015
c_�n��c���rs�%	LVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-16aw�- Fix vlock when console or terminal is closed abruptly
  Resolves: #1486233���qs�5	LVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-15[qr�- Add man page for kbdinfo, link open man page to openvt man page
  Related: #949015�^��ps�K	LVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-14[(�@- Replace CtrlL_Lock with Caps_Lock in generated us.map
  Resolves: #1441411
- Improve man pages and usage messages quality and consistency
  Resolves: #949015{��os�	LVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-13X��@- Add compose rules to generated cz.map
  Resolves: #1181581n��nsm	LVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-12W��- Add eurlatgr console font
  Resolves: #1310286���ms�G	LVitezslav Crhonek <vcrhonek@redhat.com> - 1.15.5-11T$�- Include xkb layouts from xkeyboard-config converted to console keymaps
  Resolves: #1122058
/��&V�/���xi�O	MJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���wi�	MJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��vi�/	MJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���ug�A	MJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��tg�Q	MJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��sgY	MJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129
�NU�:�^��}gY	NJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���|i�	MJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���{i�5	MJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��zi�	MJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��yi�s	MJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����i�O	NJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���i�	NJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��i�/	NJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���g�A	NJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��~g�Q	NJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��gY	OJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���i�	NJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���i�5	NJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��i�	NJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��i�s	NJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����i�O	OJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���i�	OJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��
i�/	OJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���	g�A	OJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��g�Q	OJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��gY	PJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���i�	OJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���i�5	OJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��i�	OJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��
i�s	OJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����i�O	PJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���i�	PJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��i�/	PJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���g�A	PJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��g�Q	PJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��gY	QJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���i�	PJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���i�5	PJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��i�	PJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��i�s	PJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1���� i�O	QJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���i�	QJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��i�/	QJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���g�A	QJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��g�Q	QJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��%gY	RJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���$i�	QJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���#i�5	QJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��"i�	QJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��!i�s	QJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����*i�O	RJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���)i�	RJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��(i�/	RJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���'g�A	RJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��&g�Q	RJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��/gY	SJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���.i�	RJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���-i�5	RJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��,i�	RJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��+i�s	RJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����4i�O	SJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���3i�	SJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��2i�/	SJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���1g�A	SJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��0g�Q	SJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��9gY	TJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���8i�	SJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���7i�5	SJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��6i�	SJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��5i�s	SJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����>i�O	TJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���=i�	TJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��<i�/	TJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���;g�A	TJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��:g�Q	TJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��CgY	UJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���Bi�	TJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���Ai�5	TJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��@i�	TJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��?i�s	TJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762

e�r+��V��:��eD�a�
80196e9f5cfeb1b79fee9a0c7fdadd992ab7aa207db374333f67dbda5f2fd14eD�`�
6964dd0077dc7a05fc63ad2b2e02aecba267ac20fdf80589b768e01146960b74D�_�
7b90cb8bc8d2c7faf537d5ae45a0a5a1723647451341f52d133cd54aed8e427cD�^�
33f93263c696ee536e808126745c9fa540fc61ef70ce1cffc4848d598c98eae1D�]�
0c8cc9217954e5b7e4fba72b8cac347c473caf377f918d06fdc3c2bb7e672917D�\�
8db5b248a66cb5ad1ed9c3264fe68eb2d2de4e9b3a5c7cc07f61bde703d26938D�[�
d4e1ed8394af297a574fede15b7e0b3dcc28d263998175257f45e728f22fca91D�Z�
d1b44c5bcb094399e0bce41de4218e28b8f69fb0c0a79c24411b5561978ec6b5D�Y�
c95477083d786f35fe049b4cf228df007b60410ff81fc37b0e6dd8bd2124cdccD�X�
a3a9ea28c98e59589049fb7889c20c37771b190b44b92388c4e2aa7aafcb1a2eD�W�
e940311272fea2057047e571496ef2c682d234a1b3e10e8c505258a1cc20ae6bD�V�
b128da11799b79cddf1ef0419560127564929391ef662226704b79b39ab3bb98D�U�
c4848c6ee81a224b1eb505bb2bf5a9c8572e930973b92319a6e17e294d14310b
� ��1����Hi�O	UJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���Gi�	UJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��Fi�/	UJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���Eg�A	UJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��Dg�Q	UJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��MgY	VJan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���Li�	UJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���Ki�5	UJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��Ji�	UJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��Ii�s	UJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����Ri�O	VJan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���Qi�	VJan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��Pi�/	VJan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���Og�A	VJan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��Ng�Q	VJan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
.NU�:.���W��
	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���Vi�	VJan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���Ui�5	VJan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��Ti�	VJan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��Si�s	VJan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
7?�7�K��Z}�	WJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��Y��e	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]�<��X��w	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��\��g	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��[��Q	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]I
����-��^��W	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��]��	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��a}�	XJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���`��9	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��_��	WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��c��g	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��b��Q	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]M
����-��e��W	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��d��	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������g��9	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��f��	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����i��1	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_fR�J��h��	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��k��	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��j��{	XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��m��	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��l��W	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������p��1	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_fV�J��o��	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���n��9	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��q��{	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��r��E	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��t��k	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��s��	YRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��v��	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol[�^��u��9	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��x��o	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow^�t��w��e	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command\erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���z��7	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han`�X��y��-	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��{��I	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���|��	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��}��Y	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��~��]	ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������1��l2��r3��x4��}5��6��7��8��9��:��;�� <��%=��*>��/?��4@��9A��>B��CD��HE��MF��RG��WH��ZJ��\K��^L��aN��cO��eP��gQ��iS��kT��mU��pW��qX��rY��tZ��v]��x_��za��{b��|c��}d��~f��g��h��i��j��k��l��m��o��p��q��r��t��u��v��!w��#y��&{��'|��(}��)~��*��+���-���.���0���2���4���7���9���;���=���@���B���C���E���G���I���J���K���L���M���N���P���Q���R���S���T���U���W���Y���Z���[���\���]���^
���d����E	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|����u	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7����k	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O����	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}����w	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B����	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"����A	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?����{	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4����e	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^����9	[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B����	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��
��A	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��	��u	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}����w	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4����e	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��
��9	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b����A	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~����y	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"����A	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�����7	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]�����	\Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ensn
����}����w	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B����	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4����e	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^����9	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b����A	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~����y	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
un�u�"����A	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�+���	�M	]Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]�����7	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]�����	]Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Enss
����}����w	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B����	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4��!��e	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^�� ��9	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��#��A	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��"��y	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+��&�	�M	^Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]���%��7	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���$��	^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ensxdle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�����'��7	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Hanz
�f��(��I	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���)��	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��*��Y	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��+��]	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��-��	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE��^��,��7	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O��.��	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����0��1	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��/��#	_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���2s�	`Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��J��1s�#	`Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��4s�	`Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��3s�m	`Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��7s�c	`Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���6s�1	`Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���5s�7	`Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���9��+	`Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��8s�	`Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����;s�	aJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��^��:��9	`Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��=s�	aJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��<s�m	aJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��@s�c	aJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���?s�1	aJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���>s�7	aJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���B��+	aAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��As�	aJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^��C��9	aAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��E��7	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��D��?	aAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}

e�r+��V��:��eD�n�
e7f2bf03392856717c1588ee1a77010b1537d1a678ed7dd1dad5ad7391cd4147D�m�
82e182e512caa6c722313fe432c89e81a61b1c021c5fa0e223a163e77c95ce6eD�l�
f8613e068693df3d5e08f956697ae0b595071f7b8c8bbed307faf9dbadef2a8aD�k�
53452ad31f9655e8f71a0b4c49b118b9337855433c50f25a9f5a75b92ebb8a8aD�j�
645ff71bbd0c6801049154ee1c5338517839d23b8146501039a0a919dd696e33D�i�
a6fb96a295e675646b15c339c7b3d6070fefdec2a9d1b67402bcee35dc06bd72D�h�
93f5058bbfe57b3134debfc599214a91d401380ef38ec57336a0d995704d9c26D�g�
f181f4bc3868b84eb350197aee4e79d0466d5aaac0e0a70a37eb58aa7533e228D�f�
91d2cf4d7a40fe66ba14583d4d5f045850fefc8b26b7e0adc2634f5ec9f9a775D�e�
3db35ae4792e6efe04cf89e50aeb71e9794589152c92cc1de54f2c92dc956b40D�d�
9f794072765d2423d8dc156f9a676c6e2b29c90d2a6f4e58cb579073b02c4017D�c�
996ee55268c9971d07d38c3217e0fb813a202d1b838963b6db16217069d193dbD�b�
b8c980b0d2eaf56affe69fde8c004c91dde7d83277578de4cfc8c06aaa322858RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��G��	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��F��	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE�
?'?�[��I��1	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��T��H��#	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��J��?	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��K��c	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��L��	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��M��	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����N��	bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
?'?�[��P��1	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��T��O��#	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��Q��?	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��R��c	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��S��	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��T��	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����U��	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/��W��Y	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��V��s	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��Y��1	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��3��X��a	cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��Z��?	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��[��c	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��\��	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��]��	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����^��	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/��`��Y	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��_��s	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��a��a	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��b��o	dAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/��d��Y	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��c��s	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��e��a	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���g��	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��f��o	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���i��		eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��h��{	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��j��w	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����k��#	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��l��	eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt���m��		fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��n��w	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����o��#	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��p��	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���r��'	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��q��	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP �
SzS�"��t��?	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���s��}	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���v��-	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��u��]	fAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���x��'	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��w��	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP �
SzS�"��z��?	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���y��}	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��{��]	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����|��	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����}��	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2����_	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���~��'	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\������}	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]�����9	gAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"����?	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1����]	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�������	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�������	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2����_	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]�����'	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����
��9	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��	��?	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]�����9	hAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�������	iAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�������	iAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2����_	iAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���
��'	iAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\������9	iAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"����?	iAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]�����9	iAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I����
	iAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm�����	iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348�
nn�����9	jAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i����Q	iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y������9	jAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"����?	jAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I����
	jAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm�����	jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348�
�i����Q	jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_����=	jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7����m	jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!����A	jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7����m	jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]bRARY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{���������������������a���b���d���e���g���i���j���k���l���m���n���o���p���r���t���v���x���z���{�|Á�}ā�Ł�Ɓ�ǁ�ȁ�Ɂ�ʁ�ˁ�
́�́�΁�ρ�Ё�ҁ�Ӂ�ԁ�Ձ�ׁ�؁�ف�ځ�ہ�ށ�߁� �!ၹ"⁹$べ&䁹)遹,.�0�4�6�7�9���;���=���?��A��C��D��E��F��I	��J
��K��L��O
��P��Q��T��U��W��Z��\��`��b��c��g��h��i��k��n#��q%��r&��t'��w-��y/��z0��|1��7��8��9��?��@��78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm�����	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348�
�i�� ��Q	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��!��=	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��"��m	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��$��A	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��#��m	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p��&��_	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]���%��+	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!����)��+	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n��(��[	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig�Z��'��3	kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��,��[	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig�Z��+��3	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p��*��_	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��.��	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060���-��}	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����0��	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��/��w	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���4s�1	mJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���3s�7	mJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%��2��I	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���1��	lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��6s�	mJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��5s�c	mJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�����7��+	mAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P��9��	mAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol��^��8��9	mAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��;��o	mAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow��t��:��e	mAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n��=��[	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig��X��<��-	mAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��?��	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060����>��}	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����A��	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��@��w	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%��C��I	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���B��	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��D��7	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT
PP�+��E��U	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��F��%	nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)

e�r+��V��:��eD�{�
dd8b1af64f49b071bf8395d452ac0dd4a5272f3de913475a6e1158eba0bcf9a0D�z�
4a74ed8e2ec25ff2f90a460ace450f1f5f9d8ec2388840ac54190eadc8a43575D�y�
da8588048a3618261c5ce040bd0a4053c3a59f68de23dae234a757305ef02c43D�x�
9e3c7f90c42ce49e7b713d239d0814692a9206c40398c880f541a2a12d8aa210D�w�
6b93ef98f6a4d5466b5be6c353e9339237a7ee06b8879ce1e25290af5e63339cD�v�
c9bd64813e41abf55c807e7a4e61c62906d1c51817c09e583a7b4306568104a8D�u�
ea4070c75f7c99de5202445cbf44e188a168785685b3ee3a524f47abd2e476b2D�t�
faf10a9ee4a6a84d4d3e47e83fc9b5e9820bc013e514a117737d79a517e0386aD�s�
10d9b8b27ee08f5090cf1a5d694548af27d8f6cdc826e69807773aeb28c9bd11D�r�
f66887fb1f33b96e1102061d623623d7d06c2f8b951e00a16b5c6b4d260f7a75D�q�
2a53fc6879935314c27af738cec3350d3ceb42d0ac3d7163f52ab94febb50deaD�p�
6f164909e08bae70614e499ae419c8240f745a3e5a7212281901e38d69a975d4D�o�
d407c748075b7355c9958eda5ff21771b816ee274b0d13adadeb34a3d3cb72ed
�up��%��I��I	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���H��	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���G��	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��J��7	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT
PP�+��K��U	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��L��%	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��O��	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��N��I	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���M��	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��P��	oRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��Q��%	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��T��	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��S��I	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���R��	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��U��	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��W��	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���V��		pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��Z��	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���Y��)	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���X��-	pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L��\��	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���[��		qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��`��K	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��_��	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���^��)	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���]��-	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���b��#	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��a��W	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��c��'	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 
3^O$3�l��g��W	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��f��K	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��e��	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���d��9	qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii���h��#	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��i��'	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 
G^G���k��#	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���j��9	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��n��	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���m��	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825�+��l��U	rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588} CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 !CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227"] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M���q��#	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��p��W	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��o��K	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��r��'	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for $
G^G���t��#	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���s��9	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��w��	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���v��	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825(�+��u��U	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}) CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV*E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 +CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227,] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����y��#	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��x��	sRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��z��'	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for .
G^G���|��#	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���{��9	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B����	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���~��	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-238252�+��}��U	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}3 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV4E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 5CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [20902276] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L����	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U����)	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
��������	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825:�����	tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}; CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV<E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 =CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227>] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L����	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B����	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U����)	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i����Q	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��	��	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcD���
��1	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��
��	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3����e	uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U����)	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i����Q	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@����	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcJ�����1	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_����=	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�����3	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e	vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i����Q	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@����	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcO�����1	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E������7	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_����=	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�����3	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���!��1	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]��� ��	wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_��%��=	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���$��3	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��#��e	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7��"��m	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcR
�_TH��<��)��w	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���(��
	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���'��	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]���&��7	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����,��7	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��+��=	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3��*��e	xRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<��/��w	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���.��
	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���-��	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��1}�	yJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��0��e	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��3��g	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��2��Q	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]X
�����6s�	zJan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono\�	��5s�!	zJan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean[�M��4��	yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}]v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���8s�	zJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check _�J��7s�#	zJan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��:s�	zJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��9s�m	zJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��=s�c	zJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���<s�1	zJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���;s�7	zJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<��@��w	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���?��
	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��>s�	zJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�H��K��B}�	{Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��A��e	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��D��g	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��C��Q	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]d
����-��F��W	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��E��	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��I}�	|Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���H��9	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��G��	{Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}

e�r+��V��:��eD��
af4714a643e3d4a5fe7d6877aeec7cfc2047da0866e0c7feb3defa34e1c54b14D��
5bea05b28dab5f6e5c851855e06049b7d5dcb569c591a728efd7ea42b4a9ac8eD��
33b524d6eec3fc82a17df2220b596193025c1faf20c5939c4271809681f95803D��
62db43a91b2c1f3cd0407729f5c13f51ea098fea0aa9b90e2444d92166d1817dD��
bb9d06747ab519acfbcb5813fc1980b1af09ff804dab7cf685cf77230153ea1aD��
95abbd8b6931c04aa8fdca6df2600bc37b23414c8395a75a4ef0a54d57357161D��
804cbacad84b958748331da1bcd0479ae493f31fb8564a84104a6573e7aa7c81D��
2f35a9c1bf11fa8350dfd2b02c990903292933bde6dd81da9a05921d0265d756D��
085f001bc61a93bf23c68f240bd7b5c24aa41e4a9b6c5539dfe676b451ec102aD��
18d2703d9432cd3d8353acf0fb1f852fe4c15301b3d49fffac3f0194c6a4aaa0D�~�
7804215d9e8fd6eaae4ae7d7fb360dd0ec85e87ed93ec488ef3d1cb1285ff33eD�}�
8cdf3d0ccf31842dffcd39b5f3b05819fc442a375c03a3212e7b51db17f53e29D�|�
7d4cedf119f33ca8dc827b0f6f2be910119d492bf48ad4b4fd46ee45c6094800
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��K��g	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��J��Q	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]i
����-��M��W	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��L��	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������O��9	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��N��	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����Q��1	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_fn�J��P��	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��S��	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��R��{	|Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��U��	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��T��W	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������X��1	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_fr�J��W��	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���V��9	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��Y��{	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��Z��E	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��\��k	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��[��	}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��^��	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_holw�^��]��9	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��`��o	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] powz�t��_��e	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_commandxerpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���b��7	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han|�X��a��-	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��c��I	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���d��	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������B��	C��E��
F��G��H��I��K��L��M��N��P��Q��!S��%T��)U��,V��/W��1Y��3Z��6^��8`��:a��=b��@c��Be��Df��Fg��Ij��Kk��Ml��Om��Qo��Sp��Uq��Xs��Yt��Zu��\v��^y��`{��b}��c~��d���e���f���g���j���m���p���s���t���v���x���{���}������������������������	��������������������������������� ���!���#���%���'���(���)���*���+���,���.���/���0���1���2���3���5���7���8���9���:���;���<�>Á�?
�o��e��Y	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��f��]	~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d��g��E	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��j��u	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��i��k	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��h��	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}��m��w	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��l��	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��k��A	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��p��{	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��o��e	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��n��9	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B��s��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��r��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��q��u	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��t��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4��v��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��u��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��x��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��w��y	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��{��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���z��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���y��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�
����}��}��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��|��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4����e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��~��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~����y	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+���	�M	�Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]�����7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�������7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�
�f����I	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo�����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o����Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��	��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE��^��
��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'������1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��
��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��J��s�#	�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5�����+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��^����9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5��� ��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^��!��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��#��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��"��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��%��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��$��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE�
?'?�[��'��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��T��&��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��(��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��)��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��*��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��+��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����,��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
?'?�[��.��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��T��-��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��/��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��0��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��1��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��2��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����3��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/��5��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��4��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��7��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��3��6��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��8��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��9��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��:��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��;��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����<��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/��>��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��=��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��?��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��@��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/��B��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��A��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��C��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���E��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��D��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���G��		�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��F��{	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��H��w	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����I��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��J��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]

e�r+��V��:��eD��
b7d834f2cc5aa84ce95931ece2e31ba36b1622f5cf8408527a2a75727e975348D��
572ff1fa3f621ad26e4183404533f0d373eee24c0a12955ab2ab39ca102d691eD��
fd8e59feae40f80e38ab4a8de84b96325cd6b29832ce967fca67cb83405b1342D��
de7f44e2c7986c23e352486d2894499d26f632330a153b346ea4363cdf0397cbD��
dc90a5cca940b1f478ed520e28cd82492738bbb49889b2cd96a4cff2fbc503bcD��
c540f6cbef4a78a050fb751882916735d1bd6054d8c177140c200cf31eaf923fD��
563fbcd370477439a58af9940298f2c82a2b3a37e487abffaa7f2cc6dc359b31D��
adf17c4b2070f73fe44e9fc11648947e83c86d37a4e3532c9d77d3d8e9ae50e5D�
�
179d7e14905a53e3d09515993644464c53e8bf4c10bcd829502d153744fdf666D��
a14db656a37e716de6fd51d331dc591f90b663382f88a483d40e8c847e506676D��
2c64dd985521f02ada8ac0415b1d852ab79d87ebdf2950e421d8258a4d86d153D�
�
a5f9b329bc1130ffe9bf6f2ced3317e2ad895c4559a82bdf804c8b85e4765b28D�	�
6ce4b480a292b7fa51c31777377a1711c2537597c5cf02d8aa14b345321b67bf
tt���K��		�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��L��w	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����M��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��N��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���P��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��O��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP �
SzS�"��R��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���Q��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���T��-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��S��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���V��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��U��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP �
SzS�"��X��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���W��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��Y��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����Z��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����[��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��]��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���\��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����_��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���^��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"��`��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��a��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����b��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����c��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��e��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���d��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����h��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��g��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���f��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�����i��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����j��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��l��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���k��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����o��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��n��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���m��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��p��
	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���q��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348�
nn���s��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��r��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y����u��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��t��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��v��
	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���w��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348�
�i��x��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��y��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��z��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��|��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��{��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���}��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348�
�i��~��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]bRZRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������Ł�BƁ�Cǁ�Eȁ�GɁ�Hʁ�Iˁ�J́�K΁�Lρ�MЁ�Nҁ�PӁ�Rԁ�Tց�Vׁ�X؁�Yف�Zځ�[ہ�]܁�_݁�`ށ�a߁�b�cၻe⁻hほi䁻j偻l恻o灻p遻qꁻs끻u쁻vwx�y�z�|�}���~�����������������
������	��
��������������!��"��#��$��'��( ��)!��*"��-#��.$��/%��2&��3'��5(��8)��:*��>+��@-��A.��E/��F1��G2��I3��L:��O<��P=��R>��UD��WF��XG��ZH��]N��^O��_P��aV��cW��dX��fY��g
���_����=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7����m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7����m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p����_	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]�����+	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!������+	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n����[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig��Z����3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��
��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig�Z��	��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p����_	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error reform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060�����}	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?������	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��
��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���s�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%����I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��s�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�������+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol�^����9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9����o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow�t����e	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command
erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n����[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig�X����-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error reform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060�����}	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?������	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<����w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%��!��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]��� ��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��"��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT
PP�+��#��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��$��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%��'��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���&��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���%��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��(��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT
PP�+��)��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��*��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��-��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��,��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���+��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��.��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��/��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��2��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��1��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���0��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��3��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��5��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���4��		�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��8��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���7��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���6��-	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L��:��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���9��		�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��>��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��=��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���<��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���;��-	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���@��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��?��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��A��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for ,
3^O$3�l��E��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��D��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��C��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���B��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii���F��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��G��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 0
G^G���I��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���H��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��L��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���K��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-238254�+��J��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}5 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV6E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 7CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [20902278] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}

e�r+��V��:��eD�"�
fe01de01f7bcb863a54f276394f9ab097a0d29db56661a42eb33d27e4bef27f8D�!�
ea590d364a03624b219bdbcff4119983ab7a1bd31a6a7146afb0d4e684761056D� �
3fd85597715ed99be96dcdbcfa10bedfcca32a7ad600f9ebf609b83a2c6d481aD��
83282159f5c6971ea89b738532ec3620b616c1b9d90ff2a62527714e210cad05D��
f2ec86971a1091e0bfe181b4363faea8e87a9b3e3559bb53f97966d8f02e97d2D��
a40e6f107134f5d7997968a9ddc2ce1e7beb8cec4d869d04add1181bbf1653fdD��
380017b2933fbc2a789cf7c1b00bb0fa298bf6b9cb61d88aaf52bd314eaa1efcD��
29653969b83d43fd83befb74a89b5811c1b7b3d613637aa64efa39a1d4b2e76aD��
2ac60b8088805d258f480005417e5958a86da93d764c9825c111401402c2b72dD��
76b71b906c9f1af8e7860bcf78af0d724ef72c918767fb655b3ac9f2e0e6530bD��
fe5bfef21df5d0e8252e7ac8804794d70a0db68230a14972077289f7d05e21e8D��
38d054f054325006f87cc688b0f258c342122a6a0a76a8efb07f3c1ff8cd20dcD��
a15acb72ee6adfbf7ace3b47300fda1914cad9d22e255326e32d3a93ce032670
M��M���O��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��N��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��M��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��P��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for ;
G^G���R��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���Q��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��U��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���T��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825?�+��S��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}@ CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVAE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 BCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227C] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����W��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��V��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��X��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for E
G^G���Z��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���Y��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��]��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���\��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825I�+��[��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}J CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVKE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 LCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227M] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��^��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��_��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������a��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825Q���`��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}R CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVSE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 TCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227U] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��c��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��b��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��d��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��f��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���e��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��g��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��i��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc[���h��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��k��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��j��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U��l��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��n��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���m��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��o��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��q��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitca���p��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��t��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���s��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��r��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i��v��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���u��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��w��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��y��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcf���x��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����}��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��|��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���{��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��z��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W�����1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���~��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_����=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�����3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7����m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitci
�_TH��<����w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]�����7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����
��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��	��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3����e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<��
��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��}�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3����e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t����g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i����Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]o
�����s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Dronos�	��s�!	�Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do cleanr�M����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}tv) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check v�J��s�#	�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<����w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�H��K�� }�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3����e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��"��g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��!��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]{
����-��$��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��#��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��'}�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���&��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��%��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��)��g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��(��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]
����-��+��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��*��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������-��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��,��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����/��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f��J��.��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��1��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��0��{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��3��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��2��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������6��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f��J��5��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���4��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��7��{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��8��E	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��:��k	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��9��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��<��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol��^��;��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��>��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow��t��=��e	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���@��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han��X��?��-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��A��I	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���B��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��C��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��D��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������\��k]��l^��n_��o`��qb��tc��vd��we��yg��}h��j��k��l��
m��
n��p��q��u��w��x��y��z�� |��"}��$~��'���)���+���-���/���1���3���6���7���8���:���<���>���@���A���B���C���D���E���H���K���N���Q���R���T���V���Y���[���]���_���b���c���d���e���f���g���i���j���l���n���p���s���u���w���y���|���~�������������Á�ā�Ł�	ǁ�
ȁ�ʁ�
ˁ�́�́�ρ�Ё�с�Ӂ�ԁ�Ձ�ց�؁�ف�ځ�ہ�܁� 
���d��E��E	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��H��u	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��G��k	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��F��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}��K��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��J��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��I��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��N��{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��M��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��L��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}

e�r+��V��:��eD�/�
12eb69ce3ab02b67fd35247a607d73a70b5c657c3703598db21a9ebe26e45a42D�.�
39ce1d8d6ffa3efde898b475b2be150a92edca9d2aadf7ed8d5d69e6865175f9D�-�
22e7b5d6e46a23025f394d1dd9e25e4e5cfd1c5dbb00f74226f20929ee065bd9D�,�
1cd93bcccbab328b508e869ff3ceeaa30e1ab5ac781b7a6c3b91207832226025D�+�
315bb4f6a8cd60a7becf60b599198a41a19465d28cc706d98dfa3b927f357dadD�*�
404156845f116a61c9627f44cc1b924461c60e723c92dd3a152f2840e6e9003aD�)�
8764032443efee4dc7bfb0ee1a11749205880cd86b230ad538346b697120c5e7D�(�
b918eb715248bdb46d8f49387310a25030a9f4fe192d5ee0f69fabde9b84d42dD�'�
528d0642b5b6549b3084ad519bbeef6aa4048aa69d52903acce6a22132ac9303D�&�
97708bdbb05e028158319a2bcc0079feb219bc2cbe8d1b3c5b3861d43afd818fD�%�
3d08be30af99cb4e2248e149d75d36071c2dfd0806f511abe5c972b4051fe7d7D�$�
4d66ddd3b79ce560d9eab146d518f751de7e9ef4d667fa701a868a978f1342cbD�#�
211028daa1af91e1fc841cb5b76e2f4edf63f510630571253c89635fccd41209
�X�B��Q��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��P��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��O��u	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��R��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4��T��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��S��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��V��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��U��y	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��Y��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���X��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���W��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�
����}��[��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��Z��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4��]��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��\��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��_��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��^��y	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+��b�	�M	�Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]���a��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���`��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�����c��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�
�f��d��I	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���e��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��f��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��g��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��i��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE��^��h��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O��j��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����l��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��k��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���ns�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��J��ms�#	�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��ps�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��os�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��ss�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���rs�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���qs�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���u��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��ts�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����ws�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��^��v��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��ys�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��xs�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��|s�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���{s�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���zs�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���~��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��}s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^����9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^����7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE�
?'?�[����1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��T����#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��	��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����
��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
?'?�[����1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797ɅT����#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��
��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�������	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/����Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|����s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[����1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797҃3����a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�������	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/����Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|����s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3����a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:����o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/�� ��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|����s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��!��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���#��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��"��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���%��		�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��$��{	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��&��w	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����'��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��(��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt���)��		�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��*��w	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����+��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��,��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���.��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��-��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP �
SzS�"��0��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���/��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���2��-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��1��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���4��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��3��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP �
SzS�"��6��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���5��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��7��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����8��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����9��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��;��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���:��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����=��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���<��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"��>��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��?��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����@��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����A��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��C��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���B��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����F��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��E��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���D��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�����G��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����H��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��J��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���I��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����M��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��L��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���K��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��N��
	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���O��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348�
nn���Q��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��P��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]

e�r+��V��:��eD�<�
eeb0ed8d5fd30d98e3bef225ead945fafb2e3dbd8cea8e4b45565671473073d7D�;�
2111718d7572c52cddb1070151dd723808174e0f46528dd636ee9dd3afc41523D�:�
fe35603b7abe8e1540b93b5c81f16503aa0704fb2bffed7d863b738cf0cf67b4D�9�
3f9a0f21e2acc0ae5b83814ce830b1a500157b9c6b68efd957007ce368622288D�8�
1b481cd6a6df8a141bc7064b72ffee022095969d0a25a8b9a57bfdc1ec3af7beD�7�
a895efeb08422b537678146fb9329ca6a9b3238f9291a15d091a5a70273cfab3D�6�
c6b55809244b010e1d1dc344b9add936f4598f2be100373d25749f6d2da8522dD�5�
dbbb88d9eb3b101dd3369a46793946b7cefc449cb1c00dab5affc0a3c6adfad7D�4�
0a755493662be885a9d421b00ff08001a5d61a085bb86846d60072222530e672D�3�
03c6e9f83275661d1eb892af76411bc871b3f442dc65c95ad96dadbaffe84cf7D�2�
aa2c7472ee44f9db48646789dbda352a7399c0d9f9e2644db03345bfbf705395D�1�
6817bc65309730ab6a1f49ab977c2ea11a9cb5a2f623376008276eeda89f41daD�0�
2e997f7e17c861373d0fa5737eaf371bb9187d5db73e8c89cb03ef342029cfaa
�Y����S��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��R��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��T��
	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���U��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348
�i��V��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��W��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��X��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��Z��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��Y��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���[��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348

�i��\��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��]��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��^��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]bRsRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������ށ�#߁�%�&ၾ'⁾(ま)䁾*偾+恾,聾.遾0ꁾ2쁾4큾678�9�;�=�>�?���@���A���C���F���G���H���J���M���N���O��Q��S��T��U��V��W��X	��Z��[��\
��]��^��`��b��e��h��j��l��p ��r!��s"��u%��w'��y,��{.��}/��1��2��3��4��6��7��8��9��:��;��
<��=��>��?��@��A��B��D��E��#F��$H��%I��'J��*P��-R��.S��0T��3Z��5\��6]��8^��;d��<e��=f��?l��Am��Bn��Do��Ep��Gr��I
��!��`��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��_��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p��b��_	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]���a��+	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!����e��+	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n��d��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig�Z��c��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error reform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��h��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig�Z��g��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p��f��_	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error reform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��j��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060���i��}	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����l��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��k��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���ps�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���os�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%��n��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���m��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��rs�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��qs�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�����s��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P��u��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol#�^��t��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��w��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow&�t��v��e	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command$erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n��y��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig(�X��x��-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352})et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush *if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r+eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��{��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060-���z��}	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����}��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��|��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%����I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���~��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\����7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT0
PP�+����U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S����%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%����I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\����7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT5
PP�+����U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S����%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��
��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���	��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��
��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%����I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]�����		�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]�����)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]�����-	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]�����		�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&����K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]�����)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]�����-	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx�����#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l����W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for C
3^O$3�l��#��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��"��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��!��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]��� ��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii���$��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��%��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for G
G^G���'��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���&��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��*��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���)��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825K�+��(��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}L CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVME-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 NCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227O] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M���-��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��,��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��+��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��.��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for Q
G^G���0��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���/��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��3��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���2��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825U�+��1��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}V CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVWE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 XCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227Y] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����5��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��4��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��6��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for [
G^G���8��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���7��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��;��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���:��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825_�+��9��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}` CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVaE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 bCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227c] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��<��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��=��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������?��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825g���>��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}h CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CViE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 jCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227k] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��A��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��@��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��B��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��D��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���C��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��E��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��G��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcq���F��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��I��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��H��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U��J��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��L��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���K��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��M��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��O��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcw���N��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��R��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���Q��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��P��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]

e�r+��V��:��eD�I�
6cfb6bf58c05c3d5623f5406c5e146a76aced8a97fef4153ef7d295cc5776298D�H�
d093869ed5878283193de6a764e7847674976671131c829603d9981e56660bfbD�G�
bf08078851ef715022279479446f3e390e30bd92cb15b2aed42318fb677e40a0D�F�
aed30d0de3bf0d71c9c9be43e3e4b5e8d6832a7e755e8cfd843a6bd7f735d310D�E�
cfde4230671763bf6a464de9ec8c191195c9ae864571afd92bc7bea8dfcbb11eD�D�
e3d2e5a0802cde0d09552d1bd3102383e1851a9aecf88fd83a5fb81baae6d53cD�C�
e357af06726c5602fad5542ef0502f94391737c732c9fbf6706f80fb6757f197D�B�
0eec836c027a565c281645294b192571bfe852631d94438627371cba58c380deD�A�
7eee4abf22678a8043377d3ff29621b20a1dbe6da04bb0918068ef07eacf23e7D�@�
ef3258341d0c757014a17a4cc94207f623282b6190b470f1517c29d8bb42218fD�?�
a663038e5d2fe0f26775744ace593a48c274a77a69c51d4592701ea604272ae1D�>�
610253d61d946788184230adb18227e8e92b245a2c2244a5d929b1b096fe7faaD�=�
3668549b1c43bc2b0dd420108f4ebcc8bff57ef08d4b839f3f8e6f9c4691f314
����i��T��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���S��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��U��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��W��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc}���V��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����[��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��Z��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���Y��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��X��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���]��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���\��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_��a��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���`��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��_��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7��^��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�
�_TH��<��e��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���d��
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���c��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]���b��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����h��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��g��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3��f��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<��k��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���j��
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���i��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��m}�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��l��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��o��g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��n��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
�����rs�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono��	��qs�!	�Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean��M��p��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}�v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���ts�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��J��ss�#	�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��vs�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��us�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��ys�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���xs�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���ws�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<��|��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���{��
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��zs�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�H��K��~}�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��}��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t����g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i����Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-����W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��}�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�����9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t����g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i����Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-��	��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
��������9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��
��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����
��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f��J����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?����{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-����W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
��������1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f��J����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)�����9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?����{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d����E	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7����k	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol��^����9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9����o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow��t����e	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y�����7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han��X����-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f����I	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo��� ��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��!��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��"��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d��#��E	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��&��u	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��%��k	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��$��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������t��Lu��Mv��Ox��Rz��T{��U|��W~��[��]���a���e���h���k���m���o���r���t���v���y���|���~���������������	������
��������������������������������� ���!���"���#���&���)���,���/���0���2���4���7���9���;���=���@���A���B���C�DÁ�Eā�GƁ�Hǁ�Jȁ�Lʁ�Nˁ�Q́�Ś�UЁ�Wс�Zҁ�\Ӂ�]ԁ�_ց�aׁ�cف�dځ�eہ�f܁�gށ�h߁�j�k�l�m�n�o�q�s�t�u�v�w�x�z�{�|�~����
Y�}��)��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��(��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��'��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��,��{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��+��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��*��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B��/��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��.��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��-��u	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��0��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4��2��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��1��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��4��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��3��y	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��7��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���6��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���5��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�
����}��9��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��8��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4��;��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��:��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��=��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��<��y	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+��@�	�M	�Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]���?��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���>��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�����A��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�
�f��B��I	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���C��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��D��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��E��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��G��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PEń^��F��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O��H��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����J��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��I��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���Ls�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ɆJ��Ks�#	�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��Ns�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��Ms�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��Qs�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���Ps�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���Os�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���S��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��Rs�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����Us�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check υ^��T��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]

e�r+��V��:��eD�V�
66af09f68408482637e668b90619392a27fa21b7d4ed06f3c3cbc60d87ce1d78D�U�
c9c2a62c7fb170cc9007afb571d8b9beab632b42aaef2f1461f8ba0a2c5f6d9aD�T�
619978f4cd3319fc56335a010d227ac9446de3fe27758ad4f22319183b1a35bbD�S�
e1d60b061557e368c20da15e4517376a49df65648636bd09fa3baa81f162391dD�R�
2c612e423c3e3ace2108965f2996ecb1002eee8415cdce8e05c58aafa5f37306D�Q�
f066c4d77c32004d1843615beab2f59dce9664e5e79aaf6f5453d44d0d9e02feD�P�
72dc266e5da09e38d19f4c3904bdb983146af68adbe466120ff8bfecdb4567bfD�O�
5ec120d1c66453ab1a85e5107b0b4457686f595cf2e8dfc5ca04adcec4f0ade0D�N�
7d9fd10906d65ff1e5f7dc8aed453f9fa04ddb34ca3a6622b45b15bbf2b7dc66D�M�
ea73cbefe91a8c86fea9a227d19b9f36d68daa5f9e640d6d6acf7a6ad65c4297D�L�
e2b80fc90e80e10166a785ab1c718ed12380055d955ab295c5363ad6405fe815D�K�
3f77e8c91079e010fb161e28eaf613452e1c25d2d67b0367cb344f3141bf3cb9D�J�
1a74fcb33103de74d5129a6eea3fe37137b7cbdc136b11a49f79822b8fbd6194to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��Ws�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��Vs�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��Zs�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���Ys�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���Xs�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���\��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��[s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^��]��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��_��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��^��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��a��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��`��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE�
?'?�[��c��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797؅T��b��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��d��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��e��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��f��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��g��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����h��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
?'?�[��j��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797�T��i��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��k��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��l��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��m��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��n��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����o��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/��q��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��p��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��s��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797�3��r��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��t��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��u��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��v��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��w��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����x��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/��z��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��y��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��{��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��|��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/��~��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��}��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3����a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4�����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:����o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/�����		�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@����{	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>����w	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�������#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt�����		�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>����w	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����	��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��
��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+�����'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP �
SzS�"����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���
��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,�����-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1����]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+�����'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H����	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP 
SzS�"����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]�����}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1����]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�������	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�������	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2����_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]�����'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\������}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]�����9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1����]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�������	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�������	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��!��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]��� ��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����$��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��#��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���"��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�����%��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����&��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��(��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���'��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����+��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��*��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���)��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��,��
	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���-��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348
nn���/��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��.��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y����1��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��0��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��2��
	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���3��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348
�i��4��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��5��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��6��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��8��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��7��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���9��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348 
�i��:��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��;��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��<��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��>��A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��=��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p��@��_	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]���?��+	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������������������������	���
�������������������	��
������
����!��$��%��&��(��+��,��-��/��1��2��3��4��5��6��8!��9"��:#��;$��<%��>&��@(��C-��F2��H4��J5��N6��P7��Q8��S;��U=��WC��YE��[F��]H��^I��_J��`K��cM��dN��eO��fP��iQ��jR��kS��nT��oU��qV��tW��vX��zY��|[��}\��]��_��`��a��g��i��j��k��q��s��t��u��{��|��}�������� ���"���#���%���'���(���*
!����C��+	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n��B��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig)�Z��A��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]*et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush +if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r,eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��F��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig.�Z��E��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p��D��_	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]/et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush 0if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r1eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��H��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030603���G��}	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����J��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��I��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���Ns�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���Ms�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%��L��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���K��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��Ps�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��Os�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�����Q��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P��S��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol9�^��R��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��U��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow<�t��T��e	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command:erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n��W��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig?�X��V��-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}

e�r+��V��:��eD�c�
8c51f1c38ad47d554e10f738e37c0bf122f76f4859f755e0449895448111fdfbD�b�
618bc94e003b50654a567449109303c221bd56c7f188de529a8d1ab1d8e20fd8D�a�
90add33a3f4cc834b9be91c4ccc12114abeee16aab262829030db0c9ce27fafeD�`�
61cfa80ff521cdee2ca184780c2e8e55454cba77894c18944b233eb145b6c262D�_�
8cd2d58f528256baddd73bebea799773f83bd54624d090696d0c2ca0cac8656dD�^�
9c8552ce4b79fef3a8e7b55a85b91bd83e2f2765635056bc7064ab7d071c6e1aD�]�
f5394565fcf1a20382bcdd1f64e77e587e222a4e135860c31a6a2b4f012e4691D�\�
f0308f6cab8d1b2a831f455e5c9950062be00908841b0a04d0555377c61e49caD�[�
c4dd18d9c01ea40a453a4a345bdb13d9ca5f3315e69e78ce7e1f9798972a5d47D�Z�
a219dbccfdca9ac57c9b9064dffadc0044870709a425252ba874f86cfa15084cD�Y�
bae6332ef212f5e4fe0b1eada2f87ebde9f8d0ae3bc2bf1231463bddc7837af2D�X�
5b152b26c3cb00751f5faf6a0e5bf8cffab7cb953c9a7a44d5c064beadb2c64bD�W�
5b75d2143ffe291c5183924ee30ab08ceb34c6da47f540b55f39025c5123e419@et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush Aif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rBeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��Y��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060D���X��}	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����[��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��Z��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%��]��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���\��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��^��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUTG
PP�+��_��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��`��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%��c��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���b��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���a��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��d��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUTL
PP�+��e��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��f��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��i��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��h��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���g��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��j��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��k��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��n��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��m��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���l��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��o��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��q��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���p��		�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��t��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���s��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���r��-	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L��v��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���u��		�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��z��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��y��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���x��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���w��-	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���|��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��{��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��}��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for Z
3^O$3�l����W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&����K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���~��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii�����#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for ^
G^G�����#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]�����9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825b�+����U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}c CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVdE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 eCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227f] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M�����#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��
��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��	��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for h
G^G�����#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���
��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825l�+����U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}m CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVnE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 oCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227p] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
������#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for r
G^G�����#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]�����9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825v�+����U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}w CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CVxE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 yCVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227z] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U����)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
��������	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825~�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401} CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U�� ��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��"��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���!��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��#��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��%��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc����$��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��'��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��&��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U��(��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��*��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���)��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��+��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��-��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc����,��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��0��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���/��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��.��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i��2��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���1��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��3��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��5��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc����4��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����9��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��8��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���7��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��6��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���;��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���:��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_��?��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���>��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��=��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7��<��m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�
�_TH��<��C��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���B��
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���A��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]���@��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����F��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��E��=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3��D��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<��I��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���H��
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���G��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��K}�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��J��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��M��g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��L��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
�����Ps�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono��	��Os�!	�Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean��M��N��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}�v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���Rs�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��J��Qs�#	�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��Ts�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��Ss�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��Ws�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���Vs�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���Us�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<��Z��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���Y��
	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��Xs�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]

e�r+��V��:��eD�p�
ad7bce9b915192b7b549afd2ed6063d2ada93cb004d25d42dc82dd3313d82a37D�o�
52fc84afa30b500c79c2116a67a199c3eba6bbed1b7b171fc4fec483dc2c9f4cD�n�
4abf0ebc2127e7a5b5dfb595fa447cb44f339ff023ce88bb0a97992bba4cd3a9D�m�
961c48cd798bb2acb18bcb4bd7ebd24f8752f021a87363745131dc5e83535165D�l�
cd7d87fbf38e3d491a5a8b262d70dddd01ac00ec722b52c01b44e67f7d8c5a66D�k�
e7e90b3e6ae85deb749d4071a5467a5a718a12808213ecd6657a9d70d12129ceD�j�
b1985dc9a05a3ffe2eac12dd0ba63fc7285e6ca29af03c0351ff2b6bcbd39822D�i�
c20dbccc7c4cc73173c89b3632eb2dbf33e22faaaf1b317279ecad8e2b1fe49bD�h�
74dfc146e5e4ab219dba838033e3a2a983e2ad796cee5a175fda1b6c17653193D�g�
c59ce9d5e2b28c278b947391fce0c591d912b04727d6141c27262cf98fb99844D�f�
a2341873756b6756d7b18967c3dd2b6ce12fff550f0837ea9361171291c42397D�e�
c4bc426d70f27932111cdba1edd2eb69526aef608fccde2da51a6282a479270cD�d�
6cf85cafbf0ed8b58696a680262f819d5ebbe64f5d4ce8010a037a47a9f1ae9f
�H��K��\}�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��[��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��^��g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��]��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-��`��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��_��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��c}�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���b��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��a��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��e��g	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��d��Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-��g��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��f��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������i��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��h��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����k��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f��J��j��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��m��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��l��{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��o��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��n��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������r��1	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f��J��q��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���p��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��s��{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��t��E	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��v��k	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��u��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��x��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol��^��w��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��z��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow��t��y��e	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���|��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han��X��{��-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��}��I	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���~��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o����Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q����]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d����E	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|����u	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7����k	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}����w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��
��{	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��	��e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^����9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}bRRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{���������������������-���0���2���3���5���9���;���?���C���F���I���K���M���P���R���T���W���Z���\���^���`���c���e���g���i���k���m���o���r���s���t���v���x���z���|���}�~Á�ā�Ł�Ɓ�ǁ�ȁ�
ʁ�
ˁ�́�́�ρ�Ё�с�ҁ�ԁ�ց�ׁ� ؁�!ف�"ځ�#ہ�%݁�&ށ�(߁�*��,��/��1��3��5��8��:��;��=��?��A��B��C��D��E��F���H���I���J���K���L���M���O���Q��R��S��T��U��V��X��Y��Z
��\��]��_
��a��b
�X�B��
��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|����u	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}����w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4����e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^����9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~����y	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�����7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�
����}����w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4����e	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^����9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~����y	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+���	�M	�Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]�����7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�������7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�
�f�� ��I	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���!��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��"��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��#��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��%��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE܄^��$��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O��&��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����(��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��'��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���*s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check �J��)s�#	�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��,s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��+s�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��/s�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���.s�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���-s�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���1��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��0s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����3s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check �^��2��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��5s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��4s�m	�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��8s�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���7s�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���6s�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���:��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��9s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^��;��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��=��7	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��<��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��?��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��>��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE�
?'?�[��A��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797�T��@��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��B��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��C��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��D��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��E��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����F��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
?'?�[��H��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��T��G��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��I��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��J��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��K��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��L��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����M��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend�
KK�/��O��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��N��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��Q��1	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797��3��P��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��R��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��S��c	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��T��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��U��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����V��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend
KK�/��X��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��W��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��Y��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��Z��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]

e�r+��V��:��eD�}�
d41b5d8b6192712bf36a8ca2a106db94ce0b4451ac3b212fd91ab7cb0ed75e82D�|�
9b3822948ac2fa18132b7f9d9a7d2a194615f396f5dc14dd0ecaa0ee2975470eD�{�
6ba3e0dd497e559f7b44eabac8136c12499febdb7526dbf3ba89a7b3627aed84D�z�
376c21e2589fa7b033d3dbd7673defdb1d5e23c6ad32b112bddd31ae3915a582D�y�
17401dca64ff03c547fb51c7e83d60963cc03409dbba4804272853959d2b9a21D�x�
7e0b3e536d03b5890007813734653bd6fbc40e2af79d298e9448d84e81ea4734D�w�
d2642493abe4c602af8bd00a8d0954219b93cb84fabd9870230cad39d45b9ee7D�v�
b31602d66dc65e0bd7a5dac4f9770030528982795cfb1eb49b0cc1eea4786f27D�u�
3398d3a8a0f8d7273ef408e2922e3b985aab4a0398a30203ce247637331432d5D�t�
07505d8e7877d8a5114d6db605a9dc9c2132c0d32d978e2df599fa2e69887780D�s�
e888a6e4abc3928d95ec0b18f8a42febb63ba70ba0371c23615b8823209d9317D�r�
ba5a53ea9bd2aff2765fd9fc38a3f75ecd5d3e617e1c2cb85f6a9a793063506cD�q�
506818895cd30b93e3417b8379f3afc7f80a2a69c7739886bc58648f153fb9e6
KK�/��\��Y	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��[��s	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��]��a	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���_��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��^��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���a��		�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��`��{	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��b��w	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����c��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��d��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt���e��		�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��f��w	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����g��#	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��h��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���j��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��i��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP 
SzS�"��l��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���k��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���n��-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��m��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���p��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��o��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP 
SzS�"��r��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���q��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��s��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����t��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����u��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��w��_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���v��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����y��}	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���x��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"��z��?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��{��]	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����|��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����}��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2����_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���~��'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\������9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]�����9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�������	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�������	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2����_	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]�����'	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����	��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]�����9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��
��
	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348,
nn���
��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i����Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y������9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"����?	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I����
	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [183481
�i����Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_����=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7����m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7����m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm�����	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [183487
�i����Q	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_����=	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7����m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!����A	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7����m	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p����_	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]�����+	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!����!��+	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n�� ��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig?�Z����3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]@et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush Aif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rBeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��$��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_igE�Z��#��3	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p��"��_	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{��������������������d��e��f��g��h��j��l��n��p��r��s��t��u��w ��y!��z"��{#��|$��}%��&��'��(��)��*��	+��
-��.��
/��0��2��3��4��5��6��8��9��:��;��<��=��>��!C��$I��&K��(L��,M��.N��/O��1R��3T��5Y��7[��9\��;^��<_��=`��>a��Ac��Bd��Ce��Df��Gg��Hh��Ii��Lj��Mk��Ol��Rm��Tn��Xo��Zq��[r��_t��`v��aw��cx��f~��i���j���l���o���q���r���t���w���x���y���{���}���~���������������������	���Fet() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush Gif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rHeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��&��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060J���%��}	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����(��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��'��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���,s�1	�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���+s�7	�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%��*��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���)��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��.s�	�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��-s�c	�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�����/��+	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P��1��	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_holP�^��0��9	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��3��o	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] powS�t��2��e	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_commandQerpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n��5��[	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_igU�X��4��-	�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}Vet() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush Wif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rXeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��7��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060Z���6��}	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����9��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��8��w	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%��;��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���:��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��<��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT]
PP�+��=��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��>��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%��A��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���@��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���?��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��B��7	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUTb
PP�+��C��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��D��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��G��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��F��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���E��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��H��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��I��%	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��L��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��K��I	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���J��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��M��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��O��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���N��		�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��R��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���Q��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���P��-	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L��T��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���S��		�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��X��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��W��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���V��)	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���U��-	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���Z��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��Y��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��[��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for p
3^O$3�l��_��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��^��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��]��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���\��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]

e�r+��V��:��eD�
�
81b2e85bd83c8dc868290121adb4b8821c2da304dd04a69ec5ea65031c46d351D�	�
2041fb62286ddc1875cdc0396db816edd188bd1beeb362b3e99a3166a7bf8179D��
d209fc6a50302b35ffe0a948bce5c2b144f66af599a404ffd4a6771e24896130D��
ab17047e6cd355e0a693ee5bd8cca6e51616257233f9e4991c609933559e5831D��
361435b0149d64bce7ddd96522893346319af483ba71ff2f7d32c353614b224fD��
4b1e28830cdeb09548b5fed9c3021450437dcf28952e709628dd86397bf78af4D��
95328dc6ff974a63f71a020d2f75e367ec10635e3db3ece1c6894c07d22f40cdD��
73b613dd48f531b02ef3e8b042c6bb5fa7f517faeedbd0883ebda2f46aca3135D��
2a085ac87e43c3c43e031cb33170bfabf4fbeea917c6492d513aab56393104b5D��
e73e80ff6eb4ad13c6cbb061fbc0b000631cf8e49449db648db76556adee995eD��
5cf93be19fa91922ddc7ba9806b15e6fe9b422f89ed4b63465373a0a29b17e95D��
39d478d2186cad86df1a7e0bcfb9ec33d5205653c9b51f111a67f541511da671D�~�
89fc26f9b9704d242bcd1974e846283609f11bf4dc47d614efae548b2b836ec9
ii���`��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��a��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for u
G^G���c��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���b��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��f��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���e��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825y�+��d��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}z CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV{E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 |CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227}] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M���i��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��h��W	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��g��K	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��j��'	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 
G^G���l��#	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���k��9	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��o��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���n��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+��m��U	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����q��#
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��p��	�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��r��'
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G���t��#
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���s��9
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��w��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���v��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+��u��U
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��x��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��y��)
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������{��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825����z��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��}��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��|��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��~��)
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i����Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc������1
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3����e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U����)
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i����Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��	��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc����
��1
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_����=
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���
��3
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i����Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc������1
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E������7
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_����=
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�����3
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W�����1
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_����=
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�����3
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7����m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�
�_TH��<��!��w
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}��� ��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]�����7
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����$��7
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��#��=
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3��"��e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<��'��w
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���&��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���%��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��)}�
Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��(��e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��+��g
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��*��Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
�����.s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono��	��-s�!
Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean��M��,��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}�v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���0s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��J��/s�#
Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��2s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��1s�m
Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��5s�c
Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���4s�1
Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���3s�7
Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<��8��w
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���7��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��6s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�H��K��:}�
Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��9��e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��<��g
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��;��Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-��>��W
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��=��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��A}�
Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���@��9
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��?��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��C��g
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��B��Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-��E��W
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��D��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������G��9
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��F��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����I��1
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_fȃJ��H��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��K��
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��J��{
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��M��
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��L��W
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������P��1
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f̃J��O��
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���N��9
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��Q��{
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��R��E
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��T��k
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��S��
	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��V��

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_holх^��U��9

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��X��o

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] powԉt��W��e

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���Z��7

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: HanքX��Y��-

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��[��I

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���\��

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��]��Y

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��^��]

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]

e�r+��V��:��eD��
d79bdff199cc5f9127f01f99ca4906b965b3c5fb198906c1ed16e725d5bbe25fD��
5573691deaca712e1478b3d889fe322be138680d8955a04b75e3a0066e099ca2D��
28f85ca5b6e7c2b1e3ab7c4b31675583e8a72c18188f86f288a9a9bc046a202cD��
d561b43042ddb9d02a31ae81d1c4935a05988542719e259b277dfcc2995339cfD��
4f26a49ed12aa41e17cd5c146486cc8db5796101704d7b492066007312935250D��
cda402fcb291052201381d37c733af954d30e2e6e3f24e5b636ae67715e8c0d0D��
29feb5e5f9922979d66fabe2aac8bd7fdd18f1915777acf5b360bb7e5cdb0109D��
4eb98f8f58cf6cec17799f6df6cd52b55de57ac3aef90f330df1e07c1f8f3702D��
82269d23d95a9f1e1e213464701f07feb1fb5233bc66364a7b39d1a25b4a7a72D��
4684e767f94d3dbc6eaccc3037287d441ff4f9d0bda6586211a7181edd68f6a8D�
�
289a95c54f089f8ce63931c0b1b113b2e0f6b74f859eb3900ce19534baafd6d4D��
16a9d3e7ce759abfcc7721bbe369b46acd4b3c511910e0ac4f61445d857f52d8D��
b5a460913216927a863650ccef6d332b05a92836c9647e73a369720e9156fe84
���d��_��E
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��b��u
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��a��k
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��`��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}��e��w
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��d��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��c��A
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��h��{
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��g��e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��f��9
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B��k��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��j��A
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��i��u
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��l��w
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]bR'RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{���������������������������������������!���$���'���)���+���.���0���2���5���8���:���<���>�Aā�CŁ�EƁ�Gǁ�IɁ�Kʁ�Mˁ�Ṕ�Q΁�Rρ�TЁ�VӁ�XՁ�Zׁ�[؁�\ف�]ځ�^܁�_݁�bށ�e߁�h��k��l��n��p��s��u��w��y��|��}��~�������������������
���
������������������������� ��!��"	��#��$��&��'��(��)��*��+��-��/��0��1��2��3��4��6��7��8 ��:!��;"��=#��?$��@%��A&��B
����4��n��e
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��m��9
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��p��A
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��o��y
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��s��A

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���r��7
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���q��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�
����}��u��w

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��t��

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4��w��e

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��v��9

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��y��A

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��x��y

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+��|�	�M

Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]���{��7

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���z��

Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�����}��7
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�
�f��~��I
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo�����
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o����Y
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q����]
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R����
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE�^����7
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O����
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'������1
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T����#
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��J��s�#
Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��
s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��	s�m
Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��
s�c
Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1
Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7
Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5�����+
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��^����9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�m
Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�c
Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1
Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7
Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5�����+
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^����9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^����7
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!����?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O����
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R����
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE
?'?�[����1
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797�T����#
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b�� ��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��!��c
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��"��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��#��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����$��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend

?'?�[��&��1
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797
�T��%��#
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��'��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��(��c
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��)��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��*��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����+��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend
KK�/��-��Y
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��,��s
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��/��1
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797�3��.��a
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��0��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��1��c
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��2��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��3��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����4��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend
KK�/��6��Y
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��5��s
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��7��a
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��8��o
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/��:��Y
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��9��s
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��;��a
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���=��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��<��o
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���?��	
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��>��{
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��@��w
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����A��#
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��B��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt���C��	
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��D��w
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����E��#
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��F��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���H��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��G��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP +
SzS�"��J��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���I��}
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���L��-
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��K��]
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���N��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��M��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP /
SzS�"��P��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���O��}
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��Q��]
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����R��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����S��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��U��_
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���T��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����W��}
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���V��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"��X��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��Y��]
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����Z��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����[��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��]��_
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���\��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����`��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��_��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���^��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]

e�r+��V��:��eD�$�
53cc61153b028eb77eee99eb4b318593a92007ff036a6f6a823411e1ac986690D�#�
51f9017134f88118879ffbdb248450e3b3d9099bcd70dd6c20b9044df41ebaadD�"�
6f9c2eab5630c71a827f71ce416ea6cd0c6b2aba734a2d023f35f7af3d415da4D�!�
f7f4d9e5559f8b130d55ce0048a0976d08ca48b1e818df7319c89d168e26c14eD� �
0b31fcea001c43db8cd9d635933b11a63756f99e56b454bbfd3b201a1ec4a077D��
8a6c2691d1645347df9eff452b78fb18042623b1204c96aafae8161528c51327D��
3ad9c854816cd51073279e25d66deb06e14c0f98f40cc6d468a2d1aee2d2c284D��
34d206ee003d27edc3b435c9aecc9569a8efa0cebca782b60e595b2c78f06326D��
f6c9684def9cd5c7f66fcd886ee8773d2b2f5ae9bdb6dfb6f71d2377b140d30dD��
dc83e35a513a39a6511e6815dff7c318849b1e9ec3399ac8de14115dd8663f84D��
a80e94c28a71146376496e2e9902a431fca968386feb3bcfc1a8b876f55f48ceD��
bf636c3d1c7371276e6fcf8c17bb54ad4a7b3adb5b7ac282711c4d8559a5996bD��
6a841f73df251cdd51f2173820d7aefd9cdad93e87f34531d4856379e80aebfc
�����a��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����b��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��d��_
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���c��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����g��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��f��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���e��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��h��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���i��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348C
nn���k��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��j��Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y����m��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��l��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��n��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���o��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348H
�i��p��Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��q��=
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��r��m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��t��A
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��s��m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���u��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348N
�i��v��Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��w��=
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��x��m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��z��A
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��y��m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p��|��_
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]���{��+
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!������+
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n��~��[
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_igV�Z��}��3
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]Wet() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush Xif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rYeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n����[
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig[�Z����3
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p����_
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]\et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush ]if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r^eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060`�����}
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?������
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<����w
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������(��D)��E*��F,��H-��J.��L0��N1��P2��Q3��R4��S5��U6��W7��X8��Y9��Z:��[;��]<��`>��a?��b@��dA��gB��hD��iE��kF��mG��nI��oJ��pK��qL��rM��tO��uP��vQ��wR��xS��zT��|U��Z��_��a��c��
d��e��
f��i��k��p��r��s��u��v��w��x��z�� {��!|��"}��%~��&��'���*���+���-���0���2���6���8���9���=���>���?���A���D���G���H���J���M���O���P���R���U���V���W���Y���[���\���^���_���a���c���d���f���g���i���l���n
"�Q�"���
s�1
Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���	s�7
Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%����I
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��s�
Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��s�c
Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�����
��+
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P����
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_holg�^����9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9����o
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] powj�t����e
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_commandherpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n����[
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_igl�X����-
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}met() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush nif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error roeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060q�����}
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?������
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<����w
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%����I
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\����7
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUTt
PP�+����U
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S����%
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%����I
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\�� ��7
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUTy
PP�+��!��U
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��"��%
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��%��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��$��I
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���#��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��&��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��'��%
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��*��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��)��I
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���(��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��+��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��-��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���,��	
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��0��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���/��)
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���.��-
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L��2��
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���1��	
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��6��K
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��5��
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���4��)
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���3��-
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���8��#
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��7��W
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��9��'
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
3^O$3�l��=��W
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��<��K
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��;��
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���:��9
 Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii���>��#
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��?��'
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G���A��#
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���@��9
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��D��
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���C��
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+��B��U
!Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M���G��#
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��F��W
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��E��K
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��H��'
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G���J��#
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���I��9
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��M��
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���L��
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+��K��U
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����O��#
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��N��
"Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��P��'
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G���R��#
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���Q��9
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��U��
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���T��
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+��S��U
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��V��
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��W��)
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������Y��
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825����X��
#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��[��
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��Z��
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��\��)
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��^��Q
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���]��
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��_��
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��a��m
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc����`��1
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��c��
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��b��e
$Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]

e�r+��V��:��eD�1�
0cdf4d5f9455b9e3e0eeca97fcb7fa4f7b76899970af7d0fa1bdc2c1ade16fe2D�0�
d81c62d59566998fb91a334f86a794e936a86dbd458bf3633b8ab3f2d471e581D�/�
bbfb59fb0bbbee9e6941d7531aa54e1719671ed000cfb77426d6cc19506cebe1D�.�
4aeb221b696dbe4b67c7b108b689cf26df6c7baa673fd4a529bd4df444eaf4fcD�-�
1bab4a2f960faa0a69de616785116c776e018a15bdc67d8f57416af2a12896dbD�,�
c1a6b5c7d510c383e4cd61ceed4ca28f3f378bc0b62830d40f4fcb14f147b555D�+�
43b8b70412f6c494314d9177182cfca0820391aec220e38ecf47b9fb9d4acd86D�*�
4d332cc4ff11d1dc4a0a7e039eb49da22510476539025c6d32b9a5a212c7cfc5D�)�
0bb28c9f68dfa70b3b78027fb8b42c4122bccb671f14d669ce89f85990ee5c7bD�(�
77eccc75e9f9bd1beac93212452f411060218b9f17289e0f6bd3b293aaeaf916D�'�
4f80068ba1aae1df0b1a343be00c4f8225667afd61a123bede56704529ab3f6cD�&�
5c75d507373106773899d8f085ed0c9921518de33190dfac20ba2aa951e5b2c2D�%�
ae7235d8eadd22bf19fca7e2a758e17a26c6d01caf6e81861e6bf603fe82cb51
&&�U��d��)
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��f��Q
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���e��
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��g��
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��i��m
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc����h��1
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��l��=
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���k��3
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��j��e
%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i��n��Q
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���m��
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��o��
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��q��m
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc����p��1
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����u��7
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��t��=
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���s��3
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��r��e
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���w��1
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���v��
&Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_��{��=
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���z��3
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��y��e
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7��x��m
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�
�_TH��<����w
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���~��
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���}��
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]���|��7
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd������7
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_����=
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3����e
'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<����w
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�����
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��}�
(Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3����e
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��	��g
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i����Q
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
�����s�
)Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis DronoΊ	��s�!
)Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean͂M��
��
(Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}�v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���s�
)Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check цJ��
s�#
)Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�
)Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�m
)Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�c
)Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1
)Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7
)Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<����w
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��s�
)Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�H��K��}�
*Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3����e
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t����g
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i����Q
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-����W
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M����
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��}�
+Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�����9
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L����
*Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��!��g
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i�� ��Q
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-��#��W
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��"��
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������%��9
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��$��
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����'��1
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f߃J��&��
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��)��
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��(��{
+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��+��
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��*��W
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������.��1
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f�J��-��
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���,��9
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��/��{
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��0��E
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��2��k
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��1��
,Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��4��
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol�^��3��9
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��6��o
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow�t��5��e
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���8��7
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�X��7��-
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��9��I
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���:��
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��;��Y
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��<��]
-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d��=��E
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��@��u
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��?��k
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��>��
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}��C��w
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��B��
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��A��A
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��F��{
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��E��e
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��D��9
.Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B��I��
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��H��A
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��G��u
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��J��w
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4��L��e
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��K��9
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��N��A
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��M��y
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]bR@RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{���������������������q�uÁ�wŁ�{Ɓ�ǁ�ȁ�Ɂ�ˁ�	́�Ё�ҁ�Ӂ�ԁ�Ձ�ׁ�؁�ف�ہ�!܁�#݁�%ށ�'��)��+��.��/��0��2��4��6��8��9��:��;��<��=��@��C���F���I���J���L���N���Q���S���U���W��Z��[��\��]��^��_��a
��b��d
��f��h��k��m��o��q��t��v��w��y��{��}��~���� ��"��#��%��&��'��(��*��	+��,��
.��/��0��1��3��4��5��6��7��8��9��:��;��<��=�� >��!?��"ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��Q��A
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���P��7
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���O��
/Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens�
����}��S��w
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��R��
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4��U��e
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��T��9
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��W��A
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��V��y
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+��Z�	�M
0Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]���Y��7
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���X��
0Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ensdle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�����[��7
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han
�f��\��I
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���]��
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��^��Y
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��_��]
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��a��
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE	�^��`��7
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O��b��
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����d��1
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��c��#
1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]

e�r+��V��:��eD�>�
4effc7564fc196a4c6411751bedca4e9e01367a459bcaff78bc6849dc7cf71f5D�=�
4fdc56dc0f2c90e2f3e04a9191f8f4da825b37f6ac25fe246820e255ce02e8a1D�<�
e6bb8a9138e3246eedff3c7522b5bdd6a006e9d47913ff4c10817c6036530510D�;�
2e6658df1cad274f8acd004adf1a98e57338b7aeae5ac65e2c25e78bfe0d2f99D�:�
2617375bbb0a52fe637164f0f40bbbc00ea29b150dd35ba0e0f79447454ad604D�9�
3c1d7d5a10b6bbb96820657c57af7a774ba60dd1acb011d623b218102b3251f3D�8�
68cfd2b5e2aa6b9bad7a4040def6ccec2aa6ca31c6acf4758e98b507e8efc105D�7�
e8c1f68569cc209cc9fa2df02ad4b7b0845192e6e74e5167c8cf3400acdc4c2bD�6�
2e4f169246c2ce1c02926c3021b68913f273ab5b7474087d761d93b81e98eedbD�5�
2a69b561a8c58b7ed126929ce0f305827b54da8604e8f662568fc8ec96090f26D�4�
21af3e26269599f29ef700b687a3e84539aa03ffc025f0794649d54f0a041582D�3�
454bbafafa2ed6a940377a73f755cc70525a8547533b1c20ff588842216101d0D�2�
4d236aaf4435c04e7eca7641052df2e7fe956b46c24fdf530db5d3367025b1f4
A�A���fs�
2Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check �J��es�#
2Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��hs�
2Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��gs�m
2Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��ks�c
2Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���js�1
2Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���is�7
2Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���m��+
2Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��ls�
2Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����os�
3Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check �^��n��9
2Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��qs�
3Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��ps�m
3Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��ts�c
3Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���ss�1
3Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���rs�7
3Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���v��+
3Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��us�
3Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^��w��9
3Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��y��7
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��x��?
3Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��{��
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��z��
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE
?'?�[��}��1
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797�T��|��#
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��~��?
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����c
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J����
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�������
4Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend!
?'?�[����1
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797$�T����#
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����c
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J����
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����	��
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend)
KK�/����Y
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��
��s
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��
��1
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797-�3����a
5Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����c
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J����
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�������
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend2
KK�/����Y
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|����s
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3����a
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:����o
6Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/����Y
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|����s
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3����a
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4�����
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:����o
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/�����	
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@����{
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>����w
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�������#
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M�� ��
7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt���!��	
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��"��w
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����#��#
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��$��
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���&��'
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��%��
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP B
SzS�"��(��?
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���'��}
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���*��-
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��)��]
8Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���,��'
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��+��
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP F
SzS�"��.��?
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���-��}
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��/��]
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����0��
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����1��
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��3��_
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���2��'
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����5��}
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���4��9
9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"��6��?
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��7��]
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����8��
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����9��
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��;��_
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���:��'
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����>��9
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��=��?
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���<��9
:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�����?��
;Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����@��
;Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��B��_
;Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���A��'
;Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����E��9
;Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��D��?
;Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���C��9
;Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��F��
;Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���G��
;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348Y
nn���I��9
<Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��H��Q
;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y����K��9
<Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��J��?
<Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��L��
<Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���M��
<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348^
�i��N��Q
<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��O��=
<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��P��m
<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��R��A
<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��Q��m
<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���S��
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348d
�i��T��Q
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��U��=
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��V��m
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��X��A
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��W��m
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p��Z��_
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]���Y��+
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!����]��+
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n��\��[
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_igl�Z��[��3
=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]met() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush nif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error roeform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��`��[
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_igq�Z��_��3
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p��^��_
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]ret() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush sif write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error rteform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��b��
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060v���a��}
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����d��
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��c��w
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���hs�1
?Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���gs�7
?Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%��f��I
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���e��
>Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}

e�r+��V��:��eD�K�
47a1d5d0a1ad064ec478ea6d44b259972b9111eefcf4ada7bbacbbe6aaf5a0beD�J�
8251d9d6d6785ae0ed2231e5acd6b3d6b86a215d008b16ed8f78ea929cfc9c4dD�I�
79d78fa443907f0ca28a70215cf61c47f965c37ef5ad56c02db408bdd9e238c2D�H�
3103d16f84c636f0c9414dff8107cf8586ae75fbcb90a3f62b7eee6412a9b821D�G�
1824faf3f57ad70fa29640a76cd08c71a18f5f97c91c1117929ab588f9aa44dcD�F�
6cdebf9c4780af0f03b80b00c611402cb25855be68d159669e31cebcae14e948D�E�
508911ce79f98f5eed94b7cbd546f0c6e54fe284ef02edf721f6bdeea590659cD�D�
3b5672f51204c1617610ae8cd9b6f52811ce9c9fa0d5d33100995554e954e356D�C�
843def5f9cabf23dde3a6c7cc1d52f68406f3af88c42d2d84dfe7a35cca79197D�B�
6ad05aacb55ec137da2b221c99a490660a5f37778642d8b590d33d5fbb093262D�A�
0d768d1ea1cafc2aac35e0917a8c6e9184c802e60dc7add05251d7c940193f32D�@�
af4cb1545cd730fee8de02f39c8201ee8909319eb1b8d4e09b97227b67b961b8D�?�
02d776d9eabc5a1600b998782d8d36dfd9f654699fe0d5ed0fcea97a75b44ac1
����F��js�
?Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��is�c
?Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������A��$C��&D��(E��*G��,H��.I��/J��0K��1L��3M��5N��6O��7P��8Q��9R��;S��>T��?U��@V��BW��EX��FZ��G[��I\��K]��L_��M`��Na��Ob��Pc��Re��Sf��Tg��Uh��Vi��Xj��Zk��]p��`u��bw��dx��hz��j|��k}��m���o���q���s���u���w���x���y���z���}���~���������������������	���������������������������������"���%���&���(���+���-���.���0���3���4���5���7ǁ�9ȁ�:Ɂ�<ʁ�=ˁ�?́�A΁�Bρ�DЁ�Eс�GӁ�Jԁ�LՁ�Mց�O
�����k��+
?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P��m��
?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol~�^��l��9
?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��o��o
?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow��t��n��e
?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_commanderpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n��q��[
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig��X��p��-
?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��s��
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060����r��}
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����u��
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��t��w
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%��w��I
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���v��
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��x��7
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT�
PP�+��y��U
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��z��%
@Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%��}��I
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���|��
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���{��
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��~��7
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT�
PP�+����U
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S����%
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M����
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%����I
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}�����
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D����
ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S����%
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M����
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%����I
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}�����
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��	��
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L����
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���
��	
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
����
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���
��)
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]�����-
BRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L����
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]�����	
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&����K
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
����
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]�����)
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]�����-
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx�����#
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l����W
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
3^O$3�l����W
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&����K
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
����
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]�����9
CRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii�����#
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G�����#
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]�����9
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��"��
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���!��
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+�� ��U
DRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M���%��#
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��$��W
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��#��K
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��&��'
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G���(��#
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���'��9
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��+��
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���*��
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+��)��U
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����-��#
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��,��
ERado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��.��'
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G���0��#
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���/��9
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��3��
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���2��
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+��1��U
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��4��
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��5��)
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������7��
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��6��
FRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��9��
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��8��
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��:��)
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��<��Q
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���;��
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��=��
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��?��m
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc̅��>��1
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��A��
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��@��e
GRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U��B��)
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��D��Q
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���C��
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��E��
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��G��m
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc҅��F��1
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��J��=
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���I��3
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��H��e
HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i��L��Q
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���K��
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��M��
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��O��m
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitcׅ��N��1
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����S��7
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��R��=
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���Q��3
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��P��e
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���U��1
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���T��
IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_��Y��=
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���X��3
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��W��e
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7��V��m
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�
�_TH��<��]��w
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���\��
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���[��
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]���Z��7
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����`��7
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��_��=
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3��^��e
JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<��c��w
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���b��
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���a��
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��e}�
KJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��d��e
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��g��g
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��f��Q
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
�����js�
LJan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono�	��is�!
LJan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean�M��h��
KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}

e�r+��V��:��eD�X�
150b5e83d6acc1e5a6e22bee18216d6c7e0c581dca489071a61aab70eb9b93fbD�W�
a133fe2fda391e345abde6444e57c6fbfb5ebcfe7720bc5b1ae1c3313bd38aedD�V�
94956f35cf998fadb6818b03bda0abd42d6bb6eaef56f6c880f239607a6b876aD�U�
c61d2053d483f06c16fe09b040f911571abd663498e0d24266d849b51fdb0479D�T�
e8c196f4e751026825afd99f7aaf6ab5d3234a2fba46b51b585338b80c837da0D�S�
f1fbcc04902985414df518ea977cb39390df37dc9fc617aeab23437cf6fe80e5D�R�
b6ef3e291bb25a5525d4b85ac8b4bad708a7f474d0baeb5ed6d75da8f0ff9c5eD�Q�
2ba740802cbbc7ff23957b8b2a38c06b773a113b40708d05815b6081f7eecb19D�P�
7eafe5ff654144eafe243a63bd26f5f8be857f9a6db277149949bba5f768b643D�O�
c29c2680928459b5247e613db52774e62b9696ce64b4b85f878cdfd4775a8f05D�N�
933451069f9fdd66cf5110ba003ce53bcfcee82260f53a69105373c07f77d5f0D�M�
049526fdb7a05153ccc486726ea5c75e9cbf7eb168e6d4eb673555e2a2ed8967D�L�
81b4e4f401d2402736ceba4627eaafd5b615c2cc45aa4d4f941ea79562045139up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}�v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���ls�
LJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check �J��ks�#
LJan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��ns�
LJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��ms�m
LJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��qs�c
LJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���ps�1
LJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���os�7
LJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<��t��w
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���s��
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��rs�
LJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�H��K��v}�
MJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��u��e
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��x��g
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��w��Q
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-��z��W
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��y��
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��}}�
NJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���|��9
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��{��
MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t����g
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��~��Q
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
����-����W
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M����
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
��������9
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L����
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1������1
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f��J����
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M����
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?����{
NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��	��
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-����W
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
��������1
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f��J����
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���
��9
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��
��{
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d����E
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7����k
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O����
ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P����
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol��^����9
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9����o
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow�t����e
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_commanderpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y�����7
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han�X����-
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f����I
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo�����
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o����Y
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q����]
PAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d����E
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|����u
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7����k
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O����
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}��!��w
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B�� ��
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"����A
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��$��{
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��#��e
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��"��9
QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B��'��
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��&��A
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��%��u
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��(��w
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4��*��e
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��)��9
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��,��A
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��+��y
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��/��A
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���.��7
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���-��
RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens
����}��1��w
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��0��
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}bRZRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������ف�Uہ�Y܁�]݁�`ށ�c߁�e��g��j��l��n��q��t��v��x��z��}���������������	������
���������������������	��
����!��$
��'��(��*��,��/��1��3��5��8��9��:��;��<��=��?!��@"��B#��D%��F&��I'��K(��M*��O+��R,��T-��U.��W0��Y1��[3��\4��]5��^6��_8��`9��b;��c<��d=��e>��f@��gA��iB��kE��lF��mG��nH��oJ��pK��rL��sM��tN��vO��wP��yQ��{R��|S��}T��~U��V��W��X��
����4��3��e
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��2��9
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��5��A
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��4��y
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+��8�	�M
SRadomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]���7��7
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���6��
SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ensdle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�����9��7
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han
�f��:��I
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���;��
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��<��Y
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��=��]
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��?��
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE �^��>��7
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O��@��
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����B��1
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��A��#
TAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���Ds�
UJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check $�J��Cs�#
UJan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��Fs�
UJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��Es�m
UJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��Is�c
UJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���Hs�1
UJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���Gs�7
UJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���K��+
UAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��Js�
UJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����Ms�
VJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check )�^��L��9
UAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��Os�
VJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��Ns�m
VJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��Rs�c
VJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���Qs�1
VJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���Ps�7
VJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���T��+
VAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��Ss�
VJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^��U��9
VAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��W��7
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��V��?
VAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��Y��
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��X��
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE/
?'?�[��[��1
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [19017972�T��Z��#
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��\��?
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��]��c
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��^��
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��_��
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����`��
WAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend7
?'?�[��b��1
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797:�T��a��#
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��c��?
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��d��c
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��e��
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��f��
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����g��
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend?
KK�/��i��Y
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��h��s
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��k��1
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797D�3��j��a
XAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)

e�r+��V��:��eD�e�
40b62a1609bf1e6b7221ee088dfbf97f47ad76f2533474c46260a24ca3439cdfD�d�
89508e57764f6439d8043a9ae25c798163d3dc7e1ea5019bab2063d6eaafb9c3D�c�
b38f765f577317761aaaf492c0a93c317974aef18e4e53fea2895acb530ec50eD�b�
3198edac074ce72829e22b3fc0c16b2361413759b0418cd6443a6a5394eaf84aD�a�
394db1fa5c7f0d2612ba1c758328abe415aa0a5677f936aeeb8f95543e5c4110D�`�
e107c061dd44f2966524c0a39c675a112e3f712a7f1b891c19bc27ddadc6d91bD�_�
5ff60c9fc8d59e0004f0a615c0b3b023014fe0ba062442fdf0449dd359e754b9D�^�
a9a7c7111b8132043c9c9351bdd7bf34051ae1eb9ab0c90e8e7582ca543c49d6D�]�
6ec6b4d2ab3c7cf65dceaadd6a13d91e6ca7e48b3d6bf5712f0c0bf3639015b0D�\�
3ce3178d47c0937ca4073ad24a4d21e17880a93c83bed7d7cdde515bda87c789D�[�
53ebea1b387c7333eb49334b5bf8e867d5307742f502d7d40091abe8eb42387bD�Z�
b3587c7ba2e0d12bead8a84ad8d8aad31b6a2da64b0de946850e55afd3787193D�Y�
cb86f1399947fbb9131708d22997718ff926c00d9e0cdfa9ce37811fe7e47e4d]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��l��?
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��m��c
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��n��
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��o��
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����p��
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extendI
KK�/��r��Y
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��q��s
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��s��a
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��t��o
YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/��v��Y
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��u��s
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��w��a
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���y��
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��x��o
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���{��	
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��z��{
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��|��w
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����}��#
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��~��
ZAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt�����	
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>����w
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�������#
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M����
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+�����'
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H����
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP Y
SzS�"����?
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]�����}
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,�����-
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1����]
[Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���
��'
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��	��
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP ]
SzS�"����?
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]�����}
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��
��]
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�������
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�������
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2����_
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]�����'
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\������}
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]�����9
\Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"����?
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1����]
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�������
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�������
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2����_
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]�����'
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\������9
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"����?
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]�����9
]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�������
^Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�������
^Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2�� ��_
^Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]�����'
^Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����#��9
^Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��"��?
^Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���!��9
^Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��$��
^Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���%��
^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348p
nn���'��9
_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��&��Q
^Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y����)��9
_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��(��?
_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��*��
_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���+��
_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348u
�i��,��Q
_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��-��=
_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��.��m
_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��0��A
_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��/��m
_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���1��
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348{
�i��2��Q
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��3��=
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��4��m
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��6��A
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��5��m
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p��8��_
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]���7��+
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!����;��+
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n��:��[
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig��Z��9��3
`Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��>��[
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig��Z��=��3
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p��<��_
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��@��
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060����?��}
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����B��
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��A��w
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���Fs�1
bJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���Es�7
bJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%��D��I
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���C��
aRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��Hs�
bJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��Gs�c
bJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�����I��+
bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P��K��
bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol��^��J��9
bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]bR�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������[��\��^��
_��`��
a��b��c��d��e��f��g��h��i��j��k��l��m�� n��#o��$q��%r��'s��)t��*v��+w��,x��-y��.z��0|��1}��2~��3��4���6���8���;���>���@���B���F���H���I���K���M���O���Q���S���U���V���W���X���[���\���]���^���a���b���c���f���g���i���l���n���r���t���u���y���z���{���}����ā�Ł�Ɓ�	́�΁�ρ�Ё�ց�ׁ�؁�ށ�߁����������� ��"��#��%��(��*��+��-��1��3d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��M��o
bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow��t��L��e
bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n��O��[
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig��X��N��-
bAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��Q��
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060����P��}
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����S��
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��R��w
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%��U��I
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���T��
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��V��7
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT�
PP�+��W��U
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��X��%
cRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%��[��I
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���Z��
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���Y��
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��\��7
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT�
PP�+��]��U
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��^��%
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��a��
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��`��I
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���_��
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��b��
dRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��c��%
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��f��
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��e��I
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���d��
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��g��
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��i��
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���h��	
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��l��
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���k��)
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���j��-
eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]

e�r+��V��:��eD�r�
b59e577acfd79936a81667c77131d1327e4ad70bde597f697884a4eaf7e3a7ecD�q�
54ccdc7cf35a5a397da2776db1e3698403ddd8b7aaa89e9bd1156f4f0b376933D�p�
5c3bcfc599ddd884790cbf5e2d8043339f4cd5b91ad9595afa0db6b779424c22D�o�
fd72ad4e19f26b5ab55c6b53a5824234f78c29cf3c20aca13156acea64a3346cD�n�
3598b7d61bba2f202c95efea45958f70f97c86c499e19042f49589dccbf233ceD�m�
f53cc1052d30f24f16353f3b8289baea8f6b5784241e361ca528cc3a0eaa3777D�l�
76facf50f1b80b009a8db32a440b75f305a0ebb492bfd12472396c89645ad637D�k�
b32b8584f13412301461463bde85e0fdc2dde858c115cd5ff1e7c299096a8d77D�j�
88ec95b43c8491db9c18162f1e7fba8a23bdd4c936af58ebbc5e3ca5294bfb53D�i�
262dbb7f2a09156ec1388f48b84cdfae97e0c8a8a47a0eabf39d4db7348d2f88D�h�
85883036219c6afb70af3efeedd40855b4513b05e5a5134abc56c4b95841a125D�g�
6858b0825e7c10d48e4a834df4baf94b38ae7f99b036340669e3abf74bdfc689D�f�
57519dda2c881614316fc810027c0c66b31bab6e5e16dcd0d91cf84b6d63fc3a
%v%�L��n��
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���m��	
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��r��K
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��q��
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���p��)
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���o��-
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���t��#
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��s��W
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��u��'
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
3^O$3�l��y��W
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��x��K
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��w��
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���v��9
fRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii���z��#
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��{��'
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G���}��#
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���|��9
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B����
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]�����
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825��+��~��U
gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M�����#
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l����W
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&����K
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G�����#
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]�����9
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��	��
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]�����
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825ǁ+����U
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
������#
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��
��
hRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for �
G^G�����#
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���
��9
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B����
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]�����
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825с+����U
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L����
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U����)
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
��������
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825ل����
iRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L����
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B����
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U����)
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i����Q
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@����
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�����1
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L����
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3����e
jRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U�� ��)
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��"��Q
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���!��
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��#��
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��%��m
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc���$��1
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��(��=
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���'��3
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��&��e
kRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i��*��Q
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���)��
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��+��
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��-��m
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc���,��1
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����1��7
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��0��=
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���/��3
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��.��e
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���3��1
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���2��
lRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_��7��=
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���6��3
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��5��e
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7��4��m
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc�
�_TH��<��;��w
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���:��
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���9��
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]���8��7
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����>��7
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��=��=
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3��<��e
mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<��A��w
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���@��
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���?��
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��C}�
nJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��B��e
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��E��g
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��D��Q
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]�
�����Hs�
oJan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono��	��Gs�!
oJan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean��M��F��
nRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}�v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���Js�
oJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ��J��Is�#
oJan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��Ls�
oJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��Ks�m
oJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��Os�c
oJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���Ns�1
oJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���Ms�7
oJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<��R��w
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���Q��
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��Ps�
oJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�H��K��T}�
pJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��S��e
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��V��g
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��U��Q
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262] 
����-��X��W
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��W��
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��[}�
qJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���Z��9
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��Y��
pRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��]��g
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��\��Q
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262] 
����-��_��W
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��^��
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������a��9
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��`��
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����c��1
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f �J��b��
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��e��
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��d��{
qRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��g��
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��f��W
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������j��1
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f �J��i��
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���h��9
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��k��{
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��l��E
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��n��k
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��m��
rRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}

e�r+��V��:��eD��
7c45ba29959e72ceece7bd3f48bcc0ce0a86ebce4677a50e9d95a46e172b5d3bD�~�
c3571b20ed80af5bcdad26c4ffded5902a413e69a9f36e66ea22eb7f0b7343beD�}�
73ae0d5fb6285b4b0077f98e47a68f4b9fece79c2d81f4ee0718940d27177616D�|�
56c9932aa2318a64e391b3f64c794e77737aeacd923b2b7d8e02b450cd58abd2D�{�
540ad2675ab792c4e347811b9c59c9dfa46be5932ed582b6b0748c7a27660973D�z�
34255ef50bd9c16239a9a579c23a1bc1f046428a2aecf0fb06e04340b46af985D�y�
5f9ffa10d0718dbd468c695dee255d77d9ba1a9b0d1b7e44a156806dcdca67a1D�x�
d9305a12e977c57f2881d0d6b5d0a5c612d311bf062b22798ff09ce88469752cD�w�
4f125e807f2d9654af85653665201a2fb6833421172f030513ae09616ba3f069D�v�
a3ef423198831cced03969fcb478cb2a5ee78ec107a8600aa98854d428fa7a96D�u�
c560870127d4c5652e42c74ffbb3cf96a864ca994702fffd84bfe5a6b5275464D�t�
d4ce276deccf36c3cdff38a52ff6f73bd2c271d8df45463c61cc66cdd8dd7e18D�s�
c91dc3bbc7593fb7442fa9ec947f30d95bad094d5b4180e4669380d535253bb7
���P��p��
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol �^��o��9
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��r��o
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow �t��q��e
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���t��7
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han �X��s��-
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��u��I
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���v��
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��w��Y
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��x��]
sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d��y��E
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��|��u
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��{��k
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��z��
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}����w
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��~��
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��}��A
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?����{
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4����e
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^����9
tRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B����
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"����A
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|����u
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}����w
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4����e
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^����9
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��
��A
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��	��y
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��
��A
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�����7
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]�����
uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens (
����}����w
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B����
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4����e
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^����9
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b����A
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~����y
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]bR rRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{��������������������;��>���A���C���E���H���J���L ��O ��R ��T ��V ��X ��[ ��] 	��_ 
��a ��c 
��e ��g ��j ��k ��l ��n ��p ��r ��t ��u ��v ��w ��x  ��y !��| "�� #�� $�� %�� &�� '��
 )��
 *�� +�� ,�� /�� 1�� 2�� 3�� 4�� 5�� 6�� 8�� 9��  :��" <��$ =��' >��) ?��+ A��- B��0 C��2 D��3 E��5 G��7 H��9 J��: K��; L��< M��= O��> P��@ R��A S��B T��C U��D W��E X��G Y��I [��J \��K ]��L ^��M `��N a��P b��Q c��R d��T e��U f��W g��Y h��Z i��[ j��\ k��] l��^ m��_ n��` p��b q��dure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+���	�M
vRadomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]�����7
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]�����
vRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens .dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�������7
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han 0
�f����I
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo�����
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o����Y
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q����]
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R����
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE 7�^����7
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O����
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'���� ��1
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T����#
wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���"s�
xJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check  ;�J��!s�#
xJan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��$s�
xJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��#s�m
xJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��'s�c
xJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���&s�1
xJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���%s�7
xJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���)��+
xAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��(s�
xJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����+s�
yJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check  @�^��*��9
xAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��-s�
yJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��,s�m
yJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��0s�c
yJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���/s�1
yJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���.s�7
yJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���2��+
yAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��1s�
yJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^��3��9
yAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��5��7
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��4��?
yAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��7��
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��6��
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE F
?'?�[��9��1
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797 I�T��8��#
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��:��?
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��;��c
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��<��
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��=��
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����>��
zAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend N
?'?�[��@��1
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797 Q�T��?��#
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��A��?
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��B��c
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��C��
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��D��
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����E��
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend V
KK�/��G��Y
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��F��s
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��I��1
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797 Z�3��H��a
{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��J��?
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��K��c
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��L��
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��M��
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����N��
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend _
KK�/��P��Y
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��O��s
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��Q��a
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��R��o
|Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/��T��Y
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��S��s
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��U��a
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���W��
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��V��o
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���Y��	
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��X��{
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��Z��w
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����[��#
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��\��
}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt���]��	
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��^��w
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����_��#
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��`��
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���b��'
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��a��
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP  o
SzS�"��d��?
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���c��}
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���f��-
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��e��]
~Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���h��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��g��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP  s
SzS�"��j��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���i��}
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��k��]
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����l��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����m��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��o��_
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���n��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����q��}
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���p��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]

e�r+��V��:��eD��
828e5f8c216c003561b21fac3ee1c2a2c2d556fe14b7f7eb5cecff383dcdcddeD��
df51484667e5b744416e438fadb87d6b7f90ebd7deb4e6682c6fb5544b4824d9D�
�
39e6418349394ca9bdce4ea754f217c46186d4d7ac6e256c57becbcf78cb2932D�	�
c5f291e7ee7a541358f9f6a3957b58ba61670f95010f0fbfb4d6b94d30857d5cD��
84a70ceb4fc3a611fb4f2317063db48a3627bf5b481b3c89956e1f1e9fa9f5fcD��
078d626065367dc1b0c00d308d8b5d9d69fe369a31b59dbf38747ea1e98647dfD��
b89f6284503fe622422027e205df72fde54169ba290d768ca1952506a29792cbD��
05cf4fd79bba0f69976ed978e39e96312e5c1ed1fc98158138579aa9d2b1ac01D��
1427f803b91f38e23ae66e6fb49eb6363167e457e76054fcb63fee011d6763b3D��
6f1bbacef1dc67ded3f5dae9926f3a9422cbb14531e25cbb1668f8ac69d00b8dD��
0952cfe96c702aedc34ce0dcba4f7bde61e7ef84de1ad0057e39e6750b2c0bdaD��
8debaae538b7c7704b4ad782c4f0a725f3c0977f97d9cde4eb6a1546e54f02e7D��
d196c69e20dcc6a970af086c699d1d015396019ac8638386994deb8017fcc72b
���"��r��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��s��]
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����t��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����u��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��w��_
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���v��'
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����z��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��y��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���x��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�����{��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����|��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��~��_
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���}��'
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\������9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"����?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]�����9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I����
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348 �
nn�����9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i����Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y������9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"����?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I����
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���	��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348 �
�i��
��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_����=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7����m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!����A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��
��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348 �
�i����Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_����=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7����m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!����A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7����m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p����_
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]�����+
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!������+
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n����[
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig ��Z����3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246] �et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush  �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r �eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n����[
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig ��Z����3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p����_
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932] �et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush  �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r �eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060 ������}
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?���� ��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<����w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���$s�1
�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���#s�7
�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%��"��I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���!��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��&s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��%s�c
�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�����'��+
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P��)��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol ��^��(��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��+��o
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow ��t��*��e
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command �erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n��-��[
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig ��X��,��-
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}bR!RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������ t��h u��j v��k w��l x��m y��o z��q |��r }��s ~��t ��u ���w ���z ���{ ���| ���~ ��� ��� ��� ��� ��� ��� ���	 ���
 ��� ��� ��� ��� ��� ��� ��� ��� ��� ��� ��� ��� ���  ���$ ���& ���' ���) ���+ ���- ���/ ���1 ���3 ���4 ���5 ���6 ���9 ���: ���; ���< ���? �@ Á�A ā�D Ł�E Ɓ�G ǁ�J ȁ�L Ɂ�P ʁ�R ́�S ́�W ΁�X Ё�Y с�[ ҁ�^ ؁�a ځ�b ہ�d ܁�g ��i ��j ��l ��o ��p ��q ��s ���u ���v ���x ���y ���{ ���} ���~ ��� ��� ���!��!��!��	!��!��!��!	��!
�� �et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush  �if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r �eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��/��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060 ����.��}
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����1��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��0��w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%��3��I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���2��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��4��7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT �
PP�+��5��U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��6��%
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%��9��I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���8��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���7��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��:��7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT �
PP�+��;��U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��<��%
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��?��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��>��I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���=��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��@��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��A��%
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��D��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��C��I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���B��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��E��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��G��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���F��	
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��J��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���I��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���H��-
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L��L��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���K��	
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��P��K
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��O��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���N��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���M��-
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���R��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��Q��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��S��'
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for  �
3^O$3�l��W��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��V��K
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��U��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���T��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii���X��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��Y��'
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for  �
G^G���[��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���Z��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��^��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���]��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 Ӂ+��\��U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588} � CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV �E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816  �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227 �] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M���a��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��`��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��_��K
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��b��'
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for  �
G^G���d��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���c��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��g��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���f��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 ݁+��e��U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588} � CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV �E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816  �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227 �] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����i��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��h��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��j��'
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for  �
G^G���l��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���k��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��o��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���n��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 �+��m��U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588} � CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV �E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816  �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227 �] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��p��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��q��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������s��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 ���r��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}

e�r+��V��:��eD��
6a5cc17610dacd423285c7b8f0036b7cdcfbc9fb0e513eca14b1d7d5ea047f7fD��
07bd35c3abbf6026fb0e99d204b230ccbed3b91ccbed6d0675f5dc885931ea62D��
bee03f8565ac02484c05292876b9c0976e9334dad12bbf643dd9f59526e9eb6dD��
97ca74d50cef86200eaedf11cbb46855b4d2c943de9de770a9b024fbbf90ce3dD��
b1471a49f356e514174b94e92dfc8993323e25a2de938cda266f9cd7d5850665D��
8359e9ef711ab7df3dd2ff2d776303381cb9569b28010fc635d1dc38c63d0a3cD��
70b9436a659665181aa90524926ff7ebeebcbc15038624b5a49e0657dedfb584D��
61f3ebaaeea6b7aa7f2cb2e4e49d7030e15a0242954617931c4ca2d74e49c807D��
9d5c67e50f13bee074d4860c206d81b8461ec0b7593a7cf3b207abe9f1e6f815D��
a6114fbcf7f5bf08c4c84d6d0e2551e1175af5cd5b08fe5fa1557b575e292d02D��
36f13b26a3b985a2d5e41a86724a23f3387adf18ce34902378ed32345f865d1aD��
ff0af5a6e3acbbdec8607cb8aa6f258edbb87c22d9e2e162b476d366c16a6372D�
�
64f15baadb874e4dcc756fc50e0f361c704a78fb0c5c3e1dee25e51bd7bc0347 � CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV �E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816  �CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227 �] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��u��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��t��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��v��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��x��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���w��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��y��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��{��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc ����z��1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��}��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��|��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U��~��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i����Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc!�����1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_����=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�����3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i����Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��	��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7����m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc!���
��1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E������7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_����=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���
��3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W�����1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_����=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�����3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7����m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc!
�_TH��<����w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]�����7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd������7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_����=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3����e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<����w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��!}�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3�� ��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��#��g
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��"��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]!
�����&s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono!�	��%s�!
�Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean!�M��$��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}!v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���(s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check !�J��'s�#
�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��*s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��)s�m
�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��-s�c
�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���,s�1
�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���+s�7
�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
h5)h�<��0��w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���/��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�F��.s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�H��K��2}�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��1��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��4��g
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��3��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]!
����-��6��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��5��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��9}�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���8��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��7��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��;��g
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��:��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]!
����-��=��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��<��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������?��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��>��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����A��1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f!#�J��@��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��C��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��B��{
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��E��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��D��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������H��1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f!'�J��G��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���F��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��I��{
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��J��E
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��L��k
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��K��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��N��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol!,�^��M��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��P��o
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow!/�t��O��e
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command!-erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���R��7
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han!1�X��Q��-
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��S��I
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���T��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��U��Y
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��V��]
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d��W��E
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��Z��u
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��Y��k
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��X��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}��]��w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��\��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��[��A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��`��{
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��_��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��^��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B��c��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��b��A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��a��u
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��d��w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4��f��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��e��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��h��A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��g��y
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��k��A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���j��7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���i��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens!>
����}��m��w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��l��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4��o��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��n��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��q��A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��p��y
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+��t�	�M
�Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]���s��7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���r��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens!C

e�r+��V��:��eD�&�
48050d32a9ddb2c79d03c638c04cd306724f7ac310231a77812108d47d170a94D�%�
995f1138e1de2ec2b063d80c34f72c7c9580839633287baad40f5b5b23f9e258D�$�
6e241bf0dc50bd058f110b48194543b466e895d9ce51ae777aa7f7d34f994e08D�#�
02cbd7332b3ce796fb31c211ff00e807700217dbe4cbf3860f61c4a3bb69beb8D�"�
69c2b3156d7f7348e92c9b6d94a15da2b8f77e0597041944eb9741c941e07001D�!�
d0f3c1d37d812e6fbf2b4e853fb66fd0ffe2a908b0bd0749ea1f99b53198ad71D� �
349059abdcb4206de241619b0a997e70897934335a8863a2070dccf45c49f019D��
08d3a3571d95f12d505af7454de2dadabca497aa265dbce4ff86b0317462b5dbD��
44904175313b13552ac962d42d456dc5d52bface994ef485f56c33f7f6971440D��
6a47e214a36fc58ad9b00ab50073240c79076c8bd04a01dd01029f8ca43122bdD��
9c1793d4db51f7f371d7e73208f169004d3aba5ed38b51d28f55cdcc8cb7f3c0D��
84b8b611d8300bcaa1b8a5f55f2a12f6469df74e32e649b9b505e76925339810D��
3b37792998533e55b2ebe20d10052f6104ae209a5db1a84826bfde614e6d7c44dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�����u��7
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han!FbR!�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������!��!
��!!��#!��&!��(!��*!��-!��0!��2!��4!��6!��9!��;! ��=!!��?!"��A!$��C!%��E!&��H!(��I!)��J!*��L!+��N!.��P!0��R!2��S!3��T!4��U!5��V!6��W!7��Z!8��]!9��`!:��c!;��d!<��f!=��h!?��k!@��m!A��o!B��q!D��t!G��u!I��v!J��w!K��x!L��y!M��{!O��|!P��~!Q��!S��!T��!U��!V��	!X��!Y��!Z��![��!\��!^��!_��!a��!b��!c��!d��!f��!g��!i��!j�� !k��!!l��"!n��#!o��%!p��'!r��(!s��)!t��*!u��+!w��,!x��.!y��/!z��0!{��2!|��3!}��5!~��7!��8!���9!���:!���;!���<!���=!���>!���@!���B!���D!���F
�f��v��I
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���w��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��x��Y
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��y��]
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��{��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE!N�^��z��7
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O��|��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����~��1
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��}��#
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check !R�J��s�#
�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�m
�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�c
�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1
�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7
�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5�����+
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����	s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check !W�^����9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��
s�m
�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�c
�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���
s�1
�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7
�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5�����+
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^����9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^����7
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!����?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O����
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R����
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE!]
?'?�[����1
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797!`�T����#
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����c
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J����
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�������
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend!e
?'?�[����1
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797!h�T����#
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4�� ��c
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��!��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��"��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����#��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend!m
KK�/��%��Y
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��$��s
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��'��1
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [1901797!q�3��&��a
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��(��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��)��c
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��*��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��+��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����,��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend!v
KK�/��.��Y
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��-��s
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��/��a
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��0��o
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/��2��Y
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��1��s
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��3��a
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���5��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��4��o
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���7��	
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��6��{
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��8��w
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����9��#
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��:��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt���;��	
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��<��w
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����=��#
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��>��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���@��'
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��?��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP !�
SzS�"��B��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���A��}
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���D��-
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��C��]
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���F��'
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��E��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP !�
SzS�"��H��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���G��}
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��I��]
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����J��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����K��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��M��_
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���L��'
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����O��}
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���N��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"��P��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��Q��]
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����R��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����S��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��U��_
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���T��'
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����X��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��W��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���V��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�����Y��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����Z��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��\��_
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���[��'
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����_��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��^��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���]��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��`��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���a��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348!�
nn���c��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��b��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y����e��9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��d��?
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��f��
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���g��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348!�
�i��h��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��i��=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��j��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��l��A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��k��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���m��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [18348!�
�i��n��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��o��=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��p��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��r��A
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��q��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p��t��_
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]���s��+
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!����w��+
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n��v��[
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig!��Z��u��3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]!�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush !�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r!�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]

e�r+��V��:��eD�3�
c09c4232be25f378a871198874931161c40b1ce864dffbd95137c1d37205669cD�2�
2b66b267a753255256f090bf87977338168b89d26c4ffd982c87cd2f91b93577D�1�
f7211e59a025b27356cfb06417188c0dd5e275b865c332da16611d69cbc3addbD�0�
256f88bd5667a9d5534690123098dcb92c0e72a1a20c14cfc7fc6f93d1c33891D�/�
94a821399c6834a9613024e8e79095fed47945651c6f3043fb698f645b47ea98D�.�
46160c3e8468e10ca76482b787522ad64e1f769900fb6947b4bc6690893303cbD�-�
b3e690b11cafa64b176ad1733771549c822362e0515190949a20dd95d397be58D�,�
3c1b09a234b987d0d6b7eeda50bfd65fdd56ba1cd18a3d7bfaf6c502e6a18295D�+�
ba86ad50d0caa853696fbf8bb669856b215fcf866bddf9a40a79e2097b6bdac7D�*�
b045612fcdf478362a31afe42cbcbfa3696fd627cd7125c30615831a7f9c7831D�)�
ba701cb5769f4b33298d989a3a2f322062b88774a949cc71f4d59c46e785f253D�(�
7359842aed62ed18b7e387856697f0a6cf8b16b27c7c68064ba6567b32c76b6bD�'�
b96b6f75231c9bd50c073462605d9aa5494f79623d07db42df2d505c858be737
�,��n��z��[
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig!��Z��y��3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p��x��_
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]!�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush !�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r!�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��|��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060!����{��}
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����~��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��}��w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���s�1
�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7
�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%����I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��s�c
�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�������+
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P����
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol!��^����9
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��	��o
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow!ĉt����e
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command!�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n����[
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig!ƄX��
��-
�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}!�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush !�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r!�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��
��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [203060!˂����}
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?������
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<����w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}bR"$RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������!���I!���J!���K!���M!���O!���P!���Q!���R!���S!���U!���X!���Y!���Z!���\!���_!���`!���a!���c!���e!���f!���g!���h!���i!���j!���l!���m!���n!���o!���p!���r!���t!���w!���z!���|!���~!���!���!���!���!Á�	!Ł�!ʁ�
!́�!΁�!Ё�!с�!ҁ�!Ӂ�!Ձ�!ց�!ׁ�!؁�!ف�!ځ�!ہ�"!܁�#!݁�%!ށ�(!߁�*!��.!��0!��1!��5!��6!��7!��9!��<!��?!��@!��B!��E!���G!���H!���J!���M"��N"��O"��Q"��S"��T"
��V"��W"��Y"��["��\"��^"��_"��a"��d"��f"��g"��i"��m"��o"��s" ��w"!��z"#��}
Q�Q�%����I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\����7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT!�
PP�+����U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S����%
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%����I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\����7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT!�
PP�+����U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S����%
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%����I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}�����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S����%
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��"��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��!��I
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}��� ��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��#��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��%��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���$��	
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��(��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���'��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���&��-
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L��*��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���)��	
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��.��K
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��-��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���,��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���+��-
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���0��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��/��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��1��'
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for !�
3^O$3�l��5��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��4��K
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��3��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���2��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii���6��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��7��'
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for !�
G^G���9��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���8��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��<��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���;��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825!�+��:��U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}!� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV!�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 !�CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227!�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M���?��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��>��W
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��=��K
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��@��'
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for !�
G^G���B��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���A��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��E��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���D��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825!�+��C��U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}!� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV!�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 !�CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227!�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����G��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��F��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��H��'
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for !�
G^G���J��#
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���I��9
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��M��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���L��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825!��+��K��U
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}!� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV"E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 "CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227"] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��N��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��O��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������Q��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825"���P��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}" CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV"E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 "	CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227"
] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��S��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��R��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��T��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��V��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���U��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��W��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��Y��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc"���X��1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��[��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��Z��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U��\��)
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��^��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���]��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��_��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��a��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc"���`��1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��d��=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���c��3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��b��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i��f��Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���e��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��g��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��i��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc"���h��1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����m��7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��l��=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���k��3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��j��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���o��1
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���n��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_��s��=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���r��3
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��q��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7��p��m
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc"
�_TH��<��w��w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���v��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���u��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]���t��7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����z��7
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��y��=
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3��x��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]

e�r+��V��:��eD�@�
1e71ddbce6e19382bbeabad1c266e4c7cb09e2a56d99175af4ac9ac047af3945D�?�
20135be9052bd1b2d8da133fe7cc987b80d4dc2685146012968f6b8e78e0bfe9D�>�
9bfce694395b42428b130fade4131953efe8248a166cb9df74a2681d8de08ecbD�=�
49aab94d53d2b184f6a56304123436d4e5036e2f12df6e2e89bef3f8e09e48c5D�<�
f08e9ea6985102fff682040f9282a64d08ae60b52a53ac25a2ae2d14b381049eD�;�
3594f2b7367495aba0e2ad40d7aeabb3ec7bcd176bfa09127a9021573f936f66D�:�
93e83a7482939b72a1377200f3ba36de2f5a593ed72db969095bca9b712022f4D�9�
b46ce984b02b31bec731f80328c745600ec4e07a5c031e77dbb554e88ba7fcbbD�8�
e855f087b1b23b7efc6503e87350c4cca1ef6881dc97c31f1512bcda747a478bD�7�
4de0f5c0f1ddd055c4b4b2635e35081b0a75f314bbe5cb8978790bfc21cebbc8D�6�
44c119ffc1f4001f24a6905dc7a8b1db1b192babbc6e3390b81e54adfb63b7b8D�5�
e161fe668a338dbcc5fd4207138cf06b234756554c7b000fd5627366c98b5f3aD�4�
738ba060f72edaaec140a48f940f7fdf573a9f888afd244b937e86cefba2f1ca
(��(�<��}��w
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���|��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���{��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��}�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��~��e
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t����g
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i����Q
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]"%
�����s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono")�	��s�!
�Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean"(�M����
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}"*v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check ",�J��s�#
�Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�m
�Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�c
�Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���
s�1
�Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���	s�7
�Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
�5��}��i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during ssht��i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-44^f/�- module-setup: Ensure eth devices get IP address for VLAN�0��
i�y
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-43]�@�- module-setup: re-fix 99kdumpbase network dependency
- kdumpctl: bail out immediately if host key verification failed�F��s�
�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�a���~��i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rulesw��i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().�,��i�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()���i�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.���i�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel
�t�{�;��,��i�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()���i�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.���i�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel}��i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during ssht��i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-44^f/�- module-setup: Ensure eth devices get IP address for VLAN���m�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working
V{~�v�V���"i�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel}��!i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during sshx�� a�
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.2`B@- kdumpctl: fix a variable expansion in check_fence_kdump_config()���m�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working~��i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rulesw��i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().
$_�)�,�$x��)a�
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.2`B@- kdumpctl: fix a variable expansion in check_fence_kdump_config()���(m�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working~��'i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rulesw��&i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���%i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().�,��$i�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()���#i�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.
���c�C����/i�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.���.i�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel}��-i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during ssht��,i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-44^f/�- module-setup: Ensure eth devices get IP address for VLAN�0��+i�y
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-43]�@�- module-setup: re-fix 99kdumpbase network dependency
- kdumpctl: bail out immediately if host key verification failedl��*a{
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.3`�e@- Throttle kdump reload request triggered by udev event
HO�O�A�H}��6i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during ssht��5i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-44^f/�- module-setup: Ensure eth devices get IP address for VLAN���4m�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working~��3i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rulesw��2i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���1i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().�,��0i�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()
�a���~��<i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rulesw��;i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���:i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().�,��9i�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()���8i�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.���7i�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel
�t�w�7��,��Bi�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()���Ai�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.���@i�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel}��?i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during sshx��>a�
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.2`B@- kdumpctl: fix a variable expansion in check_fence_kdump_config()���=m�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working
Q{~�vQ�0��Ii�y
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-43]�@�- module-setup: re-fix 99kdumpbase network dependency
- kdumpctl: bail out immediately if host key verification failedl��Ha{
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.3`�e@- Throttle kdump reload request triggered by udev eventx��Ga�
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.2`B@- kdumpctl: fix a variable expansion in check_fence_kdump_config()���Fm�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working~��Ei�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rulesw��Di�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���Ci�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().
�h��w��Pi�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���Oi�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().�,��Ni�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()���Mi�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.���Li�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel}��Ki�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during ssht��Ji�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-44^f/�- module-setup: Ensure eth devices get IP address for VLAN
�~�z�Z����Vi�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.���Ui�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel}��Ti�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during ssht��Si�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-44^f/�- module-setup: Ensure eth devices get IP address for VLAN���Rm�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working~��Qi�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rules
DO�O�A�D}��]i�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-45^r
@- mkdumprd: Use DUMP_TARGET which printing error message during sshx��\a�
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.2`B@- kdumpctl: fix a variable expansion in check_fence_kdump_config()���[m�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working~��Zi�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rulesw��Yi�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���Xi�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().�,��Wi�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()
�a���~��ci�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51^�- Add a new option 'rd.znet_ifname' in order to use it in udev rulesw��bi�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-50^�V@- Revert: Always set vm.zone_reclaim_mode = 3 in kdump kernel���ai�
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-49^���- dracut-module-setup.sh: fix breakage in get_pcs_fence_kdump_nodes().�,��`i�q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-48^�_�- dracut-module-setup.sh: ensure cluster info is ready before query.
- dracut-module-setup.sh: improve get_alias()���_i�Q
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-47^|�@- mkdumprd: don't append noauto to mount option.
- Add NOTE about nr_cpus value on HyperV systems.���^i�M
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-46^x��- Always drop nofail or nobootwait options
- Always set vm.zone_reclaim_mode = 3 in kdump kernel
�t��&F����ig�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��hg�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��ggY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129l��fa{
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.3`�e@- Throttle kdump reload request triggered by udev eventx��ea�
�Pingfan Liu <piliu@redhat.com> 2.0.15-51.2`B@- kdumpctl: fix a variable expansion in check_fence_kdump_config()���dm�#
�Bhupesh Sharma <bhsharma@redhat.com> 2.0.15-51.1_V �- makedumpfile/sadump: Fix a KASLR problem of sadump while kdump is working
^0�	W^�t��ni�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��mi�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���li�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���ki�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��ji�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441
;m���;�K��ti�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���sg�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��rg�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��qgY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���pi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���oi�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401
�y�'.����yi�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��xi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��wi�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���vi�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���ui�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560
Gx6��G���i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��~i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���}g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��|g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��{gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���zi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159

e�r+��V��:��eD�M�
6f455484f1eb5f3b6fb66db239a002b80058c5b1b96396b1f9845be413af51dfD�L�
f136bc0eecf5d5320db54998eac1c4599ab87a312d5ce7a2cefc841ab054b1eaD�K�
7bddd4fb53bfa9c6ecfb51584e6173525154d1432fdd23c18162b8a5428fd9c2D�J�
ebe9101eafa195e97d5191257396d826d54a03212851b56130c2502068cb8f4cD�I�
0e46815b96448a8115c16703aeaeadf07680cb2172f0028f3a8ab4b9d6e6897dD�H�
1e050a70197e546f07c1f78ed2e33fa01d93756947ab17d6c3343eaf08eb2702D�G�
14290884418bd83ad4955aa6354b2113950b766239244a06bee2f2a364ba608fD�F�
f901d903838a840af4b07b7405171f08944a919391efff75f782b9d2c5a6a8a7D�E�
ca22627ed1921f923bf0d6590573bb115ae89ab16f2cd8439ca78680ac859464D�D�
3db947e6e862b89a0ca5b23880b8c910b68d3c16831d17f914d62706e4e337dbD�C�
f6eec5c1e694fd7e8232482c537de9cd0baf38de7afc7c99fee2ddf4b248488dD�B�
8d2234f4b3652ffa6caf553d843f040d43d53c10ec6156b8de9fbd3efb4aef2cD�A�
6a2fc5bcfdf2c8ed011976da11bfa2c4e64084e1f45d265f784bcd58fbece989
8`��"�8^��gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���i�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��i�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560
� ��1����
i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���	i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���
i�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��i�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���i�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��i�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
NU�:���#q�K
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651���"i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���!i�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t�� i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��i�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
�c����%q�'
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556���$q�A
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651
LL�/��&q�o
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��)q�q
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��(q�}
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��'q�s
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
 +>� ���-q�A
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651}��,q�
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��+q�a
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��*q�1
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���.q�'
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��/q�o
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��2q�q
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��1q�}
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��0q�s
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
"+>�"���6q�=
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��5q�
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��4q�a
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��3q�1
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���7q�'
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��8q�o
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��;q�q
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��:q�}
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��9q�s
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
+>�"�|��Am�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726���@q�
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905���?q�=
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��>q�
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��=q�a
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��<q�1
�Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420bR"�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������"&��"'��"+��"-��".��"/��"0��"1��"2��""3��)"4��/"5��6"6��<"7��B"8��I"9��P":��V";��]"<��c"=��i">��n"?��t"@��y"A��"C��"D��
"E��"F��"G��"H��"I��#"J��%"K��&"L��)"M��-"N��."O��/"P��2"Q��6"R��7"S��8"T��;"U��A"W��H"X��O"Y��V"Z��]"[��d"\��k"]��r"^��y"_��"a��"b��"c��"d��"e��#"f��*"g��1"h��8"i��?"j��F"k��M"l��T"m��["n��b"o��i"p��p"q��w"r��~"t��"u��"v��"w��"x��!"y��("z��/"{��6"|��="}��D"~��K"��R"���Y"���`"���g"���n"���u"���|"���"���"���"���"���"��� "���%"���*"���/"���4
���v
����Hm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Gm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Fmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��Ema
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��Dm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���Cm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��Bm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927
�}�x�n��e��Oma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��Nm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���Mm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��Lm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927|��Km�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726���Jm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Im�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
r��|�r���Vm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��Um�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���Tm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Sm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Rm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Qm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Pmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126
��������]m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��\m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��[m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Zm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Ymu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��Xma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��Wm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506
{g�]�t{���dm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��cmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��bma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��am�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���`m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��_m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���^m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599
�}�u�\��o��kmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��jma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��im�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506���hm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���gm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��fm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��em�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
9z�t�V�9���ri�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���qi�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���pm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���om�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��nm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��mm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���lm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289
��������ym�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��xm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��wm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���vm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��umu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��tma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��sm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506
eg�J�n�e��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��~mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126e��}ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726���|i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���{i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���zm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599

e�r+��V��:��eD�Z�
79effda42d229dffeed9ec2dc1067ea15c3d1895c9bdfe9d24064abaa134d7a7D�Y�
82f169e42c36e9579026a6d56d46f2cbe59221a611192fe96b613ff527e57a1cD�X�
8c1afba082bedaba9392d11b613759a65431711c73e71af2ca4c1d2710b71ac5D�W�
0b514834510f57ab09a2051d0b0c2be8a61777452ad125d1b3e5e90abeb6fa22D�V�
f7291bdf6020187d7cf5369c95f16faeef861f866ffc8c46c03116ea2adf9092D�U�
617fff79ce97ec5ee66c7f45cec546ea2429f9ce776263cf40a0b246665913e1D�T�
cf61322c3e87c6c21ad8be1051fa2d235337e2a97a9a894828a70e5cd12a2254D�S�
03cf1dde125c19d5d48038e69f3552a4973548aa09dc383debd850eec84fa1a4D�R�
56773da33ba948469db1f7ab9d9bc267d2e29b3458b2d1376573c09525ad4581D�Q�
f89d39e2f15a5f9de6ac154edd1ca68886b384c0e12ef5657eb722c92e9c0788D�P�
789245b54d2cc37181b3209ca55431722601a4544e987a98c0953c1b64660406D�O�
b3cdcec7059a05b036622e2b2326259602d28b19672e0fe8766f1b0c59537bc9D�N�
fbc2fabe0f2dd520e1af93518f0669fbb0c91b469d7508a7402404cbbea73b6d
J}�_�B�Je��ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726�
��i�-
�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961���i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
M��|�M���i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���
m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��
m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���	m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126
wy�j�`�we��ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726�
��i�-
�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961���i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163
|��|�||��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126
�v������#m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��"m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���!m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o�� mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347
�{�q������*m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��)mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��(ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��'m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���&m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��%m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���$m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492
R}�u�\�R|��1m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���0m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��/m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���.m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���-m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��,m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��+m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
z�$��z���8m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���7m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��6m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��5m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���4m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��3mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��2ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726
��������?m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��>m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��=m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���<m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��;mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��:ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��9m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506
hg�J�a�h���Fm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Emu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��Dma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��Cm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506���Bi�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���Ai�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���@m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599
V}�u�F�Ve��Mma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726���Li�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���Ki�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���Jm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���Im�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Hm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Gm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
M��|�M���Ti�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���Sm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���Rm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Qm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Pm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Om�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Nmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126
�y������[m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Zm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Ym�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Xmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126e��Wma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726�
��Vi�-
�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961���Ui�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163
6{�L�6�6|��bm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927|��am�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726�
��`i�-
�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961���_i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���^i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���]m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���\m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492
�v������im�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��hm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���gm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��fmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��ema
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��dm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���cm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347
�{�q������pm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��omu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��nma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��mm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���lm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��km�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���jm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492
�}�u�\��o��wmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��vma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��um�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506���tm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���sm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��rm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��qm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
9z�t�V�9���~i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���}i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���|m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���{m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��zm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��ym�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���xm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289

e�r+��V��:��eD�g�
caf7f0adf042b63657e0610f87dbb3aa3334f9a81292aa836ddc648117954f9dD�f�
81bcb4324bc25258c6e46c0bdc146842422c22344fda2af0164660b98db7c0dcD�e�
249e4941a5a5071a668ba290a7dc5e28013fd43206a9a9b2a2a236220aee04ddD�d�
8398bd6b079096f5128dc71162f6fb902418319a1f157c08cd55e55ea7b42815D�c�
9f8bb077bbb9a1599bd7dfb6b7973517ca6a23674134edc3822c31d459a0fcf0D�b�
ea48b9fb3553584f758b7a3b5b3689740e4d04e82eb6d0359b8fecbde72b9b23D�a�
87aee3a9528b247730a778c50eab6e97da58d331049a063fa5f651d993db29d5D�`�
63c82c1e8917281adf931c995b90cce5c368fb95285f2659b691785c1fdd6a86D�_�
2da57e3f11f7feb8e50c18578d16794bb2a9a020b5c7c2a5ed12d4c49a0e597dD�^�
180fe822e8d8229970daac8f8d746b4a0b83877121f93490003022ee941544c1D�]�
9d8090a78aa40baa54d3800a01ae8e374a61c7be5587eb90bc2cf279a1c29e2eD�\�
196df95b9b19a08f79321b9b3709379e9fbdf71dd5cdc4d74bd313d84468f412D�[�
b64165d72cf869748c81b8e41581c93b8354747c22d548ae910ab54e118a90a5
z�$��z���m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126e��ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726
Jj�T�T�J|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��
m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927|��	m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726�
��i�-
�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961���i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319
��$���|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��
ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726
�v������m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347
}{�b��}��!m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��� m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506���m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492
f}�_�B�fo��(mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126e��'ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726���&i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���%i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���$m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���#m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��"m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
9z�t�V�9���/i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���.i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���-m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���,m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��+m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��*m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���)m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289
�q�q�g��o��6mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��5ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��4m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���3m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��2m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927|��1m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726�
��0i�-
�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961
ez�t�o�e|��=m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���<m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��;m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���:m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��9m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��8m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���7m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289
z�$��z���Dm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���Cm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Bm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Am�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���@m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��?mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��>ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726
��������Km�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Jm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Im�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Hm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Gmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��Fma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��Em�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506
eg�J�n�e��Rm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Qm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Pmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126e��Oma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726���Ni�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���Mi�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���Lm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599
3}�_�B�3|��Ym�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726�
��Xi�-
�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961���Wi�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���Vi�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���Um�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���Tm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Sm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
���v
����`m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���_m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��^mu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��]ma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��\m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���[m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��Zm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927
�}�x�n�o��gmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��fma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��em�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���dm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��cm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���bm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��am�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
mz�t�V�me��nma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��mm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506���lm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���km�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��jm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��im�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���hm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289
M��|�M���ui�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���tm�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���sm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��rm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��qm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���pm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��omu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126
�y������|m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��{m�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��zm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���ym�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��xmu
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126e��wma
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726���vi�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163
�g�J�:����{�C
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-36Y��- Fix setting terminal foreground process group while resuming process
  Resolves: #1457990}��{�
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-35Y��- Fix warning while creating kia file
  Resolves: #1438045�
��i�-
�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961���i�
�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���~i�;
�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���}m�=
�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599

e�r+��V��:��eD�t�
e377bae670c12638d474197ef518748c1e088342df7e30d7b48305b688397f86D�s�
cadd165d38724eb665db004d9c8b750aecb7c5d88cafaecac40cf6bd136bc3b9D�r�
61f2ce61f188dc44b4bac40752a37aceb51e5ab3ad31e9832585553728f1153aD�q�
5475ede3cff8776a20cbf47c4b3c85074267733ee7b25756385442d60aa680c8D�p�
350bcc459207279a04b2e6c772304349c7c5d63b58f4b52efe0c5856681203c4D�o�
d83df69f3f8696e0c3baee4eb2d4a692612706bad980d06d71759195aefe28a4D�n�
f51bb9d1fa63c5bb467fc5024de79c68a580bffb93e0ee00dad4ffd1edfb0dc6D�m�
6e73c8cf692c96778253ff1dcfb1fa2fbff0c5bd4b3bb64b10dd7cc1b5edc4acD�l�
3bba9df9a126294f1b6d125afef0399b652648e92446de453d3f9aa966726dc7D�k�
8717e76e453ff6da56721f14fb3f66a602f200c27eb0d7730ad11ad9f0e696c4D�j�
7f527d338cce3e1cb86323b7257ae02c7e130d6c37bc6ff07f75a20ad82a2e25D�i�
86b8329276455f1ab7137f0bfbed2c18288a75bb75932393695583ae82613063D�h�
09c46bafc8f7871f9037631642128c520e108bc7b90ffdfffbd477c7ea27543e
�T�+�0��'��}�S
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-141^0"@- Do not evaluate arithmetic expressions from environment variables at startup
  Resolves: #1790544{��}}
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-140]S��- Add virtual provides for /bin/ksh
  Resolves: #1690042x��}w
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-139[�@- Fix a crash caused by memcmp()
  Resolves: #1546749���}�
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-138[@- Fix a crash due to out of bounds write
  Resolves: #1506347���i�U
�Kamil Dudka <kdudka@redhat.com> - 20120801-137Z��- Increase the release number by 100 to make sure it stays higher than in RHEL-6
  Related: #1484937�'��{�U
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-37Zhu@- Add configuration option to enable signal bubbling for backward compatibility
  Resolves: #1484937
*�{�,�*x��}w
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-139[�@- Fix a crash caused by memcmp()
  Resolves: #1546749���}�
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-138[@- Fix a crash due to out of bounds write
  Resolves: #1506347���
i�U
�Kamil Dudka <kdudka@redhat.com> - 20120801-137Z��- Increase the release number by 100 to make sure it stays higher than in RHEL-6
  Related: #1484937�'��{�U
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-37Zhu@- Add configuration option to enable signal bubbling for backward compatibility
  Resolves: #1484937���{�C
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-36Y��- Fix setting terminal foreground process group while resuming process
  Resolves: #1457990n��
{e
�Vincent Mihalkovic <vmihalko@redhat.com> - 20120801-143aV�@- Stack robustness fixes
  Related: #2007364l��	}_
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-142^J�@- Bump version number
  Related: #1790544
3��e�u3�[��g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129z��{}
�Vincent Mihalkovic <vmihalko@redhat.com> - 20120801-144b
�- Stack robustness additional fixes
  Resolves: #2053503n��{e
�Vincent Mihalkovic <vmihalko@redhat.com> - 20120801-143aV�@- Stack robustness fixes
  Related: #2007364l��}_
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-142^J�@- Bump version number
  Related: #1790544�'��}�S
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-141^0"@- Do not evaluate arithmetic expressions from environment variables at startup
  Resolves: #1790544{��}}
�Siteshwar Vashisht <svashisht@redhat.com> - 20120801-140]S��- Add virtual provides for /bin/ksh
  Resolves: #1690042
�h�q��-��i�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[�� g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���i�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��%i�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���$i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���#i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��"i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���!g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[��*g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��)gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���(i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���'i�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��&i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��/i�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���.i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���-i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��,i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���+g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[��4g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��3gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���2i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���1i�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��0i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��9i�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���8i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���7i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��6i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���5g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[��>g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��=gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���<i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���;i�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��:i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��Ci�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���Bi�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���Ai�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��@i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���?g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[��Hg�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��GgY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���Fi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���Ei�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��Di�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��Mi�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���Li�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���Ki�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��Ji�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���Ig�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[��Rg�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��QgY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���Pi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���Oi�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��Ni�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��Wi�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���Vi�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���Ui�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��Ti�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���Sg�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[��\g�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��[gY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���Zi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���Yi�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��Xi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��ai�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���`i�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���_i�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��^i�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���]g�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[��fg�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��egY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���di�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���ci�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��bi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��ki�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���ji�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���ii�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��hi�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���gg�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
�t����[��pg�Q
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��ogY
�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���ni�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���mi�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��li�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
�h�q��-��ui�s
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���ti�O
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���si�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��ri�/
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���qg�A
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002
#t�(�#d��{ak
�John Dennis <jdennis@redhat.com> - 2.5.1-1WYZ@- Rebase to upstream 2.5.1
  Resolves: #1310860���za�Q
�John Dennis <jdennis@redhat.com> - 2.5.0-1U�6@- Rebase to upstream, now includes our ECP patches, no need to patch any more
  Resolves: #1205342�?��ya�
�John Dennis <jdennis@redhat.com> - 2.4.1-8U�@- Add explicit minimum dependency on glib2 2.42,
  for some reason RPM is not automatically detecting the dependency
  Resolves: #1254989���xi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���wi�5
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��vi�
�Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048
Ms�M�5��~c�	
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-4]6��- Resolves: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors�g��}c�m
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-3\`@- Resolves: #1634267 - ECP signature check fails with
                       LASSO_DS_ERROR_SIGNATURE_NOT_FOUND when assertion signed
                       instead of response���|a�1
�John Dennis <jdennis@redhat.com> - 2.5.1-2Wc�@- Rebase to upstream 2.5.1
  Resolves: #1310860
- add validate_idp_list_test patch
�I���q��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-7`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses�;��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-6`�r�- Resolves: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                       vulnerability when parsing SAML responses�2��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-5]Ik�- Resolves: #1719014 - Expired certificate prevents tests from running
- Actually apply the patch file for the previous build
- Related: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors
�
F�A����a�1
�John Dennis <jdennis@redhat.com> - 2.5.1-2Wc�@- Rebase to upstream 2.5.1
  Resolves: #1310860
- add validate_idp_list_test patchd��ak
�John Dennis <jdennis@redhat.com> - 2.5.1-1WYZ@- Rebase to upstream 2.5.1
  Resolves: #1310860���a�Q
�John Dennis <jdennis@redhat.com> - 2.5.0-1U�6@- Rebase to upstream, now includes our ECP patches, no need to patch any more
  Resolves: #1205342�?��a�
�John Dennis <jdennis@redhat.com> - 2.4.1-8U�@- Add explicit minimum dependency on glib2 2.42,
  for some reason RPM is not automatically detecting the dependency
  Resolves: #1254989�q��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-8`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses

e�r+��V��:��eD��
9d8f852847d542b8ca3a8f7afddddd363dfd43bfa65cfbf6dfc8aa04498417daD��
c053243ee1cb35d96150add59e7a1c0861276f5b2a3a9ca734501801a605c029D��
fdbe2525e655b8cf975f2027191bcc9231946f75aa3196dd6bc68d144b98da20D�~�
a95d1f4bc03b57d5bf45411152deb77c11b8f7e7eea468e1ac9786e41c70b339D�}�
2a27d4cd848272f9c9e4251b28efc591660799054bcd62d321892c0a8a608f9dD�|�
232113158f29ca0be28b87fea599e2ceb671ea597d510b952fa9490d78950783D�{�
e08f5391f6f27a9c77207532b12000e6771dbbab3411de893ea6640343d7c557D�z�
27258fffe6d62545a0a0c40b4e07b0f92e1a3b79588415f8f1242624918720bcD�y�
67364ca692de365478eee5a94879717c1fae2b7a4ba46d128ec04f0477c8c2b5D�x�
0ff1974a6100b7f2cbd7eed090daafd948fcf3710a299e3b612fb23e609059deD�w�
82146c665ec6adb6b5a44f5163ac78834431f9d37ddbeee4cc990634d979481bD�v�
41389a794b7cc04dd2e3fd21ff891d278296ee4aefdfda8491c6075a8b52e2d7D�u�
dc77ee42e3378dfc1bde015704e9af335bd8e6829d547325da2fc62adc0db229
#�#�2��	c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-5]Ik�- Resolves: #1719014 - Expired certificate prevents tests from running
- Actually apply the patch file for the previous build
- Related: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors�5��c�	
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-4]6��- Resolves: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors�g��c�m
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-3\`@- Resolves: #1634267 - ECP signature check fails with
                       LASSO_DS_ERROR_SIGNATURE_NOT_FOUND when assertion signed
                       instead of response
�@JT��?��
a�
�John Dennis <jdennis@redhat.com> - 2.4.1-8U�@- Add explicit minimum dependency on glib2 2.42,
  for some reason RPM is not automatically detecting the dependency
  Resolves: #1254989�q��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-8`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses�q��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-7`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses�;��
c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-6`�r�- Resolves: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                       vulnerability when parsing SAML responses
Hc�n�H�5��c�	
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-4]6��- Resolves: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors�g��c�m
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-3\`@- Resolves: #1634267 - ECP signature check fails with
                       LASSO_DS_ERROR_SIGNATURE_NOT_FOUND when assertion signed
                       instead of response���a�1
�John Dennis <jdennis@redhat.com> - 2.5.1-2Wc�@- Rebase to upstream 2.5.1
  Resolves: #1310860
- add validate_idp_list_test patchd��ak
�John Dennis <jdennis@redhat.com> - 2.5.1-1WYZ@- Rebase to upstream 2.5.1
  Resolves: #1310860���a�Q
�John Dennis <jdennis@redhat.com> - 2.5.0-1U�6@- Rebase to upstream, now includes our ECP patches, no need to patch any more
  Resolves: #1205342
�I���q��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-7`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses�;��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-6`�r�- Resolves: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                       vulnerability when parsing SAML responses�2��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-5]Ik�- Resolves: #1719014 - Expired certificate prevents tests from running
- Actually apply the patch file for the previous build
- Related: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors
�
F�A����a�1
�John Dennis <jdennis@redhat.com> - 2.5.1-2Wc�@- Rebase to upstream 2.5.1
  Resolves: #1310860
- add validate_idp_list_test patchd��ak
�John Dennis <jdennis@redhat.com> - 2.5.1-1WYZ@- Rebase to upstream 2.5.1
  Resolves: #1310860���a�Q
�John Dennis <jdennis@redhat.com> - 2.5.0-1U�6@- Rebase to upstream, now includes our ECP patches, no need to patch any more
  Resolves: #1205342�?��a�
�John Dennis <jdennis@redhat.com> - 2.4.1-8U�@- Add explicit minimum dependency on glib2 2.42,
  for some reason RPM is not automatically detecting the dependency
  Resolves: #1254989�q��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-8`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses
#�#�2��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-5]Ik�- Resolves: #1719014 - Expired certificate prevents tests from running
- Actually apply the patch file for the previous build
- Related: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors�5��c�	
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-4]6��- Resolves: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors�g��c�m
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-3\`@- Resolves: #1634267 - ECP signature check fails with
                       LASSO_DS_ERROR_SIGNATURE_NOT_FOUND when assertion signed
                       instead of response
�@JT��?��!a�
�John Dennis <jdennis@redhat.com> - 2.4.1-8U�@- Add explicit minimum dependency on glib2 2.42,
  for some reason RPM is not automatically detecting the dependency
  Resolves: #1254989�q�� c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-8`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses�q��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-7`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses�;��c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-6`�r�- Resolves: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                       vulnerability when parsing SAML responses
Hc�n�H�5��&c�	
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-4]6��- Resolves: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors�g��%c�m
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-3\`@- Resolves: #1634267 - ECP signature check fails with
                       LASSO_DS_ERROR_SIGNATURE_NOT_FOUND when assertion signed
                       instead of response���$a�1
�John Dennis <jdennis@redhat.com> - 2.5.1-2Wc�@- Rebase to upstream 2.5.1
  Resolves: #1310860
- add validate_idp_list_test patchd��#ak
�John Dennis <jdennis@redhat.com> - 2.5.1-1WYZ@- Rebase to upstream 2.5.1
  Resolves: #1310860���"a�Q
�John Dennis <jdennis@redhat.com> - 2.5.0-1U�6@- Rebase to upstream, now includes our ECP patches, no need to patch any more
  Resolves: #1205342
�I���q��)c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-7`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses�;��(c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-6`�r�- Resolves: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                       vulnerability when parsing SAML responses�2��'c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-5]Ik�- Resolves: #1719014 - Expired certificate prevents tests from running
- Actually apply the patch file for the previous build
- Related: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors
A
�
b�Av��/c�
�Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��.c�c
�Jakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x�#��-e�c
�Jakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.xr��,e�
�Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���+e�'
�Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691�q��*c�
�Jakub Hrozek <jhrozek@redhat.com> - 2.5.1-8`�r�- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses
����`����6i�5
�Fridolin Pokorny <fpokorny@redhat.com> - 458-2Qf��- Added gpg support to lesspipe.sh (#885122)
- Added ~/.lessfilter support (#885122)H��5i+
�Fridolin Pokorny <fpokorny@redhat.com> - 458-1Qf��- Update to 458`��4e_
�Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277z��3c�
�Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��2c�
�Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Sambav��1c�
�Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��0c�
�Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase
.����(��=[�w
�Jozef Mlich <jmlich@redhat.com> - 458-9U]�- The --use-backslash option documented in the man page
  was missing from online help for less.
  Resolves: #1109090�7��<[�
�Jozef Mlich <jmlich@redhat.com> - 458-8R�- changes introduced in less-458-old-bot-in-help.patch
  wasn't compiled in. It is necessary to use mkhelp tool.
  Resolves: #948597J��;Y?
�Daniel Mach <dmach@redhat.com> - 458-7R�U�- Mass rebuild 2014-01-24J��:Y?
�Daniel Mach <dmach@redhat.com> - 458-6R�k�- Mass rebuild 2013-12-27�2��9[�
�Jozef Mlich <jmlich@redhat.com> - 458-5R�v@- fixing regression in 72dfd3f63594e1d4c9416180a95c47ae583934c6
  incorrect parsing of commandline arguments
- Resolves #948597X��8]W
�Ondrej Vasik <ovasik@redhat.com> - 458-4Qޞ@- apply the --old-bot patch (#983167)�M��7i�3
�Fridolin Pokorny <fpokorny@redhat.com> - 458-3Q��- Expanded lessecho usage (#948597)
- Added lessfilter info to man (#948597)
- Expanded lesskey usage (#948597)
- Added --old-bot to help (#948597)
B�'�[�B�	��C=�W
�Michal Ruprich - 4.4.8-9X l�- Resolves: #1374653 -  File size decreases when synchronizing folders with a sftp account using lftp���Bk�#
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-8W4p@- Resolves: #1285301 - lftp hangs after dowloading one file during a mirror���Ak�%
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-7U~�@- Fixed issue with absolute URL locations in mirror mode
- Related: #1181580�;��@k�
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-6US<�- Fix lftp does not follow http redirect (302) in mirror mode (#1181580)
- Fix lftp exists randomly when "cmd:fail-exit" is set (#1193984)
- Added RFE - lftp configurations for restricting each SSL/TLS 
  version (#1182987)
- Fixed bogus dates of this SPECp��?i{
�Lubos Uhliarik <luhliari@redhat.com> - 4.4.8-5UQ�@- Fix option xfer:auto-rename not documented (#1035229)a��>cc
�Matej Mužila <mmuzila@redhat.com> - 458-10f'��- Fix CVE-2024-32487
- Resolves: RHEL-32802
M-R��M���Hk�-
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-14c:�- Resolves: #2115215 - Request "--env-password" option for lftp 4.4.8 for RHEL 7�;��Gk�
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-13^9\�- Resolves: #1573296 - lftp with ssl gives error Fatal error: gnutls_record_recv: The TLS connection was non-properly terminated�0��Fk�w
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-12]8H@- Resolves: #1611641 - CVE-2018-10916 lftp: particular remote file names may lead to current working directory erased�V��Ek�C
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-11Z���- Resolves: #1514815 - lftp doesn't seems to consider 'set net:max-retries'
- Resolves: #1556675 - "get" command with lftp does not fail on net:max-retries�N��D?�_
�Michal Ruprich - 4.4.8-10X)�@- Related: #1374653 - File size decreases when synchronizing folders with a sftp account using lftp
                    - Patch edited so that it corresponds to upstream
��L�5��	��M=�W
�Michal Ruprich - 4.4.8-9X l�- Resolves: #1374653 -  File size decreases when synchronizing folders with a sftp account using lftp���Lk�#
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-8W4p@- Resolves: #1285301 - lftp hangs after dowloading one file during a mirror���Kk�%
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-7U~�@- Fixed issue with absolute URL locations in mirror mode
- Related: #1181580�;��Jk�
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-6US<�- Fix lftp does not follow http redirect (302) in mirror mode (#1181580)
- Fix lftp exists randomly when "cmd:fail-exit" is set (#1193984)
- Added RFE - lftp configurations for restricting each SSL/TLS 
  version (#1182987)
- Fixed bogus dates of this SPECp��Ii{
�Lubos Uhliarik <luhliari@redhat.com> - 4.4.8-5UQ�@- Fix option xfer:auto-rename not documented (#1035229)
M-R��M���Rk�-
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-14c:�- Resolves: #2115215 - Request "--env-password" option for lftp 4.4.8 for RHEL 7�;��Qk�
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-13^9\�- Resolves: #1573296 - lftp with ssl gives error Fatal error: gnutls_record_recv: The TLS connection was non-properly terminated�0��Pk�w
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-12]8H@- Resolves: #1611641 - CVE-2018-10916 lftp: particular remote file names may lead to current working directory erased�V��Ok�C
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-11Z���- Resolves: #1514815 - lftp doesn't seems to consider 'set net:max-retries'
- Resolves: #1556675 - "get" command with lftp does not fail on net:max-retries�N��N?�_
�Michal Ruprich - 4.4.8-10X)�@- Related: #1374653 - File size decreases when synchronizing folders with a sftp account using lftp
                    - Patch edited so that it corresponds to upstream
��L�5��	��W=�W
�Michal Ruprich - 4.4.8-9X l�- Resolves: #1374653 -  File size decreases when synchronizing folders with a sftp account using lftp���Vk�#
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-8W4p@- Resolves: #1285301 - lftp hangs after dowloading one file during a mirror���Uk�%
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-7U~�@- Fixed issue with absolute URL locations in mirror mode
- Related: #1181580�;��Tk�
�Luboš Uhliarik <luhliari@redhat.com> - 4.4.8-6US<�- Fix lftp does not follow http redirect (302) in mirror mode (#1181580)
- Fix lftp exists randomly when "cmd:fail-exit" is set (#1193984)
- Added RFE - lftp configurations for restricting each SSL/TLS 
  version (#1182987)
- Fixed bogus dates of this SPECp��Si{
�Lubos Uhliarik <luhliari@redhat.com> - 4.4.8-5UQ�@- Fix option xfer:auto-rename not documented (#1035229)
M-R��M���\k�-
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-14c:�- Resolves: #2115215 - Request "--env-password" option for lftp 4.4.8 for RHEL 7�;��[k�
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-13^9\�- Resolves: #1573296 - lftp with ssl gives error Fatal error: gnutls_record_recv: The TLS connection was non-properly terminated�0��Zk�w
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-12]8H@- Resolves: #1611641 - CVE-2018-10916 lftp: particular remote file names may lead to current working directory erased�V��Yk�C
�Michal Ruprich <mruprich@redhat.com> - 4.4.8-11Z���- Resolves: #1514815 - lftp doesn't seems to consider 'set net:max-retries'
- Resolves: #1556675 - "get" command with lftp does not fail on net:max-retries�N��X?�_
�Michal Ruprich - 4.4.8-10X)�@- Related: #1374653 - File size decreases when synchronizing folders with a sftp account using lftp
                    - Patch edited so that it corresponds to upstream

P�V�~9�]�PX��fiK
�Michel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��e]w
�Adam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��d])
�Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��c]q
�Adam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��bqq
�Peter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��a])
�Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��`q[
�Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��_qk
�Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��^qU
�Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()A��]])
�Adam Jackson <ajax@redhat.com> - 1.6.4-1W��@- libX11 1.6.4

P�V�~9�]�PX��piK
�Michel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��o]w
�Adam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��n])
�Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��m]q
�Adam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��lqq
�Peter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��k])
�Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��jq[
�Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��iqk
�Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��hqU
�Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()A��g])
�Adam Jackson <ajax@redhat.com> - 1.6.4-1W��@- libX11 1.6.4

?�+�~�]��?R��z]KAdam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��yiKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��x]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��w])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��v]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��uqqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��t])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��sq[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��rqkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��qqUPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()

?�+�~�]��?R��]KAdam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��iKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��qqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��~])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��}q[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��|qkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��{qUPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()

e�r+��V��:��eD��
de55e1ddb71f75f5b701d57786cf4b70fee1d92f72205d32c353fe0e17602361D�
�
e5f76a4c5b41b3334ed3da7aa9bf17480ddf89e174661aaa2d61a1fe4efc7ad4D��
374f721b5f41a11a081cd23537162130ab654a02ece3e8c55f3840ecd8f839a0D��
1ef57080cad8889aa2a957bb771d161af38b61bf4aec83a7fcd19e2dfe510079D�
�
938bca67aabbf5f68ed289ef571582f9e1c3c144f27c0cc38dc3b60c03bb184eD�	�
a11e1ecb8f7034384a2138c08abe5aa5f4f9996c624112e951eb5a42353bc197D��
1cd870f8b1c30e2f168c6960a8dde4ac59970a62aca538042b33d37a679f1a3bD��
e033e09baf35ab533a503e8e87c8e01aae28de712da982f5371673bf0567fa4aD��
70bbd71ba6462d9f6702322739a79ddf57ab8a23f41a3ae1e2c47feacb60d0d1D��
2c6eb5afea1c0a0fa2d5103b42a1dfd64c5d9d81d7974ab2bf5adbf20f29033aD��
c5210f6bcc42e5949db2d2f133a369159d73a960cf7abe1a47a4248fe1d48491D��
1f4f286b0441b2c508c416f72ee52c1b323a1ba12aae4579f986c007ecde653fD��
3e22c1e91e6c946f60aaa437911042d67c7e9de92d77cf458a51d5660658186c

!�(�p�V��!��k�Olivier Fourdan <ofourdan@redhat.com> - 1.6.7-5e��- Backport fix for Xlib lockups due to recursive XError (RHEL-23053)R��
]KAdam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��iKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��
])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��	]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��qqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��q[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��qkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2

!�(�p�V��!��k�Olivier Fourdan <ofourdan@redhat.com> - 1.6.7-5e��- Backport fix for Xlib lockups due to recursive XError (RHEL-23053)R��]KAdam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��iKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��qqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��q[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��qkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2

P�V�~9�]�PX��"iKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��!]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA�� ])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��qqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��q[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��qkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��qUPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()A��])Adam Jackson <ajax@redhat.com> - 1.6.4-1W��@- libX11 1.6.4

?�+�~�]��?R��,]KAdam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��+iKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��*]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��)])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��(]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��'qqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��&])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��%q[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��$qkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��#qUPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()

!�(�p�V��!��6k�Olivier Fourdan <ofourdan@redhat.com> - 1.6.7-5e��- Backport fix for Xlib lockups due to recursive XError (RHEL-23053)R��5]KAdam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��4iKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��3]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��2])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��1]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��0qqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��/])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��.q[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��-qkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2bR"�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������"���>"���C"���H"���M"���R"���W"���\"���a"���f"���k"���p"���u"���{"���~"���"���"���	"���
"���"���"���"���"���!"���&"���)"���/"���6"���="���C"���H"���M"���R"���W"���\"���f"���p"���z"���"���"���"���""���,"���6"���@"���J"�T"Á�^"ā�h"Ł�r"Ɓ�y"ǁ�"ȁ�"ʁ�"ˁ�"́�"́� "΁�#"ρ�("Ё�+"с�-"ҁ�2"Ӂ�5"ԁ�7"Ձ�<"ց�?"ׁ�A"؁�H"ف�Q"ځ�Z"ہ�c"܁�k"݁�q"ށ�v"߁�~"��"��	"��"��"��"��#"��("��/"��4"��:"��="��>"��A"��E"��G"��H"��K"��O"��P"��Q"���T"���Y"���Z"���[

P�V�~9�]�PX��@iKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��?]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��>])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��=]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��<qqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��;])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��:q[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��9qkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��8qUPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()A��7])Adam Jackson <ajax@redhat.com> - 1.6.4-1W��@- libX11 1.6.4

P�V�~9�]�PX��JiKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��I]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��H])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��G]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��FqqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��E])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��Dq[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��CqkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��BqUPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()A��A])Adam Jackson <ajax@redhat.com> - 1.6.4-1W��@- libX11 1.6.4

?�+�~�]��?R��T]K	Adam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��SiK	Michel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��R]w	Adam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��Q])	Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��P]q	Adam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��Oqq	Peter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��N])	Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��Mq[	Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��Lqk	Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��KqU	Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()

?�+�~�]��?R��^]K
Adam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��]iK
Michel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��\]w
Adam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��[])
Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��Z]q
Adam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��Yqq
Peter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��X])
Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��Wq[
Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��Vqk
Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2a��UqU
Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-2Xn5@- Plug a memory leak in XListFonts()

!�(�p�V��!��hk�Olivier Fourdan <ofourdan@redhat.com> - 1.6.7-5e��- Backport fix for Xlib lockups due to recursive XError (RHEL-23053)R��g]KAdam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��fiKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��e]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��d])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��c]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��bqqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��a])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��`q[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��_qkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2

!�(�p�V��!��rk�Olivier Fourdan <ofourdan@redhat.com> - 1.6.7-5e��- Backport fix for Xlib lockups due to recursive XError (RHEL-23053)R��q]KAdam Jackson <ajax@redhat.com> - 1.6.7-4a��- Fix CVE-2021-31535 (#1962438)X��piKMichel Dänzer <mdaenzer@redhat.com> - 1.6.7-3_���- Fix CVE-2020-14363 (#1873922)h��o]wAdam Jackson <ajax@redhat.com> - 1.6.7-2\�"�- Restore the less-alarming server-disconnect messageA��n])Adam Jackson <ajax@redhat.com> - 1.6.7-1\�r@- libX11 1.6.7e��m]qAdam Jackson <ajax@redhat.com> - 1.6.5-3\y�- Make the server-disconnect message less alarmingo��lqqPeter Hutterer <peter.hutterer@redhat.com> 1.6.5-2[GB�- Rebuild to pick up new xproto keysyms (#1600147)A��k])Adam Jackson <ajax@redhat.com> - 1.6.5-1Y��- libX11 1.6.5d��jq[Peter Hutterer <peter.hutterer@redhat.com> 1.6.4-4X���- Actually apply the patch from 1.6.4-3l��iqkPeter Hutterer <peter.hutterer@redhat.com> 1.6.4-3Xs{@- Fix a bug in the memory leak fix from 1.6.4-2
���'�-����y��
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.11-2S���- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_RebuildZ��x[]
Adam Jackson <ajax@redhat.com> 3.5.11-1R�b@- libXpm 3.5.11
- Drop pre-F18 changelog���w��
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-5Q��- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_RebuildX��vw=
Peter Hutterer <peter.hutterer@redhat.com> - 3.5.10-4Q8�@- autoreconf for aarch64���u��
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���t��
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildA��s[+
Adam Jackson <ajax@redhat.com> 3.5.10-1OX�@- libXpm 3.5.10
�a|7���X��w=Peter Hutterer <peter.hutterer@redhat.com> - 3.5.10-4Q8�@- autoreconf for aarch64�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���~��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildA��}[+Adam Jackson <ajax@redhat.com> 3.5.10-1OX�@- libXpm 3.5.10���|w�
Peter Hutterer <peter.hutterer@redhat.com> - 3.5.12-2c�0�- Fix CVE-2022-4883: compression commands depends on $PATH (#2161715)V��{�+
Benjamin Tissoires <benjamin.tissoires@redhat.com> 3.5.12-1X��@- libXpm 3.5.12���z��
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.11-3S�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
�dj�q��A��[+Adam Jackson <ajax@redhat.com> 3.5.10-1OX�@- libXpm 3.5.10���w�Peter Hutterer <peter.hutterer@redhat.com> - 3.5.12-2c�0�- Fix CVE-2022-4883: compression commands depends on $PATH (#2161715)V���+Benjamin Tissoires <benjamin.tissoires@redhat.com> 3.5.12-1X��@- libXpm 3.5.12�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.11-3S�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.11-2S���- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_RebuildZ��[]Adam Jackson <ajax@redhat.com> 3.5.11-1R�b@- libXpm 3.5.11
- Drop pre-F18 changelog�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-5Q��- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild

e�r+��V��:��eD��
faea0d6adefaa474577c184f31a44469d13846a44412ea382dafc9f9ea6a3a77D��
4ad0b71e3a6468fba1b43ab82fad024415b5296c7b77d1348fb9afa3f828f98eD��
3054ca1c0cc8eef5f08ce1d3be56c7a39e97d92361e8bd265bea14d06f590219D��
73952b31447b02abc10d1c2efafb6def58e9237532ddef9eb3a691baaa88a495D��
6602351182c085c415d4c05b7e325611057898b48cdc1249a54c5106cd0735fdD��
eeec2b53758cdbb0b3f3402b7117dddcf34c40e99612fc0ec69bb799b2a7b6beD��
b9bc38488c309455bbf6f753ef1aaaa244614ec08a027b5ff58a7b234006eac1D��
a687b481be7d8b127fe830b2c0840854683d1ac18a2c1799d5caac56e8891e8fD��
ea09355eb6ee209c2b42e898475fc5462249ee3f27b0dd881ee2fd0db8245464D��
0eda90367bc11ce10165853be705e1303b3ac2a0f5072131cbd8b2ea6ed2d1eaD��
b856dd2cc821e1fa2cbc89c6901577691af284f98280ef05cc1a7c3826acae41D��
938bb9ba7be38a8654b48fbbb34f5d8a3a6db6e2453cbe54b8b837c099acb52cD��
26dd5513dd4b2211aa6f24f32382b86bafd5ff88c0d642448cc8725093a58146
7d�l�r�7�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.11-3S�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild���
��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.11-2S���- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_RebuildZ��[]Adam Jackson <ajax@redhat.com> 3.5.11-1R�b@- libXpm 3.5.11
- Drop pre-F18 changelog�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-5Q��- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_RebuildX��
w=Peter Hutterer <peter.hutterer@redhat.com> - 3.5.10-4Q8�@- autoreconf for aarch64���	��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
H��:�B�HZ��[]Adam Jackson <ajax@redhat.com> 3.5.11-1R�b@- libXpm 3.5.11
- Drop pre-F18 changelog�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-5Q��- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_RebuildX��w=Peter Hutterer <peter.hutterer@redhat.com> - 3.5.10-4Q8�@- autoreconf for aarch64�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.10-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildA��[+Adam Jackson <ajax@redhat.com> 3.5.10-1OX�@- libXpm 3.5.10���w�Peter Hutterer <peter.hutterer@redhat.com> - 3.5.12-2c�0�- Fix CVE-2022-4883: compression commands depends on $PATH (#2161715)V���+Benjamin Tissoires <benjamin.tissoires@redhat.com> 3.5.12-1X��@- libXpm 3.5.12
Ld�k�}L�=��W�%Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��W�Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��WkKarel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)���w�Peter Hutterer <peter.hutterer@redhat.com> - 3.5.12-2c�0�- Fix CVE-2022-4883: compression commands depends on $PATH (#2161715)V���+Benjamin Tissoires <benjamin.tissoires@redhat.com> 3.5.12-1X��@- libXpm 3.5.12�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.11-3S�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.5.11-2S���- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
,Sr,�A�� W�-Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��W�cKarel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev�(��W�{Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login
�l���a��#W�mKarel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��"W�_Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit���!W�IKarel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.
v�T�#v�(��(W�{Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��'W�%Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��&W�Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��%WkKarel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��$g�#Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���+W�IKarel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��*W�-Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��)W�cKarel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��-W�mKarel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��,W�_Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��2W�{Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��1W�%Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��0W�Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��/WkKarel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��.g�#Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���5W�IKarel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��4W�-Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��3W�cKarel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��7W�mKarel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��6W�_Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��<W�{Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��;W�%Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��:W�Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��9WkKarel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��8g�#Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���?W�IKarel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��>W�-Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��=W�cKarel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��AW�mKarel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��@W�_Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
[�i���[L��H]?Daniel Mach <dmach@redhat.com> - 0.6.8-5R�U�- Mass rebuild 2014-01-24L��G]?Daniel Mach <dmach@redhat.com> - 0.6.8-4R�k�- Mass rebuild 2013-12-27���Fi�Matthias Clasen <mclasen@redhat.com> - 0.6.8-3Q�5�- Disable strict aliasing, since the code is not strict-aliasing-clean���E��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.8-2Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildJ��Di/Kalev Lember <kalevlember@gmail.com> - 0.6.8-1P��@- Update to 0.6.8J��Ci/Kalev Lember <kalevlember@gmail.com> - 0.6.7-1P}L@- Update to 0.6.7�D��Bg�#Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
	P�:�\�%�PL��Q]?Daniel Mach <dmach@redhat.com> - 0.6.8-4R�k�- Mass rebuild 2013-12-27���Pi�Matthias Clasen <mclasen@redhat.com> - 0.6.8-3Q�5�- Disable strict aliasing, since the code is not strict-aliasing-clean���O��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.8-2Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildJ��Ni/Kalev Lember <kalevlember@gmail.com> - 0.6.8-1P��@- Update to 0.6.8J��Mi/Kalev Lember <kalevlember@gmail.com> - 0.6.7-1P}L@- Update to 0.6.7n��LukMichael Catanzaro <mcatanzaro@redhat.com> - 0.6.12-6_'�A- Rebuild with 7.9-z target
  Related: #1835951h��Ku_Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.12-5_'�@- Fix CVE-2020-12825
  Resolves: #1835951`��Ji[Richard Hughes <rhughes@redhat.com> - 0.6.12-4X�-�- Update to 0.6.12
- Resolves: #1569991^��Ie[Kalev Lember <klember@redhat.com> - 0.6.11-1Vr��- Update to 0.6.11
- Resolves: #1386999
	P�N�~�p�P���Zi�Matthias Clasen <mclasen@redhat.com> - 0.6.8-3Q�5�- Disable strict aliasing, since the code is not strict-aliasing-clean���Y��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.8-2Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildJ��Xi/Kalev Lember <kalevlember@gmail.com> - 0.6.8-1P��@- Update to 0.6.8J��Wi/Kalev Lember <kalevlember@gmail.com> - 0.6.7-1P}L@- Update to 0.6.7n��VukMichael Catanzaro <mcatanzaro@redhat.com> - 0.6.12-6_'�A- Rebuild with 7.9-z target
  Related: #1835951h��Uu_Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.12-5_'�@- Fix CVE-2020-12825
  Resolves: #1835951`��Ti[Richard Hughes <rhughes@redhat.com> - 0.6.12-4X�-�- Update to 0.6.12
- Resolves: #1569991^��Se[Kalev Lember <klember@redhat.com> - 0.6.11-1Vr��- Update to 0.6.11
- Resolves: #1386999L��R]?Daniel Mach <dmach@redhat.com> - 0.6.8-5R�U�- Mass rebuild 2014-01-24
	��`��.�n ����c��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.8-2Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildJ��bi/Kalev Lember <kalevlember@gmail.com> - 0.6.8-1P��@- Update to 0.6.8J��ai/Kalev Lember <kalevlember@gmail.com> - 0.6.7-1P}L@- Update to 0.6.7n��`ukMichael Catanzaro <mcatanzaro@redhat.com> - 0.6.12-6_'�A- Rebuild with 7.9-z target
  Related: #1835951h��_u_Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.12-5_'�@- Fix CVE-2020-12825
  Resolves: #1835951`��^i[Richard Hughes <rhughes@redhat.com> - 0.6.12-4X�-�- Update to 0.6.12
- Resolves: #1569991^��]e[Kalev Lember <klember@redhat.com> - 0.6.11-1Vr��- Update to 0.6.11
- Resolves: #1386999L��\]?Daniel Mach <dmach@redhat.com> - 0.6.8-5R�U�- Mass rebuild 2014-01-24L��[]?Daniel Mach <dmach@redhat.com> - 0.6.8-4R�k�- Mass rebuild 2013-12-27
�{+�y�7����kc�+Kamil Dudka <kdudka@redhat.com> - 7.29.0-51[j�@- require a new enough version of nss-pem to avoid regression in yum (#1610998)n��jukMichael Catanzaro <mcatanzaro@redhat.com> - 0.6.12-6_'�A- Rebuild with 7.9-z target
  Related: #1835951h��iu_Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.12-5_'�@- Fix CVE-2020-12825
  Resolves: #1835951`��hi[Richard Hughes <rhughes@redhat.com> - 0.6.12-4X�-�- Update to 0.6.12
- Resolves: #1569991^��ge[Kalev Lember <klember@redhat.com> - 0.6.11-1Vr��- Update to 0.6.11
- Resolves: #1386999L��f]?Daniel Mach <dmach@redhat.com> - 0.6.8-5R�U�- Mass rebuild 2014-01-24L��e]?Daniel Mach <dmach@redhat.com> - 0.6.8-4R�k�- Mass rebuild 2013-12-27���di�Matthias Clasen <mclasen@redhat.com> - 0.6.8-3Q�5�- Disable strict aliasing, since the code is not strict-aliasing-clean
+r���+h��qcqKamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|��pc�Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h��ocqKamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j��ncuKamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}��mc�Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)�	��lc�1Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)
\x�u�\�	��vc�1Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)���uc�+Kamil Dudka <kdudka@redhat.com> - 7.29.0-51[j�@- require a new enough version of nss-pem to avoid regression in yum (#1610998)v��ts}Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)���sc�'Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)���rc�%Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)
.�%�1�.v��~s}Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)���}c�'Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)���|c�%Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)h��{cqKamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|��zc�Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h��ycqKamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j��xcuKamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}��wc�Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)
+r���+h��cqKamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|��c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h��cqKamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j��cuKamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}��c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)�	��c�1Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)
Ex�u�E�	��	c�1Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)���w�EJacek Migacz <jmigacz@redhat.com> - 7.29.0-59.el7_9.2eJ&�- fix HTTP proxy deny use after free (CVE-2022-43552)
- rebuild certs with 2048-bit RSA keysv��s}Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)���c�'Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)���c�%Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)

e�r+��V��:��eD�(�
d756103ebb5cdaa112e97017abdb37c31ccacc831f5042c1c0c423e446ab3b8fD�'�
d0c60cdd0430a434420ef3cbcd3cd9ebd0e4089f8059b3a3b7bc427c158c0505D�&�
cebe503265c9efa9afa036f10cf99ab4d5eeabe4c13950dc76ba50fc4304f4fcD�%�
c846a72195e654b76f0ca3467ec6a0e034d1907a307e6d797b1e4238ab8e1949D�$�
828fe4eb26915648840d50ea3daa571c3735822ed66eced81dd20b12dff3e10eD�#�
4c0432991858f896026445ef401636f12a857102f3329b8a5d034aa2e99e2bd4D�"�
059cd706e5668cb53ab32ca18815011ad932d1853567a29b3c7b2afca689e637D�!�
f3dc3c542749f94c4e3a601842a9a8d6311fb735a5d6ee8d3845ce5b137c43eeD� �
2670e3582d71b9a17efc9c2892e66a3c54a3160c71fdf742693ca914289185fcD��
aead54e95d1462dda834e3f40fcfcf9312670076f263f156c631a937038d3b00D��
f92fde3f97c0034135796baa7cd55f87c0550a88ac79adbdcc9c7f64c595614bD��
7ab4f1b0aa285d3773fdbd8bfc529969ca101a627d3ea88bea1f99a42093e132D��
34e3369ca1560dc34b862cce4a9fb6a7939494ce15ee0f68fb76edaf5fb3ee53
.�%�1�.v��s}Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)���c�'Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)���c�%Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)h��cqKamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|��
c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h��cqKamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j��cuKamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}��
c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)
V^�E�Vj��cuKamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}��c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)�	��c�1Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)���c�+Kamil Dudka <kdudka@redhat.com> - 7.29.0-51[j�@- require a new enough version of nss-pem to avoid regression in yum (#1610998)���w�EJacek Migacz <jmigacz@redhat.com> - 7.29.0-59.el7_9.2eJ&�- fix HTTP proxy deny use after free (CVE-2022-43552)
- rebuild certs with 2048-bit RSA keys
��� �����c�+Kamil Dudka <kdudka@redhat.com> - 7.29.0-51[j�@- require a new enough version of nss-pem to avoid regression in yum (#1610998)v��s}Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)���c�'Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)���c�%Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)h��cqKamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|��c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h��cqKamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)
+r���+h��#cqKamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|��"c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h��!cqKamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j�� cuKamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}��c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)�	��c�1Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)
fx�u�f}��(c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)�	��'c�1Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)v��&s}Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)���%c�'Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)���$c�%Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)
��&�:�)�v��/s}Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)���.c�'Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)���-c�%Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)h��,cqKamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|��+c�Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)h��*cqKamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j��)cuKamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)
u^�O�uh��4cq Kamil Dudka <kdudka@redhat.com> - 7.29.0-55]Ik�- fix TFTP receive buffer overflow (CVE-2019-5436)j��3cu Kamil Dudka <kdudka@redhat.com> - 7.29.0-54\��- make `curl --tlsv1` backward compatible (#1672639)}��2c� Kamil Dudka <kdudka@redhat.com> - 7.29.0-53\��@- backport the --tls-max option of curl and TLS 1.3 ciphers (#1672639)�	��1c�1 Kamil Dudka <kdudka@redhat.com> - 7.29.0-52\y�- prevent curl --rate-limit from hanging on file URLs (#1281969)
- fix NTLM password overflow via integer overflow (CVE-2018-14618)
- fix bad arithmetic when outputting warnings to stderr (CVE-2018-16842)
- backport options to force TLS 1.3 in curl and libcurl (#1672639)
- prevent curl --rate-limit from crashing on https URLs (#1683292)���0w�EJacek Migacz <jmigacz@redhat.com> - 7.29.0-59.el7_9.2eJ&�- fix HTTP proxy deny use after free (CVE-2022-43552)
- rebuild certs with 2048-bit RSA keys
��������:w�E Jacek Migacz <jmigacz@redhat.com> - 7.29.0-59.el7_9.2eJ&�- fix HTTP proxy deny use after free (CVE-2022-43552)
- rebuild certs with 2048-bit RSA keysv��9s} Kamil Dudka <kdudka@redhat.com> - 7.29.0-59.el7_9.1_ @- avoid overwriting a local file with -J (CVE-2020-8177)���8c�' Kamil Dudka <kdudka@redhat.com> - 7.29.0-59^�?@- http: free protocol-specific struct in setup_connection callback (#1836773)���7c�% Kamil Dudka <kdudka@redhat.com> - 7.29.0-58^x��- fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)h��6cq Kamil Dudka <kdudka@redhat.com> - 7.29.0-57]�e@- allow curl to POST from a char device (#1769307)|��5c� Kamil Dudka <kdudka@redhat.com> - 7.29.0-56]�?�- fix auth failure with duplicated WWW-Authenticate header (#1754736)
��A����=q�'!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556���<q�A!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651���;q�K!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651
LL�/��>q�o!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��Aq�q!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��@q�}!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��?q�s!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�+>�����Eq�K"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651}��Dq�!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��Cq�a!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��Bq�1!Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
�c����Gq�'"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556���Fq�A"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651
LL�/��Hq�o"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��Kq�q"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��Jq�}"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��Iq�s"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
 +>� ���Oq�A#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651}��Nq�"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��Mq�a"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��Lq�1"Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���Pq�'#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��Qq�o#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��Tq�q#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��Sq�}#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��Rq�s#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�+>�"����Yq�A$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651���Xq�=#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��Wq�#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��Vq�a#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��Uq�1#Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���Zq�'$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��[q�o$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��^q�q$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��]q�}$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��\q�s$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
"+>�"���bq�=$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��aq�$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��`q�a$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��_q�1$Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���cq�'%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��dq�o%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��gq�q%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��fq�}%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��eq�s%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�+>�"����lq�%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905���kq�=%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��jq�%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��iq�a%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��hq�1%Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���mq�'&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��nq�o&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��qq�q&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��pq�}&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��oq�s&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�+>�"����vq�&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905���uq�=&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��tq�&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��sq�a&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��rq�1&Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
��A����yq�''Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556���xq�A'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651���wq�K'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651
LL�/��zq�o'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��}q�q'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��|q�}'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��{q�s'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�+>�����q�K(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-125\d�- Modify 0250-RHBZ-1610867-rescan-change.patch
  * Fix memory Leak
- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix NULL dereference
- Refresh 0252-RHBZ-1623595-cmd-error-status.patch
- Resolves: bz #1610867, #1638651}��q�'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��q�a'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��~q�1'Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
�c����q�'(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556���q�A(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651
LL�/��q�o(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��q�q(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��q�}(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��q�s(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
 +>� ���q�A)Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651}��
q�(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��	q�a(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��q�1(Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420

e�r+��V��:��eD�5�
693e3ce2908adefcc2bc524795b6cde949103c699866ca985fd42a827214dd0eD�4�
946b8442c4a0e72fe683a8d2c6b3ab7143aa27670b547b3ff7849aa236ae494bD�3�
aa74fc65a3e070d797d17ec1a51bec20f0c5a1f1ff74f20bd9459369a3b80568D�2�
18263e1b0a03802679269ba3b6efec82086ba491183c1ab84bd9de4e5a98c071D�1�
0c9cd97e333e5ea85907e92483ef91dbdb08349b7e29916dcf5c08061c74f836D�0�
618179611cd44ba685db172d3afd1dc0248e66533a35b8e46cdf118d812340d3D�/�
6dafcb9ecc7ca14a4ae5417e71c1fee10a7213e0ebf3d3750cbd23a8cacf5eefD�.�
49776569805f34f9417a664fb394e7bff8444fee386100309ce6306cba1c8b1aD�-�
3bb0da4f1c883b5aaa0ad687bcc2022ba9573d912ff906b6657bc7e96676c5d9D�,�
5c0bed31f5ed7d1cccaeb6276746900d9f0fe837b806759153ea696c3b33b423D�+�
6337008a1e944b28b17317dcde8003b1ccb848dc5a09a17a27903c4e32e60846D�*�
ab2e63b3fe04a633b718c47d41143f7ffa9fb32076d41cfdb01feaef74cd6158D�)�
a8bf325bc65d56d5cd74d8b007f3b2f09f0d1f6deccd0c0d0f56f515423fe6eb
pp���q�')Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��
q�o)Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��q�q)Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��q�})Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��q�s)Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�+>�"����q�A*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-126\d�- Modify 0255-RHBZ-1638651-marginal-path.patch
  * Fix memory leak
- Resolves: bz #1638651���q�=)Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��q�)Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��q�a)Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��q�1)Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���q�'*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��q�o*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��q�q*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��q�}*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��q�s*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
"+>�"���q�=*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��q�*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��q�a*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��q�1*Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���q�'+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/�� q�o+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��#q�q+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��"q�}+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��!q�s+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�+>�"����(q�+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905���'q�=+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��&q�+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��%q�a+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��$q�1+Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
pp���)q�',Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-127\�B@- Add 0256-RHBZ-1672175-retry-no-fd-paths.patch
  * retry adding paths if they couldn't be opened initially
- Add 0257-RHBZ-1679556-dont-check-dm-devices.patch
  * don't check if dm devices are multipath paths
- Add 0258-RHBZ-1634183-ANA-prioritizer.patch
  * Add NVMe ANA path prioritizer
- Resolves: bz #1634183, #1672175, #1679556
LL�/��*q�o,Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-128]QT�- Modify 0258-RHBZ-1634183-ANA-prioritizer.patch
  * minor change
- Add 0259-RHBZ-1701604-fix-nr-active.patch
  * recalculate the number of active paths whenever a path is checked
- Add 0260-RHBZ-1634183-prio-fixes.patch
- Add 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * ignore blacklisted paths in mpathpersist
- Add 0262-RHBZ-1699486-reload-with-failed-paths.patch
  * allow forced reloads even if there are no reusable paths
- Add 0263-RHBZ-1686708-nvme-hcil.patch
  * make nvme ids work like in upstream
- Add 0264-RHBZ-1699441-de-series-config.patch
- Resolves: bz #1686708, #1699441, #1699486, #1701604, #1714506
�
O��0��-q�q,Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-131]�- Modify 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * The fix for 1721855 broke 1714506.
- Resolves: bz #1714506�6��,q�},Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-130]i�- Add 0268-RHBZ-1721855-mpathpersist-fixes.patch
  * Fix issues in the mpathpersist speedup code
- Resolves: bz #1721855�q��+q�s,Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-129]g�@- Add 0265-RHBZ-1721855-mpathpersist-speedup.patch
  * only grab path information from necessary devices, and allow batch files.
- Add 0266-RHBZ-1696817-fix-emc-checker.patch
  * fix detection of inactive snapshots
- Add 0267-RHBZ-1661156-powermax-config.patch
- Remove 0261-RHBZ-1714506-skip-blacklisted-paths.patch
  * This fix is superseded by 0265-RHBZ-1721855-mpathpersist-speedup.patch
- Resolves: bz #1661156, #1696817, #1721855
�+>�"����2q�,Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-136cG��- Add 0274-UP-no-duplicate-command-keys.patch
- Resolves: bz #2134905���1q�=,Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-135a�- Add 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch
- Resolves: bz #1988462}��0q�,Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-134__[@- Add 0272-RHBZ-1855901-lenovo-de.patch
- Resolves: bz #1855901�h��/q�a,Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-133^��A- Add 0270-RHBZ-1775481-segfault-fix.patch
  * Fix segfault related to missing dm device tables
- 0271-RHBZ-1806197-mpathconf-typo.patch
- Resolves: bz #1775481, #1806197�P��.q�1,Benjamin Marzinski <bmarzins@redhat.com> 0.4.9-132^��@- Add 0269-RHBZ-1804420-remove-kpartx-limit.patch
  * Remove the 256 device limit, when searching loop devices with kpartx
- Resolves: bz #1804420
_T���_���7��-Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���6��-Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���5c�W-Petr Šabata <contyk@redhat.com> - 0.6.21-1P
�- 0.6.21 bump
- A security bugfixing release (CVE-2012-2812, CVE-2012-2813, CVE-2012-2814,
  CVE-2012-2836, CVE-2012-2837, CVE-2012-2840, CVE-2012-2841 & CVE-2012-2845)
- Drop the pre-generated docs and introduce a doc subpackage���4��-Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.20-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild�'��3c�m-Petr Sabata <psabata@redhat.com> - 0.6.20-1M�I@- 0.6.20 bump
- Repackaging prehistoric libexif-docs, introducing version string in filename
- Buildroot cleanup
��Y�h����>��.Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.20-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild�'��=c�m.Petr Sabata <psabata@redhat.com> - 0.6.20-1M�I@- 0.6.20 bump
- Repackaging prehistoric libexif-docs, introducing version string in filename
- Buildroot cleanup���<i�!-Richard Hughes <rhughes@redhat.com> - 0.6.22-2_�@- Fix CVE-2020-0181, CVE-2020-0198, and CVE-2020-0452
- Resolves: #1902589g��;u]-Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.22-1^��@- Upgrade to 0.6.22
- Resolves: #1841316M��:_?-Daniel Mach <dmach@redhat.com> - 0.6.21-6R�U�- Mass rebuild 2014-01-24M��9_?-Daniel Mach <dmach@redhat.com> - 0.6.21-5R�k�- Mass rebuild 2013-12-27R��8cE-Petr Šabata <contyk@redhat.com> - 0.6.21-4QR�@- Run autoreconf for aarch64
D�C�Q�Dg��Eu].Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.22-1^��@- Upgrade to 0.6.22
- Resolves: #1841316M��D_?.Daniel Mach <dmach@redhat.com> - 0.6.21-6R�U�- Mass rebuild 2014-01-24M��C_?.Daniel Mach <dmach@redhat.com> - 0.6.21-5R�k�- Mass rebuild 2013-12-27R��BcE.Petr Šabata <contyk@redhat.com> - 0.6.21-4QR�@- Run autoreconf for aarch64���A��.Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���@��.Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���?c�W.Petr Šabata <contyk@redhat.com> - 0.6.21-1P
�- 0.6.21 bump
- A security bugfixing release (CVE-2012-2812, CVE-2012-2813, CVE-2012-2814,
  CVE-2012-2836, CVE-2012-2837, CVE-2012-2840, CVE-2012-2841 & CVE-2012-2845)
- Drop the pre-generated docs and introduce a doc subpackage
rw�/r���J��/Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���Ic�W/Petr Šabata <contyk@redhat.com> - 0.6.21-1P
�- 0.6.21 bump
- A security bugfixing release (CVE-2012-2812, CVE-2012-2813, CVE-2012-2814,
  CVE-2012-2836, CVE-2012-2837, CVE-2012-2840, CVE-2012-2841 & CVE-2012-2845)
- Drop the pre-generated docs and introduce a doc subpackage���H��/Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.20-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild�'��Gc�m/Petr Sabata <psabata@redhat.com> - 0.6.20-1M�I@- 0.6.20 bump
- Repackaging prehistoric libexif-docs, introducing version string in filename
- Buildroot cleanup���Fi�!.Richard Hughes <rhughes@redhat.com> - 0.6.22-2_�@- Fix CVE-2020-0181, CVE-2020-0198, and CVE-2020-0452
- Resolves: #1902589
0d�lx�0���R��0Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.20-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild�'��Qc�m0Petr Sabata <psabata@redhat.com> - 0.6.20-1M�I@- 0.6.20 bump
- Repackaging prehistoric libexif-docs, introducing version string in filename
- Buildroot cleanup���Pi�!/Richard Hughes <rhughes@redhat.com> - 0.6.22-2_�@- Fix CVE-2020-0181, CVE-2020-0198, and CVE-2020-0452
- Resolves: #1902589g��Ou]/Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.22-1^��@- Upgrade to 0.6.22
- Resolves: #1841316M��N_?/Daniel Mach <dmach@redhat.com> - 0.6.21-6R�U�- Mass rebuild 2014-01-24M��M_?/Daniel Mach <dmach@redhat.com> - 0.6.21-5R�k�- Mass rebuild 2013-12-27R��LcE/Petr Šabata <contyk@redhat.com> - 0.6.21-4QR�@- Run autoreconf for aarch64���K��/Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
D�C�Q�Dg��Yu]0Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.22-1^��@- Upgrade to 0.6.22
- Resolves: #1841316M��X_?0Daniel Mach <dmach@redhat.com> - 0.6.21-6R�U�- Mass rebuild 2014-01-24M��W_?0Daniel Mach <dmach@redhat.com> - 0.6.21-5R�k�- Mass rebuild 2013-12-27R��VcE0Petr Šabata <contyk@redhat.com> - 0.6.21-4QR�@- Run autoreconf for aarch64���U��0Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���T��0Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���Sc�W0Petr Šabata <contyk@redhat.com> - 0.6.21-1P
�- 0.6.21 bump
- A security bugfixing release (CVE-2012-2812, CVE-2012-2813, CVE-2012-2814,
  CVE-2012-2836, CVE-2012-2837, CVE-2012-2840, CVE-2012-2841 & CVE-2012-2845)
- Drop the pre-generated docs and introduce a doc subpackage
rw�/r���^��1Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-2P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���]c�W1Petr Šabata <contyk@redhat.com> - 0.6.21-1P
�- 0.6.21 bump
- A security bugfixing release (CVE-2012-2812, CVE-2012-2813, CVE-2012-2814,
  CVE-2012-2836, CVE-2012-2837, CVE-2012-2840, CVE-2012-2841 & CVE-2012-2845)
- Drop the pre-generated docs and introduce a doc subpackage���\��1Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.20-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild�'��[c�m1Petr Sabata <psabata@redhat.com> - 0.6.20-1M�I@- 0.6.20 bump
- Repackaging prehistoric libexif-docs, introducing version string in filename
- Buildroot cleanup���Zi�!0Richard Hughes <rhughes@redhat.com> - 0.6.22-2_�@- Fix CVE-2020-0181, CVE-2020-0198, and CVE-2020-0452
- Resolves: #1902589
�d�lx��
��ee�12Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���di�!1Richard Hughes <rhughes@redhat.com> - 0.6.22-2_�@- Fix CVE-2020-0181, CVE-2020-0198, and CVE-2020-0452
- Resolves: #1902589g��cu]1Michael Catanzaro <mcatanzaro@redhat.com> - 0.6.22-1^��@- Upgrade to 0.6.22
- Resolves: #1841316M��b_?1Daniel Mach <dmach@redhat.com> - 0.6.21-6R�U�- Mass rebuild 2014-01-24M��a_?1Daniel Mach <dmach@redhat.com> - 0.6.21-5R�k�- Mass rebuild 2013-12-27R��`cE1Petr Šabata <contyk@redhat.com> - 0.6.21-4QR�@- Run autoreconf for aarch64���_��1Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.21-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
�<����g�	�/2systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��f�	�u2systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)#&57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��k��m2systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��j��2systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��i�W2systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��h��q2systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#%bR#xRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������"���b"���c"���d"���g"���l"���m#��n#��q#��v#��y#��z#��}#��#��#��#	��#
��#��#
��
#��#��#��#��#��#��#��#�� #��##��(#��)#��*#��-#��2#��7#��>#��E#��J# ��R#!��Y#"��^##��e#$��g#'��k#)��o#*��q#-��u#.��x#/��z#2��~#3��#4��#7��#8��#<��#=��#>��#A��#B��#C��$#D��'#E��-#F��0#G��5#H��8#I��=#J��A#K��F#L��J#M��N#P��R#Q��U#T��Y#U��\#V��^#Y��b#Z��f#[��h#^��l#_��p#b��t#c��x#d��{#g��#h��#i��#j��#k��#m��#n��#o��#p��!#q��%#r��*#s��2#t��;#u��D#v��M#w��U
���.��
��oe�13Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���n�	�2systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��m�	�'2systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��l�I2systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����q�	�/3systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��p�	�u3systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)#,57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��u��m3systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��t��3systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��s�W3systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��r��q3systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#+
.��.���x�	�3systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��w�	�'3systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��v�I3systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����z�	�/4systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��y�	�u4systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)#157704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��~��m4systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��}��4systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��|�W4systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��{��q4systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#0
���.��
���	�4systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�4systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'4systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I4systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<�����	�/5systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?���	�u5systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)#657704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9����m5systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����5systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���W5systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;����q5systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#5
���.��
���	�5systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�5systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��
�	�'5systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��	�I5systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)

e�r+��V��:��eD�B�
80b9e73c5db5a194278ac3415303dcf5c49c780dae020e15b55a65a9e02f2a56D�A�
c5512bfc8f5d17195d34252e20dd34ef75e390d9bb8a38b30ba8be4e5c0904adD�@�
dcccb19275e44c98b220ff45b313949c6d1e421f5326c9e3d8f568c1ae986c15D�?�
894926755bf0b5caaf2195043acd56dcc5dc992c1c51411a5e923a6e2e1d55cbD�>�
a8d6b71da3251c0921f8f1c9a527fe6468bab3f326f472567681e24f3f9bbd61D�=�
02f065f8fc1a7dad64b3db9dce1c2acf7f0fdb727133ffef1c209fa011adbcd6D�<�
841781e279649ca9fced8e74583d9a30e6d5e96023b689f339cd0c6814f8a746D�;�
30f73d4f8a1abd8421100fbb68de1f107a838a542bb020b5e22316b330a1560cD�:�
f111af81b1171cde02cdf42152cd2cf0b250c9a755cff39952df38908f7a55f8D�9�
126385b940d5f6f201b6b30130139b0125b1d44dc7842c59cc7cbba5a9a4404dD�8�
3aa88d01f6198efa435e94380ac7bb30d03f89a522b7860137a566276cea51c9D�7�
1ee43730cfd6c1751ff45f321c91c0f0965e683e47cb52b91f87ac210ed93c1aD�6�
de11efb648c50dca4022b29c14b4bc06fdcb8f36be5009d20018c917583af9bc#;57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9����m6systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����6systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���W6systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��
��q6systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#:
���.��
���	�6systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�6systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'6systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I6systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
\�(\�;����q7systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#?�.���	�S6systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ���	�76systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)#@57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
�������X���	�'7systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I7systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����m7systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����7systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���W7systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)
�u��� ���	�77systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
���	�7systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�7systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
rMw�Or�X��$�	�'8systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��#�I8systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��"��m8systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��!��8systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.�� �	�S7systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)
�u��� ��'�	�78systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��&�	�8systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���%�	�8systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
0M�.X�0f��-�I9systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��,��m9systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��+��9systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�
��*�	�8systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���)�	�
8systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��(�	�S8systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)
#��
��0�	�9systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���/�	�9systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��.�	�'9systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f��5�I:systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
��4�	�9systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���3�	�
9systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��2�	�S9systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��1�	�79systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��8�	�:systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���7�	�:systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��6�	�':systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���=�	�:systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
��<�	�:systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���;�	�
:systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��:�	�S:systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��9�	�7:systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
�b�����A�	�;systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��@�	�';systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��?�I;systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)���>�	�):systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)
wnI�w�
��F�	�;systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���E�	�
;systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��D�	�S;systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��C�	�7;systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��B�	�;systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)
{l�?{�?��J�	�u<systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��Ie�1<Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���H�	�);systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)���G�	�;systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)
L_�"L�Q��N��<systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��M�W<systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��L��q<systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#N���K�	�/<systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)#O57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
pB��p���R�	�<systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��Q�	�'<systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��P�I<systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��O��m<systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)
q����U�	�/=systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��T�	�u=systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��Se�1=Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)#S57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��Y��m=systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��X��=systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��W�W=systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��V��q=systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#R
.��.���\�	�=systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��[�	�'=systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��Z�I=systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����^�	�/>systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��]�	�u>systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)#X57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��b��m>systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��a��>systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��`�W>systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��_��q>systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#W
���.��
��f�	�>systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���e�	�>systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��d�	�'>systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��c�I>systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����h�	�/?systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��g�	�u?systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)#]57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��l��m?systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��k��?systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��j�W?systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��i��q?systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#\
���.��
��p�	�?systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���o�	�?systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��n�	�'?systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��m�I?systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)#a57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��t��m@systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��s��@systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��r�W@systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��q��q@systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#`
���.��
��x�	�@systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���w�	�@systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��v�	�'@systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��u�I@systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
\�(\�;��{��qAsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17#e�.��z�	�S@systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��y�	�7@systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)#f57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
�������X���	�'Asystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���IAsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��~��mAsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��}��Asystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��|�WAsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)
�u��� ���	�7Asystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
���	�Asystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�Asystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
rMw�Or�X���	�'Bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���IBsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����mBsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����Bsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.���	�SAsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)
�u��� ���	�7Bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��
�	�Bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���	�	�Bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
0M�.X�0f���ICsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����mCsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����Csystemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�
���	�Bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���
�	�
Bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.���	�SBsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)

e�r+��V��:��eD�O�
1db80fc0b7ec4ad66d1f7b86e831c3ed4d4386b1db1558cc7afcecf08ff5184eD�N�
5cf5d9d1af4c78ca14d14daa45c998d5f75484a3ab878d4a4e8caae845ff0c1dD�M�
551d2065c265d1e53d4bec46b49874d3aff2ccc0e5b50f98b64fb49c31c77700D�L�
54d67315041544440edcdc1a784b786f749cce152edd23d3ed953826b64a5b3bD�K�
7ae732734ae47230b9ee78bd90d72d963f85df5663e2f2ce2377f9f040e2ced7D�J�
d91245d56499e00006afb5caef9f595c26917df6d3112f9952a0e2b928994342D�I�
565a99b9e94164785e21e6c316bc072e35df5c03df3267601461e2b96157b0f9D�H�
fc6296617d74745ac75f51e708264f5e77144e1a594d2ddfaadc84e9d9d9624dD�G�
ca42c81542be47ee686bcb3662bdb26e91f2fa0041534bf807e0b9294dcae15aD�F�
1409a93de8f33913e0adaf61bf58a25d2d2e6253e503e532e910519107835c33D�E�
df76a933cd54ed2e60e4eacb34639d343d8e273926033d63c3e9f0090215673eD�D�
c7963550f0e18a7fdd4139bb7942c93b0a9cffc5bec4e5833552b722e442120fD�C�
0d7fa70d37741c62bde710cf842f10260cf261673a4a7408c061b0e28d2bc955
#��
���	�Csystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�Csystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'Csystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f���IDsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
���	�Csystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)����	�
Csystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.���	�SCsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ���	�7Csystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
���	�Dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�Dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'Dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���!�	�Dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
�� �	�Dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)����	�
Dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.���	�SDsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ���	�7Dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
�b�����%�	�Esystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��$�	�'Esystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��#�IEsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)���"�	�)Dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)
wnI�w�
��*�	�Esystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���)�	�
Esystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��(�	�SEsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��'�	�7Esystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��&�	�Esystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)
Il�f��*�I{��2i�FRichard Hughes <rhughes@redhat.com> - 3.28.1-2[#�@- Backport a patch to fix a gnome-shell crash
- Related: #1569295^��1e[FKalev Lember <klember@redhat.com> - 3.28.1-1Z���- Update to 3.28.1
- Resolves: #1569295c��0qYFFlorian Müllner <fmuellner@redhat.com> - 3.26.0-1Y��- Update to 3.26.0
- Related: #1481381^��/e[FKalev Lember <klember@redhat.com> - 3.20.4-1XbW�- Update to 3.20.4
- Resolves: #1387009o��.e}FKalev Lember <klember@redhat.com> - 3.14.1-3W��- Switch to new METAR data provider
- Resolves: #1371550d��-kaFMatthias Clasen <mclasen@redhat.com> - 3.14.1-2Wv[@- Update translations
  Resolves: #1304249���,�	�)Esystemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)���+�	�Esystemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)
	;��A�f�;^��;e[GKalev Lember <klember@redhat.com> - 3.28.1-1Z���- Update to 3.28.1
- Resolves: #1569295c��:qYGFlorian Müllner <fmuellner@redhat.com> - 3.26.0-1Y��- Update to 3.26.0
- Related: #1481381^��9e[GKalev Lember <klember@redhat.com> - 3.20.4-1XbW�- Update to 3.20.4
- Resolves: #1387009o��8e}GKalev Lember <klember@redhat.com> - 3.14.1-3W��- Switch to new METAR data provider
- Resolves: #1371550d��7kaGMatthias Clasen <mclasen@redhat.com> - 3.14.1-2Wv[@- Update translations
  Resolves: #1304249s��6uuFMichael Catanzaro <mcatanzaro@redhat.com> - 3.28.2-4`Y�@- Fix no weather data available
- Resolves: #1938275c��5]mFDavid King <dking@redhat.com> - 3.28.2-3]>�- Fix multilib conflict in subpackage (#1623538){��4o�	FDebarshi Ray <rishi@fedoraproject.org> - 3.28.2-2[l,�- Fix dangling symbolic link to README.md
- Resolves: #1569295^��3e[FKalev Lember <klember@redhat.com> - 3.28.2-1[a��- Update to 3.28.2
- Resolves: #1569295
	��9�Z��c��DqYHFlorian Müllner <fmuellner@redhat.com> - 3.26.0-1Y��- Update to 3.26.0
- Related: #1481381^��Ce[HKalev Lember <klember@redhat.com> - 3.20.4-1XbW�- Update to 3.20.4
- Resolves: #1387009o��Be}HKalev Lember <klember@redhat.com> - 3.14.1-3W��- Switch to new METAR data provider
- Resolves: #1371550d��AkaHMatthias Clasen <mclasen@redhat.com> - 3.14.1-2Wv[@- Update translations
  Resolves: #1304249s��@uuGMichael Catanzaro <mcatanzaro@redhat.com> - 3.28.2-4`Y�@- Fix no weather data available
- Resolves: #1938275c��?]mGDavid King <dking@redhat.com> - 3.28.2-3]>�- Fix multilib conflict in subpackage (#1623538){��>o�	GDebarshi Ray <rishi@fedoraproject.org> - 3.28.2-2[l,�- Fix dangling symbolic link to README.md
- Resolves: #1569295^��=e[GKalev Lember <klember@redhat.com> - 3.28.2-1[a��- Update to 3.28.2
- Resolves: #1569295{��<i�GRichard Hughes <rhughes@redhat.com> - 3.28.1-2[#�@- Backport a patch to fix a gnome-shell crash
- Related: #1569295
	#��>�`��#^��Me[IKalev Lember <klember@redhat.com> - 3.20.4-1XbW�- Update to 3.20.4
- Resolves: #1387009o��Le}IKalev Lember <klember@redhat.com> - 3.14.1-3W��- Switch to new METAR data provider
- Resolves: #1371550d��KkaIMatthias Clasen <mclasen@redhat.com> - 3.14.1-2Wv[@- Update translations
  Resolves: #1304249s��JuuHMichael Catanzaro <mcatanzaro@redhat.com> - 3.28.2-4`Y�@- Fix no weather data available
- Resolves: #1938275c��I]mHDavid King <dking@redhat.com> - 3.28.2-3]>�- Fix multilib conflict in subpackage (#1623538){��Ho�	HDebarshi Ray <rishi@fedoraproject.org> - 3.28.2-2[l,�- Fix dangling symbolic link to README.md
- Resolves: #1569295^��Ge[HKalev Lember <klember@redhat.com> - 3.28.2-1[a��- Update to 3.28.2
- Resolves: #1569295{��Fi�HRichard Hughes <rhughes@redhat.com> - 3.28.1-2[#�@- Backport a patch to fix a gnome-shell crash
- Related: #1569295^��Ee[HKalev Lember <klember@redhat.com> - 3.28.1-1Z���- Update to 3.28.1
- Resolves: #1569295
<�7�V�p�<�8��UY�JJarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274s��TuuIMichael Catanzaro <mcatanzaro@redhat.com> - 3.28.2-4`Y�@- Fix no weather data available
- Resolves: #1938275c��S]mIDavid King <dking@redhat.com> - 3.28.2-3]>�- Fix multilib conflict in subpackage (#1623538){��Ro�	IDebarshi Ray <rishi@fedoraproject.org> - 3.28.2-2[l,�- Fix dangling symbolic link to README.md
- Resolves: #1569295^��Qe[IKalev Lember <klember@redhat.com> - 3.28.2-1[a��- Update to 3.28.2
- Resolves: #1569295{��Pi�IRichard Hughes <rhughes@redhat.com> - 3.28.1-2[#�@- Backport a patch to fix a gnome-shell crash
- Related: #1569295^��Oe[IKalev Lember <klember@redhat.com> - 3.28.1-1Z���- Update to 3.28.1
- Resolves: #1569295c��NqYIFlorian Müllner <fmuellner@redhat.com> - 3.26.0-1Y��- Update to 3.26.0
- Related: #1481381
�p�o��b��[[mJHonggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��Z[�;JHonggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��YY�UJJarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���XY�)JJarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��WY�JJarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���VY�?JJarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426
|q�E��|x��aY�KJarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���`Y�?KJarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��_Y�KJarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���^[�OJHonggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���][�CJHonggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��\[�;JHonggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482
�{������g[�CKHonggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��f[�;KHonggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��e[mKHonggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��d[�;KHonggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��cY�UKJarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���bY�)KJarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541
>g��>�V��mY�ULJarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���lY�)LJarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��kY�LJarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���jY�?LJarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��iY�LJarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���h[�OKHonggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699
�q|�P��8��sY�MJarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���r[�OLHonggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���q[�CLHonggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��p[�;LHonggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��o[mLHonggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��n[�;LHonggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585
�p�o��b��y[mMHonggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��x[�;MHonggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��wY�UMJarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���vY�)MJarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��uY�MJarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���tY�?MJarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426
|q�E��|x��Y�NJarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���~Y�?NJarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��}Y�NJarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���|[�OMHonggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���{[�CMHonggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��z[�;MHonggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482
�{������[�CNHonggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��[�;NHonggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��[mNHonggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��[�;NHonggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��Y�UNJarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���Y�)NJarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541
g�
��o�'OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��o�;OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���[�ONHonggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699
���2��o�wOAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��
o�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��	o�{OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�EOAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��
o�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mOAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��o�;PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���q�OOAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]

e�r+��V��:��eD�\�
ecf00639a05e5928c699eb7451b91c04ef62ea4e3ada1c96ee6c9ba35c065f28D�[�
388aba1b0bdea4684f1db472cbd84cc4331e3d51543a84e076c8c8209113539eD�Z�
6b59b214e1d648dd6450ccf97a6e02143f15dcb331b6d520b32e3390c35df31eD�Y�
3be8775407bc08f4fe54e5628c556d5472f9d4ef0d5b89d29c9c9b634121cb07D�X�
a48861f8b0007e766c5886a948e293f97eb2f45c90d1afc5373722cf5a163b72D�W�
0cad55db6dba2a060d78d5cd109fe110b948f6008192e29b843fe591ffec7fc2D�V�
dbd4fcb28f8cbfd9fb540e8d37c4b83f661fd5b856fa728606339a61f95f4513D�U�
0b0f6b7bf49772aa7d4525fb75fddff1ff77a08c6c3cf4c990c7fcb0fd59a2b9D�T�
a4ed3b8d30ed584009accf96a7436d098f14e555ae10c804f398816146a347e6D�S�
1e9ecb13d56ad5c7fa67acece7a0f89c452b11bad3fc66a7589eb57a67fdb766D�R�
00dbfd02a12975ec58e646015d21c1697f304b58353b1372310d96c80b2903aeD�Q�
4c0fe67802024d085939269a1da54ef7d9c6feea27bc2b6b94c3c64d18835d38D�P�
7bb7db4c0e3b5dbb711a2589b4e752e8fe25c9b73185eaa3eecc00450d613c21
wqxw�|��o�PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wPAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EPAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mPAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��o�'QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���q�OPAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�wQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�EQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A�� o�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��!o�mQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���$q�9QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���#q�OQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���"o�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��'o�RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��&o�{RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��%o�'RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��(o�wRAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��)o�ERAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��*o�RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��+o�mRAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���.q�9RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���-q�ORAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���,o�RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��1o�wSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��0o�SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��/o�{SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��2o�ESAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��3o�SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��4o�mSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���7q�9SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���6q�OSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���5o�SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��:o�TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��9o�{TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��8q�aSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��;o�wTAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��<o�ETAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��=o�TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��>o�mTAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Aq�9TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���@q�OTAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���?o�TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Do�wUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Co�UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��Bq�aTAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Eo�EUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]bR#�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������#y��a#z��g#{��m#|��s#}��y#~��#��#���#���#���#���
#���#���#���#���#���#���#���#���#���#���#��� #���!#���$#���'#���(#���)#���*#���+#���.#���1#���2#���3#���4#���7#���:#���;#���<#���=#���>#���A#���D#���E#���F#���G#���J#���M#���N#���O#���P#���Q#���T#���W#���X#���Y#���Z#���]#���`#���a#���b#���c#���d#���g#���j#���k#���l#���m#���p#���s#���t#���u#�v#Á�w#ā�z#Ł�}#Ɓ�#ǁ�#ȁ�#Ɂ�#ʁ�	#ˁ�
#́�
#́�#΁�#Ё�#с�#ҁ�#Ӂ�#ԁ� #Ձ�"#ց�%#ׁ�(#؁�+#ف�.#ځ�/#ہ�0#܁�3#݁�5
::�A��Fo�UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Go�mUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Jq�9UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Iq�OUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ho�UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��Mo�VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��Lq�	UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Kq�aUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��No�wVAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Oo�EVAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Po�VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Qo�mVAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Tq�9VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Sq�OVAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ro�VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Wo�wWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Vq�	VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Uq�aVAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Xo�EWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Yo�WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Zo�mWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���]q�9WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���\q�OWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���[o�WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��`q�QWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��_q�	WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��^q�aWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��ao�wXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��bo�EXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��co�XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��do�mXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���gq�9XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���fq�OXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���eo�XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��jq�QXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��iq�	XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��hq�aXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��ko�EYAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��lo�YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��mo�mYAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���pq�9YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���oq�OYAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���no�YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��sq�QYAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��rq�	YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��qq�aYAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��tq�YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��uo�EZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��vo�ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��wo�mZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���zq�9ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���yq�OZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���xo�ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��}q�QZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��|q�	ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��{q�aZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��o�[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��~q�ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�m[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��	o�\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��}�
[Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q�[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��
o�m\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���
q�9\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��a�}]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��}�
\Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q�\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD�i�
b4bb4d388af0708a559cf09c5a7fc75ab89a349115729620b72c790f28e7422eD�h�
9ebd06e0dbe03a1b81d2bb45598fa8b2a8423c754eb01c2dc19009b37889af7dD�g�
ac082581e82346ea696427fe38a4a1ad08c1a2f428d21c026da32d80aa0c4cfeD�f�
79b1198c3958d0c5aaf003eb2c5f482ad658aac62e3b7fe05127e6498153d891D�e�
9ddb3989f547bec0175c3f866ce77a6ac4742203e5567fcd03af76e451568f49D�d�
6e22c4b0aee7e9979b7f739d1db74f8609f8f27a72d28c139c4b20648516c712D�c�
3cfc9f52a00f0406e2e427948342a30ca2cd4762712b56ebee9d8bf24018e163D�b�
720ce08cb7d09fef55e566296d6985f0a465fbdb1a66bfda747f53f178f67f3aD�a�
4168f549a1eed91719335c29e0efff79a7747ffbbdf777b56e435e5123a039a7D�`�
0f725b790a384924e7b95b0b06d3009171c8060554b98e9cc285dabe9c324930D�_�
75cdb68690a46ab40f6949579f2ea4df2f3e811398a7dcefb77813e87272e899D�^�
d787f263d801d560eb3933a597fbdb2f4eb89a55b5cd49730ab0dc795715c028D�]�
9c3d41d6041f9bdd8e0938ed6e0638aa29653f13b1631dd40dfbcc0dce9adc28
�T�t��a�	]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��a�]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��g�;]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��c�]]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g�]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�']Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��a�^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��a�}^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��g�w]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t�� a�	^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��"g�;^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��!c�]^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��%g�^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��$g�{^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���#g�'^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��(i�s_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��'i�_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��&g�w^Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��+o�;_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��*k�]_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��)i�	_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��.o�_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��-o�{_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��,o�'_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��/o�w_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��0o�E_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��3i�	`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��2i�s`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��1i�`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��5o�;`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��4k�]`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��8o�`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��7o�{`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��6o�'`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��9o�w`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��:o�E`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��<i�	aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��;i�saAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��>o�;aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��=k�]aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Ao�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��@o�{aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��?o�'aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Bo�waAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Co�EaAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��Ei�sbAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��Do�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��Ho�;bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Gk�]bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Fi�	bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Ko�bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Jo�{bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Io�'bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Lo�wbAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Mo�EbAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��Oi�	cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��No�bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��Qo�;cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Pk�]cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��To�cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��So�{cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Ro�'cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Uo�wcAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Vo�EcAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Wo�cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��Yi�	dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Xo�mcAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��[o�;dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Zk�]dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��^o�dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��]o�{dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��\o�'dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��_o�wdAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��`o�EdAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��ao�dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��bo�mdAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��eo�{eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��do�'eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��co�;eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��go�weAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��fo�eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��ho�EeAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��io�eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��jo�meAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��mo�;fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���lq�OeAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ko�eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��po�fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��oo�{fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��no�'fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��qo�wfAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��ro�EfAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��so�fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��to�mfAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��wo�'gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���vq�OfAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���uo�fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��zo�wgAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��yo�gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��xo�{gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��{o�EgAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��|o�gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��}o�mgAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OgAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���~o�gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��o�hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper targetbR$CRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������#߁�9#��:#��<#��>#��A#��B#��C#��E#��H#��K#��L#��M#��O#��Q#��T#��U#��V#��W#��Y#��[#��^#��_#���`#���a#���b#���e#���g#���h#���i#���j#���m#���p#���q$��r$��s$��t$��w$��z$��{$��|$��}$��$	��$��$��$
��$��$��
$��
$��$��$��$��$��$��$��$��$��$��$�� $��!$��"$��#$ ��&$!��)$"��*$#��+$$��,$%��-$&��0$'��3$(��4$)��5$*��6$+��9$,��<$-��=$.��>$/��?$0��@$1��C$2��F$3��G$4��H$5��I$6��L$7��O$8��P$9��Q$:��R$;��S$<��V$=��Y$>��[$?��\$@��_$A��b$B��e
���2��o�whAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EhAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mhAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���
q�9hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���	q�OhAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��
o�wiAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�EiAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�miAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OiAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��q�aiAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update

e�r+��V��:��eD�v�
33522ef6344e2c23c9585439f96860fbac64c8059e3fafe85e39f00d654826beD�u�
676257fa89a2415e1fed624878b0d5c3f3c334c139f75c44938d08415b9e8b3fD�t�
9c9453260d66b8957dc7fb411913d40ce90346035eda2b58c2f9c759b2125cf7D�s�
0f791fdbdca1788b246815a870b316c43b536133a58c0b7483e09cce243dbf52D�r�
beeb913c932963a0d8888e51c12b07a6993454a38f7ef567a5a56da4208e5949D�q�
f035504bb52e167428211e66d8d1e6057ea84e13f5eb03edf9c7d58b26a52b99D�p�
5df1a4e83ab5135939c23e1037e6d05b3b83a60b3b4a06fb6e85e91959657cbdD�o�
c942cd6a2b252aa88c37729e5753a20d63376cc0d329bdcbc5265806440a4f46D�n�
b1a437d314e4c8a0e5d1e099a8fdbcdb1ff51d9795ce9c175c3bce0b7e4ca564D�m�
4483963c33f057bfcd4b6120dbcefdc634413263eea9af2c988563522cfa5127D�l�
0136b7f5a2716c2969f4dc132e19b7819af04e2aa0c5ba9bd9774ccf09c14e9fD�k�
9b4b4560b2485d70634ad393bde40d05f38c2ecce03135964bdc3876bf556570D�j�
07b1856027333bf98a662c1c5c7b92d2391deb1108f57f3ca5b27d6ee192f7a0
���2��o�wjAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EjAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mjAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OjAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2�� o�wkAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�ajAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��!o�EkAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��"o�kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��#o�mkAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���&q�9kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���%q�OkAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���$o�kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��)o�lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��(q�	kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��'q�akAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��*o�wlAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��+o�ElAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��,o�lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��-o�mlAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���0q�9lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���/q�OlAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���.o�lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��3o�wmAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��2q�	lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��1q�alAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��4o�EmAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��5o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��6o�mmAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���9q�9mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���8q�OmAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���7o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��<q�QmAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��;q�	mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��:q�amAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��=o�wnAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��>o�EnAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��?o�nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��@o�mnAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Cq�9nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Bq�OnAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ao�nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Fq�QnAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Eq�	nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Dq�anAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Go�EoAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ho�oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Io�moAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Lq�9oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Kq�OoAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Jo�oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Oq�QoAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Nq�	oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Mq�aoAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��Pq�oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��Qo�EpAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ro�pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��So�mpAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Vq�9pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Uq�OpAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���To�pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Yq�QpAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Xq�	pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Wq�apAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��[o�qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��Zq�pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��\o�mqAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���_q�9qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���^q�OqAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���]o�qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��bq�QqAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��aq�	qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��`q�aqAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��eo�rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��d}�
qEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��cq�qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��fo�mrAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���iq�9rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���hq�OrAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���go�rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��lq�QrAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��kq�	rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��jq�arAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��oa�}sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��n}�
rEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��mq�rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��ra�	sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��qa�ssAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��pa�sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��tg�;sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��sc�]sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��wg�sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��vg�{sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���ug�'sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��za�tAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��ya�}tAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��xg�wsAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��|a�	tAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��{a�stAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��~g�;tAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��}c�]tAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g�tAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{tAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'tAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��i�suAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�wtAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��o�;uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��
o�uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��	o�{uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wuAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EuAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��i�	vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�svAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��
i�vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��o�;vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wvAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EvAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]

e�r+��V��:��eD��
1a363c8575a8323b1e1cbafa08ba87655572c3b032a755bcf5cf957927fb9a70D��
ec1b22bbbd65cf0d8ac4abc748b4d4e1721149c816440d123ce3d707e25059a8D��
8f22a24548ec519571fd7dcc4779339bb29955be70e289533d286d4069cdfe23D��
3c4ec0f5afdd9b9d8e623857335cfd73d8e86540fe7c74886a0fc678fbf926acD��
b410c0490c2af4f7e5e57b126535f682c43747b4f65ab0c3b8b86259df169293D�~�
2d79f11c74a72adcef4f3407e674947b25332958c8d3722a976ffc2d712fb812D�}�
ca2534fe257e28c069b648a161fddd50d841f1df267a98ca33d8ceea488d83c7D�|�
868a84b5cfeae8a5e75edd91fc853a5ed3490b4de3805f6ff0020f5483875122D�{�
ad1b306ed16dae044e07261f88e7b3e1846b160926009eba1eb3b872ad1d6443D�z�
03701d6e0d843fdfb34d5135af97796623145817df79fabb6a8fb6eed7cfb552D�y�
fb317c790c7775a8cd2becc6286e6028a33743078585cef6e150d0614e34aa17D�x�
4aeb4ec586ae68b258e3a26e5bf455914a1bef9bf96ce52ea53b74decb9d1176D�w�
31f46b22cd82ef4ccbb472cae30cc13508b35a42fe8d5807a5d9fc45b18a830a
�N�x��i�	wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�swAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��o�;wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wwAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EwAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��!i�sxAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A�� o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��$o�;xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��#k�]xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��"i�	xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��'o�xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��&o�{xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��%o�'xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��(o�wxAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��)o�ExAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��+i�	yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��*o�xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��-o�;yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��,k�]yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��0o�yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��/o�{yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��.o�'yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��1o�wyAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��2o�EyAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��3o�yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��5i�	zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��4o�myAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��7o�;zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��6k�]zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��:o�zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��9o�{zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��8o�'zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��;o�wzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��<o�EzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��=o�zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�N|��@m�
{Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927|��?m�
{Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726�-��>o�mzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]bR$�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������$D��i$E��l$F��o$G��r$H��t$I��w$J��z$K��|$L��~$M��$N��$O��$P��
$Q��$R��$S��$T��$U��$V��$W��$Y��$Z��$[��$\��$]��$^��!$_��$$`��'$a��($b��)$c��+$d��-$e��0$f��1$g��2$h��3$i��5$j��7$k��:$l��;$m��<$n��=$o��@$q��G$r��N$s��U$t��\$u��c$v��j$w��q$x��x$y��$z��${��
$|��$}��$��'$���0$���9$���B$���K$���T$���]$���c$���i$���n$���t$���{$���$���	$���$���$���$���!$���#$���($���+$���-$���2$���5$���7$���<$���?$���A$���E$���L$���R$���X$���_$���d$���k$���q$���w$���}$���$���	$���$���
�v������Gm�{Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Fm�{Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Em�{Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Dmu{Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��Cma{Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��Bm�
{Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���Am�{Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347
�{�{�q�o��Nmu|Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��Mma|Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��Lm�
|Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���Km�|Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>��- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��Jm�
|Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927|��Im�
|Robbie Harwood <rharwood@redhat.com> - 1.15.1-41]>�- Update man pages to reference kerberos(7)
- Resolves: #1704726���Hm�{Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492
ez�t�o�e|��Um�
}Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���Tm�}Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��Sm�
}Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927���Rm�|Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Qm�|Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Pm�|Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Om�|Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289
z�$��z���\m�=}Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���[m�}Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��Zm�}Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��Ym�}Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���Xm�}Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��Wmu}Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��Vma}Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726
���v
����cm�~Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���bm�~Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��amu~Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��`ma~Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>��- Install kerberos(7)
- Resolves: #1704726|��_m�
~Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>��- Address some optimized-out memset() calls
- Resolves: #1663506���^m�~Robbie Harwood <rharwood@redhat.com> - 1.15.1-43]>�- Correct kpasswd_server description in krb5.conf(5)
- Resolves: #1498347|��]m�
~Robbie Harwood <rharwood@redhat.com> - 1.15.1-42]>�- Log when non-root ksu authorization fails
- Resolves: #1270927
}}�_�v}���jm�Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��imuRobbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��hmaRobbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726|��gm�
Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506���fm�=~Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���em�~Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��dm�~Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
?}�u�F�?|��qm�
�Robbie Harwood <rharwood@redhat.com> - 1.15.1-44]>�- Address some optimized-out memset() calls
- Resolves: #1663506���pi�Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���oi�;Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���nm�=Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���mm�Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��lm�Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��km�Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492
z�$��z���xm�=�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���wm��Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��vm��Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��um��Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���tm��Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��smu�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>��- Add pkinit_cert_match support
- Resolves: #1656126e��rma�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726
{j�z��{��m��Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��~m��Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���}m��Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289o��|mu�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126e��{ma�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726���zi��Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���yi�;�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319
Z{�L�6�Zo��mu�Robbie Harwood <rharwood@redhat.com> - 1.15.1-46]>�- Add pkinit_cert_match support
- Resolves: #1656126e��ma�Robbie Harwood <rharwood@redhat.com> - 1.15.1-45]>�- Install kerberos(7)
- Resolves: #1704726�
��i�-�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961���i��Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���i�;�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���m�=�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���m��Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492
9z�t�V�9���
i��Julien Rische <jrische@redhat.com> - 1.15.1-54bi0@- Try harder to avoid password change replay errors
- Resolves: #2063163���i�;�Julien Rische <jrische@redhat.com> - 1.15.1-53bN�@- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest
- Resolves: #2066319���m�=�Antonio Torres <antorres@redhat.com> - 1.15.1-51ap�- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
- Resolves: #1997599���
m��Robbie Harwood <rharwood@redhat.com> - 1.15.1-50^��- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492��	m��Robbie Harwood <rharwood@redhat.com> - 1.15.1-49^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492��m��Robbie Harwood <rharwood@redhat.com> - 1.15.1-48^��- Fix LDAP policy enforcement of pw_expiration
- Resolves: #1782492���m��Robbie Harwood <rharwood@redhat.com> - 1.15.1-47^��- Do expiration warnings for all init_creds APIs
- Resolves: #1733289
Aq	�"�;�A������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild[��[_�Tomas Mraz <tmraz@redhat.com> - 1.3.0-2P��@- fix multilib conflict in libksba-configH��[9�Tomas Mraz <tmraz@redhat.com> - 1.3.0-1P��@- new upstream version������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-3P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_RebuildH��[9�Tomas Mraz <tmraz@redhat.com> - 1.2.0-1NJ[�- new upstream versiond��ic�Rex Dieter <rdieter@fedoraproject.org> 1.0.8-3M�{@- libksba-devel multilib conflict (#601976)�
��i�-�Julien Rische <jrische@redhat.com> - 1.15.1-55cjD�- Fix integer overflows in PAC parsing (CVE-2022-42898)
- Resolves: rhbz#2140961
	q�`�R��q[��[_�Tomas Mraz <tmraz@redhat.com> - 1.3.0-2P��@- fix multilib conflict in libksba-configH��[9�Tomas Mraz <tmraz@redhat.com> - 1.3.0-1P��@- new upstream version������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-3P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_RebuildH��[9�Tomas Mraz <tmraz@redhat.com> - 1.2.0-1NJ[�- new upstream versiond��ic�Rex Dieter <rdieter@fedoraproject.org> 1.0.8-3M�{@- libksba-devel multilib conflict (#601976)V��_Q�Jakub Jelen <jjelen@redhat.com> - 1.3.0-6cO�- Fix for CVE-2022-3515 (#2135695)L��]?�Daniel Mach <dmach@redhat.com> - 1.3.0-5R�U�- Mass rebuild 2014-01-24L��]?�Daniel Mach <dmach@redhat.com> - 1.3.0-4R�k�- Mass rebuild 2013-12-27

e�r+��V��:��eD��
4d0e360eff9294623b345353bcf2cb4623c50a3e2bf31ace6ba05141150d85fdD��
359852ce38e0555b23e78c945070ef67c0599138eac0c52de77a819e8fdebce9D��
cec370a7441899c3ffcd47f783a0437d9d649fd4a1252c6c317561f431e537c4D�
�
36ad5a43df60889dd9c1134cb0e042317befa64f7293f44bc91271fddbbfc7e6D��
d5b31f13f3b46bf5b0b92ae49a2422fef7d5c0ecefccc27c7b96a0aae7f7ce31D��
0c8fa4695663226154eeb62875404c38ac8f61913460fe2e8036ae8e76cad75eD�
�
082abb4e91620918c0d5d1da8dfb191f950c793d112a4ac3ec4f2055ca594c68D�	�
d66f8f50f89a80ba6132ad39773812f3a9b5d598db35a63de6e8465c3c7137d8D��
ee580eaecadcceeb9560a23a48c376d9c012f5fee8623d0f10419c273b744065D��
46064f76c45b401ff1197bbdcd32585b704afcef86d2dad3fb76250749b3ef7dD��
b93825bf103f570b5e1032748e404b0d685f2025279cdfd1efbd0506671dd269D��
09f2614aeded0a8d1f7454f0270fe81a129ba048470ed9851001049d758c2a0fD��
02d7a80b905c4425a04fb580f2e9cedea180c37a12f4aebcc804d768f6a12ffd
	>e�k���>[��'[_�Tomas Mraz <tmraz@redhat.com> - 1.3.0-2P��@- fix multilib conflict in libksba-configH��&[9�Tomas Mraz <tmraz@redhat.com> - 1.3.0-1P��@- new upstream version���%���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-3P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���$���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_RebuildH��#[9�Tomas Mraz <tmraz@redhat.com> - 1.2.0-1NJ[�- new upstream versionV��"_Q�Jakub Jelen <jjelen@redhat.com> - 1.3.0-6cO�- Fix for CVE-2022-3515 (#2135695)L��!]?�Daniel Mach <dmach@redhat.com> - 1.3.0-5R�U�- Mass rebuild 2014-01-24L�� ]?�Daniel Mach <dmach@redhat.com> - 1.3.0-4R�k�- Mass rebuild 2013-12-27������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
	Be�k�)�BH��0[9�Tomas Mraz <tmraz@redhat.com> - 1.3.0-1P��@- new upstream version���/���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-3P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���.���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_RebuildH��-[9�Tomas Mraz <tmraz@redhat.com> - 1.2.0-1NJ[�- new upstream versionW��,_S�Jakub Jelen <jjelen@redhat.com> - 1.3.0-7c��- Fix for CVE-2022-47629 (#2161571)V��+_Q�Jakub Jelen <jjelen@redhat.com> - 1.3.0-6cO�- Fix for CVE-2022-3515 (#2135695)L��*]?�Daniel Mach <dmach@redhat.com> - 1.3.0-5R�U�- Mass rebuild 2014-01-24L��)]?�Daniel Mach <dmach@redhat.com> - 1.3.0-4R�k�- Mass rebuild 2013-12-27���(���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
	b��f�I�b���9���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_RebuildH��8[9�Tomas Mraz <tmraz@redhat.com> - 1.2.0-1NJ[�- new upstream versiond��7ic�Rex Dieter <rdieter@fedoraproject.org> 1.0.8-3M�{@- libksba-devel multilib conflict (#601976)W��6_S�Jakub Jelen <jjelen@redhat.com> - 1.3.0-7c��- Fix for CVE-2022-47629 (#2161571)V��5_Q�Jakub Jelen <jjelen@redhat.com> - 1.3.0-6cO�- Fix for CVE-2022-3515 (#2135695)L��4]?�Daniel Mach <dmach@redhat.com> - 1.3.0-5R�U�- Mass rebuild 2014-01-24L��3]?�Daniel Mach <dmach@redhat.com> - 1.3.0-4R�k�- Mass rebuild 2013-12-27���2���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild[��1[_�Tomas Mraz <tmraz@redhat.com> - 1.3.0-2P��@- fix multilib conflict in libksba-config
	qe��%�qH��B[9�Tomas Mraz <tmraz@redhat.com> - 1.2.0-1NJ[�- new upstream versiond��Aic�Rex Dieter <rdieter@fedoraproject.org> 1.0.8-3M�{@- libksba-devel multilib conflict (#601976)V��@_Q�Jakub Jelen <jjelen@redhat.com> - 1.3.0-6cO�- Fix for CVE-2022-3515 (#2135695)L��?]?�Daniel Mach <dmach@redhat.com> - 1.3.0-5R�U�- Mass rebuild 2014-01-24L��>]?�Daniel Mach <dmach@redhat.com> - 1.3.0-4R�k�- Mass rebuild 2013-12-27���=���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild[��<[_�Tomas Mraz <tmraz@redhat.com> - 1.3.0-2P��@- fix multilib conflict in libksba-configH��;[9�Tomas Mraz <tmraz@redhat.com> - 1.3.0-1P��@- new upstream version���:���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-3P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
	>e�~�4��>H��K[9�Tomas Mraz <tmraz@redhat.com> - 1.2.0-1NJ[�- new upstream versionV��J_Q�Jakub Jelen <jjelen@redhat.com> - 1.3.0-6cO�- Fix for CVE-2022-3515 (#2135695)L��I]?�Daniel Mach <dmach@redhat.com> - 1.3.0-5R�U�- Mass rebuild 2014-01-24L��H]?�Daniel Mach <dmach@redhat.com> - 1.3.0-4R�k�- Mass rebuild 2013-12-27���G���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild[��F[_�Tomas Mraz <tmraz@redhat.com> - 1.3.0-2P��@- fix multilib conflict in libksba-configH��E[9�Tomas Mraz <tmraz@redhat.com> - 1.3.0-1P��@- new upstream version���D���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-3P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���C���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
	/e�~�4��/W��T_S�Jakub Jelen <jjelen@redhat.com> - 1.3.0-7c��- Fix for CVE-2022-47629 (#2161571)V��S_Q�Jakub Jelen <jjelen@redhat.com> - 1.3.0-6cO�- Fix for CVE-2022-3515 (#2135695)L��R]?�Daniel Mach <dmach@redhat.com> - 1.3.0-5R�U�- Mass rebuild 2014-01-24L��Q]?�Daniel Mach <dmach@redhat.com> - 1.3.0-4R�k�- Mass rebuild 2013-12-27���P���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild[��O[_�Tomas Mraz <tmraz@redhat.com> - 1.3.0-2P��@- fix multilib conflict in libksba-configH��N[9�Tomas Mraz <tmraz@redhat.com> - 1.3.0-1P��@- new upstream version���M���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-3P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���L���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
	>�~2�8��>V��]_Q�Jakub Jelen <jjelen@redhat.com> - 1.3.0-6cO�- Fix for CVE-2022-3515 (#2135695)L��\]?�Daniel Mach <dmach@redhat.com> - 1.3.0-5R�U�- Mass rebuild 2014-01-24L��[]?�Daniel Mach <dmach@redhat.com> - 1.3.0-4R�k�- Mass rebuild 2013-12-27���Z���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.0-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild[��Y[_�Tomas Mraz <tmraz@redhat.com> - 1.3.0-2P��@- fix multilib conflict in libksba-configH��X[9�Tomas Mraz <tmraz@redhat.com> - 1.3.0-1P��@- new upstream version���W���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-3P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���V���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_RebuildH��U[9�Tomas Mraz <tmraz@redhat.com> - 1.2.0-1NJ[�- new upstream version
t�Cc��t���ci��Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��bi�/�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���ag�A�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��`g�Q�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��_gY�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129W��^_S�Jakub Jelen <jjelen@redhat.com> - 1.3.0-7c��- Fix for CVE-2022-47629 (#2161571)
8`��"�8^��igY�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���hi��Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���gi�5�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��fi��Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��ei�s�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���di�O�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560
� ��1����ni�O�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���mi��Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��li�/�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���kg�A�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��jg�Q�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
:NU�:�:r��te��Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���se�'�Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691���ri��Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���qi�5�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��pi��Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��oi�s�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
GX�7�C�Gz��{c��Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��zc��Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Sambav��yc��Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��xc��Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��wc��Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��vc�c�Jakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x�#��ue�c�Jakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.x
Y���M�Yv��c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��c�c�Jakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x�#��e�c�Jakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.xr��~e��Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���}e�'�Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691`��|e_�Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277
~��&�&~�#��	e�c�Jakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.xr��e��Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���e�'�Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691`��e_�Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277z��c��Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��c��Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Sambav��c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase
�Y�e�m��`��e_�Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277z��c��Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��c��Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Sambav��
c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��
c�c�Jakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x
CvX�7�Cv��c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c��Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��c�c�Jakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x�#��e�c�Jakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.xr��e��Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���e�'�Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691
_��=�_�(��W�{�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��W�%�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��W��Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��Wk�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)`��e_�Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277z��c��Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��c��Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Samba

e�r+��V��:��eD��
1a91953e84dbe2c03ef4d9284debe9f3fd29f808a721e032346b19d8191151ccD��
199c200e85ae57dc217530a09f2172f136c763583a9869d518e3dd7c2a2f3c24D��
b64c66f5d35425a886b1afbcf898922915a06a253e4ec2f2efb169f42dea7125D��
09936061a18c7bf3b0903e9e1994dca141d245478064ada19312d0d78abe44aeD��
ca36fb0f490cdd14f4ed8b6ecf0440998542eaeed3c3985f7357025964231df6D��
7631dec5bfc4f885319322ddf28a8c174bd735138c0021a996ea89b80e010ec4D��
c0a963a27f23cc436b7364ce694e6afe9a0e8d26be17bc8dc816b46fc2e0f261D��
0cff7abce034e9ae5e89bd1f5c50241356dd38507e0c53e17d563453b7923822D��
c10cbe426290ea35692c88e6f4393bef89f510b20d8587b123e03a419891e2a3D��
13f0a70db8c30427ac5dcfc998ed9c2ea98da56b6c4439d62d54bc51fca0c198D��
776a13c05abec92b93e26a3e73b33106410100566b5e395d5a22469f660365abD��
74ba5dbc31e8d072aad83ccc34e693990c0625ce81a367690bc1cc6bbdbdc121D��
2d1f2caacc8bdd289ec4d9a21bbe90c08d63cc088bec34c32f2acb2df58d2761
E�E���!W�I�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A�� W�-�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��W�c�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��#W�m�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��"W�_�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��(W�{�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��'W�%�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��&W��Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��%Wk�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��$g�#�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���+W�I�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��*W�-�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��)W�c�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��-W�m�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��,W�_�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��2W�{�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��1W�%�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��0W��Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��/Wk�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��.g�#�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���5W�I�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��4W�-�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��3W�c�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��7W�m�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��6W�_�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��<W�{�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��;W�%�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��:W��Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��9Wk�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��8g�#�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���?W�I�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��>W�-�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��=W�c�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��AW�m�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��@W�_�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
^�^�/��Eq�o�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-6U��- libpcap now correctly recognizes Netlink datalink type (#1031974)
- fix vlan tagged packet filtering (#1079525)�u��Dq�{�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-5U�@- display also first packet when capturing in cooked mode (#1176612)
- make sure that userland bpf filter interpreter is given snaplen such that size of
  cooked header is account for�&��Cq�]�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-4T}��- disable TPACKET_V3 memory mapped packet capture on AF_PACKET socket, use TPACKET_V2 instead (#1085096)�D��Bg�#�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
�_��(�%�� ��Lq�Q�Michal Ruprich <mruprich@redhat.com> - 14:1.5.3-13b\@- Resolves: #2027937 - libpcap 1.5.3 with distro patch applied writes pcap file with broken pkthdr���Kq��Michal Ruprich <mruprich@redhat.com> - 14:1.5.3-12]8H@- Resolves: #1596834 - Re-enable TPACKET_V3 to fix silent packet dropsv��JE�)�Michal Ruprich - 14:1.5.3-11Y��- Resolves: #1427251 - tcpdump incorrectly shows 0x8100 tag for 802.1ad framesY��IuA�Martin Sehnoutka <msehnout@redhat.com> - 14:1.5.3-10Y��@- Add support for AF_VSOCKX��HsA�Martin Sehnoutka <msehnout@redhat.com> - 14:1.5.3-9Y,
@- Bound packet size to 64kz��Gq��Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-8U�@- make sure that sll header size is accounted for (#1176612)���Fq�I�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-7U��- make sure that netlink monitor interfaces are also properly recognized by tcpdump (#1031974)
,U[��,X��RsA�Martin Sehnoutka <msehnout@redhat.com> - 14:1.5.3-9Y,
@- Bound packet size to 64kz��Qq��Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-8U�@- make sure that sll header size is accounted for (#1176612)���Pq�I�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-7U��- make sure that netlink monitor interfaces are also properly recognized by tcpdump (#1031974)�/��Oq�o�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-6U��- libpcap now correctly recognizes Netlink datalink type (#1031974)
- fix vlan tagged packet filtering (#1079525)�u��Nq�{�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-5U�@- display also first packet when capturing in cooked mode (#1176612)
- make sure that userland bpf filter interpreter is given snaplen such that size of
  cooked header is account for�&��Mq�]�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-4T}��- disable TPACKET_V3 memory mapped packet capture on AF_PACKET socket, use TPACKET_V2 instead (#1085096)
V�)��PV�u��Xq�{�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-5U�@- display also first packet when capturing in cooked mode (#1176612)
- make sure that userland bpf filter interpreter is given snaplen such that size of
  cooked header is account for�&��Wq�]�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-4T}��- disable TPACKET_V3 memory mapped packet capture on AF_PACKET socket, use TPACKET_V2 instead (#1085096)� ��Vq�Q�Michal Ruprich <mruprich@redhat.com> - 14:1.5.3-13b\@- Resolves: #2027937 - libpcap 1.5.3 with distro patch applied writes pcap file with broken pkthdr���Uq��Michal Ruprich <mruprich@redhat.com> - 14:1.5.3-12]8H@- Resolves: #1596834 - Re-enable TPACKET_V3 to fix silent packet dropsv��TE�)�Michal Ruprich - 14:1.5.3-11Y��- Resolves: #1427251 - tcpdump incorrectly shows 0x8100 tag for 802.1ad framesY��SuA�Martin Sehnoutka <msehnout@redhat.com> - 14:1.5.3-10Y��@- Add support for AF_VSOCK
qL�-�t�q���_q��Michal Ruprich <mruprich@redhat.com> - 14:1.5.3-12]8H@- Resolves: #1596834 - Re-enable TPACKET_V3 to fix silent packet dropsv��^E�)�Michal Ruprich - 14:1.5.3-11Y��- Resolves: #1427251 - tcpdump incorrectly shows 0x8100 tag for 802.1ad framesY��]uA�Martin Sehnoutka <msehnout@redhat.com> - 14:1.5.3-10Y��@- Add support for AF_VSOCKX��\sA�Martin Sehnoutka <msehnout@redhat.com> - 14:1.5.3-9Y,
@- Bound packet size to 64kz��[q��Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-8U�@- make sure that sll header size is accounted for (#1176612)���Zq�I�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-7U��- make sure that netlink monitor interfaces are also properly recognized by tcpdump (#1031974)�/��Yq�o�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-6U��- libpcap now correctly recognizes Netlink datalink type (#1031974)
- fix vlan tagged packet filtering (#1079525)
a[��a���dq�I�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-7U��- make sure that netlink monitor interfaces are also properly recognized by tcpdump (#1031974)�/��cq�o�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-6U��- libpcap now correctly recognizes Netlink datalink type (#1031974)
- fix vlan tagged packet filtering (#1079525)�u��bq�{�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-5U�@- display also first packet when capturing in cooked mode (#1176612)
- make sure that userland bpf filter interpreter is given snaplen such that size of
  cooked header is account for�&��aq�]�Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-4T}��- disable TPACKET_V3 memory mapped packet capture on AF_PACKET socket, use TPACKET_V2 instead (#1085096)� ��`q�Q�Michal Ruprich <mruprich@redhat.com> - 14:1.5.3-13b\@- Resolves: #2027937 - libpcap 1.5.3 with distro patch applied writes pcap file with broken pkthdr
d�&�O�!d�8��kY��Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274� ��jq�Q�Michal Ruprich <mruprich@redhat.com> - 14:1.5.3-13b\@- Resolves: #2027937 - libpcap 1.5.3 with distro patch applied writes pcap file with broken pkthdr���iq��Michal Ruprich <mruprich@redhat.com> - 14:1.5.3-12]8H@- Resolves: #1596834 - Re-enable TPACKET_V3 to fix silent packet dropsv��hE�)�Michal Ruprich - 14:1.5.3-11Y��- Resolves: #1427251 - tcpdump incorrectly shows 0x8100 tag for 802.1ad framesY��guA�Martin Sehnoutka <msehnout@redhat.com> - 14:1.5.3-10Y��@- Add support for AF_VSOCKX��fsA�Martin Sehnoutka <msehnout@redhat.com> - 14:1.5.3-9Y,
@- Bound packet size to 64kz��eq��Michal Sekletar <msekleta@redhat.com> - 14:1.5.3-8U�@- make sure that sll header size is accounted for (#1176612)
�p�o��b��q[m�Honggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��p[�;�Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��oY�U�Jarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���nY�)�Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��mY��Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���lY�?�Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426
|q�E��|x��wY��Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���vY�?�Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��uY��Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���t[�O�Honggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���s[�C�Honggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��r[�;�Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482
�{������}[�C�Honggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��|[�;�Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��{[m�Honggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��z[�;�Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��yY�U�Jarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���xY�)�Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541
>g��>�V��Y�U�Jarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���Y�)�Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��Y��Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���Y�?�Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��Y��Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���~[�O�Honggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699
�q|�P����	u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���[�O�Honggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���[�C�Honggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��[�;�Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��[m�Honggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��[�;�Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��
w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�*�
bc430ed0cfd4a663b76358074912057f989f4af493a6909136e70731ba2358deD�)�
730a731598f675b1827b85e2f2a963fb1c75d82ea0eb61e2b544a1c868517c7aD�(�
694e41c94c00e68912502d5f6c5bfde8a366987f5381e5d31b889a6b3928fdf0D�'�
09f598da7d3fbe1d2b05e159dc8f3d04792678621bf6d1f87c0edb4896d550a3D�&�
5a66d5d5dc478ed425ac3150ca54707625780a2e26284391fb1ebfb7924f88e9D�%�
ff496670decb17b290f032a8854f0420ac2848d6b92e9e0df99491a13901a396D�$�
31f3f35c713ad4fecb47ca4bfcba6b22a99a0311e91687edac989c0a717ba2ecD�#�
17cb2cf3a7524082c239fd29082b6e294757fdb6175dc11ee0f7a52fb4e3fd76D�"�
443c9cfc06a5f4f00f7780823a1f4d236782b838c05109edde4737cba50357cbD�!�
2c8b6a3c06bbaf16efe5dda84ccb23687cd29b2f04bf1f640024f805be0dc23bD� �
0f7c4de217d674dd4adcc5ec84c9df840a974061fb940697d0f1d2c3317bca7dD��
564ac561fd3290312c3e833edb5ea883a24d202539893cdb0482247a743750b5D��
8129ad43222a6a88ffa26b7ed5f36d10b1edede7d67aa145c0880eb6d3058828
*&�%�C�*���$u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��#u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��"uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��!u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��� u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��+uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��*u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���)u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��(uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��'w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��&w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��%ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���1u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���0g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��/w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��.ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���-u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��,u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���8u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��7u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��6uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��5u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���4u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��3uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��2w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��?uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��>u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���=u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��<uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��;w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��:w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��9ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Eu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Dg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Cw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Bui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��@u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ku�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Juw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Iu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Fw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ru[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Puw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ow�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Nw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Mui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Yu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Xg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ww��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Vui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Tu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���`u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��_u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��^uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��]u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���\u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��[uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Zw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��fu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��duw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��cw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��bw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��aui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���mu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���lg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��kw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��jui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��hu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��su�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��ruw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��qu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��nw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��{uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��zu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��xuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ww�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��vw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��~ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���}u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��|u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���
u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��
w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��	ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��#uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��"u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���!u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�� uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�7�
c1965ea7b6eac21676014e538803935d779938ef7971d74668df9e5d24b9f56dD�6�
9b8eaf39c60cfcb55b3c1b2bca5d0dd535225e1dcedf7eeb80d3c1241b9c0478D�5�
61f9945c76bfd6399739a4cfc42c3e9b350ca70cec8aab0875d6618d3f45ceceD�4�
f6a468589dc2d68540fefdc5fe28df4e741f1d5c46a396376cd5787d8170a88aD�3�
79d0f0c2a70577d228a2c71fdc289b4a2944b4681bf3f5d79f9b04862f3af683D�2�
3fd5a3ec93bfb1ba9a34a9f68433573b2a39224e618b9e9c02aed4cb89de5c48D�1�
82a64c4e305a429be421cace128685a29a5971da0cb54ac1d883f150b1f92460D�0�
617e115047b71db008189f9a914bce3674313e8fcd3e3ce40564fe69f65c44e1D�/�
9fe65bb70a192bc16ad246fb03daefa211650e429f9834845e0a048fb42253d3D�.�
681f9ded8847701dec6bf5ba7ebdeed4dc1b38b39177a2f1e148695f5ee1b1aaD�-�
6f4280fe77b168975f638489aefbd874e08a1bcc00b9b43792472c51d7f9fb1cD�,�
d0502f4f4281f85dbdfa765998b7f3281933945c8291d40a49d1ba948c4c59c6D�+�
664ee953022453c5e78fe8b0d4d06dc2c1ec406c0d52a232f631aca0f1032abc
Cn�v��C���)u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���(g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��'w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��&ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���%u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��$u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���0u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��/u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��.uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��-u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���,u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��+uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��*w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��7uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��6u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���5u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��4uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��3w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��2w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��1ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���=u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���<g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��;w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��:ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���9u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��8u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Cu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Buw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Au[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���@u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��?uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��>w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ju[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Huw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Gw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Fw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Eui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Qu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Pg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ow��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Nui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Lu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Wu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Vuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Uu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Rw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��_uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��^u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���]u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��\uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��[w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Zw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Yui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���eu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���dg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��cw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��bui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��`u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ku�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��juw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��iu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��fw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ru[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��puw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ow�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��nw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��mui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���yu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���xg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ww��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��vui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��tu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��~uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��}u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���|u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��{uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��zw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���
u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���	u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���!u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��� g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�D�
20865c1814ad86f27c05f9c958a9ea1303c9b5b7762952f4c5f8da12d65f4cceD�C�
207aade4092c5ae2176b6a08df041bef38194b9beb887c0eecd8a4934aecb6c7D�B�
06027d118bc6eda893d13e73a13e75851e1f01cc10ad76d87de54aa42810f00eD�A�
aa3dd48f76695ea199491a446126a20084e82d91243a36c7d1bc1bb4c386dde8D�@�
3f8e4829e35974784aa21e86171e8782ae787788130e87d8098084937f4a1a3bD�?�
e438b29905ef5550f7c5d07e807e9f7f882272fce7c62fc02d8dd31abdf3e759D�>�
b508e84aaf73a34f2d109602c78e906df8eb37fed7c853749929b1c52770464fD�=�
21074e40c8578a4e4a866f138184265b3827027519d1d1574e83df6ea2d30c71D�<�
8a462bdff8ebc77ce5f8cf6eb1d98625e34218cd0b64485d9b9e6e7837d422f7D�;�
6a2860de3c6856a89ddef7db26248c1132d0358c047f0d29f64cddea617e46a6D�:�
c5f6d5239e70240eea7d64dfafd3bbd553f7681f7d2bec1a8ab1298d606ef9d2D�9�
b18f3f7901340c38120aa1a6fa30010d2c8689dacd4c2609ff225ceed2672899D�8�
a2fb51336df10bfeae88e811816e04967399b366dd70cde5a7202cbabb4d0a7f
*&�%�C�*���(u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��'u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��&uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��%u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���$u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��#uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��"w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��/uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��.u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���-u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��,uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��+w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��*w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��)ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���5u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���4g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��3w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��2ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���1u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��0u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���<u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��;u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��:uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��9u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���8u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��7uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��6w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialogbR%RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������$���$$���+$���1$���8$���?$���E$���L$���S$���Y$���`$���g$���m$���t$���{$���$���$���$���$���$���#$���)$�0$Á�7$ā�=$Ł�D$Ɓ�K$ǁ�Q$ȁ�X$Ɂ�_$ʁ�e$ˁ�l$́�s$́�y$΁�$ρ�$Ё�
$с�$ҁ�$Ӂ�!$Ձ�($ց�/$ׁ�5$؁�<$ځ�C$ہ�I$܁�P$݁�W$ށ�]$߁�d$��k$��q$��x$��$��$��$��$��$�� $��'$��-$��4$��;$��A$��H$��O$��U$��\$��c$��i$���p$���w$���}$���$���$���$���$���$���%$���,%��3%��9%��@%��G%��M%��T%��[%��a%��h%	��o%
��u%��|%��%
��	%��%��%��%��$%��+
P�
3�2�Pt��Cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Bu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��@uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��?w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��>w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��=ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Iu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Hg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Gw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Fui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Du�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ou�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Nuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Mu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Jw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Vu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Tuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Sw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Rw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Qui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���]u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���\g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��[w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Zui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Xu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��cu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��buw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��au[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���`u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��_uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��^w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ju[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��huw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��gw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��fw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��eui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���qu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���pg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ow��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��nui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��lu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��wu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��vuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��uu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��rw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��~u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���}u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��|uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��{w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��zw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��yui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��
uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��	u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*��� u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��'uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��&u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���%u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��$uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��#w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��"w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��!ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�Q�
9e5cbf00ba9abdeb4b79e3b7688f06eb0cba3600861f6ba1b8e7589195f4cefeD�P�
0b16a6ff0f8a8988e02b31ad560630c7d2fdc9e63b234cc9a39273f3fc61e146D�O�
e5b7423528cbf9cc19e9723b53e3944ec1bccf375eed6cd5d975ed01325ecce3D�N�
73a913f2c7fb75a15cc3b74e08df90f3afc8fe8e36e918044a3fb407b7cf85e4D�M�
5a559d47a300848514e0aa63937e0ec7ba4d9c80c12f1947a494d7511dac89dcD�L�
bdbf6d455da867729477ffe919b5a9f8f2c11626c5047e6dfe129589a1d1ae99D�K�
5ab6cab7d848d0f73216a7e9da6f5e67da62be1a0f2777afc4314eabbcd350fdD�J�
6fb636bf5fc99a0e0e7c9660b447ddb3de9d1e93eab0350986882884d02c9a69D�I�
d858f3c88588d0a0006133a7b6f5d5b77ff58e2705465cf0c43a798850d97b18D�H�
446b4bb7e11daeccdf09a55cd6a749365497b1d1ce2addc86246a46f9de47af4D�G�
1b815a5f718f4c8aa2b5ff3b119fa6fe64709eeed08150a007a61a3d9d4c50eeD�F�
c76608ef79bd1a9fa553bc282e40bd895ee744ac0f6b7a570796bd2bef414ce2D�E�
39839baa55b7d0e9b82004503792fd5f8c0608ae6d937d375d2febb11a92f830
Cn�v��C���-u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���,g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��+w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��*ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���)u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��(u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���4u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��3u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��2uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��1u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���0u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��/uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��.w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��;uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��:u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���9u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��8uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��7w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��6w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��5ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Au�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���@g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��?w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��>ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���=u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��<u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Gu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Fuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Eu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Bw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Nu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Luw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Kw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Jw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Iui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Uu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Tg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Sw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Rui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Pu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���\u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��[u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Zuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Yu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Vw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��bu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��`uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��_w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��^w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��]ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���iu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���hg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��gw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��fui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��du�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ou�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��nuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��mu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��jw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��vu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��tuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��sw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��rw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��qui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���}u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���|g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��{w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��zui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��xu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��~w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���	u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���
u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���%u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���$g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��#w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��"ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���!u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�� u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�^�
d95478aaa9369b4b49b219aa8aa09278b47ea7f04a2b46280915968e638d861bD�]�
6f13f12c50ed9a62d92967f246f2c8b9f5260a7546412f06126b024aedc1789fD�\�
3cfeeda763854fb5e06228183bd5e587f1bed1e4d625590a6b4ac06187c951b4D�[�
3039329a21200cbbf7463db4cd240372bb1bbd52f6a2f4db0f5c59e224b39a1eD�Z�
4e2af30c8cdafabdbbd71cf0b42194118f3297380446e1e39471402c1358b840D�Y�
21b8e6781d07f056a511706388aa4397ee3bf2578eb1f6455af17956f29b8a3cD�X�
d9319fe4e9861108bb5cec23bad9875cac3e057b9ed2a069db7213681942b7d1D�W�
b0d2ba1dfd6121490fde31684dfddf6d147c4889a36ef69028e8d42e1f5d7ee5D�V�
3a9691f067f58e1bce93011bcff272d08b255c1d950fccd1a5aa734d7f8b7050D�U�
33da9fcfa473611ac5db46a1be964f5a878cd46aa94bc51035801bdb2ee4b266D�T�
6f58c9c348a9dafbd677a7e56cd3f98765ae140f59756077d92d757199b1200aD�S�
a963852de3c08dce84508ca7b9b33ea8adeca40e1239dde2ce1a103e2fe560c2D�R�
7cca95dd2bd890021e0f9bf2eaab7788beef2dbb9ef929b7da82f9d98d4b10fe
*&�%�C�*���,u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��+u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��*uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��)u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���(u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��'uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��&w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��3uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��2u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���1u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��0uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��/w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��.w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��-ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���9u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���8g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��7w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��6ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���5u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��4u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���@u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��?u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��>uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��=u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���<u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��;uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��:w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Fu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Duw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Cw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Bw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Aui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Mu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Lg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Kw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Jui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Hu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Su�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Ruw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Qu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Nw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��[uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Zu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Xuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ww�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Vw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Uui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���au�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���`g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��_w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��^ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���]u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��\u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��gu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��fuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��eu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��bw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��nu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��luw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��kw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��jw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��iui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���uu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���tg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��sw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��rui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��pu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���|u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��{u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��zuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��yu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��vw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��~w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��}ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���	u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��
w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���$u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��#u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��"uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��!u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��� u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��+uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��*u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���)u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��(uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��'w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��&w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��%ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�k�
0546c6b078f73199e92d47749bd83c92594960b191bb14c1adc5fd5996219b74D�j�
dc3a05b48786ae7763cd0966fcd06703e3d056abc82ba14fd98bdd54152fb214D�i�
09de0197c6db452f0fd3f28c21887416beca324b835bd991b0385a41cd819f52D�h�
7cc876a75a07e0764ab0c3b780afa6d07f9464d369cde9a0a7fa0d5514a397e9D�g�
3b6d9c55ef22a3afc1250d7b0a6f4d5e8599880d7982a85aafde17fdd2e4ebeeD�f�
06f1bb2af6f2c2c3b74476a6919d97cc43a92d7d43132345b87af3a3a4aede4bD�e�
3ed9d0bcbc1cf0d2a450b8b6e598051e1c685e052cdab05aeab562c3fbd1094fD�d�
b3ef87449f22bbc11d2c424b6a59ffecab688a083fb9da993f6d7f4994ad29f6D�c�
e248caabcf1382b1871901dc2504fe1b16e85e748d76553c646487a5ac907f1fD�b�
8bc7d7a6d1b39eee668c11eb933d1cb38ebd708d11b2c0b2b1a7891e74af0cfbD�a�
2c6107fda911499372be453221b095232c40415491b307e4b96667feea7e85d8D�`�
4d32b8be0b3416b8c7b225709e77847f3eb420ac65b6a5a1c9c5f7bf13033407D�_�
e40e9974b84165100cfd49afdff81253e38049ca2ba3d57dcdf352538fe84014
Cn�v��C���1u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���0g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��/w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��.ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���-u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��,u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���8u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��7u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��6uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��5u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���4u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��3uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��2w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��?uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��>u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���=u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��<uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��;w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��:w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��9ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Eu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Dg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Cw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Bui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��@u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ku�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Juw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Iu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Fw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ru[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Puw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ow�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Nw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Mui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Yu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Xg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ww��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Vui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Tu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���`u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��_u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��^uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��]u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���\u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��[uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Zw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��fu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��duw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��cw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��bw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��aui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���mu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���lg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��kw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��jui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��hu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��su�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��ruw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��qu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��nw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��{uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��zu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��xuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ww�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��vw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��~ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���}u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��|u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���
u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��
w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��	ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��#uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��"u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���!u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�� uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���)u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���(g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��'w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��&ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���%u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��$u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�x�
1a4b2811d9710ab0cbee6c14d0d65efdfcbc1fb050caa3686160958d16c06337D�w�
41d3b70e19103a25ac6a0a877859dcc9105adf2602d4dea078e3220d5fdcb007D�v�
b4a38f14218c431d03e34c26a134c609d688ef2c83f268f6867bfb1003efcf2bD�u�
a005198937d77a556b2d5c86b03b36028c5cdf485f869c8f661e5bdaeca48381D�t�
3b84e45c8f431e6aced2faecb97912cb424f0373293013c739154621f571ced8D�s�
2db01b2d2f442ec2b3ab438e94ca56bfd13bc67b07ac74f28b1b9d2435418aa5D�r�
a2f70fbdd27181bcd656bbd6bb28222e80496a2d4cef2918f74b66e887b0ad68D�q�
9194142e9ca71c44cbdedac14b2fbe14b54b0a0893096cf32b9783f204b7da87D�p�
851583dc78e98a516586667fe472405624392dbb850b366aac5e87fde83e922eD�o�
c6ee2dc7f4859cf7e741172a64ed8a91fa20379d8b50ae273712fdc3b54f8d59D�n�
6de667e5382d2e35f18b69390c3e03a9e718d8bc403a5db6c6f6072e6bf683c2D�m�
a5dc184a11c5ee57f55ab4b8abbcf391aa3b6bac3960c6f35615716c35d18da3D�l�
4fb46ce209b71d1437ce790ff6339784632c86ff1c34dc42c88780ecc894575d
*&�%�C�*���0u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��/u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��.uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��-u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���,u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��+uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��*w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��7uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��6u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���5u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��4uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��3w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��2w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��1ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���=u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���<g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��;w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��:ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���9u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��8u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Cu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Buw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Au[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���@u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��?uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��>w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ju[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Huw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Gw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Fw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Eui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Qu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Pg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ow��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Nui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Lu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Wu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Vuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Uu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Rw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��_uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��^u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���]u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��\uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��[w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Zw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Yui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���eu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���dg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��cw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��bui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��`u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ku�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��juw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��iu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��fw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ru[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��puw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ow�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��nw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��mui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���yu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���xg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ww��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��vui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��tu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��~uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��}u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���|u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��{uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��zw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���
u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���	u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���!u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��� g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���(u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��'u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��&uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��%u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���$u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��#uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��"w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��/uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��.u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���-u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��,uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��+w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��*w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��)ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD��
5c171ad6a96c5f3feec12d0ec56fecf45cb0e8859deeb78966c227cc21a25217D��
91b3059cb08a4f72259c6d15febbed4bf315c966b9b48ef63e56b900babbfcbcD��
bad44aa372dd71ae7305ec77706bf7df2edd9e52a618230db1ac76a6fb0f5545D��
4b8be9f1166188e6844902fa02e3822fd56edbfd5e5043d22efd3d39bd199f57D��
6eb6b0f0d64dd44ca445beb920426e0a8262e18d4611f37af0bcf266a49e7ba1D��
04eb35414e82fe2433c837b70edc142805f7455f68f171ad1ea43e534a94de83D��
50dd826f883ca6e83a5520159702919e8640813f0006c32d9ce6531b4f92818bD�~�
b66da86b2643b46bd5d193eebb6f236cfdf753506a9c50caf4ed52fc5bce7172D�}�
d828d76b49cd8eef2060250c9dc6bd5cb60ff05970adf2e0352cdffb341700ebD�|�
51c0c235f8ee720c1949dd34f66d66bf7f5b50fe1c37d366fe724ce644b3bee5D�{�
e329f4af5a2d9e0b4ba62a957f0696c7fa7fd5a4fb911f99a4f9f7fc965b46b8D�z�
c636f7b1ee487e382b84fc78e7079b3cdcbe8a18b64dbec20379bad79eb119ddD�y�
423fbdf1d86a2b10618e98f380c62c9e34640a2c7aae29c80960b34008181a8a
Cn�v��C���5u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���4g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��3w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��2ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���1u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��0u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���<u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��;u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��:uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��9u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���8u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��7uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��6w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Bu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��@uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��?w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��>w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��=ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Iu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Hg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Gw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Fui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Du�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ou�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Nuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Mu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Jw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialogbR%}RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������%��8%��?%��E%��L%��S%��Y%��`%��g%��m%��t%��{% ��%!��%"��%#��%$��%%��#%&��)%(��0%)��7%*��=%+��D%,��K%-��Q%.��X%/��_%0��e%1��l%2��s%3��y%4��%5��%6��
%7��%8��%9��!%:��(%;��/%=��5%>��<%?��C%@��I%A��P%C��W%D��]%E��d%F��k%G��q%H��x%I��%J��%K��%L��%M��%N�� %O��'%P��-%R��4%S��;%T��A%U��H%V��O%W��U%X��\%Y��c%Z��i%[��p%\��w%]��}%^��%_��%`��%a��%b��%c��%%d��,%e��3%g��9%h��@%i��G%j��M%k��T%l��[%m��a%n��h%o��o%p��u%q��|%r��%s��	%t��%u��%v��%w��$%x��+%y��1%{��8%|��?
P�
3�2�Pt��Wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Vu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Tuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Sw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Rw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Qui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���]u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���\g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��[w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Zui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Xu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��cu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��buw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��au[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���`u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��_uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��^w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ju[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��huw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��gw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��fw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��eui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���qu�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���pg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ow��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��nui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��lu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���xu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��wu�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��vuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��uu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���tu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��suwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��rw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��~u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���}u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��|uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��{w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��zw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��yuiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��
uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��	u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*��� u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��'uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��&u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���%u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��$uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��#w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��"w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��!uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���-u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���,g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��+w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��*uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���)u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��(u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD��
725f41aabdbe0d99f4ff043c8413b75aec1da746d9c27e7540b090a7120002f3D��
a3ef6e35d2238c250f6554c30556a80122488a92f64edf3c23c04158556120ecD��
324eaa8a27d384658ffb3045f886fe533acdd20ff60a9dad14007b9f07a43205D��
dc4b5c4bfb6d4b6fd4006830469bd40d093d6938603f2fc413c3ff2d54ceaaacD��
8a7f53c7e5c8a77fc603887cb200d840cb724658ff8f2439c41293131f94be82D�
�
3a846ba46e8a41f29b08fc2e10e3f6ea6459d1d57fbe6c19523bf1269d7754ffD��
735a91bac6263309ccf5145f1e264cf16d27bec4da5fc2e9ab42e3b055fc46c5D��
d38a715f8c0b25a49a238ed3f75475a44586f7371a1cb8df82caad826f4dad72D�
�
017388e17ae8a0342ff3283f483c0f92172ac1005e8e97a4c40390e55f78d063D�	�
67dceb0f183dc4e838b1ec1b27236a59cfa08a537707ff6eda2a10c5c9601421D��
d9ee541fc64d9aeaa99ba6171d9a8585ba8c37d8e288b3c6b029f4a1aa292beeD��
74f6bb5bbf891159807474196fe08baee6d2ef51b9508b2bcec100949f6a756bD��
f7f083c13947185b5768e1f009aec9585e1938f2f714b6fe2248b509babb5dbd
*&�%�C�*���4u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��3u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��2uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��1u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���0u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��/uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��.w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��;uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��:u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���9u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��8uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��7w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��6w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��5uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Au�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���@g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��?w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��>uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���=u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��<u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Hu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Gu�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��FuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Eu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Du�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��CuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Bw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Ouw	Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Nu[	Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Mu�	Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Luw	Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Kw�5	Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Jw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��IuiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Uu�-
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Tg�I	Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Sw�	Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Rui	Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Qu�	Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Pu�'	Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���\u�
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��[u�'
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Zuw
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Yu[
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Xu�
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Wuw
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Vw�5
Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��cuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��bu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���au�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��`uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��_w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��^w�
Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��]ui
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���iu�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���hg�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��gw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��fuiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���eu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��du�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���pu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ou�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��nuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��mu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���lu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��kuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��jw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��wuw
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��vu[
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���uu�
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��tuw
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��sw�5
Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��rw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��quiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���}u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���|g�I
Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��{w�
Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��zui
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���yu�
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��xu�'
Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��~w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���	u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���
u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���%u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���$g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��#w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��"uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���!u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�� u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���,u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��+u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��*uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��)u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���(u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��'uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��&w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��3uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��2u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���1u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��0uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��/w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��.w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��-uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD��
c81589b411d434da5e3ce899b20f0ec5f0d89e805bb98654a0220574a6567a5eD��
1fa785144303de32e2279da8e40942e02967bad3724f4de700446c1ac09a1b64D��
bf7de5cc417bd99213c10e8ad8c5772cf6317388fcd795f4c584548f0e6b9c7bD��
9a48d9a5c8ba240b00760f5cdc0080f6ea8fb38b0f044469b34b8ced3f0be6e9D��
5e35c68daaac093d3beb1bdd57551b4b11d68962192494ead3ec78504bd924e9D��
2e69eeedc5aed03c46ec6f8fd3d7d75c65c5f88aef5cacb89a4b23aa19c92d1dD��
c79764e439db44bf5b1a2d07e42ed27562693784744a529c9d1f300ee54145d2D��
26284ef9814e9eefa37f15d0dfb0ddab775cc08083594ba1bd43d0b652f61680D��
8dc48d5e4e60131ad36fe3003497d6d355365e66c85a79b791c2245839838f72D��
0fd4e46db83e6ecf64c063a8c953be3ba857eec99d069a0824fbc7cb3181c25fD��
eb9adb9f6d4141d4d82fd9f2740d41d0ed32fde5148d9e4a3d952f1aedb10a52D��
61e6d58d8d1b2b2be1f5bb1731c99cf450b81b29303d4f3e1c8772d9b04d2bbdD��
79ac9fe0cf39a64255d82fbb10c0d150d68cd88753359d4d13150cbb094c9674
Cn�v��C���9u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���8g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��7w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��6uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���5u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��4u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���@u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��?u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��>uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��=u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���<u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��;uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��:w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��GuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Fu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Eu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��DuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Cw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Bw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��AuiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Mu�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Lg�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Kw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��JuiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Iu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Hu�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Tu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Su�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��RuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Qu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Pu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��OuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Nw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��[uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Zu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Yu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��XuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ww�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Vw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��UuiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���au�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���`g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��_w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��^uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���]u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��\u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���hu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��gu�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��fuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��eu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���du�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��cuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��bw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��ouwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��nu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���mu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��luwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��kw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��jw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��iuiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���uu�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���tg�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��sw�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ruiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���qu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��pu�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���|u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��{u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��zuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��yu[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���xu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��wuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��vw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��~w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��}uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���	u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��
w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���$u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��#u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��"uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��!u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��� u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��+uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��*u[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���)u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��(uwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��'w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��&w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��%uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���1u�- Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���0g�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��/w�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��.uiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���-u�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��,u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�,�
4016c342a85401eac37beabfbb025c514e077802555e329f3f4a77d1a835864fD�+�
656975f5968fdbaba0a643e24529b3b0762ebabec0f92509a22f96017cfcb03eD�*�
a6fbfa63c8d1fd4dd8cfecfeb29858434215394a4e58af6c4ba12e2f82e2a61dD�)�
39769e7385d3d8eb28ca268acbedfd9c29363613ab7fa8b641d5ad4a91230f51D�(�
3268b7dcf19f5e3720d65d039632fa15991336537a37e486e37ed194609102b2D�'�
83b0eba9581758f02b5754034154c3a6a53b89674d90775b537b093b6d1abebfD�&�
2f096012ac594da690f66f1e3c46720188e409c2af7f791c49395822c50dfb6cD�%�
75989f565f1e52c44012dd4948e788f9b6b90cf9a5a649233e43f199a47b4e44D�$�
f138db80a257cdee37382222b7317f2f922c13efffd8d47716c4daff0fb11d68D�#�
af95baddeac54f485e8299cc7cd2301b5e659e0a3c22ea98291b012c8a427d49D�"�
92b645cab65928cc0f32fe9883d7068564a4040ac0faf35c3ee1790142b461a1D�!�
40a0c734dea8e1bcdc12a1fa49951322a06ea7216cf06631e2528d597a596fd7D� �
f69f263757a6c7fcfc52b278211fe2c2f78f053dfb157200b4e1e1a874b400c2
*&�%�C�*���8u� Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��7u�' Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��6uw Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��5u[ Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���4u� Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��3uw Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��2w�5 Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��?uw!Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��>u[!Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���=u�!Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��<uw!Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��;w�5!Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��:w� Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��9ui Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Eu�-"Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Dg�I!Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Cw�!Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Bui!Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Au�!Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��@u�'!Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Lu�"Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ku�'"Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Juw"Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Iu["Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Hu�"Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Guw"Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Fw�5"Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Suw#Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ru[#Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Qu�#Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Puw#Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ow�5#Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Nw�"Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Mui"Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Yu�-$Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Xg�I#Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ww�#Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Vui#Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Uu�#Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Tu�'#Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���`u�$Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��_u�'$Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��^uw$Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��]u[$Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���\u�$Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��[uw$Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Zw�5$Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��guw%Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��fu[%Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���eu�%Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��duw%Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��cw�5%Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��bw�$Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��aui$Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���mu�-&Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���lg�I%Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��kw�%Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��jui%Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���iu�%Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��hu�'%Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���tu�&Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��su�'&Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��ruw&Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��qu[&Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���pu�&Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��ouw&Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��nw�5&Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��{uw'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��zu['Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���yu�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��xuw'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ww�5'Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��vw�&Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uui&Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-(Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I'Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�'Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��~ui'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���}u�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��|u�''Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�(Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'(Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw(Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[(Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�(Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw(Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5(Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw)Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[)Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���
u�)Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw)Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5)Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��
w�(Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��	ui(Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-*Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I)Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�)Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui)Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�)Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�')Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�*Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'*Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw*Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[*Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�*Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw*Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5*Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��#uw+Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��"u[+Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���!u�+Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�� uw+Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5+Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�*Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui*Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���)u�-,Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���(g�I+Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��'w�+Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��&ui+Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���%u�+Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��$u�'+Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���0u�,Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��/u�',Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��.uw,Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��-u[,Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���,u�,Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��+uw,Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��*w�5,Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��7uw-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��6u[-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���5u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��4uw-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��3w�5-Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��2w�,Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��1ui,Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�9�
7c7eaf7933e4baf3cf7625220da22e524fe3ed89a2e6b6796e753638c6af6de5D�8�
27630533e7ce471a5218ba93882e15e857abb3262a57b550aa04a27de283e57aD�7�
fc069c671947a77de565e36b545682f1a73f32c53725d79715125c1c12e518d0D�6�
fc0d3c5609c739acc6d67bf0bff0c3ce7d1a05383836701bcb21e55aea34acefD�5�
61dc6bb4a8a0afa5abfca5dbd6cc89799609dd46cb583de0e51dde496c7b2a30D�4�
e964887b330c27510a0b5b1eb8c31a8c5eda05bde74e42a145bea54bb240d335D�3�
48733bcb59a63cace889d40e1387badbc9621da7fad0ddcd0d198e83f214e41fD�2�
f6f4af57d47fdebdd0de45acce2777a89181f31063e8511ded23c672de57fe99D�1�
757cbedb5a1d0d38a9479759f8661ec2fc0853efaf4ef184a79a5f96ef5b7a8eD�0�
22218edd785c94ee6fbbe5ded89195ece5e0450abc17b7afb225b4677b79f3f1D�/�
e311decc49b7ee2360283ef4b0704bc4c8dc2c2628d70e47cfff25b1e8583f72D�.�
1c826c2145a30350f476ab5a9a6151bd349415c6cab19956813fffb3b864a331D�-�
e17a8027f3820da82d6b20358ef0d2e8fb3c334ec7632d5262a93004b4cf2fbf
Cn�v��C���=u�-.Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���<g�I-Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��;w�-Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��:ui-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���9u�-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��8u�'-Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Du�.Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Cu�'.Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Buw.Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Au[.Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���@u�.Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��?uw.Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��>w�5.Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Kuw/Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ju[/Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Iu�/Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Huw/Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Gw�5/Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Fw�.Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Eui.Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Qu�-0Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Pg�I/Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ow�/Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Nui/Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Mu�/Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Lu�'/Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Xu�0Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Wu�'0Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Vuw0Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Uu[0Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Tu�0Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Suw0Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Rw�50Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��_uw1Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��^u[1Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���]u�1Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��\uw1Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��[w�51Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Zw�0Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Yui0Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���eu�-2Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���dg�I1Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��cw�1Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��bui1Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���au�1Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��`u�'1Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���lu�2Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ku�'2Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��juw2Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��iu[2Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���hu�2Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��guw2Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��fw�52Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��suw3Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ru[3Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���qu�3Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��puw3Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ow�53Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��nw�2Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��mui2Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���yu�-4Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���xg�I3Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ww�3Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��vui3Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���uu�3Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��tu�'3Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�4Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'4Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��~uw4Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��}u[4Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���|u�4Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��{uw4Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��zw�54Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw5Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[5Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�5Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw5Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�55Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�4Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui4Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���
u�-6Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I5Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
ui5Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���	u�5Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'5Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�6Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'6Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw6Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[6Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�6Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw6Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�56Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw7Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[7Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�7Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw7Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�57Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�6Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui6Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���!u�-8Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��� g�I7Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�7Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui7Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�7Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'7Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���(u�8Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��'u�'8Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��&uw8Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��%u[8Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���$u�8Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��#uw8Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��"w�58Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��/uw9Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��.u[9Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���-u�9Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��,uw9Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��+w�59Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��*w�8Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��)ui8Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���5u�-:Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���4g�I9Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��3w�9Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��2ui9Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���1u�9Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��0u�'9Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�F�
b6052b91db5ed4e063fd850d975d05689cc9b1996c06638c4d251659b128c9acD�E�
d4fd0adcfbd04fb5365175b9d356f5d3f697870607c655b2853cc010c8514ce7D�D�
5b93e870e57b80682109021a45ee40d59a50ca460b054a2fdff648fe118c7ec0D�C�
07e3f6b9b256a115590234dc0183bcf39f3cd1e274bd4d7506c4ae4992f8adedD�B�
9d8f6d50998e1ddcbcad83e5a929b89aebdccffb0d09afca0a5d451591034494D�A�
8bcc89f7bef113e056e226e9e5c3e3be2396e0d1fa312a4a061ee85ad8c52a3aD�@�
6db6194f7a398d0d7abc7755a2f9fc2b6887cd20921eaa12f12ae087c8d48816D�?�
97de078974c76f22114377981f82fac9312b4ce5e781ef81172b4cf2d22a8cf2D�>�
8c834bac2f30be752f112c1cc6098fa621dd2400df835b51ee13e22bd5c05807D�=�
3d48adfd65237fbd521c95fe26d5d4f17e03f7af968c2b5cd036e099d635d188D�<�
61679ab7934366aedce5be340b71089ee0a1460bac5c95cb884fc6059f1bb7a1D�;�
5578da34b6bdd59f584a7e2baf29876c99b00d2684ede1967f37ca2d95b787a3D�:�
a056997b96782b4b457a7404dada83836f46133ac10579459e04c22a64697b3f
*&�%�C�*���<u�:Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��;u�':Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��:uw:Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��9u[:Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���8u�:Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��7uw:Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��6w�5:Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Cuw;Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Bu[;Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Au�;Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��@uw;Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��?w�5;Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��>w�:Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��=ui:Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Iu�-<Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Hg�I;Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Gw�;Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Fui;Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Eu�;Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Du�';Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Pu�<Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ou�'<Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Nuw<Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Mu[<Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Lu�<Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Kuw<Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Jw�5<Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Wuw=Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Vu[=Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Uu�=Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Tuw=Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Sw�5=Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Rw�<Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Qui<Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���]u�->Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���\g�I=Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��[w�=Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Zui=Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Yu�=Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Xu�'=Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���du�>Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��cu�'>Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��buw>Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��au[>Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���`u�>Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��_uw>Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��^w�5>Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialogbR%�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������%~��L%��S%���Y%���`%���g%���m%���t%���{%���%���%���%���%���%���#%���)%���0%���7%���=%���D%���K%���Q%���X%���_%���e%���l%���s%���y%���%���%���
%���%���%���!%���(%���/%���5%���<%���C%���I%���P%���W%���]%���d%���k%���q%���x%���%���%���%���%���%��� %���'%���-%���4%���;%���A%���H%���O%���U%���\%���c%���i%���p%�w%Á�}%ā�%Ł�%Ɓ�%ǁ�%ȁ�%Ɂ�%%ʁ�,%ˁ�3%́�9%΁�@%ρ�G%Ё�M%с�T%ҁ�[%Ӂ�a%ԁ�h%Ձ�o%ց�u%ׁ�|%؁�%ف�	%ځ�%ہ�%܁�%݁�$%ށ�+%߁�1%��8%��?%��E%��L%��S
P�
3�2�Pt��kuw?Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ju[?Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���iu�?Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��huw?Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��gw�5?Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��fw�>Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��eui>Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���qu�-@Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���pg�I?Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ow�?Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��nui?Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���mu�?Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��lu�'?Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���xu�@Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��wu�'@Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��vuw@Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��uu[@Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���tu�@Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��suw@Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��rw�5@Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwACaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��~u[ACaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���}u�ACaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��|uwACaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��{w�5AStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��zw�@Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��yui@Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-BCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IAEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�AStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiACaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�ACaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'ACaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�BCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'BCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��
uwBCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��	u[BCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�BCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwBCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5BStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwCCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[CCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�CCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwCCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5CStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�BStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
uiBCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-DCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�ICEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�CStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiCCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�CCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'CCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*��� u�DCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'DCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwDCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[DCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�DCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwDCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5DStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��'uwECaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��&u[ECaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���%u�ECaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��$uwECaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��#w�5EStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��"w�DStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��!uiDCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���-u�-FCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���,g�IEEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��+w�EStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��*uiECaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���)u�ECaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��(u�'ECaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���4u�FCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��3u�'FCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��2uwFCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��1u[FCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���0u�FCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��/uwFCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��.w�5FStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��;uwGCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��:u[GCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���9u�GCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��8uwGCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��7w�5GStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��6w�FStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��5uiFCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�S�
058ac0bdef709238810c53bb5fa0fcf0b4843e91d77920ccea506da4114aed3cD�R�
1563224cd55060ababda0629baf763138a4b5c22b82b6494721b272e3e38a000D�Q�
d93864058f944550d1b6bcace4755bf6917cc80f773596ac1296ac0c13f00336D�P�
c1d7e786bf4c095d0ce6ba44863e3fa1e5626c2c14307901e7bcd56c8a589876D�O�
f74b0b973f9171904ea286136bf82b4154a2d8121fb7508c2e3a8285485f2f48D�N�
36100cd15f92cdafbc93a99d22267147437baa08033156354f656dfc64b59e9eD�M�
390e0d90e7a686457526470783a48fb4b4555c09798e0576afd065c0488356b9D�L�
30d47ccf8c6af77d81b8e9bb9bbeb51114e301cd9a47a8f37a3077a6b1bb08a8D�K�
6889ca4b0900ba23876bca7cf204adce1bfd41a09d82a67b81254773908cb5d0D�J�
6251257e2c5253fdfcba671ae6cb37b06e73d7cd02051442ae5fe2d66a63df83D�I�
0b115d54c14e78f3f59d84b00407c9b0d58b5c274afa2b7f993667bb66f3f8e8D�H�
bd4f5d655ba5a25030d453a042ac28a2d723812f5dde3bd8ab1a817e87237f97D�G�
12b6c2912b246899401394c661b0f6d550c810ec67c1a013c5686bebca186c0a
Cn�v��C���Au�-HCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���@g�IGEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��?w�GStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��>uiGCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���=u�GCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��<u�'GCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Hu�HCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Gu�'HCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��FuwHCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Eu[HCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Du�HCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��CuwHCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Bw�5HStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��OuwICaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Nu[ICaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Mu�ICaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��LuwICaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Kw�5IStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Jw�HStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��IuiHCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Uu�-JCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Tg�IIEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Sw�IStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��RuiICaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Qu�ICaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Pu�'ICaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���\u�JCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��[u�'JCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��ZuwJCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Yu[JCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Xu�JCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��WuwJCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Vw�5JStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��cuwKCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��bu[KCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���au�KCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��`uwKCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��_w�5KStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��^w�JStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��]uiJCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���iu�-LCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���hg�IKEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��gw�KStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��fuiKCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���eu�KCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��du�'KCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���pu�LCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ou�'LCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��nuwLCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��mu[LCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���lu�LCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��kuwLCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��jw�5LStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��wuwMCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��vu[MCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���uu�MCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��tuwMCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��sw�5MStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��rw�LStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��quiLCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���}u�-NCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���|g�IMEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��{w�MStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��zuiMCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���yu�MCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��xu�'MCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�NCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'NCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwNCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[NCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�NCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwNCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��~w�5NStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwOCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[OCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���	u�OCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwOCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5OStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�NStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiNCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-PCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IOEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�OStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiOCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���
u�OCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'OCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�PCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'PCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwPCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[PCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�PCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwPCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5PStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwQCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[QCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�QCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwQCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5QStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�PStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiPCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���%u�-RCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���$g�IQEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��#w�QStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��"uiQCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���!u�QCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�� u�'QCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���,u�RCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��+u�'RCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��*uwRCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��)u[RCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���(u�RCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��'uwRCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��&w�5RStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��3uwSCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��2u[SCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���1u�SCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��0uwSCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��/w�5SStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��.w�RStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��-uiRCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���9u�-TCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���8g�ISEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��7w�SStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��6uiSCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���5u�SCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��4u�'SCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�`�
0f9b27fa945a2929eef54b26fe1fa8010d7cbd461cd3c645fb8cc62de85d5a8bD�_�
cbdf552514fc3c8f3e787e174fe5b17897007c1d1e76bf0565f3c48969b03d86D�^�
a03be94a199377cb1c5614368a415c0540f04e2d6bc74e7bfbe1a1dd0c525128D�]�
afb7e36e5aaec8646bbdfa039bbfe6972eb157211104d1286ea36f29c07af0fbD�\�
dc5b0b3c78dcae2b3bf5f5c9dcbcf24534372b9e13c9464c300a0017948eaf99D�[�
0dc167d2f05541662cc1bfe1773d78ea0566b4fae06130399f47b0f01f34e177D�Z�
2663e6a78d254c25af0632b96caa6ae85c1a93cf308dc522b9e8bfaa334d9f2eD�Y�
6597772d1fa9bdcbb982220b4e56bd13fb3a65b1ccdee0a911f8e5af3f58d188D�X�
1cb47e9ddc0c4d017161325b321b5a50d4645ac07758b0d9cc09ce6180bce014D�W�
4bd28dce0b162f8a2da3d74b80a28f0bed475feb3b13bc07076dbd9447d2deaaD�V�
15dbef5a2991f085e58a23e6a7047ea54e528a6f93b07a28839c0b6e3ed48c5eD�U�
e53316518deaff6343f609e95cac017e8bde5012d97256307e5dfb033e102c0fD�T�
f062b9d33e6eee164c17233ffc747844edad4fb3865de2b1c409d81837aff544
*&�%�C�*���@u�TCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��?u�'TCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��>uwTCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��=u[TCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���<u�TCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��;uwTCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��:w�5TStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��GuwUCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Fu[UCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Eu�UCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��DuwUCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Cw�5UStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Bw�TStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��AuiTCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Mu�-VCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Lg�IUEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Kw�UStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��JuiUCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Iu�UCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Hu�'UCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Tu�VCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Su�'VCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��RuwVCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Qu[VCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Pu�VCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��OuwVCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Nw�5VStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��[uwWCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Zu[WCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Yu�WCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��XuwWCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ww�5WStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Vw�VStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��UuiVCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���au�-XCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���`g�IWEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��_w�WStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��^uiWCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���]u�WCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��\u�'WCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���hu�XCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��gu�'XCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��fuwXCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��eu[XCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���du�XCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��cuwXCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��bw�5XStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��ouwYCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��nu[YCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���mu�YCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��luwYCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��kw�5YStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��jw�XStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��iuiXCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���uu�-ZCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���tg�IYEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��sw�YStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ruiYCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���qu�YCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��pu�'YCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���|u�ZCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��{u�'ZCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��zuwZCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��yu[ZCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���xu�ZCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��wuwZCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��vw�5ZStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5[Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��~w�ZStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��}uiZCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���	u�-\Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I[Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�[Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�\Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'\Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw\Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[\Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�\Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw\Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��
w�5\Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw]Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[]Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�]Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw]Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5]Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�\Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui\Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-^Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I]Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�]Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui]Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�]Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�']Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���$u�^Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��#u�'^Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��"uw^Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��!u[^Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��� u�^Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw^Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5^Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��+uw_Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��*u[_Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���)u�_Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��(uw_Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��'w�5_Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��&w�^Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��%ui^Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���1u�-`Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���0g�I_Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��/w�_Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��.ui_Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���-u�_Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��,u�'_Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���8u�`Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��7u�'`Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��6uw`Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��5u[`Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���4u�`Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��3uw`Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��2w�5`Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��?uwaCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��>u[aCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���=u�aCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��<uwaCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��;w�5aStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��:w�`Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��9ui`Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�m�
11803c3ea95efe8e996c12cad83271ef43838dbf25dae72ab9afc3954d65639bD�l�
8090afe9c1843d71bfe8d10d6b4076aea3559e86d8fa4c232dee54817c5b76fbD�k�
63bb7c514d317f810847e161cd7afb196f824e9b410a73c8e0ce05df376c310aD�j�
3650ca3ecdb13198b3e14e49b52b7dd911c3839ba77826f5b2dbd315026cc82fD�i�
ad6e6798e24fe8a37ac1aed9a3116bcf96b19cb797d6e59a4cbc7979cc334522D�h�
cdfa438ee0d5eaf9ebf066c879fea0ad0e14ef3381353d9d8a8f249ff220b2afD�g�
3fe9c9d1c5627efcbd130b935885968a811be55b5028953a858e8517243e5d5aD�f�
08fe4123c9f2d5699c800a7e884d1f8f6958f6ec8448ac152f214735fd9ba5f9D�e�
25e553164777a8317ea8977d7a80cabc995d717d2c470f08b6c043bdce419cd6D�d�
4598ab08f211c59a2ee7f9d85a2e2c7a4f7b8845e0d7ac7dbfbb570230111cf0D�c�
beef6f9a15afb17e466001549c5ab96b1b00d12812239114ab0ee733cba615f3D�b�
d04f4f2c802e659ebc50e30c425e08c36096ac47223dc795afdd8d19c31aeed9D�a�
f6c41df4e2079f35e9de7d6585897bf99e364b1eb18aa9ec79d9e20b9766f5e4
Cn�v��C���Eu�-bCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Dg�IaEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Cw�aStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��BuiaCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Au�aCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��@u�'aCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Lu�bCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ku�'bCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��JuwbCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Iu[bCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Hu�bCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��GuwbCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Fw�5bStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��SuwcCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ru[cCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Qu�cCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��PuwcCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ow�5cStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Nw�bStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��MuibCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Yu�-dCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Xg�IcEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ww�cStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��VuicCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Uu�cCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Tu�'cCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���`u�dCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��_u�'dCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��^uwdCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��]u[dCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���\u�dCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��[uwdCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Zw�5dStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��guweCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��fu[eCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���eu�eCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��duweCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��cw�5eStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��bw�dStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��auidCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���mu�-fCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���lg�IeEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��kw�eStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��juieCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���iu�eCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��hu�'eCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���tu�fCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��su�'fCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��ruwfCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��qu[fCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���pu�fCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��ouwfCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��nw�5fStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��{uwgCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��zu[gCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���yu�gCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��xuwgCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ww�5gStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��vw�fStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uuifCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-hCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IgEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�gStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��~uigCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���}u�gCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��|u�'gCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�hCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'hCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwhCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[hCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�hCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwhCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5hStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[iCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���
u�iCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5iStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��
w�hStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��	uihCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-jCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IiEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�iStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�iCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'iCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�jCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'jCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwjCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[jCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�jCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwjCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5jStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��#uwkCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��"u[kCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���!u�kCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�� uwkCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5kStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�jStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uijCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���)u�-lCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���(g�IkEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��'w�kStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��&uikCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���%u�kCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��$u�'kCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���0u�lCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��/u�'lCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��.uwlCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��-u[lCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���,u�lCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��+uwlCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��*w�5lStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��7uwmCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��6u[mCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���5u�mCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��4uwmCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��3w�5mStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��2w�lStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��1uilCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���=u�-nCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���<g�ImEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��;w�mStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��:uimCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���9u�mCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��8u�'mCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�z�
34269e92e56a1ed2e47570b48ed01530719dca4cb561baa301db389d679afdb1D�y�
b909289acabf305cfeb8f77f4351ab4fa67c1a023c392ae4e326c32ba911376bD�x�
946e0d4202b53b3b065d23a43e6a5a0a32f61836c1b7305ec2a65d63b2fa48d0D�w�
767a5d433dc92613d0cab0185b37f0fa6590e1823a9bc7f2ece1abc592069bd5D�v�
400558346b5b54b33a80390a5849a1a330722cdff9436c07acf3e168b477330eD�u�
237720a4e9199e2738ab3196d8e7c59b9fa4ba4d4dfc2395b09b8670e45f802cD�t�
fb54396129c15361020a0307c4dd42f46da87f1c0a0841e0d0ee3ee404ce59bdD�s�
687ed68537f2f9b2bc7c1f4aa45d061f8e36a38d93c1b7144cf2b6e35157001eD�r�
353fc523cad5efc4cbbcfc1283eb522f0f97dcaeacf8fed02b5b71b895fe4f26D�q�
637d3a56cc4d58c44384c03a0e5fd138ce60d2aafd7d584dd7f66e53cbeb3049D�p�
80390bf3a08ba0f650c404d34722110ba6e30e0aa373d82bb1bc2d8d2d7d31baD�o�
b3c269833837e02c07b59ed5f8a0595794f5ae6d92b3d90ba420bd82eed56ffcD�n�
1dcf380a319a132c90457bf82f10d67e9fb2f0795535e4a430c15eba981edeef
*&�%�C�*���Du�nCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Cu�'nCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��BuwnCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Au[nCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���@u�nCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��?uwnCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��>w�5nStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��KuwoCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ju[oCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Iu�oCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��HuwoCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Gw�5oStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Fw�nStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��EuinCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Qu�-pCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Pg�IoEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ow�oStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��NuioCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Mu�oCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Lu�'oCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Xu�pCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Wu�'pCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��VuwpCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Uu[pCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Tu�pCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��SuwpCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Rw�5pStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��_uwqCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��^u[qCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���]u�qCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��\uwqCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��[w�5qStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Zw�pStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��YuipCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���eu�-rCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���dg�IqEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��cw�qStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��buiqCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���au�qCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��`u�'qCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���lu�rCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ku�'rCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��juwrCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��iu[rCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���hu�rCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��guwrCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��fw�5rStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��suwsCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ru[sCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���qu�sCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��puwsCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ow�5sStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��nw�rStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��muirCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���yu�-tCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���xg�IsEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ww�sStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��vuisCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���uu�sCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��tu�'sCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�tCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'tCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��~uwtCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��}u[tCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���|u�tCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��{uwtCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��zw�5tStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwuCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[uCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�uCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwuCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5uStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�tStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uitCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���
u�-vCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�IuEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�uStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
uiuCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���	u�uCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'uCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u�vCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'vCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uwvCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[vCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�vCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwvCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5vStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uwwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[wCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u�wCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uwwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5wStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w�vStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uivCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���!u�-xCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��� g�IwEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w�wStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uiwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u�wCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'wCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���(u�xCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��'u�'xCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��&uwxCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��%u[xCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���$u�xCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��#uwxCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��"w�5xStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��/uwyCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��.u[yCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���-u�yCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��,uwyCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��+w�5yStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��*w�xStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��)uixCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���5u�-zCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���4g�IyEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��3w�yStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��2uiyCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���1u�yCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��0u�'yCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���<u�zCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��;u�'zCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��:uwzCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��9u[zCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���8u�zCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��7uwzCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��6w�5zStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Cuw{Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Bu[{Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Au�{Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��@uw{Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��?w�5{Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��>w�zStephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��=uizCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD��
55ad97e23070c92807ae6019da970533404496ea9c55b2581bb34f2be3b54cd0D��
beaba5748ba50e7e5eb175940f2356990aa23d1176560268068ee630c38f3953D��
7a0d7cf0562ad8c11ff90029a2c2cd9fd83de148afbd1a8db3fb79e0d11ffbfaD��
e71a307c1ef8b62e83a97e331815cedb4e6c75a9c53468d64a42013fc4038c08D��
16e1a4a30424173e656cc48c68ae55bac63aeb586b1cd0e94eca634d8e1f153eD��
70ab660529559dbc0857824877d03fb7953ba5e86fde837ba44bd5f6d5ee3adfD��
93506197bcd7012844761bc83df82a2fa27d417449b0cc8377a4f2fa84277d60D��
95534a4322ef4fc7dfa9b623b1de5cd5d0d72c43f81f18b07d085100fc928858D��
61ec12fb0832b09ad331cdf362aebd011e7d319697b112abc7430ee0ffc4bcdbD�~�
e81e2d49de42c4084b831416da43610e82111f1e2bf57b09c2cfecdedc32e6d9D�}�
bb264f253989b30cd12094f3d2e34773de2ffb9f77472b7bd12673eb092157aeD�|�
033cc5d8ff989f638033f0a6af82cb11c2d68d26fc602668a0a4c9673a09ef9cD�{�
a8415679884139db5b73792b19bc658a4e15f201e4f2b05c40f0e3f88e5e9a96
Cn�v��C���Iu�-|Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Hg�I{Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Gw�{Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Fui{Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Eu�{Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Du�'{Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Pu�|Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ou�'|Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Nuw|Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Mu[|Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Lu�|Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Kuw|Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Jw�5|Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Wuw}Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Vu[}Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Uu�}Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Tuw}Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Sw�5}Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Rw�|Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Qui|Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���]u�-~Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���\g�I}Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��[w�}Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Zui}Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Yu�}Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Xu�'}Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���du�~Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��cu�'~Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��buw~Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��au[~Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���`u�~Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��_uw~Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��^w�5~Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��kuwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ju[Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���iu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��huwCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��gw�5Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��fw�~Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��eui~Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���qu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���pg�IEike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ow�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��nuiCaolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���mu�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��lu�'Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��wu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��vuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��uu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��rw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialogbR&ORY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������%��`%��g%��m%��t%��{%�%�%�%�%�%�#%�)%�0%�7%���=%���D%���K%���Q%���X%���_%���e%���l%���s%���y&��&��&��
&��&��&��!&��(&��/&��5&	��<&
��C&��I&
��P&��W&��]&��d&��k&��q&��x&��&��&��&��&��&�� &��'&��-&��4&��;&��A&!��H&"��O&#��U&$��\&%��c&&��i&'��p&(��w&)��}&*��&+��&,��&-��&.��&/��%&0��,&1��3&2��9&3��@&4��G&6��M&7��T&8��[&9��a&:��h&;��o&<��u&=��|&>��&?��	&@��&A��&B��&C��$&D��+&E��1&F��8&G��?&H��E&J��L&K��S&L��Y&M��`&N��g
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��~u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���}u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��|uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��{w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��zw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��yui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��
uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��	u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*��� u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��'uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��&u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���%u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��$uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��#w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��"w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��!ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���-u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���,g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��+w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��*ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���)u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��(u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���4u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��3u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��2uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��1u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���0u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��/uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��.w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��;uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��:u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���9u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��8uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��7w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��6w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��5ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Au�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���@g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��?w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��>ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���=u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��<u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD��
545b84aca9e92f936ab9998e50b8f869519ed25a9b0ab3b228ca86046f34160eD��
266ee44dc28b8838740a524e7e79e747a4f52b1e9c6c56a1fbda8f8ac816cf0cD��
9a8b2db0e1457c3d413a7d5db0d2a07fe70d2fe34918a818a9527c1bd851cf8eD��
101fd2608e35308dceb00d10e0a0521748cb0223084821b2a0bfdf550b1dbb11D��
af747123a2f728bd5d30f3f31cf5d5124a9fa4ba4105764cf89594dde7453727D��
c43c6671ab2d1c670d0abc37f1638ba2ea5bc99bfcf4092458d4f333b9d6e8a0D��
d60af5df8c01a193097c36e1ec5c7d66f470b5c9f4400ee4e1e714397de12e81D�
�
79da3fae5743d2c375b344832b875293be6e093e0f5535dbfd33978c82e7d095D��
f818d743b3ac159c87610d03230aad3b70743afe5fc38d30a3aac4ab50db977eD��
c388ede56e4bc34aa4c415c55b4aacfaecac0e8ac63e3aafb72c8678c87d2b5eD�
�
ff32b3ca928a0d84d11d5efe9433ba05d661f2a1df648fe6eee586eb09c24ac6D�	�
5dd24758d5e830a0fbbb424ad112abfec1537db1194a06f3d33d97dbc8be9831D��
72598a2a7205cad8abd1c6adb36033bebbb72e0537e83288ff0a562511b5e061
*&�%�C�*���Hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Gu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Fuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Eu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Bw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Nu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Luw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Kw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Jw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Iui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Uu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Tg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Sw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Rui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Pu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���\u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��[u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Zuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Yu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Vw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��bu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��`uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��_w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��^w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��]ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���iu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���hg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��gw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��fui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��du�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ou�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��nuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��mu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��jw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��vu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��tuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��sw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��rw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��qui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���}u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���|g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��{w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��zui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��xu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��~w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���	u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���
u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���%u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���$g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��#w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��"ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���!u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
�� u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���,u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��+u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��*uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��)u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���(u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��'uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��&w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��3uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��2u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���1u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��0uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��/w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��.w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��-ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���9u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���8g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��7w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��6ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���5u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��4u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���@u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��?u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��>uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��=u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���<u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��;uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��:w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Fu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Duw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Cw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Bw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Aui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�!�
38f6f38400a02dfd304ef361c147ae8587357a50cec7a0113047ebd33cf7c5e3D� �
73e6c1345f450c5929eb00e5f4f97abca74086756ad6e3bd8c36e85d989c8283D��
b1e13bff131933637fb9b843f0d5f4c6cb81232f5b53ac058376a71010948f6bD��
4a1f2f949b103bdfe54eebc6b4963f047de93b1a0cc47cfa795070d2edcf457dD��
42cd49e0abb9c9f367848467f27274693443d3037a447b74cde10b94706c4a80D��
73e7e5f1dff51614ddae5538cafc528cb724c6dcfb3a9b9459be4d82230e5160D��
73d0fdb5a95bdec295481af2bf2057fc8d78d8110d2f95f3bb7c85577a034eb7D��
f1f8e68da43d3543c537c23e696bea84b8c7e225d2a8e638f1d3e6b4c768f286D��
db7d1e186c2ae291d66b611f4323aa29b919d87a3e6ea1478b9cb9b642e60f17D��
ecb37964581de31750352b4a0c77e2efd6f71b55d33d488cc7d2460a0a00d744D��
6ac785b4fd5c3fbb3f1b4107b21e46b2cbdc7e63216e249d74bdbc43d05c70c5D��
cd9f701311cf726c8b434a5ee4f0f2cb6e0df53b5a843c3ce0633217921b81dbD��
b4f762ba7ffb9fcb803ea8da5868bfe7d15e7777c60e6f0f4f2f4a4d3f90cb50
Cn�v��C���Mu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Lg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Kw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Jui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Hu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Su�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Ruw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Qu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Nw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��[uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Zu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Xuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ww�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Vw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Uui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���au�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���`g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��_w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��^ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���]u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��\u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��gu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��fuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��eu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��bw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��nu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��luw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��kw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��jw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��iui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���uu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���tg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��sw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��rui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��pu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���|u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��{u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��zuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��yu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��vw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��~w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��}ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���	u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��
u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��
w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���$u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��#u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��"uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��!u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858��� u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��+uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��*u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���)u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��(uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��'w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��&w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��%ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���1u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���0g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��/w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��.ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���-u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��,u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���8u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��7u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��6uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��5u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���4u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��3uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��2w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��?uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��>u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���=u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��<uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��;w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��:w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��9ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Eu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Dg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Cw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Bui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��@u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�.�
11476c0df825b8cf64558132ab6c00817fd04a45533f011c2784f1a0df797631D�-�
7eebede496a10ef7610a306704e8b7a5ad7104bef3763ae5d089c514d1656a99D�,�
9313b35402e85897b582429f4df8f344b42d30cec4731079c2c5f5a680fcc839D�+�
7ae117b77c126ac691263ef8d207cc3c2dd9ed5f34f138e411d09ae4a6122407D�*�
ec25d05d782c32b42db9e24ba4c9449d7fc9c689e3d0fa711ce8f94c261ce6b7D�)�
044fa462d51c4d22a5eb8db06de4ed95a23b6e26336c54e16ea3417cd87a5981D�(�
2c6bfa0e8aa6838cc1b81537932ca579cbd93cc93d440a8a7c84b5342ca0a123D�'�
598ff4789a5b089a81ead99e67555f293c41e08b2771cb5d1eb4868f669d0894D�&�
598f5c1de287046f5cbd57cfaf3cc1d9daa8acbbcfe94363eda1070339b435a8D�%�
604d0dced14a23f9e7eefa1abb0d32242d50b5ad9b6bc699114284e55ffc288fD�$�
73a833b69925445587e5e902cf5b0432e6cdf5d8c184064ea6f735ed11d28452D�#�
ede6fc896f82acb407c88ed425d1c7fa8420645aae77c5aaea694f1c692cbc45D�"�
5df62ba637b7f77964da2d97a25f63cdec28f90a8dfa76b05a4080f7aa03b3a2
*&�%�C�*���Lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ku�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Juw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Iu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Fw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ru[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Puw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Ow�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Nw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Mui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Yu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Xg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ww��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Vui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Tu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���`u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��_u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��^uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��]u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���\u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��[uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Zw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��fu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��duw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��cw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��bw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��aui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���mu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���lg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��kw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��jui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��hu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��su�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��ruw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��qu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��ouw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��nw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��{uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��zu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��xuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ww�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��vw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��uui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��~ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���}u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��|u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���
u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��
w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��	ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��#uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��"u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���!u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt�� uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���)u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���(g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��'w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��&ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���%u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��$u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���0u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��/u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��.uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��-u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���,u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��+uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��*w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��7uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��6u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���5u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��4uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��3w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��2w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��1ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���=u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���<g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��;w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��:ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���9u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��8u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Cu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Buw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Au[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���@u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��?uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��>w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Ju[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Huw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Gw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Fw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Eui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black

e�r+��V��:��eD�;�
9e499430d2fb2c6cb68c3ee8c7e80022d612bdba43e98c21c6cead204a19aee1D�:�
614857c396c65004fd986e7b0b3b669ea5f8880fc93c655a69ea8ff5177d58fbD�9�
75518cc294a25dd2bf8e7d7c0883cc13f46fbe3694ee431b5e7ac646eae722b4D�8�
cd15c26fb1146a5e8fc006618f54a1857a651b59524ad0b43e2de55f2ecdf4adD�7�
d21a1f7149813805ef3c6537ab7c9dee0567804a8f9983618aef692ed579f292D�6�
1627c36660c246a28b1b4c12b7bb6265a2948ecc122efd459f7d3a78959935e7D�5�
4d706aab7c08c3071b31ae66919573e924ce2400aa7bf07fb5eeea3a69a8bb73D�4�
d00284a41b68e575da476321841fba290849066dcd50949ee1f46e5984294f6aD�3�
e19a3d190b4be2dfd6bf0e58eb5017d6235b6dc0bc5b12d4b5d07c5dfdf34eecD�2�
b5962c01ec97042d7aa371253ae592a53b11214605721063be11027949cd9ee6D�1�
e5bed7d18f1cb03d90274c85c7eb780577a158e85aa2ac2af3e174486ae52f9dD�0�
b47475049748725638cfe057a54b45b2386eb621ed65e7dc441b3f6dff971e60D�/�
25eda2d5ea8c705770886b5cf7cf2643b509f198fe1feae97607f96210343f0f
Cn�v��C���Qu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Pg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Ow��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Nui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Lu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���Xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Wu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Vuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Uu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Rw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��_uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��^u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���]u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��\uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��[w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Zw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Yui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���eu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���dg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��cw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��bui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��`u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��ku�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��juw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��iu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���hu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��guw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��fw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ru[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���qu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��puw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��ow�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��nw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��mui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���yu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���xg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ww��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��vui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��tu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��~uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��}u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���|u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��{uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��zw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���
u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���	u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���!u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode��� g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���(u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��'u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��&uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��%u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���$u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��#uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��"w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��/uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��.u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���-u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��,uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��+w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��*w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��)ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���5u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���4g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��3w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��2ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���1u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��0u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���<u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��;u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��:uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��9u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���8u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��7uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��6w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Cuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Bu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Au��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��@uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��?w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��>w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��=ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���Iu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���Hg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��Gw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Fui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Eu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Du�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849

e�r+��V��:��eD�H�
c205e6c8f267b531e6cb7cdabe53c2b3cda12f1afd4735ece2a55f5c116d0159D�G�
dd5402f5bb60ada1db63c1305e3650e8804adcacfb1557affb8623621fd83155D�F�
6263d570ddf0f6cf0247a3e7266a7aa7caae795462727dbb4d747261bc4aa1beD�E�
1eb2e0f2ab532fc7491714b9d8dae34bf6977843c4b9649fe0509d2fc7dc3b59D�D�
8a0bacc73339833881bc5ae7fa62eafa7a9c0011b40065f3a69fb02d298f29d6D�C�
3f87a8a259dcf40c961dfad59240eff08fc35580ae718952a8849e7b5926cfb4D�B�
8ba208735c422fc7201d30c4eee2567d7d1db7cfe28590c93e563015db58818bD�A�
49f444eb43979988b55286bf011d39ef639f814d68348b633249b8d4d229e0f3D�@�
b4a0638e6c66b83b32396e053b68f71ce9f9c0846f117e75c3223af733c923b9D�?�
1a8201b73f71ee44efe72426328fc48ad33413143a7f40a898fb7b926034487fD�>�
08d1d1cc28a0a4caf172ffb26c59f35532cb13b37543dc1b44895666f5c4d486D�=�
93b059a3da417ccc61646327c6d1ed94b3a83a59eea67aeb8419f44ebb5522d3D�<�
2cc2e0d90af5e45dd0446328fe940a605fcb5aeaa3c115959be8469b6f134c83
*&�%�C�*���Pu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Ou�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��Nuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Mu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Lu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Jw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��Wuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��Vu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���Uu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��Tuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��Sw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��Rw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Qui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���]u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���\g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��[w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��Zui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���Yu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��Xu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���du��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��cu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��buw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��au[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���`u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��_uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��^w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��kuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��ju[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���iu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��huw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��gw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��fw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��eui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���qu�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���pg�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��ow��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��nui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���mu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��lu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���xu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��wu�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��vuw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��uu[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���tu��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��suw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��rw�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��~u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���}u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��|uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��{w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��zw��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��yui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
Cn�v��C���u�-�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-16[d@- Resolves: rhbz#1589029 impress not showing text-highlight in presentation mode���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
*&�%�C�*���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849t��
uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��	u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialogbR&�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������&P��t&Q��{&R��&S��&T��&U��&V��&W��#&X��)&Y��0&Z��7&[��=&\��D&]��K&_��Q&`��X&a��_&b��e&c��l&d��s&e��y&f��&g��&h��
&i��&j��&k��!&l��(&m��/&n��5&o��<&p��C&q��I&s��P&t��W&u��]&v��d&w��k&x��q&y��x&z��&{��&|��&~��&��&���&���&���&��� &���"&���%&���'&���)&���*&���,&���/&���1&���3&���4&���6&���9&���;&���=&���>&���@&���D&���F&���L&���O&���R&���W&���Z&���]&���b&���e&���g&���l&���o&���q&���w&���{&���&���&���
&���&���&���&���&���%&���)&���.&���2&���7&���;&���A&���F&���K&���Q
P�
3�2�Pt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-21\n��- Resolves: rhbz#1066844 drop libreofficekit requiresf��u[�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-20\X)@- Resolves: rhbz#1672003 CVE-2018-16858���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-19[m~@- Resolves: rhbz#1614419 detect PK11_ImportSymKey failure under FIPSt��uw�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-18[dC�- Resolves: rhbz#1610904 draw glitches in drag cursor�U��w�5�Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-17[a��- Resolves: rhbz#1545262 Workaround for spurious ppc64le automated testing crash
- Resolves: rhbz#1610692 silence console warnings from print dialog~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��
ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black
�n�v���T��kA�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.11-2T��- Make tests port agnostic���g�I�Eike Rathke <erack@redhat.com> - 1:5.3.6.1-26fGF�- Fix CVE-2022-38745 Empty entry in Java class path
- Fix CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing
- Fix CVE-2023-1183 libreoffice: Arbitrary File Write
- Fix CVE-2023-6185 escape url passed to gstreamer~��w��Stephan Bergmann <sbergman@redhat.com> - 1:5.3.6.1-25_�0@- Resolves: rhbz#1900004 Support Red Hat, Inc. as Java vendorm��ui�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-24]�)�- Resolves: rhbz#1728763 bg of blocks is black���u��Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-23]v>�- Resolves: rhbz#1601372 libreoffice fails to build with --nocheck�
��u�'�Caolán McNamara <caolanm@redhat.com> - 1:5.3.6.1-22]rJ@- Resolves: rhbz#1743962 CVE-2019-9848
- Resolves: rhbz#1743954 CVE-2019-9849
��t��k��Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.13-1T�7�- Fix ABI compatibility (RhBug: 1185180)
- fastestmirror: Add LRO_FASTESTMIRRORTIMEOUT option
- downloader: Move broken mirror at the end of the list of mirrors (RhBug: 1183998)
- Make building tests and docs optional
- librepo: Don't download remote mirrorlist/metalink when LRO_LOCAL is specified (Resolves #41)�i��k�i�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.12-1T��@- downloader: Allow max one resume + nicer message if xattr cannot be set (RhBug: 1130685)
- downloader: Resume only files that were originaly downloaded by Librepo (RhBug: 1130685)
- downloader: Show also calculated checksums in error message about bad checksum
- Python: Return all strings in unicode
a�aj��km�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-2T�A- compat: fix ck_assert_msg() segfault in rhel-7�,��k�o�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-1T�@- tests: Use g_assert_cmpuint instead of ck_assert_uint_eq (Pullrequest #43)
- Add LRO_OFFLINE
- Python: Handle: Raise ValueError instead of TypeError when an unknown option is specified
- Python: Result: Use ValueError instead of TypeError when an unknown option value is specified
- Add LR_VERSION constant with version string
- python: Import contants from C librepo module in a loop
- repoconf: Add support for failover and skip_if_unavailable options
- handle: Change of LRO_LOCAL causes invalidation of internal mirrorlist (related to RhBug: 1188600)
- Load local mirrorlists when LRO_LOCAL is on (related to RhBug: 1188600)
- util: Add lr_is_local_path()
- New module repoconf for reading *.repo files
- Add LRO_HTTPHEADER option (RhBug: 1181123)
������g�C�Colin Walters <walters@redhat.com> - 1.7.15-2UQ�@- Disable tests and drop python-flask build dependency on RHEL7, as
  it is not in the core�s��k�}�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.15-1U-@- Do not inlude header in the body output (RhBug: 1207685)
- metalink: Proper error handling
- New LRR_RPMMD_* contants
- Support for client certificates
- Use 'metadata in the rpm-md format' instead of 'yum metadata' (Issue #51)
- CMakeLists.txt: do not check for CXX
- build: Use solely pkg-config to find glib
..�M�� g�5�Colin Walters <tmlcoch@redhat.com> - 1.7.16-1UhT�- Add LRI_LOWSPEEDTIME and LRI_LOWSPEEDLIMIT
- downloader: Don't consider CURLE_RECV_ERROR and CURLE_SEND_ERROR as fatal errors (RhBug: 1219817)
- test_repoconf: Fix SIGSEGV in repoconf_assert_na (RhBug: 1222471)
- repoconf: Proper handling of gint64 and guint64 types
- build: Be compatible with cmake 2.8
- handle: Do not free temporary error msg if there is no one (RhBug: 1219822)
- utils/make_rpm.sh: Accept rpmbuild options as second argument (Issue #49)
- Python: call lr_global_init() during module initialization
- Add global function log_set_file that allow user to set a file where logs will be written (Issue #53)
- util: Honor RFC 3986 (Issue #55)
J�Ji��"]y�Ales Matej <amatej@redhat.com> - 1.8.1-8_5+@- Validate paths read from repomd.xml (RhBug: 1866500)�D��!_�+�Marek Blaha <mblaha@redhat.com> - 1.8.1-1[o�- Add yumrecord substitution mechanism (mluscon)
- Fix a memory leak in signature verification (cwalters)
- Add new option LRO_FTPUSEEPSV
- downloader prepare_next_transfer(): simplify long line
- downloader prepare_next_transfer(): add missing error check
- downloader prepare_next_transfer(): cleanup error path
- downloader prepare_next_transfer() - fix memory leak on error path (Alan Jenkins)
- handle: Don't use proxy cache for downloads of metalink/mirrorlist
- handle: Don't set CURLOPT_HTTPHEADER into curl handle immediately when specified
- downloader: Implement logic for no_cache param in LrDownloadTarget (RhBug: 1297762)
- Add no_cache param to LrDownloadTarget and lr_downloadtarget_new()
- New test: always try to download from the fastest mirror (Alexander Todorov)
��:��t��%k��Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.13-1T�7�- Fix ABI compatibility (RhBug: 1185180)
- fastestmirror: Add LRO_FASTESTMIRRORTIMEOUT option
- downloader: Move broken mirror at the end of the list of mirrors (RhBug: 1183998)
- Make building tests and docs optional
- librepo: Don't download remote mirrorlist/metalink when LRO_LOCAL is specified (Resolves #41)�i��$k�i�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.12-1T��@- downloader: Allow max one resume + nicer message if xattr cannot be set (RhBug: 1130685)
- downloader: Resume only files that were originaly downloaded by Librepo (RhBug: 1130685)
- downloader: Show also calculated checksums in error message about bad checksum
- Python: Return all strings in unicodeT��#kA�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.11-2T��- Make tests port agnostic
a�aj��'km�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-2T�A- compat: fix ck_assert_msg() segfault in rhel-7�,��&k�o�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-1T�@- tests: Use g_assert_cmpuint instead of ck_assert_uint_eq (Pullrequest #43)
- Add LRO_OFFLINE
- Python: Handle: Raise ValueError instead of TypeError when an unknown option is specified
- Python: Result: Use ValueError instead of TypeError when an unknown option value is specified
- Add LR_VERSION constant with version string
- python: Import contants from C librepo module in a loop
- repoconf: Add support for failover and skip_if_unavailable options
- handle: Change of LRO_LOCAL causes invalidation of internal mirrorlist (related to RhBug: 1188600)
- Load local mirrorlists when LRO_LOCAL is on (related to RhBug: 1188600)
- util: Add lr_is_local_path()
- New module repoconf for reading *.repo files
- Add LRO_HTTPHEADER option (RhBug: 1181123)
������)g�C�Colin Walters <walters@redhat.com> - 1.7.15-2UQ�@- Disable tests and drop python-flask build dependency on RHEL7, as
  it is not in the core�s��(k�}�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.15-1U-@- Do not inlude header in the body output (RhBug: 1207685)
- metalink: Proper error handling
- New LRR_RPMMD_* contants
- Support for client certificates
- Use 'metadata in the rpm-md format' instead of 'yum metadata' (Issue #51)
- CMakeLists.txt: do not check for CXX
- build: Use solely pkg-config to find glib
..�M��*g�5�Colin Walters <tmlcoch@redhat.com> - 1.7.16-1UhT�- Add LRI_LOWSPEEDTIME and LRI_LOWSPEEDLIMIT
- downloader: Don't consider CURLE_RECV_ERROR and CURLE_SEND_ERROR as fatal errors (RhBug: 1219817)
- test_repoconf: Fix SIGSEGV in repoconf_assert_na (RhBug: 1222471)
- repoconf: Proper handling of gint64 and guint64 types
- build: Be compatible with cmake 2.8
- handle: Do not free temporary error msg if there is no one (RhBug: 1219822)
- utils/make_rpm.sh: Accept rpmbuild options as second argument (Issue #49)
- Python: call lr_global_init() during module initialization
- Add global function log_set_file that allow user to set a file where logs will be written (Issue #53)
- util: Honor RFC 3986 (Issue #55)
J�Ji��,]y�Ales Matej <amatej@redhat.com> - 1.8.1-8_5+@- Validate paths read from repomd.xml (RhBug: 1866500)�D��+_�+�Marek Blaha <mblaha@redhat.com> - 1.8.1-1[o�- Add yumrecord substitution mechanism (mluscon)
- Fix a memory leak in signature verification (cwalters)
- Add new option LRO_FTPUSEEPSV
- downloader prepare_next_transfer(): simplify long line
- downloader prepare_next_transfer(): add missing error check
- downloader prepare_next_transfer(): cleanup error path
- downloader prepare_next_transfer() - fix memory leak on error path (Alan Jenkins)
- handle: Don't use proxy cache for downloads of metalink/mirrorlist
- handle: Don't set CURLOPT_HTTPHEADER into curl handle immediately when specified
- downloader: Implement logic for no_cache param in LrDownloadTarget (RhBug: 1297762)
- Add no_cache param to LrDownloadTarget and lr_downloadtarget_new()
- New test: always try to download from the fastest mirror (Alexander Todorov)
��:��t��/k��Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.13-1T�7�- Fix ABI compatibility (RhBug: 1185180)
- fastestmirror: Add LRO_FASTESTMIRRORTIMEOUT option
- downloader: Move broken mirror at the end of the list of mirrors (RhBug: 1183998)
- Make building tests and docs optional
- librepo: Don't download remote mirrorlist/metalink when LRO_LOCAL is specified (Resolves #41)�i��.k�i�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.12-1T��@- downloader: Allow max one resume + nicer message if xattr cannot be set (RhBug: 1130685)
- downloader: Resume only files that were originaly downloaded by Librepo (RhBug: 1130685)
- downloader: Show also calculated checksums in error message about bad checksum
- Python: Return all strings in unicodeT��-kA�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.11-2T��- Make tests port agnostic
a�aj��1km�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-2T�A- compat: fix ck_assert_msg() segfault in rhel-7�,��0k�o�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-1T�@- tests: Use g_assert_cmpuint instead of ck_assert_uint_eq (Pullrequest #43)
- Add LRO_OFFLINE
- Python: Handle: Raise ValueError instead of TypeError when an unknown option is specified
- Python: Result: Use ValueError instead of TypeError when an unknown option value is specified
- Add LR_VERSION constant with version string
- python: Import contants from C librepo module in a loop
- repoconf: Add support for failover and skip_if_unavailable options
- handle: Change of LRO_LOCAL causes invalidation of internal mirrorlist (related to RhBug: 1188600)
- Load local mirrorlists when LRO_LOCAL is on (related to RhBug: 1188600)
- util: Add lr_is_local_path()
- New module repoconf for reading *.repo files
- Add LRO_HTTPHEADER option (RhBug: 1181123)
������3g�C�Colin Walters <walters@redhat.com> - 1.7.15-2UQ�@- Disable tests and drop python-flask build dependency on RHEL7, as
  it is not in the core�s��2k�}�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.15-1U-@- Do not inlude header in the body output (RhBug: 1207685)
- metalink: Proper error handling
- New LRR_RPMMD_* contants
- Support for client certificates
- Use 'metadata in the rpm-md format' instead of 'yum metadata' (Issue #51)
- CMakeLists.txt: do not check for CXX
- build: Use solely pkg-config to find glib
..�M��4g�5�Colin Walters <tmlcoch@redhat.com> - 1.7.16-1UhT�- Add LRI_LOWSPEEDTIME and LRI_LOWSPEEDLIMIT
- downloader: Don't consider CURLE_RECV_ERROR and CURLE_SEND_ERROR as fatal errors (RhBug: 1219817)
- test_repoconf: Fix SIGSEGV in repoconf_assert_na (RhBug: 1222471)
- repoconf: Proper handling of gint64 and guint64 types
- build: Be compatible with cmake 2.8
- handle: Do not free temporary error msg if there is no one (RhBug: 1219822)
- utils/make_rpm.sh: Accept rpmbuild options as second argument (Issue #49)
- Python: call lr_global_init() during module initialization
- Add global function log_set_file that allow user to set a file where logs will be written (Issue #53)
- util: Honor RFC 3986 (Issue #55)
J�Ji��6]y�Ales Matej <amatej@redhat.com> - 1.8.1-8_5+@- Validate paths read from repomd.xml (RhBug: 1866500)�D��5_�+�Marek Blaha <mblaha@redhat.com> - 1.8.1-1[o�- Add yumrecord substitution mechanism (mluscon)
- Fix a memory leak in signature verification (cwalters)
- Add new option LRO_FTPUSEEPSV
- downloader prepare_next_transfer(): simplify long line
- downloader prepare_next_transfer(): add missing error check
- downloader prepare_next_transfer(): cleanup error path
- downloader prepare_next_transfer() - fix memory leak on error path (Alan Jenkins)
- handle: Don't use proxy cache for downloads of metalink/mirrorlist
- handle: Don't set CURLOPT_HTTPHEADER into curl handle immediately when specified
- downloader: Implement logic for no_cache param in LrDownloadTarget (RhBug: 1297762)
- Add no_cache param to LrDownloadTarget and lr_downloadtarget_new()
- New test: always try to download from the fastest mirror (Alexander Todorov)
��:��t��9k��Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.13-1T�7�- Fix ABI compatibility (RhBug: 1185180)
- fastestmirror: Add LRO_FASTESTMIRRORTIMEOUT option
- downloader: Move broken mirror at the end of the list of mirrors (RhBug: 1183998)
- Make building tests and docs optional
- librepo: Don't download remote mirrorlist/metalink when LRO_LOCAL is specified (Resolves #41)�i��8k�i�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.12-1T��@- downloader: Allow max one resume + nicer message if xattr cannot be set (RhBug: 1130685)
- downloader: Resume only files that were originaly downloaded by Librepo (RhBug: 1130685)
- downloader: Show also calculated checksums in error message about bad checksum
- Python: Return all strings in unicodeT��7kA�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.11-2T��- Make tests port agnostic
a�aj��;km�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-2T�A- compat: fix ck_assert_msg() segfault in rhel-7�,��:k�o�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-1T�@- tests: Use g_assert_cmpuint instead of ck_assert_uint_eq (Pullrequest #43)
- Add LRO_OFFLINE
- Python: Handle: Raise ValueError instead of TypeError when an unknown option is specified
- Python: Result: Use ValueError instead of TypeError when an unknown option value is specified
- Add LR_VERSION constant with version string
- python: Import contants from C librepo module in a loop
- repoconf: Add support for failover and skip_if_unavailable options
- handle: Change of LRO_LOCAL causes invalidation of internal mirrorlist (related to RhBug: 1188600)
- Load local mirrorlists when LRO_LOCAL is on (related to RhBug: 1188600)
- util: Add lr_is_local_path()
- New module repoconf for reading *.repo files
- Add LRO_HTTPHEADER option (RhBug: 1181123)
������=g�C�Colin Walters <walters@redhat.com> - 1.7.15-2UQ�@- Disable tests and drop python-flask build dependency on RHEL7, as
  it is not in the core�s��<k�}�Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.15-1U-@- Do not inlude header in the body output (RhBug: 1207685)
- metalink: Proper error handling
- New LRR_RPMMD_* contants
- Support for client certificates
- Use 'metadata in the rpm-md format' instead of 'yum metadata' (Issue #51)
- CMakeLists.txt: do not check for CXX
- build: Use solely pkg-config to find glib
..�M��>g�5�Colin Walters <tmlcoch@redhat.com> - 1.7.16-1UhT�- Add LRI_LOWSPEEDTIME and LRI_LOWSPEEDLIMIT
- downloader: Don't consider CURLE_RECV_ERROR and CURLE_SEND_ERROR as fatal errors (RhBug: 1219817)
- test_repoconf: Fix SIGSEGV in repoconf_assert_na (RhBug: 1222471)
- repoconf: Proper handling of gint64 and guint64 types
- build: Be compatible with cmake 2.8
- handle: Do not free temporary error msg if there is no one (RhBug: 1219822)
- utils/make_rpm.sh: Accept rpmbuild options as second argument (Issue #49)
- Python: call lr_global_init() during module initialization
- Add global function log_set_file that allow user to set a file where logs will be written (Issue #53)
- util: Honor RFC 3986 (Issue #55)
J�Ji��@]y�Ales Matej <amatej@redhat.com> - 1.8.1-8_5+@- Validate paths read from repomd.xml (RhBug: 1866500)�D��?_�+�Marek Blaha <mblaha@redhat.com> - 1.8.1-1[o�- Add yumrecord substitution mechanism (mluscon)
- Fix a memory leak in signature verification (cwalters)
- Add new option LRO_FTPUSEEPSV
- downloader prepare_next_transfer(): simplify long line
- downloader prepare_next_transfer(): add missing error check
- downloader prepare_next_transfer(): cleanup error path
- downloader prepare_next_transfer() - fix memory leak on error path (Alan Jenkins)
- handle: Don't use proxy cache for downloads of metalink/mirrorlist
- handle: Don't set CURLOPT_HTTPHEADER into curl handle immediately when specified
- downloader: Implement logic for no_cache param in LrDownloadTarget (RhBug: 1297762)
- Add no_cache param to LrDownloadTarget and lr_downloadtarget_new()
- New test: always try to download from the fastest mirror (Alexander Todorov)
+l&�+�+��Dc�u�Paul Wouters <pwouters@redhat.com> - 3.25-2[:�- Resolves: rhbz#1597322 Relax deleting IKE SA's and IPsec SA's to avoid interop issues with third party VPN vendors�F��Cc�+�Paul Wouters <pwouters@redhat.com> - 3.25-1[3|@- Resolves: rhbz#1591817 rebase libreswan to 3.25
- Resolves: rhbz#1536404 CERT_PKCS7_WRAPPED_X509 error
- Resolves: rhbz#1544143 ipsec newhostkey fails in FIPS mode when RSA key is generated
- Resolves: rhbz#1574011 libreswan is missing a Requires: unbound-libs >= 1.6.6�A��Bc�!�Paul Wouters <pwouters@redhat.com> - 3.23-4Z��- Resolves: rhbz#1544143 ipsec newhostkey fails in FIPS mode when RSA key is generated
- Resolves: rhbz#1553406 IKEv2 liveness false positive on IKEv2 idle connections causes tunnel to be restarted
- Resolves: rhbz#1572425 shared IKE SA leads to rekey interop issues���Ac�=�Paul Wouters <pwouters@redhat.com> - 3.23-3Zz�@- Resolves: rhbz#1471553 libreswan postquantum preshared key (PPK) support [IANA update]
0T0���Fc�]�Paul Wouters <pwouters@redhat.com> - 3.25-6\X)@- Resolves: rhbz#1630355 Libreswan crash upon receiving ISAKMP_NEXT_D with appended ISAKMP_NEXT_N [updated]
- Resolves: rhbz#1679735 libreswan using NSS IPsec profiles regresses when critical flags are set causing validation failure�'��Ec�m�Paul Wouters <pwouters@redhat.com> - 3.25-5\�@- Resolves: rhbz#1639404 Unable to verify certificate with non-empty Extended Key Usage which does not include serverAuth or clientAuth
- Resolves: rhbz#1630355 Libreswan crash upon receiving ISAKMP_NEXT_D with appended ISAKMP_NEXT_N
- Resolves: rhbz#1629902 libreswan assertion failed when OAKLEY_KEY_LENGTH is zero for IKE using AES_CBC
- Resolves: rhbz#1623279 [abrt] [faf] libreswan: strncpy(): /usr/libexec/ipsec/pluto killed by 11
- Resolves: rhbz#1625303 config: recursive include check doesn't work
- Resolves: rhbz#1664521 libreswan 3.25 in FIPS mode is incorrectly rejecting X.509 public keys that are >= 3072 bits
�P��r�k��LW��Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��KWk�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)x��Jg��Paul Wouters <pwouters@redhat.com> - 3.25-9.1^�@- Resolves: rhbz#1844621 Backport FIPS keysize fixes from RHEL8�0��Ic��Paul Wouters <pwouters@redhat.com> - 3.25-9]c�- Resolves: rhbz#1724200 libreswan: XFRM policy for OE/32 peer is deleted when shunts for previous half-open state expire�(��Hc�o�Paul Wouters <pwouters@redhat.com> - 3.25-8\�s@- Resolves: rhbz#1686991 IKEv1 traffic interruption when responder deletes SAs 60 seconds before EVENT_SA_REPLACE�+��Gc�u�Paul Wouters <pwouters@redhat.com> - 3.25-7\v{�- Resolves: rhbz#1673105 Opportunistic IPsec instances of /32 groups or auto=start that receive delete won't restart

e�r+��V��:��eD�U�
e7aab445dd74ec3ddd4f7504b5e00f8b2f7024c95448fb6ee6de759e0517cac4D�T�
c57edeef8ad80c1218e8f3c5f03298b8e4c78de794ef89153d213f767d7e76e8D�S�
51a15a1f28637adcdf2f0d13e8d6a81017809612ab5a6a46dda8025be6f4aeecD�R�
e28f306d4893ec7a68589345b053be93e9d807543f263f0bbfd81eacefbc4c10D�Q�
07502ee4563c4bdc09b8d0b67eba7577aae0d6c871501af53b038aad8812d391D�P�
71f4e4bdc94d32ca413c40fe3666b5b8b0a092fc42d58ea96801a440297da553D�O�
7c1cc6ce8c70a7a3b07d877d8ba90c49382b8945d6695e986df3f69e3b59cc32D�N�
25fa10449317511df1bc80c25c0cc1e7bede87a02929b5c0676ce9957353a8d9D�M�
baa1991d1849681ae5e74f8eeb2d213f69221f0c76cbe0018df32bd8f5ec1cb6D�L�
0d2b3fa57c857e63e2bc038eba8140a308abe22d4261989634084fe5e9eb73bdD�K�
b0ddff8c5c64edbfff1b2f8f18cc330688586e6a01207ad39c6c30bbeffe82fbD�J�
8bb27e3133d87750b1501993b54e0bc9006242f30c7f46e98b7e0bc0a450cf2fD�I�
a9491aa4d8fe481a24a189a9849cfe530d5eaeb3550b1364284bf6b8b7a5a76b
�>���\��OW�c�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev�(��NW�{�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��MW�%�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failed
G�&G�Z��RW�_�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit���QW�I�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��PW�-�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information
=�n�=�=��WW�%�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��VW��Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��UWk�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��Tg�#�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]�a��SW�m�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory
,Sr,�A��ZW�-�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��YW�c�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev�(��XW�{�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login
�l���a��]W�m�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��\W�_�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit���[W�I�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.
v�T�#v�(��bW�{�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��aW�%�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��`W��Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��_Wk�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��^g�#�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���eW�I�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��dW�-�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��cW�c�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��gW�m�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��fW�_�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��lW�{�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��kW�%�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��jW��Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��iWk�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��hg�#�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���oW�I�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��nW�-�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��mW�c�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��qW�m�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��pW�_�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
3�K�(�3w��wk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��vk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��uii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��tk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��sik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16�D��rg�#�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
������{k��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���zk�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��yiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��xi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�zV�q�w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��~k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��}ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���|k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��
i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��	k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���
k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��%k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��$k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��#k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��"k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��!k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��� k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������)k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���(k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��'iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��&i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��.k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��-k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��,k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��+k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���*k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������2k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���1k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��0iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��/i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��7k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��6k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��5k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��4k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���3k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����;k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��:iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��9i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��8k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��Ak��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��@k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��?k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��>k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���=k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���<k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����Fk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Ek��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Dk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Ciq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��Bk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��Kk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Jk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Ik�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Hk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Gk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��Qk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Pk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Ok��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Nk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Miq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��Lk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict

e�r+��V��:��eD�b�
51eac9ff71e53c4175eb210efa8bffca4476cc9cd86104293d1ca7f714062a4eD�a�
9ce18db0c7edcdf3961e7086a8438b700e7bb5f91d89a4bca5049729c6b02228D�`�
862a87260cad27824364c01e25cd821b1fc2a084f3522fee0b5654d684839796D�_�
6d16c50325196936545ac4cbb31f743a7fdab2589124f05cedf47845149e1035D�^�
c072f12110aa95c982d941e51b30f703d3010b75f805ba9c70e921f74a87e54fD�]�
51252d279ae23e76f0eab56a60f8b34948a2cb91859a5ebcb4dd70f5b140ade0D�\�
374238fd13c46caa7cbfc40bb0504875bf89695119fdc6cdbf33ab47bd195079D�[�
431b22149fa33a26bb336eee9700dbf64d3ec3c03e9604c4203a06a8e35aab3cD�Z�
948dd58b9aa2d3fe20747516b2640cf6b85bdabed1557859baee0cec0fa8a25cD�Y�
10b16b350ee16d3d6b97cb71b8b4c1f23359036277bb481e4ccc7cd698d26ed4D�X�
6c72e414ed7ca2608725b7230e3820171e7ceca0b47d1c5a4623b22e410f9c5eD�W�
9f70940adeedfa2ad404110adcb36a268faa97569dc2fc32c100eab4368a9c54D�V�
a941b5ad075b2f47806bea28420794a24bc7fb5373b6712a5d0b500ee6118759
���FF��5��Vk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Uk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Tk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Sk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Rk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��\k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��[k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Zk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Yk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Xk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Wk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���bk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ak�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��`k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��_k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��^k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��]k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��gk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��fk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ek_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��dk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���ck��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��lk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���kk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��jk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��ik��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��hk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��rk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��qk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��pk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��ok��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��nk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��mk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��xk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��wk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��vk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���uk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��tk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��sk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��~k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��}k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��|k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��{k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��zk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��yk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��
k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��	k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��
k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��%k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��$ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��#k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��"ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��!iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi�� im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��-k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��,ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��+k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��*ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��)iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��(im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��'iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��&k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��2im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��1iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��0iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��/i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��.k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��8k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��7k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��6ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��5k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��4ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��3iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
x�0x�3��<k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��;ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��:iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��9i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
<���<k��Aiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��@i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��?k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��>k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��=ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires
^t�g�C�^v��Hk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Gii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Fk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Eik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���Dk��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Ck��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Bk�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
���!����Lk�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Kiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ji�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Ik��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�y���w��Qk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Pk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Oii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���Nk��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Mk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock

e�r+��V��:��eD�o�
56f09419cecb436d408500ec34950196ee1969ca1d67a1140bc4453bdc7db16dD�n�
5b8e30bc61877d67eb0781546eda037e3125af2d61226ff947eae46d951dea87D�m�
83d237d121542e1a8974ca5404efc06ebabca5aa5ab1f7f036ed16f3396c2445D�l�
2ed0b9cb14b8c09ea2a369592a8ae716f4f5a0d7a288dbb4a4fa9e6089e40760D�k�
76499affa56e11ce8cb0b60296dc990f3d6d2f235f5edeb8261ed147ff7a3323D�j�
1d90c0cbed34ba8bd0787832d1c7deb1024fe2c25a4f9accea2b95c7fa1c152aD�i�
3ba1c872bc9e60330b7b4b28cf7a36bdd1618d3c55d034ccc2f1b537590a34b8D�h�
f7faa6dc9e93209b28d0cf6a0ef6f0697ece6387cbb402f2554016b1db3192a5D�g�
ad24252031ea8c0e12e7acf23ebf80586b5162f12ce5e4eac8273966928e89d0D�f�
36410412b59ca22b5708b34c6f8dafdb38024efff345c20c4dc28c75a7eb8a0aD�e�
b3350c79767fa9a0a0ac49e9e26cb2d6f221c594bddb72ca5a870a8d7661e0f1D�d�
8c78bd9be20532927c0a937e33b0befaa0f49afcab1f09654f5004054cf179b0D�c�
b57c33a0b61dc0b3c7c8b1c2fc69d8106f19978caed12eb3547f80ac41328a7a
������Uk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Tk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Siq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ri�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��9�w��[k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Zk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Yii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��Xk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Wk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Vk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������_k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���^k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��]iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��\i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��w��ck��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��bk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��ak�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���`k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������gk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���fk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��eiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��di�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��mk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��lk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��kk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��jk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��ik�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���hk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������qk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���pk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��oiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ni�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��vk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��uk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��tk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��sk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���rk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������zk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���yk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��xiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��wi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��~k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��}k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��|k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���{k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��	k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���
k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��
k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��$k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��#k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��"k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���!k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��� k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���*k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���)k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��(k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��'k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��&k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��%k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��/k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��.k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��-k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��,k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���+k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��4k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���3k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��2k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��1k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��0k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��:k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��9k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��8k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��7k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��6k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��5k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��@k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��?k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��>k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���=k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��<k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��;k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023bR'RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������&���\&���b&���g&���l&���r&���x&���~&���&���
&���&�&Á�&ā�%&Ł�-&Ɓ�2&ǁ�8&ȁ�<&Ɂ�A&ʁ�H&ˁ�L&́�Q&΁�U&ρ�[&Ё�_&с�c&ҁ�g&Ӂ�m&ԁ�q&Ձ�v&ց�z&ׁ�&؁�&ف�	&ځ�&ہ�&܁�&݁�&ށ�$&߁�*&�/&�4&�:&�@&�F&�K&�R&�X&�_&�e&�m&�u&�z&&�&�&�&�&�!&���)&���1&���7&���:&���=&���D&���G&���N&���Q&���X'��['��b'��e'��h'��k'��l'��m'��n'	��q'
��t'��u'��v'
��w'��z'��}'��~'��'��'��'��'��'��'��	'��'��'��'��'��'��'��
n���S�nz��Fk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Ek_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Dk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Ck��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Bk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Ak��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��Kk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Jk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Ik�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Hk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Gk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��Rk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Qk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��Pk}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Ok��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Nk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Mk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Lk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict

e�r+��V��:��eD�|�
ba22fffa8b12afc9653dd3d202c1f25ea68005dc24e14085ecfbecab982605c8D�{�
2f2fef32bd829834efcff997a91ea78ebad9913aec9b94421efa69579be8f39cD�z�
6085603dfc592d80718a8fb07a369da5c47fe019535a490c02e8e0eeac89b9c2D�y�
4d2980f737ca5c15f4f33e1a43a82d6b00ca06a5c6d284643ea2f0b2e7928f76D�x�
c18739f0ff30069eb1e908fc713e8ef1e7fa3a75c981a8b45cd1383597e8a1e9D�w�
7e6cf4cf5a25112c185e8d9c2750ce650787af37ded646d8d3923984a1868673D�v�
1b3f8f389416ac835d75a09fd6027e44daad1e8447c349cac349b674506ce80fD�u�
d161a8ffe0e1f9856548b6a48619295b25351949a76f0c3447034360be168304D�t�
126e1f4ba7b91116dc2de61216743f423ed250ef44140f20c97de01055c2374aD�s�
1aa4d5a6ea319219e3813cc9caf102cd6341fa2aebfa9e4b9096e4e1df7854d2D�r�
a4f8b4717015fbf8177d95a8a84a98b233c1bb9171ffa261d3b9bfff69345e5dD�q�
bc009c7bfbbc8f4c90f5bb2715b2f88462acdb617db354d01214ce91bf2aab13D�p�
bd0d1c4bba8882d3e5bbeb0d58b3e9677c33d9fcf22226207d7f43f0540af0d3
+���~c��Xk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Wk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Vk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Uk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Tk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Sk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��_iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��^im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��]iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��\k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��[i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��Zk}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Yk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��ei��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��dk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��ck��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��bii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��ak�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��`ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��mk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��lii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��kk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��jik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��him�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��giE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��fk��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��uk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��tii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��sk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��rik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��qiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��pim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��oiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��nk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��zim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��yiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��xiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��wi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��vk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��~ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��}k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��|ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��{iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
d�d������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-5Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-4P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuildk��iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
*�.��g�*�'��s�]�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12.1aF�- a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution(#1985024)���o�+�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12^h�- fix CVE-2018-19662 - buffer over-read in the function i2alaw_array (#1673086)���
o�G�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-11]�)�- fix CVE-2018-13139 - stack-based buffer overflow in sndfile-deinterleave utility (#1598577)���	m��Peter Robinson <pbrobinson@redhat.com> 1.0.25-10S��- Generic 32/64 bit platform detection - fix ppc64le build (#1126140)M��_?�Daniel Mach <dmach@redhat.com> - 1.0.25-9R�U�- Mass rebuild 2014-01-24M��_?�Daniel Mach <dmach@redhat.com> - 1.0.25-8R�k�- Mass rebuild 2013-12-27l��mo�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-7Q��@- fix support for aarch64, another part (#969831)^��mS�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-6QR�@- fix support for aarch64 (#925887)
/d�f��T�/���o�G�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-11]�)�- fix CVE-2018-13139 - stack-based buffer overflow in sndfile-deinterleave utility (#1598577)���m��Peter Robinson <pbrobinson@redhat.com> 1.0.25-10S��- Generic 32/64 bit platform detection - fix ppc64le build (#1126140)M��_?�Daniel Mach <dmach@redhat.com> - 1.0.25-9R�U�- Mass rebuild 2014-01-24M��_?�Daniel Mach <dmach@redhat.com> - 1.0.25-8R�k�- Mass rebuild 2013-12-27l��mo�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-7Q��@- fix support for aarch64, another part (#969831)^��mS�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-6QR�@- fix support for aarch64 (#925887)������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-5Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���
���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-4P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
ho�'�)�hM��_?�Daniel Mach <dmach@redhat.com> - 1.0.25-8R�k�- Mass rebuild 2013-12-27l��mo�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-7Q��@- fix support for aarch64, another part (#969831)^��mS�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-6QR�@- fix support for aarch64 (#925887)������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-5Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-4P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild�'��s�]�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12.1aF�- a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution(#1985024)���o�+�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12^h�- fix CVE-2018-19662 - buffer over-read in the function i2alaw_array (#1673086)
��)��M����!���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-4P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild�'�� s�]�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12.1aF�- a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution(#1985024)���o�+�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12^h�- fix CVE-2018-19662 - buffer over-read in the function i2alaw_array (#1673086)���o�G�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-11]�)�- fix CVE-2018-13139 - stack-based buffer overflow in sndfile-deinterleave utility (#1598577)���m��Peter Robinson <pbrobinson@redhat.com> 1.0.25-10S��- Generic 32/64 bit platform detection - fix ppc64le build (#1126140)M��_?�Daniel Mach <dmach@redhat.com> - 1.0.25-9R�U�- Mass rebuild 2014-01-24
:d�A�j�:���)o�+�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12^h�- fix CVE-2018-19662 - buffer over-read in the function i2alaw_array (#1673086)���(o�G�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-11]�)�- fix CVE-2018-13139 - stack-based buffer overflow in sndfile-deinterleave utility (#1598577)���'m��Peter Robinson <pbrobinson@redhat.com> 1.0.25-10S��- Generic 32/64 bit platform detection - fix ppc64le build (#1126140)M��&_?�Daniel Mach <dmach@redhat.com> - 1.0.25-9R�U�- Mass rebuild 2014-01-24M��%_?�Daniel Mach <dmach@redhat.com> - 1.0.25-8R�k�- Mass rebuild 2013-12-27l��$mo�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-7Q��@- fix support for aarch64, another part (#969831)^��#mS�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-6QR�@- fix support for aarch64 (#925887)���"���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-5Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
"T��J��"���1m��Peter Robinson <pbrobinson@redhat.com> 1.0.25-10S��- Generic 32/64 bit platform detection - fix ppc64le build (#1126140)M��0_?�Daniel Mach <dmach@redhat.com> - 1.0.25-9R�U�- Mass rebuild 2014-01-24M��/_?�Daniel Mach <dmach@redhat.com> - 1.0.25-8R�k�- Mass rebuild 2013-12-27l��.mo�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-7Q��@- fix support for aarch64, another part (#969831)^��-mS�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-6QR�@- fix support for aarch64 (#925887)���,���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-5Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���+���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.25-4P��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild�'��*s�]�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12.1aF�- a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution(#1985024)
�a�$� ����7]�-�Kamil Dudka <kdudka@redhat.com> 1.4.3-10UlI@- check length of data extracted from the SSH_MSG_KEXINIT packet (CVE-2015-1782)�/��6[��Kamil Dudka <kdudka@redhat.com> 1.4.3-9UH��- curl consumes too much memory during scp download (#1080459)
- prevent a not-connected agent from closing STDIN (#1147717)L��5]?�Daniel Mach <dmach@redhat.com> - 1.4.3-8R�U�- Mass rebuild 2014-01-24�'��4s�]�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12.1aF�- a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution(#1985024)���3o�+�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-12^h�- fix CVE-2018-19662 - buffer over-read in the function i2alaw_array (#1673086)���2o�G�Michal Hlavinka <mhlavink@redhat.com> - 1.0.25-11]�)�- fix CVE-2018-13139 - stack-based buffer overflow in sndfile-deinterleave utility (#1598577)
z~�zN��:[E�Kamil Dudka <kdudka@redhat.com> 1.8.0-1[�H�- rebase to 1.8.0 (#1592784)�-��9]��Kamil Dudka <kdudka@redhat.com> 1.4.3-12Y�A@- session: avoid printing misleading debug messages (#1503294)
- scp: send valid commands for remote execution (#1489733)~��8]�!�Kamil Dudka <kdudka@redhat.com> 1.4.3-11V��- use secrects of the appropriate length in Diffie-Hellman (CVE-2016-0787)
8�8x��=_��Kamil Dudka <kdudka@redhat.com> - 1.8.0-4]�{@- fix integer overflow in SSH_MSG_DISCONNECT logic (CVE-2019-17498)e��<[s�Kamil Dudka <kdudka@redhat.com> 1.8.0-3\�+@- sanitize public header file (detected by rpmdiff)�^��;[�c�Kamil Dudka <kdudka@redhat.com> 1.8.0-2\��- fix integer overflow in keyboard interactive handling that allows out-of-bounds writes (CVE-2019-3863)
- fix out-of-bounds memory comparison with specially crafted message channel request (CVE-2019-3862)
- fix out-of-bounds reads with specially crafted SSH packets (CVE-2019-3861)
- fix zero-byte allocation in SFTP packet processing resulting in out-of-bounds read (CVE-2019-3858)
- fix integer overflow in SSH packet processing channel resulting in out of bounds write (CVE-2019-3857)
- fix integer overflow in keyboard interactive handling resulting in out of bounds write (CVE-2019-3856)
- fix integer overflow in transport read resulting in out of bounds write (CVE-2019-3855)
x�;��|�xN��D[E�Kamil Dudka <kdudka@redhat.com> 1.8.0-1[�H�- rebase to 1.8.0 (#1592784)�-��C]��Kamil Dudka <kdudka@redhat.com> 1.4.3-12Y�A@- session: avoid printing misleading debug messages (#1503294)
- scp: send valid commands for remote execution (#1489733)~��B]�!�Kamil Dudka <kdudka@redhat.com> 1.4.3-11V��- use secrects of the appropriate length in Diffie-Hellman (CVE-2016-0787)���A]�-�Kamil Dudka <kdudka@redhat.com> 1.4.3-10UlI@- check length of data extracted from the SSH_MSG_KEXINIT packet (CVE-2015-1782)�/��@[��Kamil Dudka <kdudka@redhat.com> 1.4.3-9UH��- curl consumes too much memory during scp download (#1080459)
- prevent a not-connected agent from closing STDIN (#1147717)L��?]?�Daniel Mach <dmach@redhat.com> - 1.4.3-8R�U�- Mass rebuild 2014-01-24q��>wo�Tripp Waldrop <trwaldro@redhat.com> - 1.8.0-4.el7_9.1e
�- fix use-of-uninitialized-value (CVE-2020-22218)
8�8x��G_��Kamil Dudka <kdudka@redhat.com> - 1.8.0-4]�{@- fix integer overflow in SSH_MSG_DISCONNECT logic (CVE-2019-17498)e��F[s�Kamil Dudka <kdudka@redhat.com> 1.8.0-3\�+@- sanitize public header file (detected by rpmdiff)�^��E[�c�Kamil Dudka <kdudka@redhat.com> 1.8.0-2\��- fix integer overflow in keyboard interactive handling that allows out-of-bounds writes (CVE-2019-3863)
- fix out-of-bounds memory comparison with specially crafted message channel request (CVE-2019-3862)
- fix out-of-bounds reads with specially crafted SSH packets (CVE-2019-3861)
- fix zero-byte allocation in SFTP packet processing resulting in out-of-bounds read (CVE-2019-3858)
- fix integer overflow in SSH packet processing channel resulting in out of bounds write (CVE-2019-3857)
- fix integer overflow in keyboard interactive handling resulting in out of bounds write (CVE-2019-3856)
- fix integer overflow in transport read resulting in out of bounds write (CVE-2019-3855)
x�;��|�xN��N[E�Kamil Dudka <kdudka@redhat.com> 1.8.0-1[�H�- rebase to 1.8.0 (#1592784)�-��M]��Kamil Dudka <kdudka@redhat.com> 1.4.3-12Y�A@- session: avoid printing misleading debug messages (#1503294)
- scp: send valid commands for remote execution (#1489733)~��L]�!�Kamil Dudka <kdudka@redhat.com> 1.4.3-11V��- use secrects of the appropriate length in Diffie-Hellman (CVE-2016-0787)���K]�-�Kamil Dudka <kdudka@redhat.com> 1.4.3-10UlI@- check length of data extracted from the SSH_MSG_KEXINIT packet (CVE-2015-1782)�/��J[��Kamil Dudka <kdudka@redhat.com> 1.4.3-9UH��- curl consumes too much memory during scp download (#1080459)
- prevent a not-connected agent from closing STDIN (#1147717)L��I]?�Daniel Mach <dmach@redhat.com> - 1.4.3-8R�U�- Mass rebuild 2014-01-24q��Hwo�Tripp Waldrop <trwaldro@redhat.com> - 1.8.0-4.el7_9.1e
�- fix use-of-uninitialized-value (CVE-2020-22218)
8�8x��Q_��Kamil Dudka <kdudka@redhat.com> - 1.8.0-4]�{@- fix integer overflow in SSH_MSG_DISCONNECT logic (CVE-2019-17498)e��P[s�Kamil Dudka <kdudka@redhat.com> 1.8.0-3\�+@- sanitize public header file (detected by rpmdiff)�^��O[�c�Kamil Dudka <kdudka@redhat.com> 1.8.0-2\��- fix integer overflow in keyboard interactive handling that allows out-of-bounds writes (CVE-2019-3863)
- fix out-of-bounds memory comparison with specially crafted message channel request (CVE-2019-3862)
- fix out-of-bounds reads with specially crafted SSH packets (CVE-2019-3861)
- fix zero-byte allocation in SFTP packet processing resulting in out-of-bounds read (CVE-2019-3858)
- fix integer overflow in SSH packet processing channel resulting in out of bounds write (CVE-2019-3857)
- fix integer overflow in keyboard interactive handling resulting in out of bounds write (CVE-2019-3856)
- fix integer overflow in transport read resulting in out of bounds write (CVE-2019-3855)
x�;��|�xN��X[E�Kamil Dudka <kdudka@redhat.com> 1.8.0-1[�H�- rebase to 1.8.0 (#1592784)�-��W]��Kamil Dudka <kdudka@redhat.com> 1.4.3-12Y�A@- session: avoid printing misleading debug messages (#1503294)
- scp: send valid commands for remote execution (#1489733)~��V]�!�Kamil Dudka <kdudka@redhat.com> 1.4.3-11V��- use secrects of the appropriate length in Diffie-Hellman (CVE-2016-0787)���U]�-�Kamil Dudka <kdudka@redhat.com> 1.4.3-10UlI@- check length of data extracted from the SSH_MSG_KEXINIT packet (CVE-2015-1782)�/��T[��Kamil Dudka <kdudka@redhat.com> 1.4.3-9UH��- curl consumes too much memory during scp download (#1080459)
- prevent a not-connected agent from closing STDIN (#1147717)L��S]?�Daniel Mach <dmach@redhat.com> - 1.4.3-8R�U�- Mass rebuild 2014-01-24q��Rwo�Tripp Waldrop <trwaldro@redhat.com> - 1.8.0-4.el7_9.1e
�- fix use-of-uninitialized-value (CVE-2020-22218)

e�r+��V��:��eD�	�
f595ada1902e66bf4b5ae1c8ad3bf1f1092dee59bd392f2519b518dd24fc8e33D��
eb952f256def8d9b5c0ecaab67593927376bd7ec33819298399c3542e974f47bD��
3ab460e6bd274b4d17b8de62c56e1c66dc26fda6159f4e9f57be04e8bb94bc1aD��
2719ebeaea38face0d4ce2a92221526737bef4b1a797d1c4a93a640ef5251600D��
a271a288a9e5d486a7d0633c7bc2cacdc437a5653257949d7aea3b6090eebd74D��
ca1ec435ed2ce96fee64276f36654333806f220fe770817ae10d14688f42be20D��
576b6cc00210001f9cced4b7f0a9cce611a7ec4e4294bb24f514f685685d994dD��
e0a695f230a608e0bfdeba85a6146080546349b0d23836b272a5c44012b9fa09D��
5acff1ca859e33437e5bba88b3f8e1335360828b81bf51c413327aa84347242dD��
2ecaf9207562dd4f4767c7e478f1e8c603b1b90864ef3d2b0d210d4f60a1d9edD��
f5d9885773ed21397aa08232737d51af6803c1358395a2168b6820ce496d927fD�~�
b86b07e982db65a9de92fc9c7aa93f0d88b01391a29985f36ccf1ef735a3d904D�}�
7a692eca430d652a3cc0c216034cbd84562dbf07b12cc646e4c6e4d5ab7c2fe7x08�06<BHNTZ`flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������%<�%Q�%f�%z�,%��9%��F%��S%͘`%�m%��z&�& �&5�!&I�.&^�;&r�H&��U&��b&͙o&�|&��	'=�'��#'͚0(�=(\�J(��W(�d).�q)t�~)��*�*M�%*��2*כ?+�L+@�Y+U�f+��s+��+ڜ
,�,3�',`�4,��A,��N,ٜ[,�h-
�u-"�-7�-m�-��)-��6-��C-ǝP-؝]-�j-��w.��..�/�+/0�8/F�E/a�R/|�_/��l/��y/ß/ҟ/� /��-0�:0�G00�T0D�a0T�n0c�{0��0��0Ԡ"0�/1�<1�I19�V1P�c1k�p1��}1��
1��1�$2	�12,�>2P�K2u�X2��e2��r2�3�3~�3��&4�349�@4V�M4ۢZ5c�g5�t6u�6��7��7�(7��58�B8$�O88�\8J�i8\�v8o�8��
8�8x��[_��Kamil Dudka <kdudka@redhat.com> - 1.8.0-4]�{@- fix integer overflow in SSH_MSG_DISCONNECT logic (CVE-2019-17498)e��Z[s�Kamil Dudka <kdudka@redhat.com> 1.8.0-3\�+@- sanitize public header file (detected by rpmdiff)�^��Y[�c�Kamil Dudka <kdudka@redhat.com> 1.8.0-2\��- fix integer overflow in keyboard interactive handling that allows out-of-bounds writes (CVE-2019-3863)
- fix out-of-bounds memory comparison with specially crafted message channel request (CVE-2019-3862)
- fix out-of-bounds reads with specially crafted SSH packets (CVE-2019-3861)
- fix zero-byte allocation in SFTP packet processing resulting in out-of-bounds read (CVE-2019-3858)
- fix integer overflow in SSH packet processing channel resulting in out of bounds write (CVE-2019-3857)
- fix integer overflow in keyboard interactive handling resulting in out of bounds write (CVE-2019-3856)
- fix integer overflow in transport read resulting in out of bounds write (CVE-2019-3855)
x�;��|�xN��b[E�Kamil Dudka <kdudka@redhat.com> 1.8.0-1[�H�- rebase to 1.8.0 (#1592784)�-��a]��Kamil Dudka <kdudka@redhat.com> 1.4.3-12Y�A@- session: avoid printing misleading debug messages (#1503294)
- scp: send valid commands for remote execution (#1489733)~��`]�!�Kamil Dudka <kdudka@redhat.com> 1.4.3-11V��- use secrects of the appropriate length in Diffie-Hellman (CVE-2016-0787)���_]�-�Kamil Dudka <kdudka@redhat.com> 1.4.3-10UlI@- check length of data extracted from the SSH_MSG_KEXINIT packet (CVE-2015-1782)�/��^[��Kamil Dudka <kdudka@redhat.com> 1.4.3-9UH��- curl consumes too much memory during scp download (#1080459)
- prevent a not-connected agent from closing STDIN (#1147717)L��]]?�Daniel Mach <dmach@redhat.com> - 1.4.3-8R�U�- Mass rebuild 2014-01-24q��\wo�Tripp Waldrop <trwaldro@redhat.com> - 1.8.0-4.el7_9.1e
�- fix use-of-uninitialized-value (CVE-2020-22218)
8�8x��e_��Kamil Dudka <kdudka@redhat.com> - 1.8.0-4]�{@- fix integer overflow in SSH_MSG_DISCONNECT logic (CVE-2019-17498)e��d[s�Kamil Dudka <kdudka@redhat.com> 1.8.0-3\�+@- sanitize public header file (detected by rpmdiff)�^��c[�c�Kamil Dudka <kdudka@redhat.com> 1.8.0-2\��- fix integer overflow in keyboard interactive handling that allows out-of-bounds writes (CVE-2019-3863)
- fix out-of-bounds memory comparison with specially crafted message channel request (CVE-2019-3862)
- fix out-of-bounds reads with specially crafted SSH packets (CVE-2019-3861)
- fix zero-byte allocation in SFTP packet processing resulting in out-of-bounds read (CVE-2019-3858)
- fix integer overflow in SSH packet processing channel resulting in out of bounds write (CVE-2019-3857)
- fix integer overflow in keyboard interactive handling resulting in out of bounds write (CVE-2019-3856)
- fix integer overflow in transport read resulting in out of bounds write (CVE-2019-3855)
��2��
��ho�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��go�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]q��fwo�Tripp Waldrop <trwaldro@redhat.com> - 1.8.0-4.el7_9.1e
�- fix use-of-uninitialized-value (CVE-2020-22218)
���2��ko�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��jo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��io�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��lo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��mo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��no�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��qo�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���pq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���oo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��to�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��so�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��ro�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��uo�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��vo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��wo�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���zq�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���yq�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���xo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��}o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��|o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��{o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��~o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��	o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���
o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��
q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��!q�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|�� q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��#o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��"q�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��$o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���'q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���&q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���%o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��*q�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��)q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��(q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��-a�}
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��,}�

Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��+q�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��0a�	
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��/a�s
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��.a�
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��2g�;
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��1c�]
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��5g�
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��4g�{
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���3g�'
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��8i�s
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��7i�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��6g�w
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��;o�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��:k�]
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��9i�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��>o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��=o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��<o�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��?o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��@o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Bi�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Ai�s
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Do�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Ck�]
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Go�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Fo�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Eo�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ho�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Io�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��Ki�	
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��Jo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��Mo�;
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Lk�]
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Po�
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Oo�{
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��No�'
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Qo�w
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Ro�E
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��So�
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��To�m
	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]

e�r+��V��:��eD��
11b4c218357ae653cc94b8f934d6cb161e9887b9f18ebd5184628d644e2ec02fD��
95c0d1a3ba0c09becb41fdca9e7a82ee4f169e2c6bd810f7883f9414d007e4c3D��
e41dee63d125e890be93881d99ae457aaebbcaa795e8a90597fa3babf9dd5a67D��
ca7df206b32aa8f478b9a3751e1c7049c9f5302ca5417f2e0531f4bacadcf5dcD��
f6b96a84dad57397afdccb0873c1927936c50a3c80b0b8e632763ea46c6bd495D��
33cb91f162bf1272cbef0f8ac3f812a3af2b586d5be6e77a0a773db69590044bD��
94640be31162fbff22a0573cb0d7212f9516ed92f67a3553e720fa125d332b1fD��
7d44f440dcfa707ff7ed627fb7b3fb3254742dcf60373b386105ea09f4e14293D��
8d73e99ddd2060604e1a2bddc4b10b1b92cf6f81b0d2a05a103cebd6d052a316D�
�
4846ff9c3501bdbb24a3b5c855a6e385c608a7387446302cb070e7c305b0a087D��
f868ce40374cc82b06433374fe4cf3bba215a30f1d27cc97037f1c1d746e0c33D��
e668a6070cd6a22b4de750baa84e146e8e064e1a05849a958600f9b2d6b51c0dD�
�
905b3f686bda411e8b1469cccabec8ed3ae99a60153880597dd656cabc81a501
��t��Wo�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Vo�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��Uo�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��Yo�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Xo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��Zo�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��[o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��\o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��_o�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���^q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���]o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��bo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��ao�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��`o�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��co�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��do�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��eo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��fo�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��io�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���hq�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���go�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��lo�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��ko�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��jo�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��mo�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]bR'�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������' ��'!��'"��'#��!'$��#'%��$'&��'''��*'(��-')��0'*��2'+��5',��8'-��;'.��>'/��?'0��@'1��B'2��D'3��G'4��H'5��I'6��K'7��M'8��P'9��Q':��R';��S'<��T'>��W'?��Y'@��Z'A��['B��\'C��_'D��b'E��c'F��d'G��e'H��f'I��i'J��l'K��m'M��n'N��o'O��r'P��u'Q��v'R��w'S��x'T��y'U��|'V��'W��'X��'Y��'Z��'[��'\��	']��
'^��'_��'`��'a��'b��'c��'d��'e��'f��'g��'h��'i��'j��'k��"'l��%'m��&'n��''o��('p��+'q��.'r��/'s��0't��1'u��2'v��5'w��8'x��9'y��:'z��;'{��>'|��A'}��B'~��C'��D'���E'���H'���K'���M
::�A��no�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��oo�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���rq�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���qq�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���po�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��uo�

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��to�{

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��so�'

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��vo�w

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��wo�E

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��xo�

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��yo�m

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���|q�9

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���{q�O

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���zo�

Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��~o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��}o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��	o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��
o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���
o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���"q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���!q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down��� o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��%o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��$q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��#q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��&o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��'o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��(o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���+q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���*q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���)o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��.q�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��-q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��,q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��/o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��0o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��1o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��2o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���5q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���4q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���3o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��8q�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��7q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��6q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��9o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��:o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��;o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���>q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���=q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���<o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Aq�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��@q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��?q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��Bq�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��Co�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Do�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Eo�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Hq�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Gq�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Fo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Kq�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Jq�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Iq�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��Mo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��Lq�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��No�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Qq�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Pq�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Oo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Tq�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Sq�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Rq�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��Wo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��V}�

Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��Uq�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD�#�
820ba4ad8ead8e86f08c52f1683fb89e78daca198b5a3d010ccbda6eeb6afeedD�"�
b29691f0851773e177dbf1022fdd7407ebdb0329a1fb62e66ecd797a49de36deD�!�
b16a84b46233f40caa0d30fca524f23408cdf7301cecddbe17cc7b23be9336c9D� �
d2d65f2dde15fdba0abf08f0eba0a75c42ca7a41d64da706060132398e03a472D��
7813e68c7a683514d7f3a5da05d9e10253ff77a5a4efb99321ccd3176db9dd97D��
fb633afcbec86339bf68947e27f45d0baba732bf9a5f35de6dd47472c02091a8D��
6323899c2cf49904753b9b4050225498b3bce1cc5ae2893977e1201c90220e64D��
2f0b2cb6eb70e8325b1e26082c9f953fa3bbe383a04e9bad22161bf475931cd5D��
3119a1efea41b19b200e56173924d777ef2edb1f4cb0722d9c9d99b5001de9b2D��
6cd37a431fbb8cf1ad0ee95e2fbef2ca533dd95e28fed9e9845a74acd29cccbeD��
5005ebdd55f4e6e5ffc6888045041951f173c1227a635bb776b918e888efdfbaD��
878c505e878a659e3fe83b051ba1014e223ab1130afed6d39765703c451945b3D��
41f4c18963dcef2f45ef879ee1b029b4d4e655031847de4f3052176ca15d7892
NN�-��Xo�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���[q�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Zq�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Yo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��^q�Q
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��]q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��\q�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��aa�}
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��`}�

Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��_q�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��da�	
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��ca�s
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��ba�
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��fg�;
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��ec�]
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��ig�
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��hg�{
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���gg�'
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��la�
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��ka�}
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��jg�w
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��na�	
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��ma�s
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��pg�;
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��oc�]
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��sg�
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��rg�{
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���qg�'
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��vi�s
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��ui�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��tg�w
Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��yo�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��xk�]
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��wi�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��|o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��{o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��zo�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��}o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��~o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��i�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�s
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��o�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��
i�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��	i�s
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��o�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��
o�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��i�s
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��o�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��i�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��o�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��"o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��!o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
�� o�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��#o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��$o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��%o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��'i�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��&o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��)o�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��(k�]
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��,o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��+o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��*o�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper targetbR'�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������'���Q'���T'���W'���X'���['���^'���a'���d'���f'���i'���l'���n'���p'���s'���v'���y'���|'���}'���~'���'���'���'���'���'���
'���'���'���'���'���'���'���'���'���'���'���'���"'���#'���$'���%'���''���)'���,'���-'���.'���/'���0'���3'���5'���6'���7'���8'���;'���>'���?'���@'���A'���B'���E'�H'Â�I'Ă�J'ł�K'Ƃ�N'ǂ�Q'Ȃ�R'ɂ�S'ʂ�T'˂�U'̂�X'΂�['ς�\'Ђ�]'т�^'҂�a'ӂ�d'Ԃ�e'Ղ�f'ւ�g'ׂ�h'؂�k'ق�n'ڂ�o'ۂ�p'܂�q'݂�t'ނ�w'߂�x'�y'ႃz'₃{'ゃ~'䂄'傄'悄'炄'肄'還

���2��-o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��.o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��/o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��0o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��3o�{
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��2o�'
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��1o�;
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��5o�w
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��4o�
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��6o�E
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��7o�
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��8o�m
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��;o�;
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���:q�O
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���9o�
 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��>o�
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��=o�{
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��<o�'
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��?o�w
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��@o�E
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ao�
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Bo�m
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��Eo�'
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���Dq�O
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Co�
!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Ho�w
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Go�
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Fo�{
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Io�E
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Jo�
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Ko�m
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Nq�9
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Mq�O
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Lo�
"Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��Qo�
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Po�{
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Oo�'
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ro�w
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��So�E
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��To�
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Uo�m
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Xq�9
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Wq�O
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Vo�
#Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]

e�r+��V��:��eD�0�
232b24511b4ca567b436255eb6fe7f9fe68d66f2514a25334fc5cc4097d48238D�/�
d7bfd9d26185d5c9bbb6d7f10f8dfc69f1ef41dccd5f719b912299bbc532252fD�.�
f21d363926810e31889a7fa98205382c0b8de58aa4f45928c27d9e67046b9482D�-�
d9a010b778f886239f2f727be22f6e054b2c499ecf8ad2846b7837ce3764547bD�,�
8faaf8f128a420775ca80ce1a715e9558ae61ebfead1106052e080d3192d7162D�+�
ef8ede3695ebb9829a9403065f243ab8acef8f14316aabcc9b26c4255ee93bbeD�*�
f6b017a1e5d505f7794845950a247b12ba961e8bd6ea366098a0ca5e83e7acecD�)�
cb1bac17d8c7b1c7813cfbc4a050c0bd153b06a08874a369c55a1597e25d5a52D�(�
b181a29e8b480e5cdb16c69bd46f0085d124c0cf817f9faa339ebe447295beabD�'�
6123edb3ca2fb4af89e0aafdcc06a518dc2adf261f69c5208d7e0dcf72996887D�&�
2031956532e4c86af01a9e7885660b200d3432a40e8aa1938e571e99424f7b1dD�%�
13c6b2ac5e5019a9debc589efedb039c95513584922436476bdc65f0fa84b5e8D�$�
b9cdab2c69719f6bbf7b533475859fb6f47e37976e9c3f8dc8235fb67f98c995
���2��[o�w
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Zo�
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Yo�{
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��\o�E
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��]o�
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��^o�m
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���aq�9
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���`q�O
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���_o�
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��do�
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��co�{
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��bq�a
$Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��eo�w
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��fo�E
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��go�
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ho�m
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���kq�9
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���jq�O
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���io�
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��no�w
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��mo�
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��lq�a
%Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��oo�E
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��po�
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��qo�m
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���tq�9
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���sq�O
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ro�
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��wo�
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��vq�	
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��uq�a
&Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��xo�w
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��yo�E
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��zo�
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��{o�m
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���~q�9
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���}q�O
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���|o�
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��q�	
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��
q�Q
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��	q�	
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
(Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��o�w
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��
o�
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
)Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��q�
*Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��o�E
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A�� o�
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��!o�m
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���$q�9
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���#q�O
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���"o�
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��'q�Q
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��&q�	
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��%q�a
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��)o�
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��(q�
+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��*o�m
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���-q�9
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���,q�O
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���+o�
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��0q�Q
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��/q�	
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��.q�a
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��3o�
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��2}�

,Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��1q�
,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��4o�m
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���7q�9
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���6q�O
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���5o�
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��:q�Q
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��9q�	
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��8q�a
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��=a�}
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��<}�

-Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��;q�
-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��@a�	
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��?a�s
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��>a�
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��Bg�;
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��Ac�]
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��Eg�
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��Dg�{
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���Cg�'
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��Ha�
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��Ga�}
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��Fg�w
.Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��Ja�	
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��Ia�s
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��Lg�;
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��Kc�]
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��Og�
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��Ng�{
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���Mg�'
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��Ri�s
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��Qi�
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��Pg�w
/Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��Uo�;
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Tk�]
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Si�	
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Xo�
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Wo�{
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Vo�'
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Yo�w
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Zo�E
0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]

e�r+��V��:��eD�=�
445c2d91fe49788941d409448267b19e014c9f6354238fdee408aa1d585cfd01D�<�
496ee19b0bed3aa542d3fe7473b517f0eca004f3306333e343b200c30cdad5c7D�;�
a28c0efdadc06bf5a7278211745c542df980210b991db1532357b48d09b0e233D�:�
4eb469f0ca30f89921cee1b76ff6dd7b1c0025256c9be1d13e2d2c4dfbb1b927D�9�
dcac6f9cfc56c02c04c7a838dc97614858baaa53286986731947f8d1e57c98acD�8�
932effd782396fd543e9119dfb730e5009b85100c4e34c453d8c4079975172a7D�7�
a06df499751c88597c0ff2c9e3571f888ef5f4c900179b21dd22799ec89b624aD�6�
3c2c5a9be0e4c30b02e5553db78d0a3f434bf544273422faeab125baf392165eD�5�
5bba5c2f7eb1e8689b410449cc9ad15917af4897477ab8f44972e6e8c0298324D�4�
0ed0c68541bccf9732065a361a46692699a4a2ce01c4a502809c2c7c16a1d213D�3�
88ac00911754d4623eae65cfa475ed5082d7d2b0f2ed678b1b27991079abf58cD�2�
8e8d757181381eff83e8b40078f2dd69e053551b72a94cd397d0ddcad18a61eeD�1�
2d829e46da9b44d01cec2e07cdfb10a09d198cb3c3c5b5bb26d4f5db8f2a7853
��L�x��]i�	
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��\i�s
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��[i�
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��_o�;
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��^k�]
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��bo�
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��ao�{
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��`o�'
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��co�w
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��do�E
1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��fi�	
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��ei�s
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).bR(ORY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������'낄'삄
'킄'''�'�'�'�'�'���'���'��� '���!'���$'���''���)'���*'���-'���0'���3(��4(��7(��:(��=(��@(��B(��E(��H(��J(	��L(
��O(��R(��U(
��X(��Y(��Z(��](��_(��b(��c(��d(��f(��h(��k(��l(��m(��o(��r(��u(��v( ��w(!��y("��{(#��~($��(%��(&��('��((��()��(*��	(+��
(,��(-��(.��(/��(0��(1��(2��(3��(4��(5��(6��(7��(8��(9��!(:��$(;��%(<��&(=��'(>��*(?��-(@��.(A��/(B��0(C��1(D��4(E��7(F��8(G��9(H��:(I��=(J��@(K��A(L��B(M��C(N��D
���T��ho�;
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��gk�]
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��ko�
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��jo�{
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��io�'
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��lo�w
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��mo�E
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��oi�s
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��no�
2Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��ro�;
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��qk�]
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��pi�	
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��uo�
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��to�{
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��so�'
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��vo�w
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��wo�E
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��yi�	
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��xo�
3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��{o�;
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��zk�]
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��~o�
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��}o�{
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��|o�'
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��i�	
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��o�m
4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��o�;
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��	o�w
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��
o�E
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��o�{
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��
o�;
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��o�w
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��o�E
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��o�;
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���q�O
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
6Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��o�
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��!o�'
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target��� q�O
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
7Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��$o�w
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��#o�
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��"o�{
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��%o�E
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��&o�
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��'o�m
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���*q�9
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���)q�O
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���(o�
8Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��-o�
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��,o�{
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��+o�'
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��.o�w
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��/o�E
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��0o�
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��1o�m
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���4q�9
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���3q�O
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���2o�
9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��7o�w
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��6o�
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��5o�{
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��8o�E
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��9o�
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��:o�m
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���=q�9
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���<q�O
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���;o�
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��@o�
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��?o�{
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��>q�a
:Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��Ao�w
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Bo�E
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Co�
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Do�m
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Gq�9
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Fq�O
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Eo�
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Jo�w
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Io�
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��Hq�a
;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Ko�E
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Lo�
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Mo�m
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Pq�9
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Oq�O
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���No�
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��So�
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��Rq�	
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Qq�a
<Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��To�w
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Uo�E
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Vo�
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Wo�m
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Zq�9
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Yq�O
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Xo�
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��]o�w
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��\q�	
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��[q�a
=Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update

e�r+��V��:��eD�J�
168bff58938382034bb054ff55ce6aa5b0976326389d6260fbc85840fe154bd8D�I�
ca86ae6d34c40dee72606cee1e52e0dc9ab807fce4ecf71c5fbd47ec447bfbc9D�H�
820151304111db2bd87d6e5ae6446b11a958a081a44feb85b88cf0ec6c550aedD�G�
7744a295fd69e27c223298b284d7c8853f441d6b08e8333049ec0bbc9e32287cD�F�
2f36d8b2e3ff73bf61ed280b55eab167ae99178b23f186fbf6d4721158eb5a5aD�E�
ce07814a85fabc6115195714ab5d8670ba930a5369258eadf917f899881058b0D�D�
af9cf3acff909c4085ae929a3f5506bf2bed9dda37507802c11ad79e8d903390D�C�
263b13ff1007ce0f1a2b919dcc679eaee72fb8105b37c94235f23c5f710eb42dD�B�
ee029bb52291786cac00074d77fa338a3cdf2968607a5e85ffd05a69b46ebcddD�A�
9c0edeaeecaf19ea413db53d573ef306f6f69adbc4a87d9e0c522e0a6385b8d6D�@�
ccd6b1145000587fc43fbba493221eba1716a9183d64796c8e42beecbbad5afcD�?�
12944ec5810169ac73652bcbd5cc441c1d5a084cd3877df22452e21f63a8b978D�>�
94e1c0f560a6748a67411c8d4a86f1e3f8f7528cf1614061076e85844e120007
""�Y��^o�E
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��_o�
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��`o�m
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���cq�9
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���bq�O
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ao�
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��fq�Q
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��eq�	
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��dq�a
>Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��go�w
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��ho�E
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��io�
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��jo�m
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���mq�9
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���lq�O
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ko�
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��pq�Q
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��oq�	
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��nq�a
?Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��qo�E
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��ro�
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��so�m
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���vq�9
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���uq�O
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���to�
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��yq�Q
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��xq�	
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��wq�a
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��zq�
@Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��{o�E
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��|o�
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��}o�m
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���~o�
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��o�
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��q�
AAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�m
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���	q�9
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��
q�a
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��o�
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��}�

BEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��
q�
BAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�m
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��a�}
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��}�

CEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q�
CAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]bR(�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������(P��J(Q��K(R��L(S��M(T��P(U��S(V��T(W��U(X��V(Y��W(Z��Z([��](]��^(^��_(_��`(`��c(a��f(b��g(c��h(d��i(e��j(f��m(g��p(h��q(i��r(j��s(k��v(l��y(m��z(n��{(o��|(p��}(q��(r��(s��(t��(u��	(v��(w��(x��(y��(z��({��(}��(~��(��!(���$(���&(���((���+(���.(���1(���4(���5(���6(���9(���;(���>(���?(���@(���B(���D(���G(���H(���I(���K(���N(���Q(���R(���S(���U(���W(���Z(���[(���\(���](���_(���a(���d(���e(���f(���g(���h(���k(���m(���n(���o(���p(���s(���v(���w(���x(���y(���z(���}(���(���(���
�T�t��a�	
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��a�
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��g�;
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��c�]
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��!g�
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p�� g�{
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��$a�
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��#a�}
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��"g�w
DAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��&a�	
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��%a�s
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��(g�;
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��'c�]
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��+g�
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��*g�{
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���)g�'
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��.i�s
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��-i�
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��,g�w
EAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��1o�;
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��0k�]
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��/i�	
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��4o�
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��3o�{
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��2o�'
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��5o�w
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��6o�E
FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��9i�	
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��8i�s
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��7i�
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��;o�;
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��:k�]
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��>o�
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��=o�{
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��<o�'
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��?o�w
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��@o�E
GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Bi�	
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Ai�s
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Do�;
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Ck�]
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Go�
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Fo�{
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Eo�'
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ho�w
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Io�E
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��Ki�s
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��Jo�
HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��No�;
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Mk�]
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Li�	
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Qo�
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Po�{
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Oo�'
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ro�w
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��So�E
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��Ui�	
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��To�
IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��Wo�;
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Vk�]
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Zo�
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Yo�{
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Xo�'
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��[o�w
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��\o�E
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��]o�
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��_i�	
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��^o�m
JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]

e�r+��V��:��eD�W�
b31b9cf432a59766c6b5f9c8b9dfb6791a76a37c136babc439b16abef4d2ae11D�V�
bc42b202db19ddd70b5c8192eb30b148f6a3229d05aa0eaa7757cdfab321184eD�U�
a68751d71e847954a2206eba95e8947850efa80cb938416951ff10e842a23580D�T�
7c83aac8738db8a2cfb8c54ae4ea010d008959520d9078ac174ef677f712c83dD�S�
afa6cc1c77134d47d632ccdb524207f5d3993077790a943141d1dbd8cf0b211cD�R�
cbca2af9e05f80103f7d418c99cb1e8808a0b5b2aeb348a19e6ec009ccfe7972D�Q�
bd426d0e03bbd097435638bf127e0f1c2cd5e3fbaa1161378173491fadba6adbD�P�
08eccef6a2ce6a06f95c7ad30f3fdd7db91e89b3991bbe05cc786dee1ccc9074D�O�
823e82a094d45f0cabd438920e6e33584712ea5e4c9e767ad9d3d1a34b4ee0e2D�N�
ace47954cb2fb4fba9ee4f0144a123a7fcd2343db0c8f16037bd3439f3b38736D�M�
f7bd069d04d994e785e1883f97be7c9af76091600cb13d99b634f878bb79c5e0D�L�
21c9f734ac2660b9ca8602966521796728c6e3830a5aa75fda5d6c6674d2f5d3D�K�
3990236c7fd1972169692ed6297dee2d25331fe73bf38ac66bd45bb990ed139a
���T��ao�;
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��`k�]
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��do�
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��co�{
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��bo�'
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��eo�w
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��fo�E
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��go�
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ho�m
KAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��ko�{
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��jo�'
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��io�;
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��mo�w
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��lo�
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��no�E
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��oo�
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��po�m
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��so�;
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���rq�O
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���qo�
LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��vo�
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��uo�{
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��to�'
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��wo�w
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��xo�E
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��yo�
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��zo�m
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��}o�'
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���|q�O
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���{o�
MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��~o�{
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��	o�
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��
o�w
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��
o�m
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��q�a
PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��o�w
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-�� o�m
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���#q�9
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���"q�O
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���!o�
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��&o�w
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��%o�
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��$q�a
QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��'o�E
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��(o�
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��)o�m
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���,q�9
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���+q�O
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���*o�
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��/o�
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��.q�	
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��-q�a
RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��0o�w
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��1o�E
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��2o�
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��3o�m
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���6q�9
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���5q�O
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���4o�
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��9o�w
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��8q�	
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��7q�a
SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��:o�E
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��;o�
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��<o�m
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���?q�9
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���>q�O
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���=o�
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Bq�Q
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Aq�	
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��@q�a
TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��Co�w
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Do�E
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Eo�
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Fo�m
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Iq�9
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Hq�O
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Go�
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Lq�Q
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Kq�	
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Jq�a
UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Mo�E
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��No�
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]bR)RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������(���(���	(���
(���(���(���
(���(���(���(���(���(���(�(Â�(Ă�(ł�(Ƃ� (ǂ�#(Ȃ�&(ɂ�'(ʂ�((˂�)(̂�,(͂�/(΂�0(ς�1(Ђ�2(т�3(҂�6(ӂ�9(Ԃ�:(Ղ�;(ւ�<(ׂ�?(؂�B(ق�C(ڂ�D(ۂ�E(܂�F(݂�I(ނ�L(߂�M(�N(₇O(ょR(䂇U(傇V(悇W(炇X(肇Y(邇\(ꂇ_(낇a(킇b(e(h(�k(�l(�o(�r(�u(���x(���z(���}(���(���(���(���(���
(���
(���(���)��)��)��)��)��)��)��)�� )��#)	��$)
��%)��')��*)
��-)��.)��/)��1)��3)��6)��7)��8)��9)��;)��=)��@)��A
NN�-��Oo�m
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Rq�9
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Qq�O
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Po�
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Uq�Q
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Tq�	
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Sq�a
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��Vq�
VAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��Wo�E
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Xo�
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Yo�m
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���\q�9
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���[q�O
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Zo�
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��_q�Q
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��^q�	
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��]q�a
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��ao�
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��`q�
WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD�d�
e96f88c3dd68cba08085ab79ac4207e040e7c65ade70b55699f2e7ff5fa8e7bfD�c�
d41f2ba7244ea561f95aae87e10fc0d097ee72ed2f5cf1cb1e7455374f1add83D�b�
da23c291f94eaf3fa1751e0812449824e582ca5853fa7e71e730f6f1fb2e0327D�a�
84ff86ac505c0857bbf75916d7ef4b6be65454e5dd5ec6ed67ec662a819c10e0D�`�
e75e5f7dc4aac557d9b274de60d58b81f3549dd86073ed6505512e434de72884D�_�
b1e85cc0f0d7b4783c129d2855d494d189e1974a9dfc0cafeac3f27cae0d79deD�^�
7003e053072c0715532264432024d1fce948f74d5ed2f2cef63aee418dfd47a5D�]�
5544075a70cc259a73eb5555c11efef72bbad8385da2d376a511efce351ff5dfD�\�
cc04b6fd7a53d6566cf64cd227d959dc95f522bc3b6e773b8a1346ff987aedd2D�[�
d4f34dceeada317c1daa9f144ef934ddb2e8268f3b1e5ea56ff174ca96919479D�Z�
681f16ea3fafb50e4f8583381026ef08759cc8c327b923cb4b822515b1d02144D�Y�
97b86b131c407c89d83051cf1a4f98e0807a3198b30346ee90104748242d3bc2D�X�
1b9318b477ed42cea383e924a42367b049b54e29451b58ab4f7761a1c26052d4
NN�-��bo�m
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���eq�9
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���dq�O
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���co�
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��hq�Q
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��gq�	
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��fq�a
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��ko�
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��j}�

XEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��iq�
XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��lo�m
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���oq�9
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���nq�O
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���mo�
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��rq�Q
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��qq�	
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��pq�a
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��ua�}
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��t}�

YEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��sq�
YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��xa�	
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��wa�s
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��va�
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��zg�;
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��yc�]
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��}g�
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��|g�{
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���{g�'
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��a�
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��a�}
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��~g�w
ZAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��a�	
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��g�;
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��c�]
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g�
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��
i�s
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��	i�
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�w
[Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��
o�;
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o�
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��i�	
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�s
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��o�;
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��i�	
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�s
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T�� o�;
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��#o�
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��"o�{
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��!o�'
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��$o�w
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��%o�E
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��'i�s
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��&o�
^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��*o�;
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��)k�]
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��(i�	
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��-o�
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��,o�{
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��+o�'
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��.o�w
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��/o�E
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��1i�	
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��0o�
_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��3o�;
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��2k�]
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��6o�
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��5o�{
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��4o�'
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��7o�w
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��8o�E
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��9o�
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��;i�	
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��:o�m
`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��=o�;
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��<k�]
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��@o�
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��?o�{
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��>o�'
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ao�w
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Bo�E
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Co�
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Do�m
aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��Go�{
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Fo�'
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��Eo�;
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��Io�w
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Ho�
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��Jo�E
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ko�
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Lo�m
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��Oo�;
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���Nq�O
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Mo�
bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��Ro�
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Qo�{
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Po�'
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��So�w
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��To�E
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Uo�
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Vo�m
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��Yo�'
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���Xq�O
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Wo�
cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��\o�w
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��[o�
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Zo�{
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��]o�E
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��^o�
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��_o�m
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���bq�9
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���aq�O
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���`o�
dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]

e�r+��V��:��eD�q�
dbdc73fdef9098f3a36034a34baac0fea56523a9d5f32161ee961570387e2ab1D�p�
841d060e918275386a6f0807073b7dfbf1d8b8ef4e46c4ac35317a6f61457d8eD�o�
4aca2e6c6e4faa4ced065ea161be76f436ab64e5f16cd84c5a0378ab451f1d80D�n�
dd26f40a18d45abe032d5e12209ca47ece3291fb0c9b2777688d685549c62407D�m�
0fcf726d57a4432750417154846f7c22cecf1bd6d6e09cbccc91d48290d7d69fD�l�
18ff9230e89f660287403152d255b18ab93e778ca6eb16560d9f2a33b716775fD�k�
a4f562d2bfa43893cbae16d48549de733cb308300b8e00392e586a0a8337ba28D�j�
2945d0d59bd61b57919da46f45e6437971f4b5d914e30049df9465e3f9159275D�i�
5c8c85c382c8ac22f1c5330ee708bcb6604c6ac08bd86bb0cecc265c1123d786D�h�
b9f7953bb8ad08f44b13f7946b99015a8a305f7022e1575b7243c15e252d3cfdD�g�
bc347437d264c256ccfc842e7dd7fc5bfc2649f300c61c63b59dc2676631e404D�f�
26e499c5c940c85a9dc99a8198b266b67825eeb218071c6b6d0848d7e3ba9b92D�e�
f8321c847bc9b5ba2834eb175db280c4c1ab904ea8bbe5ce080e0e4a7f8e9536
wqxw�|��eo�
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��do�{
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��co�'
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��fo�w
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��go�E
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��ho�
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��io�m
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���lq�9
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���kq�O
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���jo�
eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��oo�w
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��no�
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��mo�{
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��po�E
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��qo�
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ro�m
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���uq�9
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���tq�O
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���so�
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��xo�
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��wo�{
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��vq�a
fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��yo�w
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��zo�E
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��{o�
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��|o�m
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���~q�O
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���}o�
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a
gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��
q�	
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��	q�a
hAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��o�w
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper targetbR)�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������)��C)��D)��G)��I)��J) ��K)!��L)"��O)#��R)$��S)%��T)&��U)'��V)(��Y))��\)*��])+��^),��_)-��b)/��e)0��f)1��g)2��h)3��i)4��l)5��o)6��p)7��q)8��r)9��u):��x);��y)<��z)=��{)>��|)?��)@��)A��)B��)C��)D��)E��)F��)H��
)I��)J��)K��)L��)M��)N��)O��)P��)Q��)R��)S�� )T��!)U��")V��%)W��()X��))Y��*)Z��+)[��.)\��1)]��2)^��3)_��4)`��5)a��8)b��;)c��=)d��>)e��A)f��D)g��G)h��H)i��K)j��N)k��Q)l��T)m��V)n��Y)o��\)p��^)q��`)r��c)s��f)u��i)v��l)w��m)x��n)y��q)z��s){��v)|��w)}��x)~��z)��|
""�Y��
o�E
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��q�	
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
iAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��o�w
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y�� o�E
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��!o�
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��"o�m
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���%q�9
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���$q�O
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���#o�
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��(q�Q
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��'q�	
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��&q�a
kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��)o�E
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��*o�
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��+o�m
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���.q�9
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���-q�O
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���,o�
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��1q�Q
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��0q�	
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��/q�a
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��2q�
lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��3o�E
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��4o�
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��5o�m
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���8q�9
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���7q�O
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���6o�
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��;q�Q
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��:q�	
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��9q�a
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��=o�
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��<q�
mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��>o�m
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Aq�9
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���@q�O
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���?o�
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Dq�Q
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Cq�	
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Bq�a
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��Go�
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��F}�

nEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��Eq�
nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��Ho�m
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Kq�9
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Jq�O
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Io�
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Nq�Q
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Mq�	
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Lq�a
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��Qa�}
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��P}�

oEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��Oq�
oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��Ta�	
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��Sa�s
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��Ra�
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��Vg�;
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��Uc�]
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��Yg�
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��Xg�{
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���Wg�'
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��\a�
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��[a�}
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��Zg�w
pAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��^a�	
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��]a�s
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��`g�;
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��_c�]
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��cg�
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��bg�{
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���ag�'
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��fi�s
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��ei�
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��dg�w
qAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target

e�r+��V��:��eD�~�
2ab47339de73a640409073095dc5c6953e2918938b772d47f1402c12c8954584D�}�
cb8ea18480b29a851f5294a367ac6b15344338149139ef7f7230a7888c960c7dD�|�
4110581b81ae9c5b81888451ef2d92b364bd02c2919a96ed2f541d4b690b1932D�{�
d3025de9185bb10743b56de3b1a535e26b438db0b43bb7d1b8859d2681a8a2c4D�z�
d31bb4f7fa204fe5abb6eb2d32b3dbf61485358f507f608be3bec49ef46e3e5eD�y�
5016630a65d39bcfb9fe686d8dda94e2b896afc8b8c41f7c29a6bc5d3305884eD�x�
40fbdb5955ea06836fc5cd49841d43c8ca177c4a345a3731b7fdcb0e482fcde0D�w�
6c6c39f0c94adba5ee8c50460abf33d8b6c2d1741b4e3882ed1436af7ced0d88D�v�
eb03c3bd51b0bec375b458b8d72953391f35f59d1ffa7969433da6b1fecf8867D�u�
55556c4993ccacf2204ccfa733c8e105f1bc1cd4accc50b36960aa8c6a339aeaD�t�
027f9ce824c240ccb21c3c503958433eb772483c1fe803ce30f44f232c06eaf4D�s�
baf17e426a993485d612c72f85e502e6494151b0c2a6581a932bb3bddd9a2d65D�r�
a1b2bb66bfc18162bd1422b81f7e29c65df69760c35e15b769b04c93743d3fd9
C��C�T��io�;
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��hk�]
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��gi�	
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��lo�
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��ko�{
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��jo�'
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��mo�w
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��no�E
rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��qi�	
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��pi�s
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��oi�
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��so�;
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��rk�]
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��vo�
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��uo�{
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��to�'
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��wo�w
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��xo�E
sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��zi�	
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��yi�s
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��|o�;
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��{k�]
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��~o�{
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��}o�'
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��i�s
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��o�
tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��o�;
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��	o�
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��
o�w
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��
i�	
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o�
uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��o�;
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��i�	
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��o�m
vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��o�;
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-�� o�m
wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��#o�{
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��"o�'
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��!o�;
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��%o�w
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��$o�
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��&o�E
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��'o�
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��(o�m
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��+o�;
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���*q�O
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���)o�
xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��.o�
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��-o�{
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��,o�'
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��/o�w
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��0o�E
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��1o�
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��2o�m
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��5o�'
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���4q�O
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���3o�
yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��8o�w
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��7o�
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��6o�{
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��9o�E
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��:o�
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��;o�m
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���>q�9
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���=q�O
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���<o�
zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��Ao�
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��@o�{
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��?o�'
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Bo�w
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Co�E
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Do�
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Eo�m
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Hq�9
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Gq�O
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Fo�
{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]bR)�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������)���)���)���)���)���	)���
)���)���
)���)���)���)���)���)���)���)���)���)���)���)��� )���#)���%)���&)���')���()���+)���.)���/)���0)���1)���2)���5)���8)���9)���:)���;)���>)���A)���B)���C)���D)���E)���H)���K)���L)���M)���N)���Q)���T)���U)���V)���W)���X)���[)���^)���_)���`)���a)���d)���g)���h)���i)���j)�k)Â�n)Ă�q)ł�r)Ƃ�s)ǂ�t)Ȃ�w)ɂ�z)ʂ�{)˂�|)̂�})͂�~)΂�)ς�)Ђ�)т�)҂�)ӂ�
)Ԃ�
)Ղ�)ւ�)ׂ�)؂�)ق�)ڂ�)ۂ�)܂�)݂�)ނ� )߂�#)�$)ႋ')₋*)る-)䂋0
���2��Ko�w
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Jo�
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Io�{
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Lo�E
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Mo�
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��No�m
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Qq�9
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Pq�O
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Oo�
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��To�
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��So�{
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��Rq�a
|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��Uo�w
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Vo�E
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Wo�
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Xo�m
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���[q�9
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Zq�O
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Yo�
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��^o�w
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��]o�
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��\q�a
}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��_o�E
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��`o�
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ao�m
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���dq�9
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���cq�O
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���bo�
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��go�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��fq�	
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��eq�a
~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update

e�r+��V��:��eD��
59502bb5d4a7b0894afa700c66752b3529c815f645f28c3b1c2b321d7ddd2629D�
�
7e8e536933fb7b0d5a5fc7670bcd56337af338f221f564415328864f937088adD�	�
ddcaa350e33d1c8dbffab5d04b8b98a223178542f0bbbc0bffdae33e41b18241D��
8c178f2dd6153d2d3dcfef1a3398ac4285de7accb9561c9a03366def1b7c2aa3D��
f6d493768ae9d25baa9e023ca6cee4fb1666c5cbd53f8c18631342dc3e38f221D��
684dee15b7f2949d1127299fe87e939137acab9c8ab3a3b6ad0e0604573ea8a2D��
6bd554a06d2cacb7334035a74ef3a0a10379a000a628cc964aba4a5a4c8d82e8D��
7db76247917b09c13f39c3f19f3ecbd478e5c46584b6d8ff68a51268b0251871D��
c03dc4d5e3cc2cadf7460b3f8fd8f02f0716c8e9ab44b6c38b6ac28113d2f65dD��
be758c7001ddef751029603c28bb7e9f4c05b54b45fdf3ce79e59de8ae0d7426D��
8747532845b7b53c68c46cbd4ae380333a36f007a086d57f8e04ec356181bc5dD��
e7dfe1246a7bc34d021885e09adac136307a97c7a0acc867665ed6f71b091d48D��
2b1dab8460db8d4ed73a10ff93169013dc92d4a6925455ed9bafce32fb719ae7
���2��ho�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��io�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��jo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ko�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���nq�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���mq�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���lo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��qo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��pq�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��oq�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��ro�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��so�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��to�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���wq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���vq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���uo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��zq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��yq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��xq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��{o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��|o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��}o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��~o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���
q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���	q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��
q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��q�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��q�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� �� q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��#o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��"}�

�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��!q�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��$o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���'q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���&q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���%o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��*q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��)q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��(q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��-a�}
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��,}�

�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��+q�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��0a�	
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��/a�s
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��.a�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��2g�;
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��1c�]
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��5g�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��4g�{
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���3g�'
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��8a�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��7a�}
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��6g�w
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��:a�	
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��9a�s
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��<g�;
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��;c�]
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��?g�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��>g�{
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���=g�'
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��Bi�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��Ai�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��@g�w
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��Eo�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Dk�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Ci�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Ho�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Go�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Fo�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Io�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Jo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��Mi�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Li�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��Ki�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��Oo�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Nk�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Ro�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Qo�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Po�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��So�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��To�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Vi�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Ui�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Xo�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Wk�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��[o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Zo�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Yo�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��\o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��]o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��_i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��^o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��bo�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��ak�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��`i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��eo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��do�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��co�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��fo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��go�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��ii�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��ho�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]

e�r+��V��:��eD��
c48a58dcffbae76ac3c3c2d01d36951eb5a8df91ec715371c54637f6cdeb4f19D��
1bf8bba46b2c5ea348a5a25ac9f2104263ce970c23bc3860e64178099e215f79D��
1de65c5f5091d176efefe324dee42e11290463e4e9d6a45c2bafe24ff7a3a8e7D��
105a6b516b3b76e51de1f49c194fc9e35f3a871f57878abbb5b6a53bc54dbc8cD��
9a1fd5f559898dbaf4d03b56d97b096c2b79fc34289877bfec44204cca9aa895D��
87fe3fb7cde1d8eee7a0811446e9f57ce979666bc9e6e29ac3cc9efc60d86d02D��
57060ad1d840d5c5b714fe83a3d14486758cf9d186bea54eeb40b00a53427f02D��
1be054e17c50261a454bf852731c5ce00520ff292c6811df3d49ab473f540a41D��
4b4af671ab41596e55314e4e7f8cb70452287460fc44b844405f9035b7823f84D��
5d59acc61e4c24682f9a5b9b41b1c5f8974de87c4a1fb4e029e9131a51888c38D��
82615b5f75a4fb89fd8a9662bc57f478e82e61656145912b4cf6dc7349a9b42dD�
�
2735ed4ad4e07e41a6e6b59da981af90e90b0bb1e85343189ce011e147af53ccD��
d16ae7c3c974cef652ff9b87037d3450587a3df6ff7e04c65cade8d7bdebe945
���T��ko�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��jk�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��no�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��mo�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��lo�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��oo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��po�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��qo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��si�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��ro�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��uo�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��tk�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��xo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��wo�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��vo�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��yo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��zo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��{o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��|o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��~o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��}o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]bR*JRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������)悋5)炋8)肋:)邋<)ꂋ?)낋B)삋E)킋H)I)J)�M)�O)�R)�S)�T)���V)���X)���[)���\)���])���_)���b)���e)���f)���g)���i*��k*��n*��o*��p*��q*��s*��u*��x*	��y*
��z*��{*��|*
��*��*��*��*��*��*��
*��*��*��
*��*��*��*��*��*��*��*��* ��*!��*"�� *#��!*$��$*%��'*&��(*'��)*(��**)��-**��0*+��1*,��2*-��3*.��4*/��7*0��:*1��;*2��<*3��=*4��@*5��C*6��D*7��E*8��F*9��G*:��J*;��M*<��N*=��O*>��P*?��S*@��V*A��W*B��X*C��Y*D��Z*E��]*F��`*G��a*H��b*I��c
|��T��o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��
o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��	o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��
o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A�� o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��!o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���$q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���#q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���"o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��'o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��&o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��%o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��(o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��)o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��*o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���-q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���,q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���+o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��0o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��/o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��.q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��1o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��2o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��3o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��4o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���7q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���6q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���5o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��:o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��9o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��8q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��;o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��<o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��=o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���@q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���?q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���>o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��Co�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��Bq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Aq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��Do�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Eo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Fo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Go�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Jq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Iq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ho�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Mo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Lq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Kq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��No�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Oo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Po�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Sq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Rq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Qo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Vq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Uq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Tq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��Wo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Xo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Yo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Zo�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���]q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���\q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���[o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��`q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��_q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��^q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��ao�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��bo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��co�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���fq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���eq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���do�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��iq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��hq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��gq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��jq�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD�%�
7fdb130eab949bc403e1c3601e83e6c3cbc7954955279ba1bea21124e1e5de38D�$�
5ee8683f8c93ce6cd407d16531478f99660fed0dd9f582ce317a1aeb518e6484D�#�
f8276a4628fde1b9537d7805763e64371f666ae7c100b439e3e89016471525d9D�"�
ebfa2d89f68f1f01852d54bde30581583c8843675d4c7bd6d2d5474a0d29fc5aD�!�
f94a030f57e0305ea48372f1b189a3297e92fb634475062f758ad5de5eec967eD� �
45ea6e4e3244ee8c391939ed27d9667af07cbcf7e683b8241c444b5dc4340f93D��
caf6cf5af9791e8fd3e3612202b1fe3208956e0f50b7add46fc8761ba8265cc3D��
b77480a5bbcbb658aa18aaa138438f5924d6978f45f40b09f5958c6479004c18D��
c43dc5cc0d5557e10da9f67c4460ea748ef4efdd5608a73b33c14113ebe7dd76D��
225dcf54b58bc05175127f8b4645952fb99ba04b377f788b193dd25888a029efD��
e70fc2d0e61c7e1f8c65da239c406fae5141f1efae29ff4e2ded90e4f2271ac7D��
5b9aa9d2efdec945a27722458f45fc65a0105bf5378594552fe8bc991a4e86e1D��
970bcc7ec1c59c73d7a05a3364494e66e1a3bc0882edd7eb63d85aebcd8c059f
""�Y��ko�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��lo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��mo�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���pq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���oq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���no�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��sq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��rq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��qq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��uo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��tq�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��vo�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���yq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���xq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���wo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��|q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��{q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��zq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��~}�

�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��}q�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��	a�}
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��}�

�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��a�	
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��
a�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��g�;
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��
c�]
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��a�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��a�}
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��g�w
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��a�	
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��g�;
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��c�]
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�w
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��!o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c�� k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��$o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��#o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��"o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��%o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��&o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��)i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��(i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��'i�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��+o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��*k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��.o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��-o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��,o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��/o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��0o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��2i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��1i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��4o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��3k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��7o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��6o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��5o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��8o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��9o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��;i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��:o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��>o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��=k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��<i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Ao�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��@o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��?o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Bo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Co�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]bR*�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������*K��i*L��j*N��k*O��l*P��m*Q��p*R��s*S��u*T��v*U��y*V��|*W��*X��*Y��*Z��*[��	*\��*]��*^��*_��*`��*a��*b��*c��*d��!*e��$*f��%*g��&*h��)*i��+*j��.*k��/*l��0*m��2*n��4*o��7*p��8*q��9*r��;*s��>*t��A*u��B*v��C*x��E*y��G*z��J*{��K*|��L*}��M*~��O*��Q*���T*���U*���V*���W*���X*���[*���]*���^*���_*���`*���c*���f*���g*���h*���i*���j*���m*���p*���q*���r*���s*���v*���y*���z*���{*���|*���}*���*���*���*���*���*���	*���*���
*���*���*���*���*���*���*���*���*���*���*��� *���!
�:�x��Ei�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��Do�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��Go�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Fk�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Jo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Io�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Ho�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ko�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Lo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Mo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��Oi�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��No�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��Qo�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Pk�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��To�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��So�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Ro�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Uo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Vo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Wo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Xo�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��[o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Zo�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��Yo�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��]o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��\o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��^o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��_o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��`o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��co�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���bq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ao�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��fo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��eo�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��do�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��go�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��ho�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��io�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��jo�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��mo�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���lq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ko�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]

e�r+��V��:��eD�2�
b7e3524e3d408eca2c519e323f8b8841358c3ee89c7362d30b856ed807a0cad7D�1�
32f371a2fb734b59d724e7f158a6b7786a4e7608c6e9200aacc4b1624c2d55feD�0�
053bab8c7482789ca2a4d26eacb17ea07e87c7b88691ebeea4df085b8ee8b0c4D�/�
6d3e0ab4e00db4dbaa9adaaeda6959ba06c02854163d2f14ce6376153c971409D�.�
6167999a4aa9b0b7fd775e20f7868e663374c2934e84072c1c95adbb617120f3D�-�
ec526953368001477a55a50c3cc2a5d51c651ebf782ccc4a61d9c0cd7dd37edaD�,�
219e0773f6cf831ca0c2983c48e45797cf1ed6150a23e416cebe02b6c43d5d35D�+�
0575f05deb1df2512ee0e962ca3a090704d98dca573c138f4280f758c83cc88aD�*�
94700baa2330493c2173bb7d59f922ff0cf174e02a7abbada312d73458b2870fD�)�
c5cb7460760e2885f04cef6e4c190e295bc38c25d8654fc325e8b08c5f835ffdD�(�
3494247306924b94b55f3da45af759539e2b9710c85996ca25ee2b838ccaf8d9D�'�
0bbfce2dd7e12ca5610015aba9f167cbc4cc29d360a77f3801b7508618bb17fbD�&�
28a4508ffc1c1668b23b1b346fa1d8f6999482b63898c282fcc25247623bd55e
���2��po�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��oo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��no�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��qo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��ro�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��so�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���vq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���uq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���to�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��yo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��xo�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��wo�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��zo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��{o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��|o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��}o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���~o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���	q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��
q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��
o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2�� o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��!o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��"o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��#o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���&q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���%q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���$o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��)o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��(q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��'q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��*o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��+o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��,o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���/q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���.q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���-o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��2q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��1q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��0q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��3o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��4o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��5o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��6o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���9q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���8q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���7o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��<q�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��;q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��:q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��=o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��>o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��?o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Bq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Aq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���@o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Eq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Dq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Cq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��Fq�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��Go�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ho�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Io�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Lq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Kq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Jo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Oq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Nq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Mq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��Qo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��Pq�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��Ro�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Uq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Tq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���So�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Xq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Wq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Vq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��[o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��Z}�

�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��Yq�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��\o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���_q�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���^q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���]o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��bq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��aq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��`q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��ea�}
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��d}�

�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��cq�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��ha�	
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��ga�s
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��fa�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��jg�;
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��ic�]
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��mg�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��lg�{
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���kg�'
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��pa�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��oa�}
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��ng�w
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target

e�r+��V��:��eD�?�
f547d5c45db4604dbe0d39eae1befa3f083f7d65e124d7458ba4032e3ab8a287D�>�
9a702b71630a1f6857d6968df97b744cb45fd56fec8f16edbef0148661381390D�=�
d39bb4b8585a8c347658eb0e4b8c573ecb73f3bbb4c1b07af1b30a7d8cacce0cD�<�
7d581bf8155fdcfdd7570ca3bd524e4ab64b42a8bcbfe776cc2d97ca9fd25264D�;�
5cdfe7f1d4c546122d7808d352018750bdf5bdc270398c9f41c3414349e3f861D�:�
fc910dd4afd1311d8be1bdce2147613448f4162c19797bb345c5b725efff1d08D�9�
f3aa08ddf57c680c2b4642a22c261e11569a25f83c746d38afc1173fef7580f0D�8�
1cd646bb6272d044e00b987d196c13c7541d1e953946dd96356956e301fda53fD�7�
cfcfe9d9ae37170dc134b041696f09f451bb92f77ec37a8f19b080810bd0f006D�6�
4d7007f3cf68064e511dec0623843f0d41c7dee3f69d1b581ca0a6e9069cf098D�5�
5b750b8f5db8f4ebe68335063aeb85fc0c687063ea49ab0c7ba1275baf6245c9D�4�
b3cd6ec6014704060af86c8caa9a9ecbd7c3c5c0ca064b886bda0a31117ad014D�3�
82f985084dd4473e97f352c4919005eac36a824d8c9490c80095912a2f94e3c5
�R�t��ra�	
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��qa�s
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��tg�;
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��sc�]
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��wg�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��vg�{
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���ug�'
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��zi�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��yi�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��xg�w
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��}o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��|k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��{i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 LocalizationbR+RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������*���#*���&*���)*���**���+*���,*���/*���2*���3*���4*���5*���6*���9*���<*���=*���>*���?*�B*Â�E*Ă�F*ł�G*Ƃ�H*ǂ�I*Ȃ�L*ɂ�O*ʂ�Q*˂�R*̂�U*͂�X*΂�[*ς�\*Ђ�_*т�b*҂�e*ӂ�h*Ԃ�j*Ղ�m*ւ�p*؂�r*ق�t*ڂ�w*ۂ�z*܂�}*ނ�*߂�*�*ႏ*₏*わ
*䂏*傏*悏*炏*肏*邏*ꂏ*낏*삏*킏***�!*�#*�&*�'*�(*���)*���+*���-*���0*���1*���2*���3*���4*���7*���9*���:+��;+��<+��?+��B+��C+��D+��E+��H+��K+	��L+
��M+��N+��Q+
��T+��U+��V+��W+��Z+��]+��^+��_
wqxw�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��~o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��
o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��	o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��
i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��!i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A�� o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��#o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��"k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��&o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��%o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��$o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��'o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��(o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��)o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��+i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��*o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��-o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��,k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��0o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��/o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��.o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��1o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��2o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��3o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��4o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��7o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��6o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��5o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��9o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��8o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��:o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��;o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��<o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��?o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���>q�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���=o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Bo�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Ao�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��@o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Co�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Do�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Eo�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Hq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Gq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Fo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Ko�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Jo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Io�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Lo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Mo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��No�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Qq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Pq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Oo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��To�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��So�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��Rq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Uo�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Vo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Wo�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Zq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Yq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Xo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��]o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��\q�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��[q�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��^o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��_o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��`o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���cq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���bq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ao�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��fq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��eq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��dq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��go�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��ho�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��io�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���lq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���kq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���jo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��oq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��nq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��mq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��qo�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��pq�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD�L�
a2e16e3449f1d216456cce32c996514ef5ca92cbe8e4e01823b44edb2054748fD�K�
f8d5011b3c0674720d0b3957a9b73860210ff186379452e0225431f7619a349fD�J�
00ee764e0982d01d4e6bb4be901fe9d45e00ba81aada6ca3196a2f4c6a633f63D�I�
5e7c13e7ca9ceba3ee4769206f16397f62fe367684d347573b551f0ff2c8fd6dD�H�
124996a9073a9ca8c3f0c37ffc32039a2cdb8a8eb5ae0de982fc65de11708c2cD�G�
5cdd011988bd5f786fd69bb2f85ee35ad72937f71784e3c1b95f7eaad14b4e71D�F�
cc499773d5b8e2ef0f1585f8f54cda5bdf26720005e766f1ad4fa13b420b5f7aD�E�
a2747777a7c3d1ef8019b71132c4a6eb6e5a8363b7b085140da95747f86c10afD�D�
4705cdec550031f6ee8f3f2c0c78c72c88ec88a70a3c20ebb27eea168bfdd9afD�C�
405c83aec688febd1c01afeb7dcce3417c406be86016fef5342ad46668393522D�B�
9454700c32cd463eb0cc88eb843acc8c9da791accd71ed786c92357f2403b784D�A�
4ff26a4c002984d75b6bf2b0150de3b528864e2ce86be2ab94743d10ddef1544D�@�
f424072382650daa052fcb9ac01eb3fc0209eb1d8f2bc0d18f3bf1bebd42dc39
NN�-��ro�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���uq�9
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���tq�O
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���so�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��xq�Q
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��wq�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��vq�a
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��{a�}
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��z}�

�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��yq�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��~a�	
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��}a�s
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��|a�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��g�;
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��c�]
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g�
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�w
�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��	o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��
o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��
o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�s
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��i�	
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��o�;
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y�� o�E
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��!o�
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
EN
�Eh��%M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��$Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��#M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�-��"o�m
�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
	D�A�d����DX��.Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��-M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��,e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��+em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��*ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��)ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��(eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��'e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��&Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)
	4�"�h��u4=��7M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��6e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��5em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��4ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��3ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��2eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��1e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��0Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��/M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.
��8�y�,�g��?em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��>ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��=ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��<eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��;e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��:Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��9M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��8Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)
	CX�O��#�Cl��Hew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��Gew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��Feq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��Ee1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��DQ�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��CM�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��BMg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��AM1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��@e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665
	H���P�r%�Hl��Qew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��Peq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��Oe1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��NQ�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��MM�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��LMg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��KM1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��Je�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��Iem
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.
	H�%}<�t�Hi��Zeq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��Ye1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��XQ�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��WM�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��VMg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��UM1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��Te�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��Sem
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��Rew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678
	E� �
�p�EI��ce1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��bQ�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��aM�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��`Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��_M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��^e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��]em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��\ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��[ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735
	%�#�H�_�%n��lQ�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��kM�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��jMg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��iM1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��he�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��gem
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��few
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��eew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��deq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3
	J�F�f�S�Jh��uM�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��tMg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��sM1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��re�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��qem
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��pew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��oew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��neq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��me1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2

e�r+��V��:��eD�Y�
4f723648476309de9070d25c30df94bf8d0ec5cc665cf947714768e3903e6677D�X�
7007758347481b5bd5b486012d4105aaa620968a412da55bf70e5eb5ee4ea52fD�W�
a59b71df5f20f5b5cbdbc96ff9c1388cc6a2ae20c74c5c924f364b4150653748D�V�
1a901043d59b38297076c304b82d8cf36fa295747a7273a0009f8566a93e0988D�U�
a44afb9ad79ce59c97899e5be3660c4d4dbd20f0aa44417e9f820995db76c42bD�T�
5eaba3f50062813592c389ebb343e248af7f03caee550d7cab3599bd3e6847d4D�S�
16cc8bcd9289899b14393eedecdb5d31b11e6a4d0c504f593037804de5878fceD�R�
c4ae76d7c6a23e9345f969ab95acd6dee04900b227f0de925cc539ffeb60c2e7D�Q�
7c5dcd2035ff3f4503debbaeecc9659798c5a4cc8626f9cb089451584f53fefcD�P�
b18eeaf97c8e575f6c91cac0852221503010783f1b05f5c71ba0566e0569c473D�O�
c3e8755371c95986d3d9b24ce2a85e7158f92f26160148570b73b95ab7cc341cD�N�
22a2f90a540cd9a8330a6a4c96da322865926757812e4c0fdfea538a351e6f5aD�M�
02f39c31f6b85c556cb651767e2383c2bac89bab5627ec18df62fd758577a348
	D�A�d����DX��~Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��}M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��|e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��{em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��zew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��yew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��xeq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��we1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��vQ�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)
	4�"�h��u4=��M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.bR+|RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������+��c+��f+��g+��h+��i+��l+��o+��q+��r+ ��u+!��x+"��{+#��~+$��+%��+&��+'��	+(��+)��
+*��++��+,��+-��+.��+/��+0��+1��+2��+3��+4�� +5��!+6��%+7��.+8��7+9��?+:��H+;��Q+<��Z+=��c+>��l+?��u+A��~+B��+D��+E��+F��!+G��*+H��3+I��<+J��C+K��I+L��N+M��T+N��Z+O��`+P��g+Q��l+R��o+S��r+T��w+V��z+W��}+X��+Y��+Z��+[��+\��+]��+^��+_��+`��+a��+b��!+c��#+d��&+e��)+f��++g��.+h��0+i��5+j��8+k��<+l��?+m��A+n��D+o��G+p��I+q��L+r��N+s��S+t��V+u��Z+v��]+w��_+x��b+y��e+z��g+{��j
��8�y�,�g��em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��
ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��
Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��	M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)
	CX�O��#�Cl��ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665
	H���P�r%�Hl��!ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i�� eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.
	H�%}<�t�Hi��*eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��)e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��(Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��'M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��&Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��%M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��$e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��#em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��"ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678
	E� �
�p�EI��3e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2n��2Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��1M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��0Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��/M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��.e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��-em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��,ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��+ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735
	%�#�H�_�%n��<Q�

�Gris Ge <fge@redhat.com> - 1.6.2-4[�-�- Fix FHS problem of find_unused_lun.py and etc, (RHBZ #1623515)h��;M�
�Gris Ge <fge@redhat.com> 1.6.2-3[GB�- Fix rpm runtime dependency of libstoragemgmt-local-plugin.X��:Mg
�Gris Ge <fge@redhat.com> 1.6.2-2[2*�- Silence socket EPIPE error. (RHBZ #1582458)=��9M1
�Gris Ge <fge@redhat.com> 1.6.2-1Z��- Upgrade to 1.6.2�#��8e�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��7em
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��6ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��5ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��4eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3
��F�f�S�V��C[U
�David Shea <dshea@redhat.com> - 0.4.1-3R��- Added a glade catalog file (dshea)�#��Be�c
�Tony Asleson <tasleson@redhat.com> - 1.8.1-2`�- https://bugzilla.redhat.com/show_bug.cgi?id=1872745
- https://bugzilla.redhat.com/show_bug.cgi?id=1903665g��Aem
�Tony Asleson <tasleson@redhat.com> - 1.8.1-1]R�@- Upgrade to 1.8.1
- Obsolete the netapp plugin.l��@ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-3\��@* https://bugzilla.redhat.com/show_bug.cgi?id=1693678l��?ew
�Tony Asleson <tasleson@redhat.com> - 1.7.3-2\g�@* https://bugzilla.redhat.com/show_bug.cgi?id=1629735i��>eq
�Tony Asleson <tasleson@redhat.com> - 1.7.3-1\f��- Add nfs-utils as a dependency
- Upgrade to 1.7.3I��=e1
�Tony Asleson <tasleson@redhat.com> - 1.7.2-1\2�- Upgrade to 1.7.2
��}�{��R��I[M
�David Shea <dshea@redhat.com> - 0.4.2-5T��@- Use GPLv3 for the license file���H��
�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-4S�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuildc��Gia
�Kalev Lember <kalevlember@gmail.com> - 0.4.2-3S�R@- Rebuilt for gobject-introspection 1.41.4���F��
�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-2S���- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild]��E[c
�David Shea <dshea@redhat.com> - 0.4.2-1Sc��- New upstream release libtimezonemap-0.4.2���D[�a
�David Shea <dshea@redhat.com> - 0.4.1-4R�v@- Merge fixes from lp:timezonemap
- Add cc-timezone-location.h to timezonemapincludes_HEADERS so it gets installed (iain.lane)
- Set en_name correctly (iain.lane)
- Don't call g_type_init() on glib >= 2.35; it's deprecated (iain.lane)
��;���N[�a
�David Shea <dshea@redhat.com> - 0.4.1-4R�v@- Merge fixes from lp:timezonemap
- Add cc-timezone-location.h to timezonemapincludes_HEADERS so it gets installed (iain.lane)
- Set en_name correctly (iain.lane)
- Don't call g_type_init() on glib >= 2.35; it's deprecated (iain.lane)V��M[U
�David Shea <dshea@redhat.com> - 0.4.1-3R��- Added a glade catalog file (dshea)m��Ley
�Jiri Konecny <jkonecny@redhat.com> - 0.4.4-2b���- Remove regions from the map
  Resolves: rhbz#2098126�n��K[�
�David Shea <dshea@redhat.com> - 0.4.4-1UL�@- Fixes for LP#1440157:
  Port to libsoup directly for geoname results
  Fix some memory leaks
  Do not reuse GCancellables
- Upstream merges of SVG update and constrained location cycles���J[�+
�David Shea <dshea@redhat.com> - 0.4.2-6UCj�- Updated the time zone map images
- Updated the city data from geonames.org
- Fix a memory leak and potential crash with the locations list
- Cycle through a smaller list of map locations on repeated clicks
���������T[�+
�David Shea <dshea@redhat.com> - 0.4.2-6UCj�- Updated the time zone map images
- Updated the city data from geonames.org
- Fix a memory leak and potential crash with the locations list
- Cycle through a smaller list of map locations on repeated clicksR��S[M
�David Shea <dshea@redhat.com> - 0.4.2-5T��@- Use GPLv3 for the license file���R��
�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-4S�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuildc��Qia
�Kalev Lember <kalevlember@gmail.com> - 0.4.2-3S�R@- Rebuilt for gobject-introspection 1.41.4���P��
�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-2S���- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild]��O[c
�David Shea <dshea@redhat.com> - 0.4.2-1Sc��- New upstream release libtimezonemap-0.4.2
$
�B �$���Z��
�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-2S���- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild]��Y[c
�David Shea <dshea@redhat.com> - 0.4.2-1Sc��- New upstream release libtimezonemap-0.4.2���X[�a
�David Shea <dshea@redhat.com> - 0.4.1-4R�v@- Merge fixes from lp:timezonemap
- Add cc-timezone-location.h to timezonemapincludes_HEADERS so it gets installed (iain.lane)
- Set en_name correctly (iain.lane)
- Don't call g_type_init() on glib >= 2.35; it's deprecated (iain.lane)V��W[U
�David Shea <dshea@redhat.com> - 0.4.1-3R��- Added a glade catalog file (dshea)m��Vey
�Jiri Konecny <jkonecny@redhat.com> - 0.4.4-2b���- Remove regions from the map
  Resolves: rhbz#2098126�n��U[�
�David Shea <dshea@redhat.com> - 0.4.4-1UL�@- Fixes for LP#1440157:
  Port to libsoup directly for geoname results
  Fix some memory leaks
  Do not reuse GCancellables
- Upstream merges of SVG update and constrained location cycles
:�����:m��`ey
�Jiri Konecny <jkonecny@redhat.com> - 0.4.4-2b���- Remove regions from the map
  Resolves: rhbz#2098126�n��_[�
�David Shea <dshea@redhat.com> - 0.4.4-1UL�@- Fixes for LP#1440157:
  Port to libsoup directly for geoname results
  Fix some memory leaks
  Do not reuse GCancellables
- Upstream merges of SVG update and constrained location cycles���^[�+
�David Shea <dshea@redhat.com> - 0.4.2-6UCj�- Updated the time zone map images
- Updated the city data from geonames.org
- Fix a memory leak and potential crash with the locations list
- Cycle through a smaller list of map locations on repeated clicksR��][M
�David Shea <dshea@redhat.com> - 0.4.2-5T��@- Use GPLv3 for the license file���\��
�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-4S�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuildc��[ia
�Kalev Lember <kalevlember@gmail.com> - 0.4.2-3S�R@- Rebuilt for gobject-introspection 1.41.4
-��#�!�-R��g[M
�David Shea <dshea@redhat.com> - 0.4.2-5T��@- Use GPLv3 for the license file���f��
�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-4S�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuildc��eia
�Kalev Lember <kalevlember@gmail.com> - 0.4.2-3S�R@- Rebuilt for gobject-introspection 1.41.4���d��
�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-2S���- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild]��c[c
�David Shea <dshea@redhat.com> - 0.4.2-1Sc��- New upstream release libtimezonemap-0.4.2���b[�a
�David Shea <dshea@redhat.com> - 0.4.1-4R�v@- Merge fixes from lp:timezonemap
- Add cc-timezone-location.h to timezonemapincludes_HEADERS so it gets installed (iain.lane)
- Set en_name correctly (iain.lane)
- Don't call g_type_init() on glib >= 2.35; it's deprecated (iain.lane)V��a[U
�David Shea <dshea@redhat.com> - 0.4.1-3R��- Added a glade catalog file (dshea)
���2�k��lW�
�Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��kWk
�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)m��jey
�Jiri Konecny <jkonecny@redhat.com> - 0.4.4-2b���- Remove regions from the map
  Resolves: rhbz#2098126�n��i[�
�David Shea <dshea@redhat.com> - 0.4.4-1UL�@- Fixes for LP#1440157:
  Port to libsoup directly for geoname results
  Fix some memory leaks
  Do not reuse GCancellables
- Upstream merges of SVG update and constrained location cycles���h[�+
�David Shea <dshea@redhat.com> - 0.4.2-6UCj�- Updated the time zone map images
- Updated the city data from geonames.org
- Fix a memory leak and potential crash with the locations list
- Cycle through a smaller list of map locations on repeated clicks
�>���\��oW�c
�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev�(��nW�{
�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��mW�%
�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failed
G�&G�Z��rW�_
�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit���qW�I
�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��pW�-
�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information
=�n�=�=��wW�%
�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��vW�
�Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��uWk
�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��tg�#
�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]�a��sW�m
�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory

e�r+��V��:��eD�f�
b8df7b9911c734e2423d1ebb0116de9bc8b43bfbad024df88e3441f422aa93ffD�e�
592f30134c5a086d2102c5e64047ef6d7c337e0cc5d5350cc6f763992cdde4a1D�d�
cd00145bb9ec1111aeeef6a3549e8186d773009d553f2c6ed0b608e4fbd9adcfD�c�
d90d150799643440c4a06c356693a216dd240f7c4b21d95255e233cae0b23fe0D�b�
2f6df5451338232fc54158e957a6c5e4c1ed718d22490cc1d0031abf1ddb128eD�a�
7702850f4e2e80c04e6c3466c990e0b651afe9da7ec148a25504e6539b25fcfaD�`�
05a1afac9166ad0a6bd4d12f5586743519b206e5f4bb4ce59ee057b9dff7d92fD�_�
1430b03046652a896ccac617100d4beab44c1c13c0d245b9bffbfe91817ea027D�^�
fb649db85a7fa03afc98ca05e61011b3c7d2d0ddfa11c9e025af979339542a81D�]�
fdb87f18d9c02219b23bb7f3233d128374d7e17e958892065ed687a59f5aad38D�\�
edc0594488f23ae7a46857065d3cd4d74e61a711b96dd5b99713419b033816a4D�[�
2eaa174ec4232e07070ccd4b7aee3cc74f51b5f55922176ea0fe278584f8dfdeD�Z�
f530a65c0efca53f618f63e02801129283b12266fbf21ac221e35617a45b0d4b
,Sr,�A��zW�-
�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��yW�c
�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev�(��xW�{
�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login
�l���a��}W�m
�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��|W�_
�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit���{W�I
�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.
v�T�#v�(��W�{
�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��W�%
�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��W�
�Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��Wk
�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��~g�#
�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���W�I
�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��W�-
�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��W�c
�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��W�m
�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��W�_
�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��W�{
�Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��W�%
�Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��
W�
�Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��	Wk
�Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��g�#
�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���W�I
�Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��W�-
�Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��
W�c
�Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��W�m
�Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��W�_
�Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
[��[�:��i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��i�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)�D��g�#
�Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
������i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
C8�C�:��i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������!i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)��� i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��#i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��"i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��&y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��%yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��$y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������)i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���(i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��'i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��+i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��*i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��.y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��-yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��,y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����0y�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���/y�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���5i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��4i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��3i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��2i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��1i�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��8i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��7i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���6i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��<i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��;i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��:yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��9y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������?i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���>i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��=i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Ai�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��@i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Dy�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��CyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��By�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Gi�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Fi�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ei�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Ii�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Hi�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Ly�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��KyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Jy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����Ny�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���My�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���Si�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ri�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��Qi�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Pi�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��Oi�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��Vi�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Ui�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���Ti�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��Zi�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Yi�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��XyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Wy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������]i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���\i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��[i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��_i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��^i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��by�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��ayW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��`y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������ei�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���di�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��ci�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��gi�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��fi�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��jy�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��iyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��hy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����ly�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���ky�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���qi�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��pi�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��oi�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��ni�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��mi�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��ti�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��si�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���ri�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
18��1�G��xi�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��wi�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)f��vyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��uy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)

e�r+��V��:��eD�s�
7742bb9e3b59162a644886a0fa900fa88dfa7012386ae583ac5a8bd6c5ac79f4D�r�
fbc75db0004b4f2ffa063eb646e4714cfa1fa34ce927f4cdac02ed19920adcc8D�q�
30da7f395230fa024303c27e46e2a5133d77edaece70586694945a12275a23f2D�p�
6907d4d091a1107f3bf16ccdbf5e24663641bba18bd965f06812680002457959D�o�
dba6657dac2be85cbc8f4e111f952c8a9b31b95116671a599320b57503781a49D�n�
79f1fedc8c8be3af6f1d989940ed7d956d779d3f488f821b4f08032ed83b1f3bD�m�
06bc77dd6c2f2125c8f8ccb6b4e685a71d97e6defb84eb1d696ee180ac974e06D�l�
d1afd88393ffa5ac982a19f815f212f48fb963ea78add0832a9de497411e2322D�k�
03e1baf0c1c94f364478eb3cd7d75ad83408dfe993ea8a69481c7f963ebb1cc3D�j�
146ca869c5ba405509685e617aa2689cda961f933ee72947d61013803f3d5fb8D�i�
faf0e74d26792022e70a474776f33b0d995899e1d6150d742af9199b9cce5376D�h�
6aef55f22ccae6cb279470d28bd97b90a8ac51e8d3c01f08c9363be80465a5edD�g�
cbb9fd109a25fe1c52b74144b6c1416666fbfd38ad1fd70a31ad0f95e9ded252
�AX�����|i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���{i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��zi�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��yi�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)

�l��~i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��}i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
C8�C�:��i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��
y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��	yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�4u�����i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��
i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)
��l��i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
8��8��y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����y�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���y�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
������!i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)��� i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��#i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��"i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��&y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��%yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��$y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����(y�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���'y�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���-i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��,i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��+i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��*i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��)i�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��0i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��/i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���.i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��4i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��3i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��2yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��1y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������7i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���6i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��5i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��9i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��8i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��<y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��;yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��:y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������?i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���>i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��=i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Ai�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��@i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Dy�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��CyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��By�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����Fy�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���Ey�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���Ki�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ji�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��Ii�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Hi�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��Gi�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��Ni�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Mi�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���Li�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��Ri�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Qi�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��PyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Oy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Ui�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Ti�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Si�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Wi�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Vi�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Zy�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��YyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Xy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������]i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���\i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��[i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��_i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��^i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��by�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��ayW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��`y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����dy�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���cy�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���ii�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��hi�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��gi�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��fi�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��ei�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��li�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ki�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���ji�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��pi�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��oi�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��nyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��my�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)bR+�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������+}��q+~��t+��x+���|+���~+���+���+���+���
+���+���+���+���+���+���+���+���!+���#+���&+���(+���-+���0+���4+���7+���9+���<+���?+���A+���D+���F+���K+���N+���R+���U+���W+���Z+���]+���_+���b+���d+���i+���l+���p+���s+���u+���x+���{+���}+���+���+���+���
+���+���+���+���+���+���+���+��� +���%+���(+���,+���/+���1+���4+�7+Â�9+Ă�<+ł�>+Ƃ�C+ǂ�F+Ȃ�J+ɂ�M+ʂ�O+˂�R+̂�U+͂�W+΂�Z+ς�\+Ђ�a+т�d+҂�h+ӂ�k+Ԃ�m+Ղ�p+ւ�s+ׂ�u+؂�x+ق�z+ۂ�+܂�+݂�+ނ�	+߂�+�+႕+ₕ
������si�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���ri�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��qi�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��ui�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ti�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��xy�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��wyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��vy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)

e�r+��V��:��eD��
8667cee91ed1aa014f71555f076cfab5dd62a042d3dc7ea1d86ef30655b038ddD��
523d10d80eca952ef1884acfb524e844fed7f5ba15040c03fb8bfd7e54beaed3D�~�
e84cbc56cc8d3cad5fbc8fdb06739cfdecf9f15a7df56f7d2af53fbc4308d0c3D�}�
2ea0d8ddefec1030824b74aedac593962bb24222add6f70b3b00533ed8993995D�|�
18a2c3ea2e2d5c5ae12660bf9eb03c2d3889e23de31d9b4ab4402b973dc2b813D�{�
8509c76026145b29ba6f1b8ae37a82d1ed82aae0b7d56716d065d753c42837f3D�z�
feaa19dbb1f49048b7c247b0f07eca95e4c1ec3e3553221a73e356227d399654D�y�
00063f470db329bdbf0defd2b9622d72db94830b9c0a108b7646f6acb3316563D�x�
3d1213d433cc4f76de4bc1d38f0920c5716b596dcc3ced3dfff4e9e143ba5b59D�w�
5bf6f0344add69eb5397aa58808fbb3f7473db3d8ebc8a33268d40b93fcfe0ccD�v�
b922b23c5579da9d7a1a127a1d46f32b941981d9a61ac309ffa1ca688fda5a47D�u�
1988a7c1f3496679d0f5155d1ccdb326d4c38efbb8e673eb67c29ca61004a3daD�t�
aff30e07efab7028b05be02c4bbb2921b2c5a2e7a4db5788137073e27ba4e2a7
������{i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���zi�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��yi�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��}i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��|i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��~y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����y�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���y�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��i�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��
i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��	i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��
i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`���� y�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���y�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���%i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��$i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��#i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��"i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��!i�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��(i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��'i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���&i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��,i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��+i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��*yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��)y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������/i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���.i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��-i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��1i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��0i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��4y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��3yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��2y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������7i�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���6i�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��5i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��9i�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��8i�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��<y�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��;yW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��:y�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����>y�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���=y�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���Ci�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Bi�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��Ai�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��@i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��?i�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��Fi�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Ei�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���Di�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��Ji�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Ii�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��HyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Gy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Mi�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Li�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ki�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Oi�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Ni�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Ry�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��QyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Py�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Ui�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Ti�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Si�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Wi�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Vi�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Zy�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��YyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Xy�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����\y�/
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���[y�?
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���ai�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��`i�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��_i�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��^i�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��]i�1
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��di�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ci�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���bi�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��hi�

�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��gi�'
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��fyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��ey�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������ki�!
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���ji�)
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��ii�a
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��mi�q
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��li�{
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��py�y
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��oyW
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��ny�
�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������si�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���ri�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��qi�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��ui�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ti�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��xy�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��wyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��vy�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����zy�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���yy�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)

e�r+��V��:��eD�
�
ebd82b5546583e76abeafb233879f04f1488a96c1f1823eac177889b8218328dD��
afad00b6a6e0787361c27df8bba184168f6a8317833bb2188bd1f6c3ec7c9997D��
836e44d1bc907b9e41d6d905730da4fdf18d002f62676006795789a1aaa6084cD�
�
96abdf65e00da59857928e4d3001835a9e548fe6b84ef391015153d2fcd5ca97D�	�
0718ec7a648c76821e1117532667414db4883898fdd43d3e8a631827814422faD��
7397d7ada85a990118fbb29a019e0229dcc123eb73b3d901e8a68ca2b7f2da53D��
7c6aa8cfb40e021ce2fd6990bdd23916f3ceda1eb1455e49f09d1d0fb41d0f7aD��
ff7bd67ed63db8e85a6f69944e947f3a58d239a5e418b671d1eea3c8271d0777D��
8f8cfe9eb61a9f25ca7e0e1a0141cb8189a5465ea0cb8dd6c524a2ef72866ea8D��
fb019a858ec470c37fb4514a9c501552516bfe09f3c57ab59409c560d2a46ca9D��
adf453caa95445c3a99ca102ec42c7d67b44d897aee8925bb4a1da3f07940c49D��
84217b8ac653dfecde5e7761d967ffab45d9ea928e22a4a2cd5a502719a1a0b2D��
8682aa231a96b16cfd29d6bcb965dc552b13f5ce5e91dc71b4cb0725eb72bf7b
./c��.���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��~i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��}i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��|i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��{i�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������	i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��
i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��
yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����y�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���y�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��i�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l�� i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��$i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��#i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��"yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��!y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������'i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���&i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��%i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��)i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��(i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��,y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��+yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��*y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������/i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���.i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��-i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��1i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��0i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��4y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��3yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��2y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����6y�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���5y�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���;i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��:i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��9i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��8i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��7i�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��>i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��=i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���<i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��Bi�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Ai�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��@yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��?y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Ei�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Di�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ci�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Gi�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Fi�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Jy�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��IyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Hy�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Mi�!	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Li�)	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ki�a	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Oi�q	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Ni�{	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Ry�y	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��QyW	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Py�	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����Ty�/	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���Sy�?	Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���Yi�)
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Xi�a
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��Wi�

Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Vi�'
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��Ui�1
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��\i�q
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��[i�{
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���Zi�!
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��`i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��_i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��^yW
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��]y�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������ci�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���bi�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��ai�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��ei�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��di�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��hy�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��gyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��fy�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������ki�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���ji�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��ii�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��mi�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��li�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��py�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��oyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��ny�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����ry�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���qy�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���wi�)
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��vi�a
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��ui�

Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��ti�'
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��si�1
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��zi�q
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��yi�{
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���xi�!
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��~i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��}i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��|yW
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��{y�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)

e�r+��V��:��eD��
9b60f16bb0b8c4049fe3746ef82af738dea6d843c9a10278ae65a56e0f643543D��
cc9292399132346f75bd097e7ee2df57581d949a9ca4f74d5d800c7565f777ecD��
9fbd7c60ba0ef653dfcf59169cc19e74805f8e102bab5c4d038d343782872528D��
6da0086ed5fcfe18e8f92777f56bc0561f7b8a591eb03c6f38ba815464fbbdd1D��
de277490ec2359c7396f0b7c4d39dfa4426e563ea8cc9defdaad322dd0c42a48D��
278b669b053892a784bbbac57d1b11be6496d6c624a0350a7d5628bcc2cba7a9D��
ddfdb301a369e390465e7fed07a523d49328f34568875ece4041374ce5341b09D��
a5af318efcf06316076e95b5e88893eb108d829611813c7fc493ba3ebc5a1e32D��
0b666836eac572662e426b0b815d751ae62dd8422c5ab5c6d910f8bf94ad1141D��
49d7fd7bc99dd196b6ad0b23effba028c00ec83384e764f0625ec4d1a888a932D��
2e4ef0b59e648eed97f857dbb868a2e14afec888dc7074820f587738e8085781D��
6a232fa9ad8c17cfa5cf5fefe213336bbd9160948ed66031dfd0a65edc56190aD��
08b4dee7a9b26d0de63eb7b9be7383288a1d179be539eb61df3c1d005566ba5f
������i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������	i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��
i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��
yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����y�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���y�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��i�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)bR,IRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������+䂕+傕+悕 +炕$+肕'+邕)+ꂕ,+낕/+삕1+킕4+6+;+�>+�B+�E+�G+�J+���M+���O+���R+���T+���Y+���\+���`+���c+���e+���h+���k,��m,��p,��r,��w,��z,��~,��,��,	��,
��	,��,��,
��,��,��,��,��,��!,��$,��',��),��,,��.,��3,��6,��:,��=,��?,��B,��E, ��G,!��J,"��L,#��Q,$��T,%��X,&��[,'��],(��`,)��c,*��e,+��h,,��j,-��o,.��r,/��v,0��y,1��{,2��~,4��,5��,6��,7��,8��
,9��,:��,;��,<��,=��,>��,?��!,@��$,A��&,B��+,C��.,D��2,E��5,F��7,G��:,H��=
C8�C�:��i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��!i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q�� i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��$y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��#yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��"y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������'i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���&i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��%i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��)i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��(i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��,y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��+yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��*y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����.y�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���-y�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���3i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��2i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��1i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��0i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��/i�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��6i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��5i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���4i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��:i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��9i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��8yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��7y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������=i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���<i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��;i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��?i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��>i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��By�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��AyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��@y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Ei�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Di�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ci�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Gi�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Fi�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Jy�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��IyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Hy�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����Ly�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���Ky�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���Qi�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Pi�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��Oi�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Ni�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��Mi�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��Ti�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Si�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���Ri�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��Xi�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Wi�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��VyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Uy�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������[i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Zi�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Yi�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��]i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��\i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��`y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��_yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��^y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������ci�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���bi�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��ai�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��ei�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��di�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��hy�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��gyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��fy�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����jy�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���iy�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���oi�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��ni�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��mi�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��li�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��ki�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��ri�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��qi�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���pi�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��vi�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��ui�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��tyWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��sy�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������yi�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���xi�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��wi�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��{i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��zi�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��~y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��}yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��|y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)

e�r+��V��:��eD�'�
7423f22c87721f8d9e25856620d67f6482cedf0716640fcf8f7e8f609797cb2eD�&�
ddafb1e92f08f922d622d8426b42ea6cd1ddf7090da44abf0678b4cfd67cd2d3D�%�
76bc9b2f317ca1734d3d4a20a64af355a4fdf864a86b43797f7bf7ef506f5b34D�$�
49c9854872e8bc5ea2a45b52e2667a2d8a44dc7c1e42f73a3ed483d4ed29ddacD�#�
64d308b2273fa36c403e5a4ed7c61854903e74760d31d9b214f1bf89fe0393e6D�"�
38926b3705d3995333fb2ea6d22cd0d4590578927040ef0006aa35db2898e209D�!�
9fabfd6e48f2b62acf53b7c1041c0ca9cb1dc4ad4136784de7d73bae29b118c0D� �
2762293f4b83a93a76a349d261bacbdf67469071936e8daeaa3979de38b05145D��
b23b467a1a7c8028c65449557a6f6a8354bf652726aadf062e125ab59dd4db0fD��
27fa8705d3dff1a9ead8a72326edbe7713a85aef397c766654dc88099acc1354D��
22368115a8dd7ef1ec13ecc12ebfa7ea254651f0f7e10223b188155bfd2552f9D��
3cf860317663bddc14b4af70586d0e219e8532bba47638fb4b72460e2bac69b3D��
b278fb80905868e72a398c821811d157b927969735ff0b93fcd631121d772538
������i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����y�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���y�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���
i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��
i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��	i�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��!i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q�� i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��$y�yJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��#yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��"y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����&y�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���%y�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���+i�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��*i�aJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��)i�
Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��(i�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��'i�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��.i�qJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��-i�{Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���,i�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��2i�
 Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��1i�' Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��0yWJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��/y�Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������5i�! Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���4i�) Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��3i�a Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��7i�q Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��6i�{ Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��:y�y Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��9yW Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��8y� Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������=i�!!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���<i�)!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��;i�a!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��?i�q!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��>i�{!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��By�y!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��AyW!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��@y�!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����Dy�/!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���Cy�?!Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���Ii�)"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Hi�a"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��Gi�
"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Fi�'"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��Ei�1"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��Li�q"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Ki�{"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���Ji�!"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��Pi�
#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Oi�'#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��NyW"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��My�"Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Si�!#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Ri�)#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Qi�a#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Ui�q#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Ti�{#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Xy�y#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��WyW#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Vy�#Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������[i�!$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Zi�)$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Yi�a$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��]i�q$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��\i�{$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��`y�y$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��_yW$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��^y�$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����by�/$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���ay�?$Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���gi�)%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��fi�a%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��ei�
%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��di�'%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��ci�1%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��ji�q%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ii�{%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���hi�!%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��ni�
&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��mi�'&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��lyW%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��ky�%Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������qi�!&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���pi�)&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��oi�a&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��si�q&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ri�{&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��vy�y&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��uyW&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��ty�&Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������yi�!'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���xi�)'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��wi�a'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��{i�q'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��zi�{'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��~y�y'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��}yW'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��|y�'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����y�/'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���y�?'Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)

e�r+��V��:��eD�4�
b390b91a21665b3ff2a03ee9f7c6bdb30c06442a9b46e609048d87d28973909dD�3�
2acff987d578fb2dc7aa7309391c70d97bcea8f1a44ee74b888c44fae2062777D�2�
747801d0d750e872620c71b8849522e592cbf713a0e5acaafe2579d358550d24D�1�
0710224c0e98852a70afc4e528bd026d4d46bf8fa6d68af8b7944e41683ae5cfD�0�
e1e650013a118dcd257d99f632eaaa7d97ca8ff95832c08b76f5f19daaa2c830D�/�
3d8ff28a1b05b9697b82489f71fd9ccdb0c088f4ca37c35263925511db5f5c7bD�.�
aef77f3e427a8c93fb45d754ebe7752c844902b2b146a2e674ead9a54c577645D�-�
27f2bd3c549d96fc721458ba0085c54f33b57ffc368dc6a0cb33627d326ab37bD�,�
00f6b15c036cb61966264e2a9c7ef1815399b860c29455f9b7b85bd59958ee0bD�+�
dbfc7031b1cd09899c676d6ca513c824c52747913d402f85f2e22b0b8baac066D�*�
43931a5196450e67afee8e240f59257098e4480d715afddd7ca69d04c9af6240D�)�
751fbd8677147721988c4cec90747030a077b3dd3211d87dabcce6357d612e7aD�(�
49c62aad693f852c4a093519a3b829f4e69ae106375d2be0eae07159b97d4d48
./c��.���i�)(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�
(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��i�1(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��i�q(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��i�
)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�')Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��
yW(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��	y�(Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�))Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��
i�a)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�q)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�y)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�)Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�q*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�y*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����y�/*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���y�?*Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���#i�)+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��"i�a+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��!i�
+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G�� i�'+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��i�1+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��&i�q+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��%i�{+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���$i�!+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
18��1�G��*i�',Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��)i�1,Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)f��(yW+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��'y�+Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�AX�����.i�!,Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���-i�),Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��,i�a,Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��+i�
,Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)

�l��0i�q,Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��/i�{,Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
C8�C�:��4i�
-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��3i�'-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��2yW,Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��1y�,Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������7i�!-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���6i�)-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��5i�a-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��9i�q-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��8i�{-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��<y�y-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��;yW-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��:y�-Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�4u�����@i�).Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��?i�a.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��>i�
.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��=i�'.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)
��l��Ci�q.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Bi�{.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���Ai�!.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)bR,�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������,J��B,K��D,L��I,M��L,N��P,O��S,P��U,Q��X,R��[,S��],T��`,U��b,V��g,W��j,X��n,Y��q,Z��s,[��v,\��y,]��{,^��~,_��,a��,b��,c��,d��,e��,f��,g��,h��,i��,j��,k��#,l��&,m��*,n��.,o��0,p��4,q��7,r��9,s��<,t��@,u��C,w��F,x��I,y��K,z��N,{��P,|��S,}��U,~��X,��Z,���_,���b,���f,���i,���k,���n,���q,���s,���v,���x,���},���,���,���,���
,���,���,���,���,���,���,��� ,���#,���%,���(,���*,���-,���/,���2,���4,���9,���<,���@,���C,���E,���H,���K,���M,���P,���R,���W,���Z,���^,���a,���c,���f
8��8��Fy�y.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��EyW.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Dy�.Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Ii�!/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Hi�)/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Gi�a/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Ki�q/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Ji�{/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Ny�y/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��MyW/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Ly�/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����Py�//Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���Oy�?/Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
������Si�!0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Ri�)0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Qi�a0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Ui�q0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Ti�{0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Xy�y0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��WyW0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Vy�0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����Zy�/0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���Yy�?0Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���_i�)1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��^i�a1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��]i�
1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��\i�'1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��[i�11Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��bi�q1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ai�{1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���`i�!1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��fi�
2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��ei�'2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��dyW1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��cy�1Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������ii�!2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���hi�)2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��gi�a2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��ki�q2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ji�{2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��ny�y2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��myW2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��ly�2Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������qi�!3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���pi�)3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��oi�a3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��si�q3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ri�{3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��vy�y3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��uyW3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��ty�3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����xy�/3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���wy�?3Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���}i�)4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��|i�a4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��{i�
4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��zi�'4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��yi�14Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��i�q4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���~i�!4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
18��1�G��i�'5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��i�15Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)f��yW4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�4Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)

e�r+��V��:��eD�A�
5056d3b14c1c47acae89cc110be58d13ce5c372f2467505049cf09faeef3f7b3D�@�
f8c57e980b49a9dd5b43aabb9b590741efe9dc8ac4e8fe1955f4ffa5f0bb2399D�?�
5ceaceb75d9c3e12ea45d4a97b594b8085dcedb0037193817a44a30fe9ff98adD�>�
9b034f31b9d2ed3c7e58e6a93b911b9f49b07b0808de96a2e2e691263e14e0faD�=�
84ee79c0b96353a8ac5b4d46b6624e17ed80e67fe48583aac6c73b9b4deea759D�<�
c36162f22f8c779d80318cc08d286cb53edb4aefee5789af29a4838a219d9350D�;�
7bc141e86767fb1aded5e84e27ba2b03fae8eba8456610294def618a96028c69D�:�
b0d102765a6254ba3124a2f0696551cdf5095c030aa9fcee435cd4fa3f06d423D�9�
57975bf3b85630da395b3a5f46aa15caed57803b4508f1391c84aeb4ba95541aD�8�
7336707319b5f28ace3e7bf0ea8751a0ba448a98bfa2b4875c2d08c7207b3bc0D�7�
b3bdc6e767be75bd2d9600181faa4ca87a0e88beb73a43bfc5fc4a5c8956a80fD�6�
758b5cae55b3ac82f5e0a21bdf123b49f2e3ddee46a47f58c99a1c2e02d78f54D�5�
2244aba731b0cc66db6a9b851a8fa413e9243bdd8fded42aa81fcb9d5c9beabc
�AX�����i�!5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�
5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)

�l��
i�q5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��	i�{5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
C8�C�:��i�
6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��
i�'6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��yW5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�5Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�q6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�y6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�6Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�4u�����i�)7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�a7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�
7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)
��l��i�q7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
8��8�� y�y7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yW7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�7Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������#i�!8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���"i�)8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��!i�a8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��%i�q8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��$i�{8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��(y�y8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��'yW8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��&y�8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����*y�/8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���)y�?8Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
������-i�!9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���,i�)9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��+i�a9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��/i�q9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��.i�{9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��2y�y9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��1yW9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��0y�9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����4y�/9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���3y�?9Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���9i�):Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��8i�a:Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��7i�
:Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��6i�':Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��5i�1:Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��<i�q:Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��;i�{:Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���:i�!:Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��@i�
;Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��?i�';Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��>yW:Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��=y�:Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Ci�!;Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Bi�);Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ai�a;Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Ei�q;Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Di�{;Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Hy�y;Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��GyW;Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Fy�;Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������Ki�!<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���Ji�)<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Ii�a<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��Mi�q<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Li�{<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��Py�y<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��OyW<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��Ny�<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����Ry�/<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���Qy�?<Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���Wi�)=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��Vi�a=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��Ui�
=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��Ti�'=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��Si�1=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��Zi�q=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��Yi�{=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���Xi�!=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
C8�C�:��^i�
>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��]i�'>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��\yW=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��[y�=Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������ai�!>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���`i�)>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��_i�a>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��ci�q>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��bi�{>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��fy�y>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��eyW>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��dy�>Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������ii�!?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���hi�)?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��gi�a?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��ki�q?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��ji�{?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��ny�y?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��myW?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��ly�?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����py�/?Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���oy�??Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
./c��.���ui�)@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��ti�a@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��si�
@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��ri�'@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��qi�1@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)
��l��xi�q@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��wi�{@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���vi�!@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
18��1�G��|i�'AJiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)�L��{i�1AJiri Denemark <jdenemar@redhat.com> - 4.5.0-29]߶�- qemu: Forcibly mknod() even if it exists (rhbz#1752978)
- qemu_process: fix starting VMs if machine group has limited cpuset.cpus (rhbz#1746517)f��zyW@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��yy�@Jiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�AX�����i�!AJiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)AJiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��~i�aAJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��}i�
AJiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)

�l��i�qAJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{AJiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
C8�C�:��i�
BJiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'BJiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)f��yWAJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�AJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)

e�r+��V��:��eD�N�
fe31962a7aaae275d7dcbf9efe7364a94ada762b968513d3d783f9e763f8441bD�M�
f857d70721c9f191d7cebc1993d75fc3dbb29bc7c08b3b8e0044ba4d2205446aD�L�
59c66abe57e107fb07bfa33cca0326a2a7dfae6183e42d0d806de55598f76776D�K�
6fbcfd20152fd53029a53f360639d892f5a3daa9485dc2be94c27eed6cf2df64D�J�
bc63c8bfc930293da3e922e892186113cc420688e28a4ef936bbae8372240055D�I�
2b6dd64d39816de5f6fd5330c2e6b95ae66fa3c853d61272092b0a027fbd1da3D�H�
27fd50136804eda5f0c7bfe32a61dcd680349725916fcebde89f0c8a2e549767D�G�
cc9eef61c95aebbc7a432d58f5f85fbab25f19ee777834f671bc23fa94964d57D�F�
6e3bb564a139de89aa75082746181d125ed4c599326591693741010469bbd88eD�E�
a2241dadf6e520288ff5e0285cd20102eb24c34f0045337577928089b0ff4d79D�D�
aca23e962d5b30b4147e2f0e756d929facad88ca94e488463a87261a6a8c0302D�C�
f91b2363933aa9f88629048ee0d497b9541689ada66a07709b03177f3d709470D�B�
ff72d842591430311c483b93233f526b1dd34e953a34c084885d68d786f0aeba
������	i�!BJiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)BJiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aBJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�qBJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��
i�{BJiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��y�yBJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��
yWBJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�BJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�4u�����i�)CJiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aCJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)�:��i�
CJiri Denemark <jdenemar@redhat.com> - 4.5.0-31]��@- process: wait longer on kill per assigned Hostdev (rhbz#1771204)
- process: wait longer 5->30s on hard shutdown (rhbz#1771204)�G��i�'CJiri Denemark <jdenemar@redhat.com> - 4.5.0-30]�- nwfilter: Remove redundant check if object exists (rhbz#1766475)
- RHEL: qemu: Enable virt-ssbd for host-model with old QEMU (rhbz#1745181)
��l��i�qCJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{CJiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)���i�!CJiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)
8��8��y�yCJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yWCJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�CJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
������i�!DJiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���i�)DJiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��i�aDJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��i�qDJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��i�{DJiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8�� y�yDJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��yWDJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��y�DJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
�`����"y�/DJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���!y�?DJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
������%i�!EJiri Denemark <jdenemar@redhat.com> - 4.5.0-34^��- vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk() (rhbz#1815269)
- vmx: make 'fileName' optional for CD-ROMs (rhbz#1815269)
- RHEL: Fix migration on AMD hosts with old QEMU (rhbz#1815572)���$i�)EJiri Denemark <jdenemar@redhat.com> - 4.5.0-33^F��- RHEL: qemuCheckUnprivSGIO: use @sysfs_path to get unpriv_sgio (rhbz#1801139)�d��#i�aEJiri Denemark <jdenemar@redhat.com> - 4.5.0-32^2�@- qemu: Don't emit SUSPENDED_POSTCOPY event on destination (rhbz#1791886)
- node_device_conf: Don't leak @physical_function in virNodeDeviceGetPCISRIOVCaps (rhbz#1792831)

�l��'i�qEJiri Denemark <jdenemar@redhat.com> - 4.5.0-36^��@- virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support (rhbz#1823976)
- virDevMapperGetTargetsImpl: quit early if device is not a devmapper target (rhbz#1823976)�q��&i�{EJiri Denemark <jdenemar@redhat.com> - 4.5.0-35^��@- qemu: don't take agent and monitor job for shutdown (CVE-2019-20485)
- qemu: don't hold a monitor and agent job for reboot (CVE-2019-20485)
- qemu: don't hold monitor and agent job when setting time (CVE-2019-20485)
- qemu: remove use of qemuDomainObjBeginJobWithAgent() (CVE-2019-20485)
- qemu: remove qemuDomainObjBegin/EndJobWithAgent() (CVE-2019-20485)
- storage: Fix daemon crash on lookup storagepool by targetpath (CVE-2020-10703)
8��8��*y�yEJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.3_��@- rpc: gendispatch: handle empty flags (CVE-2020-25637)
- rpc: add support for filtering @acls by uint params (CVE-2020-25637)
- rpc: require write acl for guest agent in virDomainInterfaceAddresses (CVE-2020-25637)
- qemu: agent: set ifname to NULL after freeing (CVE-2020-25637)
- conf: properly clear out autogenerated macvtap names when formatting/parsing (rhbz#1868549)f��)yWEJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.2_*@- Rebuild to correct invalid dist tag�C��(y�EJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.1_A@- qemu: end the agent job in qemuDomainSetTimeAgent (rhbz#1844952)
- util: string: Introduce macro for automatic string lists (rhbz#1839992)
- util: Rework virStringListAdd (rhbz#1839992)
- qemu: Create multipath targets for PRs (rhbz#1839992)
- util: Move virIsDevMapperDevice() to virdevmapper.c (rhbz#1839992)
- virDevMapperGetTargetsImpl: Check for dm major properly (rhbz#1839992)
{`�{I��-a5FDaniel Mach <dmach@redhat.com> - 0.9.9-7.1Qb�@- Rebuild for gnutls���,y�/EJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.5`T�@- RHEL: virdevmapper: Don't leak DIR on OOM in virDMSanitizepath() (rhbz#1933557)���+y�?EJiri Denemark <jdenemar@redhat.com> - 4.5.0-36.el7_9.4`S@�- virdevmapper.c: Join two WITH_DEVMAPPER sections together (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use VIR_AUTOSTRINGLIST (rhbz#1933557)
- virdevmapper: Don't use libdevmapper to obtain dependencies (rhbz#1933557)
- virdevmapper: Don't cache device-mapper major (rhbz#1933557)
- virdevmapper: Handle kernel without device-mapper support (rhbz#1933557)
- virdevmapper: Ignore all errors when opening /dev/mapper/control (rhbz#1933557)
- virdevmapper: fix stat comparison in virDMSanitizepath (rhbz#1933557)
- virDevMapperGetTargetsImpl: Use correct length when copying into dm.name (rhbz#1933557)
%�:��%�D��2_�+FPetr Pisar <ppisar@redhat.com> - 0.9.9-11Y���- Fix a crash in the VNC server library on connecting an IPv4 client if the
  server could not start listening on an IPv6 socket (bug #1314814)�w��1_�FPetr Pisar <ppisar@redhat.com> - 0.9.9-10TSy�- Fix CVE-2014-6051 (integer overflow in screen size handling) (bug #1157671)
- Fix CVE-2014-6052 (NULL pointer dereference in framebuffer setup)
  (bug #1157671)
- Fix CVE-2014-6053 (NULL pointer dereference in ClientCutText message
  handling) (bug #1157671)
- Fix CVE-2014-6054 (server divide-by-zero in scaling factor handling)
  (bug #1157671)
- Fix CVE-2014-6055 (server stacked-based buffer overflow in file transfer
  handling) (bug #1157671)L��0]?FDaniel Mach <dmach@redhat.com> - 0.9.9-9R�U�- Mass rebuild 2014-01-24L��/]?FDaniel Mach <dmach@redhat.com> - 0.9.9-8R�k�- Mass rebuild 2013-12-27r��.a�FPetr Pisar <ppisar@redhat.com> - 0.9.9-7.2Q�p@- Specify dependencies on libpng and libgcrypt (bug #852660)
`u�1�v�`L��:]?GDaniel Mach <dmach@redhat.com> - 0.9.9-9R�U�- Mass rebuild 2014-01-24L��9]?GDaniel Mach <dmach@redhat.com> - 0.9.9-8R�k�- Mass rebuild 2013-12-27r��8a�GPetr Pisar <ppisar@redhat.com> - 0.9.9-7.2Q�p@- Specify dependencies on libpng and libgcrypt (bug #852660)I��7a5GDaniel Mach <dmach@redhat.com> - 0.9.9-7.1Qb�@- Rebuild for gnutlsj��6y_FMichael Catanzaro <mcatanzaro@redhat.com> - 0.9.9-14.1_!d�- Fix CVE-2017-18922
  Resolves: #1852509���5_�IFPetr Pisar <ppisar@redhat.com> - 0.9.9-14^r
@- Fix CVE-2019-15690 (an integer overflow in HandleCursorShape() in a client)
  (bug #1814745)�'��4_�qFPetr Pisar <ppisar@redhat.com> - 0.9.9-13\73�- Fix CVE-2018-15127 (Heap out-of-bounds write in
  rfbserver.c:rfbProcessFileTransferReadBuffer()) (bug #1662996)���3_�/FPetr Pisar <ppisar@redhat.com> - 0.9.9-12Z���- Fix CVE-2018-7225 (improper client cut text length sanitization) (bug #1548441)
�;����=_�/GPetr Pisar <ppisar@redhat.com> - 0.9.9-12Z���- Fix CVE-2018-7225 (improper client cut text length sanitization) (bug #1548441)�D��<_�+GPetr Pisar <ppisar@redhat.com> - 0.9.9-11Y���- Fix a crash in the VNC server library on connecting an IPv4 client if the
  server could not start listening on an IPv6 socket (bug #1314814)�w��;_�GPetr Pisar <ppisar@redhat.com> - 0.9.9-10TSy�- Fix CVE-2014-6051 (integer overflow in screen size handling) (bug #1157671)
- Fix CVE-2014-6052 (NULL pointer dereference in framebuffer setup)
  (bug #1157671)
- Fix CVE-2014-6053 (NULL pointer dereference in ClientCutText message
  handling) (bug #1157671)
- Fix CVE-2014-6054 (server divide-by-zero in scaling factor handling)
  (bug #1157671)
- Fix CVE-2014-6055 (server stacked-based buffer overflow in file transfer
  handling) (bug #1157671)
�T�N�;�L��D]?HDaniel Mach <dmach@redhat.com> - 0.9.9-9R�U�- Mass rebuild 2014-01-24L��C]?HDaniel Mach <dmach@redhat.com> - 0.9.9-8R�k�- Mass rebuild 2013-12-27r��Ba�HPetr Pisar <ppisar@redhat.com> - 0.9.9-7.2Q�p@- Specify dependencies on libpng and libgcrypt (bug #852660)I��Aa5HDaniel Mach <dmach@redhat.com> - 0.9.9-7.1Qb�@- Rebuild for gnutlsj��@y_GMichael Catanzaro <mcatanzaro@redhat.com> - 0.9.9-14.1_!d�- Fix CVE-2017-18922
  Resolves: #1852509���?_�IGPetr Pisar <ppisar@redhat.com> - 0.9.9-14^r
@- Fix CVE-2019-15690 (an integer overflow in HandleCursorShape() in a client)
  (bug #1814745)�'��>_�qGPetr Pisar <ppisar@redhat.com> - 0.9.9-13\73�- Fix CVE-2018-15127 (Heap out-of-bounds write in
  rfbserver.c:rfbProcessFileTransferReadBuffer()) (bug #1662996)
�;����G_�/HPetr Pisar <ppisar@redhat.com> - 0.9.9-12Z���- Fix CVE-2018-7225 (improper client cut text length sanitization) (bug #1548441)�D��F_�+HPetr Pisar <ppisar@redhat.com> - 0.9.9-11Y���- Fix a crash in the VNC server library on connecting an IPv4 client if the
  server could not start listening on an IPv6 socket (bug #1314814)�w��E_�HPetr Pisar <ppisar@redhat.com> - 0.9.9-10TSy�- Fix CVE-2014-6051 (integer overflow in screen size handling) (bug #1157671)
- Fix CVE-2014-6052 (NULL pointer dereference in framebuffer setup)
  (bug #1157671)
- Fix CVE-2014-6053 (NULL pointer dereference in ClientCutText message
  handling) (bug #1157671)
- Fix CVE-2014-6054 (server divide-by-zero in scaling factor handling)
  (bug #1157671)
- Fix CVE-2014-6055 (server stacked-based buffer overflow in file transfer
  handling) (bug #1157671)
�T�N�;�L��N]?IDaniel Mach <dmach@redhat.com> - 0.9.9-9R�U�- Mass rebuild 2014-01-24L��M]?IDaniel Mach <dmach@redhat.com> - 0.9.9-8R�k�- Mass rebuild 2013-12-27r��La�IPetr Pisar <ppisar@redhat.com> - 0.9.9-7.2Q�p@- Specify dependencies on libpng and libgcrypt (bug #852660)I��Ka5IDaniel Mach <dmach@redhat.com> - 0.9.9-7.1Qb�@- Rebuild for gnutlsj��Jy_HMichael Catanzaro <mcatanzaro@redhat.com> - 0.9.9-14.1_!d�- Fix CVE-2017-18922
  Resolves: #1852509���I_�IHPetr Pisar <ppisar@redhat.com> - 0.9.9-14^r
@- Fix CVE-2019-15690 (an integer overflow in HandleCursorShape() in a client)
  (bug #1814745)�'��H_�qHPetr Pisar <ppisar@redhat.com> - 0.9.9-13\73�- Fix CVE-2018-15127 (Heap out-of-bounds write in
  rfbserver.c:rfbProcessFileTransferReadBuffer()) (bug #1662996)
�;����Q_�/IPetr Pisar <ppisar@redhat.com> - 0.9.9-12Z���- Fix CVE-2018-7225 (improper client cut text length sanitization) (bug #1548441)�D��P_�+IPetr Pisar <ppisar@redhat.com> - 0.9.9-11Y���- Fix a crash in the VNC server library on connecting an IPv4 client if the
  server could not start listening on an IPv6 socket (bug #1314814)�w��O_�IPetr Pisar <ppisar@redhat.com> - 0.9.9-10TSy�- Fix CVE-2014-6051 (integer overflow in screen size handling) (bug #1157671)
- Fix CVE-2014-6052 (NULL pointer dereference in framebuffer setup)
  (bug #1157671)
- Fix CVE-2014-6053 (NULL pointer dereference in ClientCutText message
  handling) (bug #1157671)
- Fix CVE-2014-6054 (server divide-by-zero in scaling factor handling)
  (bug #1157671)
- Fix CVE-2014-6055 (server stacked-based buffer overflow in file transfer
  handling) (bug #1157671)
ET�N�*�Ev��Xk�JIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��WiiJAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Vk�}JIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��UikJAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16j��Ty_IMichael Catanzaro <mcatanzaro@redhat.com> - 0.9.9-14.1_!d�- Fix CVE-2017-18922
  Resolves: #1852509���S_�IIPetr Pisar <ppisar@redhat.com> - 0.9.9-14^r
@- Fix CVE-2019-15690 (an integer overflow in HandleCursorShape() in a client)
  (bug #1814745)�'��R_�qIPetr Pisar <ppisar@redhat.com> - 0.9.9-13\73�- Fix CVE-2018-15127 (Heap out-of-bounds write in
  rfbserver.c:rfbProcessFileTransferReadBuffer()) (bug #1662996)
���!����\k�%JAndreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��[iqJAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Zi�yJAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Yk�JIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
oy���d�ow��ck�KIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��bk�KIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��aiiKAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��`k�}KIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��_ikKAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���^k�JAndreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���]k�JAndreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������gk�KAndreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���fk�%KAndreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��eiqKAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��di�yKAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��li�yLAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��kk�LIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��jk�LIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iiiLAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���hk�KAndreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��siiMAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��rk_LAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��qk�wLAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���pk�LAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���ok�LAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���nk�%LAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��miqLAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����xk�%MAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��wiqMAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��vi�yMAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��uk�MIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��tk�MIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��}k�NIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��|k_MAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��{k�wMAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���zk�MAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���yk�MAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������k�NAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%NAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqNAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��~i�yNAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��k�OIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��k�NAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7NAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_NAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wNAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�NAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock

e�r+��V��:��eD�[�
08fdefbdb8f11e74afa450cfe88c2d98b1e9caee0e6a213c4b67db47d4ca1dc5D�Z�
a95af012a17347465a1f54e59f082ac490eff08433bede126e69f5fccf682f37D�Y�
9ec3b65cf753a77c4da092b4e68ecba78c87b41489cc86c51a071e27221c1008D�X�
40d5b25bdbe536d2fd38b5b64869d82f574e42b8d756e38bc4d749bdf8f6ffe6D�W�
5c42cdde11e5b38683d6da4d90fd10c1431b5c27c563bd4b7bdcf251800b7272D�V�
7ffe1e93feefa9f0a3fb660a77c95541359f3947d165e16a808a69bd327b5ca9D�U�
e5f77930d5fc1f574da19410b3b247527067731d9fcb73c1449994d5079c56cbD�T�
fa3eac9fbdec92e915947210c7b62dd3bc17f62bd80edc537b07d378a58418d5D�S�
10da91e17808a066fabc928e609db5fd20fe65299ed6b8fa0337fe213a70cb21D�R�
283e32e5ae51636ccebdf22a1c2c394d89be5d20c981cb3d22cd9353e90c3fbaD�Q�
4d7880fbe60e6c8b83c4e01347b5e9ad274f8eee38feee4a3d7c3f8410c561aeD�P�
7a5d98b836fb6cbb743996d5dd4c13cd9fe0b108498811fbc5ccf1dafa7797efD�O�
3fc9b311cc6984896d03711ca684b967577d4370b4c5b037efe81245cfc9a5f2
������k�OAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���
k�%OAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��	iqOAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yOAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k�OAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7OAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_OAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��
k�wOAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�OAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�PAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%PAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqPAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yPAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagebR-RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������,���k,���n,���p,���u,���x,���|,���,���,���,���	,���,���,���,���,���,���,���,� ,Â�",Ă�%,ł�',Ƃ�*,ǂ�-,Ȃ�2,ɂ�:,ʂ�=,˂�D,̂�G,͂�N,΂�Q,ς�X,Ђ�\,т�c,҂�g,ӂ�l,Ԃ�s,Ղ�x,ւ�},ׂ�,؂�,ڂ�,ۂ�,܂�,ނ�,߂�,�#,ႛ(,ₛ-,゛3,䂛8,傛>,悛D,炛I,肛N,邛T,ꂛZ,낛`,삛e,킛l,r,y,�,�,�,�,���,���,���#,���*,���.,���3,���7,���=,���A,���E,���I-��O-��S-��X-��\-��a-��e-��k-��p-��u-	��{-
��-��-��-��-��-��-��"-��(-��--��4-��:-��A
�z�I�z��k�PAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7PAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_PAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wPAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�PAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����k�%QAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqQAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yQAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��k�
PAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��#k�QAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��"k�7QAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��!k_QAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�� k�wQAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�QAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k�QAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����(k�RAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���'k�RAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���&k�%RAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��%iqRAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��$k�
QAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��-k�
RAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��,k�RAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��+k�7RAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��*k_RAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��)k�wRAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��3k�wSAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���2k�SAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���1k�SAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���0k�%SAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��/iqSAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��.k�RAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��8k�SAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��7k�
SAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��6k�SAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��5k�7SAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��4k_SAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��>k�7TAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��=k_TAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��<k�wTAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���;k�TAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���:k�TAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���9k�%TAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���Dk�UAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ck�%UAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��Bk{TAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Ak�TAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��@k�
TAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��?k�TAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��Ik�UAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Hk�7UAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Gk_UAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Fk�wUAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Ek�UAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��Nk�wVAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Mk�VAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��Lk{UAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Kk�UAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Jk�
UAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��Tk{VAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Sk�VAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Rk�
VAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Qk�VAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Pk�7VAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Ok_VAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��Zk�7WAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Yk_WAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Xk�wWAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Wk�WAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��Vk�VAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Uk_VAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��`k�WAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��_k_WAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��^k{WAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��]k�WAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��\k�
WAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��[k�WAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��ek�
XAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��dk�XAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��ck�7XAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��bk_XAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��ak�wXAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��lk_YAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��kk�wYAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��jk}XAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��ik�XAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��hk_XAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��gk{XAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��fk�XAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��rk_YAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��qk{YAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��pk�YAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��ok�
YAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��nk�YAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��mk�7YAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��yiuZAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��ximZAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��wiEZAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��vk�ZIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��ui�ZAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��tk}YAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��sk�YAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��i�[Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��~k�ZIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��}k�ZIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��|iiZAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��{k�}ZIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��zikZAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��k�[Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii[Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}[Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik[Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iu[Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��im[Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE[Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k�[Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��k�\Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii\Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��
k�}\Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik\Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iu\Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��
im\Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��	iE\Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��k�[Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag

e�r+��V��:��eD�h�
54284e0ce96588259af1165cabdb431f59b260e11eaa00817d54fe6be8d00a8cD�g�
ae30c015a383c2eb423b88776090420304ae65174ef0ecf4eb34bd608148c79cD�f�
0f50b27c447626e536dd1b872545c9247a7634a66cb5763f417cbc9eea4790d8D�e�
b9c8fac8c6b10a87a024279c0ecef2ddf68ea3c55076d9478ee93b3ba8bfc5c0D�d�
092200d5b5dde09d6818651bad72eaf924bc014da7f290860fa9416ca5d80c29D�c�
39b34f1245a4dd4e09703d7a8fa93bb27414f909eb7514764f934e9248878ee3D�b�
09cd4a65244763f9c5d860969f9294414316cc0b7472539300921b5021a3a048D�a�
0106c00d777327c471f8f9e676017d61dd0e5e5b4fe97750869b7857f0838ba2D�`�
9d699056a31b7a651cd7680f41d92d78ae727215dd9dce336447373fd00a7bc6D�_�
8134bb4793d96d74f2db411ef17a6b86bcdf3847073ba2f4a8d8e89bc0d849c6D�^�
b534be5ce2fdd42fba4271d4bfc8275f8788cc729ebeb59920e58209b92fbf2eD�]�
d8ad0a7ee2c7b587dabb291d73d00b779874822a850485d9db4e31f1e20bc562D�\�
5471f87193fdfe4646e6c6f388c9c498da8ede8ccdcade0353ee7503e8299e9c
[��!�[i��im]Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE]Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��iq\Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y\Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�\Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��k�]Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�]Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii]Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}]Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik]Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iu]Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
x�0x�3��k�}^Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik^Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��iq]Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y]Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
<���<k��#iq^Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��"i�y^Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��!k�^Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv�� k�^Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii^Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires
^t�g�C�^v��*k�_Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��)ii_Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��(k�}_Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��'ik_Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���&k�^Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���%k�^Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���$k�%^Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
���!����.k�%_Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��-iq_Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��,i�y_Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��+k�_Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�y���w��3k�`Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��2k�`Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��1ii`Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���0k�_Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���/k�_Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������7k�`Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���6k�%`Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��5iq`Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��4i�y`Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��9�w��=k�aIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��<k�aIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��;iiaAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��:k_`Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��9k�w`Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���8k�`Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Ak�aAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���@k�%aAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��?iqaAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��>i�yaAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��w��Ek�bIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��Dk_aAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Ck�waAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Bk�aAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Ik�bAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Hk�%bAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��GiqbAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Fi�ybAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��Ok�cIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��Nk�bAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Mk�7bAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Lk_bAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Kk�wbAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Jk�bAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Sk�cAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Rk�%cAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��QiqcAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Pi�ycAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��Xk�cAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Wk�7cAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Vk_cAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Uk�wcAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Tk�cAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������\k�dAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���[k�%dAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��ZiqdAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Yi�ydAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��ak�dAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��`k�7dAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��_k_dAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��^k�wdAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���]k�dAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����ek�%eAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��diqeAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ci�yeAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��bk�
dAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��kk�eAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��jk�7eAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ik_eAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��hk�weAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���gk�eAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���fk�eAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����pk�fAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���ok�fAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���nk�%fAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��miqfAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��lk�
eAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��uk�
fAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��tk�fAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��sk�7fAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��rk_fAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��qk�wfAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��{k�wgAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���zk�gAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���yk�gAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���xk�%gAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��wiqgAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��vk�fAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��k�gAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
gAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��~k�gAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��}k�7gAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��|k_gAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��k�7hAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_hAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�whAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�hAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k�hAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%hAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���k�iAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%iAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��
k{hAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��	k�hAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
hAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�hAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role

e�r+��V��:��eD�u�
d06f004563a6bdeb574cc83ae16bbfda190879efa994a9182b24e45eafe5a039D�t�
8050b0ef335b05d786d15521243cec669562d6625e4d80db07c84aec1e66d0a3D�s�
6b870279912b279a310ff11d1024fd1270f6693d8f6ed22ad211f11ac56455c6D�r�
bf010b9168523d32bd2cae3bab71cda19cb9e2d00bbb861630c256f5c6b49d70D�q�
a68ecf7a99623031de79e1da0b60b7029a5516edf54ccc1462cf363187b5fb3aD�p�
fd640f5804c8bb45a16b7f00fef1ce4a1ec58f5ce9fb6650e9d98fa6c316fcd7D�o�
bcaf6c4cc70c53cf9b6f0220af4a968ffc131c6372bbda67e1ad799972341b5dD�n�
6b2d3f3ea7403045cab9e0c8644c832cd7c229b54f24e41a1e5e35eebd699e08D�m�
1c92e98be2e233ea55c194d01aa73ed4184d0ef0f92f289e7070396b6ea55cf5D�l�
5bc9838767e0c9e764e7008304015cb982d5e4e37860284948034ef17d6c3b41D�k�
e84733a2c4b6d0f60e70451f27a7c82164f2fa899abad53af1c69553175d5411D�j�
8b7baa93242958102343838092c3c8f2c9699b186e25f62b224a2810946a81d4D�i�
b444f8f9031836d93018190b4da5a39d69dff36187e399dfc8ea308d2398757c
�z�I�z��k�iAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7iAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_iAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wiAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���
k�iAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��k�wjAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�jAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��k{iAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�iAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
iAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��k{jAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�jAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
jAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�jAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7jAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_jAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��"k�7kAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��!k_kAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p�� k�wkAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�kAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��k�jAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_jAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��(k�kAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��'k_kAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��&k{kAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��%k�kAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��$k�
kAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��#k�kAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��-k�
lAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��,k�lAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��+k�7lAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��*k_lAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��)k�wlAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��4k_mAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��3k�wmAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��2k}lAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��1k�lAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��0k_lAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��/k{lAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��.k�lAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��:k_mAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��9k{mAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��8k�mAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��7k�
mAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��6k�mAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��5k�7mAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��AiunAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��@imnAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��?iEnAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��>k�nIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��=i�nAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��<k}mAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��;k�mAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��Gi�oAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��Fk�nIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Ek�nIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��DiinAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Ck�}nIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��BiknAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��Ok�oIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��NiioAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Mk�}oIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��LikoAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��KiuoAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��JimoAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��IiEoAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��Hk�oIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��Wk�pIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ViipAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Uk�}pIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��TikpAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��SiupAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��RimpAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��QiEpAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��Pk�oIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��\imqAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��[iEqAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��ZiqpAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Yi�ypAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Xk�pIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��bk�qIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��ak�qIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��`iiqAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��_k�}qIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��^ikqAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��]iuqAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
��>����f��rFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ��eY_rAdam Tkac <atkac redhat com> - 0.2.1-2P�9@- rebuild due to "jpeg8-ABI" feature dropk��diqqAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��ci�yqAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
X�w'�;�Xv��nm�rMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��mkcrMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��lkrMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��kc�_rJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��ji3rPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��i]?rDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��h]?rDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��gw�SrRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly
B��~.�BC��vksMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��uc�_sJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��ti3sPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��s]?sDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��r]?sDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��qw�SsRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly���p��sFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ��oY_sAdam Tkac <atkac redhat com> - 0.2.1-2P�9@- rebuild due to "jpeg8-ABI" feature drop
����I��L��}i3tPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��|]?tDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��{]?tDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��zw�StRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly���y��tFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildv��xm�sMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��wkcsMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-tools
R[�1�;R�d��w�SuRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly�����uFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildW��mEtMartin Stransky <stransky@redhat.com> - 0.3.0-11dI@- Added fix for mzbz#1819244v��m�tMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��kctMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��ktMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��~c�_tJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230
	��`k$�A��Z��
Y_vAdam Tkac <atkac redhat com> - 0.2.1-2P�9@- rebuild due to "jpeg8-ABI" feature dropW��mEuMartin Stransky <stransky@redhat.com> - 0.3.0-11dI@- Added fix for mzbz#1819244v��m�uMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��
kcuMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��	kuMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��c�_uJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��i3uPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��]?uDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��]?uDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27

e�r+��V��:��eD��
6e1413f213a7c818dc679fc121435a30906e97b4db03211f3cd23acf9e35b88bD��
36fd57be259185c71e4768b2cd69c293e89e53afca9359f3a04c397ebb715d25D��
2ba1457373a2cd07d465b437c0f82ad35d9f1c92a7e5ea5465b0e3d4ea9a3c0dD��
bf786f7803813a8167ec504e8216dcf9372e8a7df9b4c38050d1db3b93509cd7D�~�
1f886544574d6a8eab00de815966c7ca8a7292ab3a2ac66dcb19ce07dcdf04e0D�}�
f057ce5463bca14d6bab2c699782e32341b1b37571dc5466905db2fca2c1b392D�|�
45e9a1e7f70a5fd4ccd35c605d9412dad9cba3c4602e350da0bd341a6d217b42D�{�
722b0dc706f7600d25c378ec61ab127376170d2f1df9446acfb02d438beb9e18D�z�
0c7bc243b0e57280cd7bdd324734b2af9b6ea05f5309af24c0897ceb134b9ffeD�y�
2f075ce3d7df67323ba3022b428490fb252d7a5759a81d0f53e6570ba24dd777D�x�
18e4458c6be87d024a157c9233b2f318b21378e4939151e17d4d302d944b059bD�w�
59270b3d96c02888cb8fd34bca5e596de497c24051804658439170f2d9e36fdaD�v�
3d78c1d5498c9bcf2b022b55d7e3cace4f911eb0bf74758e0eaf4a756e5f831b
7e|,����7e��kcvMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��kvMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��c�_vJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��i3vPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��]?vDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��]?vDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��w�SvRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly�����vFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
��(��T�L��i3wPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��]?wDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��]?wDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��w�SwRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly�����wFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ��Y_wAdam Tkac <atkac redhat com> - 0.2.1-2P�9@- rebuild due to "jpeg8-ABI" feature dropv��m�vMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919
][�1��]L��#]?xDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��"w�SxRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly���!��xFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildv�� m�wMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��kcwMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��kwMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��c�_wJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230
��`�t�6����+��yFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildW��*mExMartin Stransky <stransky@redhat.com> - 0.3.0-11dI@- Added fix for mzbz#1819244v��)m�xMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��(kcxMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��'kxMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��&c�_xJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��%i3xPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��$]?xDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24
X�w'�;�Xv��3m�yMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��2kcyMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��1kyMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��0c�_yJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��/i3yPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��.]?yDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��-]?yDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��,w�SyRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly
.�G��s#�.� ��;c�_zJaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��:i3zPeter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��9]?zDaniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��8]?zDaniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��7w�SzRahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly���6��zFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ��5Y_zAdam Tkac <atkac redhat com> - 0.2.1-2P�9@- rebuild due to "jpeg8-ABI" feature dropW��4mEyMartin Stransky <stransky@redhat.com> - 0.3.0-11dI@- Added fix for mzbz#1819244
b�P�;R�bL��Ci3{Peter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��B]?{Daniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��A]?{Daniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��@w�S{Rahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly���?��{Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildv��>m�zMartin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��=kczMartin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��<kzMartin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt
�[�1�x����J��|Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildZ��IY_|Adam Tkac <atkac redhat com> - 0.2.1-2P�9@- rebuild due to "jpeg8-ABI" feature dropW��HmE{Martin Stransky <stransky@redhat.com> - 0.3.0-11dI@- Added fix for mzbz#1819244v��Gm�{Martin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��Fkc{Martin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��Ek{Martin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��Dc�_{Jaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230
X�w'�;�Xv��Rm�|Martin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919e��Qkc|Martin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��Pk|Martin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��Oc�_|Jaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��Ni3|Peter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��M]?|Daniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��L]?|Daniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��Kw�S|Rahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly
7e|,����7e��Zkc}Martin Stransky <stransky@redhat.com> - 0.3.0-7X�+�- Added libwebp dependency to libwebp-toolsC��Yk}Martin Stransky <stransky@redhat.com> - 0.3.0-6X�+�- Rebuilt� ��Xc�_}Jaromir Capik <jcapik@redhat.com> - 0.3.0-5T;��- Removing __PPC__ macro conflicting with __BYTE_ORDER__ endian check (#1127230)
- Resolves: rhbz#1127230L��Wi3}Peter Robinson <pbrobinson@redhat.com> 0.3.0-4S��- Fix ppc64le buildL��V]?}Daniel Mach <dmach@redhat.com> - 0.3.0-3R�U�- Mass rebuild 2014-01-24L��U]?}Daniel Mach <dmach@redhat.com> - 0.3.0-2R�k�- Mass rebuild 2013-12-27�d��Tw�S}Rahul Sundaram <sundaram@fedoraproject.org> - 0.3.0-1Q��- upstream release 0.3.0
- enable gif2webp
- add build requires on giflib-devel and libtiff-devel
- use make_install and hardened macros
- list binaries explicitly���S��}Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
%�+�O��&%�|��be�~Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)g��aem~Ondrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)W��`eM~Ondrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_��__c~Ondrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)V��^_Q~Ondrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)~��]_�~Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)W��\mE}Martin Stransky <stransky@redhat.com> - 0.3.0-11dI@- Added fix for mzbz#1819244v��[m�}Martin Stransky <stransky@redhat.com> - 0.3.0-10`�Z�- Added fixes for rhbz#1956829, rhbz#1956843, rhbz#1956919
	$�,�)�M��$g��kemOndrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)W��jeMOndrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_��i_cOndrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)V��h_QOndrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)~��g_�Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)���fg�C~Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscanf��egi~Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}��dg�~Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O��c]E~Ondrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)
L��+�(�LV��r_Q�Ondrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)~��q_��Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)���pg�CJan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscanf��ogiJan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}��ng�Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O��m]EOndrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)�|��le�Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)
��B����f��ygi�Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}��xg��Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O��w]E�Ondrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)�|��ve��Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)g��uem�Ondrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)W��teM�Ondrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_��s_c�Ondrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)
ag��(�ba�|��e��Ondrej Holy <oholy@redhat.com> - 2.0.0-4.rc4^��- CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621)
- CVE-2020-11523: Fix integer overflow in region.c (#1837622)
- CVE-2020-11524: Fix out-of-bounds write in interleaved.c (#1837623)g��em�Ondrej Holy <oholy@redhat.com> - 2.0.0-2.rc4^��@- Fix SCARD_INSUFFICIENT_BUFFER error (#1765199)W��~eM�Ondrej Holy <oholy@redhat.com> - 2.0.0-1.rc4\mA@- Update to 2.0.0-rc4 (#1291254)_��}_c�Ondrej Holy <oholy@redhat.com> - 1.0.2-15Zq��- Fix smartcard usage in manpage (#1428041)V��|_Q�Ondrej Holy <oholy@redhat.com> - 1.0.2-14Z�@- Add FIPS mode support (#1363811)~��{_��Ondrej Holy <oholy@redhat.com> - 1.0.2-13Y��- Fix NTLM on big endian (#1204742)
- Fix colors on big endian (#1308810)���zg�C�Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscan
��,�)�b��L��]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27s��k�Daniel Veillard <veillard@redhat.com> - 2.9.1-2R��- Fix a regression in xmlGetDocCompressMode() rhbz#963716���g�C�Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-5a�b�- Update: Refactored RPC gateway parser (rhbz#2017944)
  + fix issues discovered by Covscanf��gi�Jan Grulich <jgrulich@redhat.com> - 2:2.2.0-4a�@- Refactored RPC gateway parser (rhbz#2017944)}��g��Felipe Borges <feborges@redhat.com> - 2.1.1-3a��- Add checks for bitmap and glyph width/heigth values (rhbz#2017951)O��]E�Ondrej Holy <oholy@redhat.com> - 2.1.1-2^˳@- Update to 2.1.1 (#1834286)
�o��e��
k�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���	o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)
//�L��o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
*Zd�*s��k�Daniel Veillard <veillard@redhat.com> - 2.9.1-2R��- Fix a regression in xmlGetDocCompressMode() rhbz#963716�>��_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��
_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)����5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-5

e�r+��V��:��eD��
88425ec1660289732da5de1bf61433d763b6a1dd261bd1f618a21bbad1e482ebD��
84429c34c87f336378bdb26019944d56abac80c14e6c4ee130584e9a6b1042d3D�
�
c62e34aa51c1c89400b007376b014e42f551c284ffea7d077883fb2cf5673bd8D��
24b248d1220fef75f61061cd2400aad329970e06b2f254507cdd35348d968aa0D��
0448f0190f604f767981ff4c96e3e9210bc3ec57cf905b9c65ce31bcbdb59db6D�
�
a0c3a8dbbc209a90df3f8f2185925585b61c9809b9f26c087201f7c8d64a1f05D�	�
e5f363f81639b222cd478b35c882cd06eecb2b8e8876f3e80dd3d85c8a6198a2D��
fffcdd496e8017e9a7bb4fdc0e4a0d7e1b98c54d5f9dabf43b01870bbb14d79eD��
d424fac47526dc6b037adfd66b2ff2ba1e1395086399d34a1b862222e961c079D��
bede65036dfee6105ded35adb1c299002018a1016e9efd4163446d8e6a92bfccD��
ffdb0e908ca8cc9013d59da38b6a5d9d04ea15e6af25a38508bc92e04af68500D��
9c739eecd603856d78884d350c8dd6ede946fc361bbe142177f439da852cc952D��
865bb89dcd4d8816e485ab34a083b55c7d4056ac265766974695a87da62d8aee
x�C�bx�e��k�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27
//�L��o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
QZd�QL��]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27�>��_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)����5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-:
��C���e��k�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068
//�L��o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
KZd�KR��"_I�David King <dking@redhat.com> - 2.9.1-6.6aQ�@- Fix CVE-2016-4658 (#1966916)�>��!_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q�� _��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)����5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre->
x�C�bx�e��'k�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���&o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��%]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��$kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��#]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27
//�L��(o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
KZd�KR��,_I�David King <dking@redhat.com> - 2.9.1-6.6aQ�@- Fix CVE-2016-4658 (#1966916)�>��+_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��*_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���)�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-B
�9�|��e��2k�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���1o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��0]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��/kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��.]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27s��-k�Daniel Veillard <veillard@redhat.com> - 2.9.1-2R��- Fix a regression in xmlGetDocCompressMode() rhbz#963716
//�L��3o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
*Zd�*s��7k�Daniel Veillard <veillard@redhat.com> - 2.9.1-2R��- Fix a regression in xmlGetDocCompressMode() rhbz#963716�>��6_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��5_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���4�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-F
x�C�bx�e��<k�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���;o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��:]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��9kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��8]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27
//�L��=o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memorybR-�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������-��O-��W-��\-��b-��f-��n-��v-��}- ��-!��
-#��-$��-%��#-&��+-'��3-(��;-)��C-*��J-+��R-,��Z--��b-.��k-/��r-0��y-1��-2��-3��
-4��-6��-8��-9��-;��-<��-=��-?��"-@��'-A��(-C��,-D��2-E��3-G��7-H��<-I��=-L��A-M��E-N��F-P��J-Q��O-R��P-T��T-U��Z-V��[-X��_-Y��c-Z��d-\��h-]��n-^��o-`��s-a��x-b��y-d��}-e��-f��-h��-i��-j��-l��-n��-o��-p��-q��#-r��'-s��--t��3-u��8-v��>-w��C-x��J-y��Q-z��Y-{��`-|��h-}��n-~��s-��x-���}-���-���-���-���-���-���-��� -���%-���,-���4-���:ad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
QZd�QL��A]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27�>��@_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��?_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���>�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-K
��C���e��Ek�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���Do�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��C]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��Bkk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068
//�L��Fo�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
KZd�KR��J_I�David King <dking@redhat.com> - 2.9.1-6.6aQ�@- Fix CVE-2016-4658 (#1966916)�>��I_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��H_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���G�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-O
x�C�bx�e��Ok�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���No�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��M]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��Lkk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��K]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27
//�L��Po�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
KZd�KR��T_I�David King <dking@redhat.com> - 2.9.1-6.6aQ�@- Fix CVE-2016-4658 (#1966916)�>��S_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��R_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���Q�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-S
�9�|��e��Zk�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���Yo�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��X]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��Wkk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��V]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27s��Uk�Daniel Veillard <veillard@redhat.com> - 2.9.1-2R��- Fix a regression in xmlGetDocCompressMode() rhbz#963716
//�L��[o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
QZd�QL��_]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27�>��^_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��]_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���\�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-W
��C���e��ck�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���bo�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��a]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��`kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068
//�L��do�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
KZd�KR��h_I�David King <dking@redhat.com> - 2.9.1-6.6aQ�@- Fix CVE-2016-4658 (#1966916)�>��g_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��f_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���e�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-[
�9�|��e��nk�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���mo�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��l]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��kkk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��j]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27s��ik�Daniel Veillard <veillard@redhat.com> - 2.9.1-2R��- Fix a regression in xmlGetDocCompressMode() rhbz#963716
//�L��oo�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
*Zd�*s��sk�Daniel Veillard <veillard@redhat.com> - 2.9.1-2R��- Fix a regression in xmlGetDocCompressMode() rhbz#963716�>��r_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��q_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���p�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-_
x�C�bx�e��xk�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���wo�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��v]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��ukk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��t]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27
//�L��yo�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
QZd�QL��}]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27�>��|_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��{_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���z�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-c
��C���e��k�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��~kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068
//�L��o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
KZd�KR��_I�David King <dking@redhat.com> - 2.9.1-6.6aQ�@- Fix CVE-2016-4658 (#1966916)�>��_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)����5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-g
x�C�bx�e��k�a�Daniel Veillard <veillard@redhat.com> - 2.9.1-6U@- Fix missing entities after CVE-2014-3660 fix
- CVE-2014-0191 Do not fetch external parameter entities (rhbz#1195650)
- Fix regressions introduced by CVE-2014-0191 patch���
o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-5.1T9�- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087)L��	]?�Daniel Mach <dmach@redhat.com> - 2.9.1-5R�U�- Mass rebuild 2014-01-24i��kk�Daniel Veillard <veillard@redhat.com> - 2.9.1-4R�x@- rebuild to activate -O3 on ppc64 rhbz#1051068L��]?�Daniel Mach <dmach@redhat.com> - 2.9.1-3R�k�- Mass rebuild 2013-12-27
//�L��o�+�Daniel Veillard <veillard@redhat.com> - 2.9.1-6.2V\:@- Fix a series of CVEs (rhbz#1286496)
- CVE-2015-7941 Stop parsing on entities boundaries errors
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- CVE-2015-1819 Enforce the reader to run in constant memoryad in xmlParserPrintFileContextInternal <https://bugzilla.gnome.org/show_bug.cgi?id=758588> (CVE-2016-1838)
- Bug 758605: Heap-based buffer overread in xmlDictAddString <https://bugzilla.gnome.org/show_bug.cgi?id=758605> (CVE-2016-1839)
- Bug 759398: Heap use-after-free in xmlDictComputeFastKey <https://bugzilla.gnome.org/show_bug.cgi?id=759398> (CVE-2016-1836)
- Fix inappropriate fetch of entities content (CVE-2016-4449)
- Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral (CVE-2016-1837)
- Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
- Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
- Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
- Add missing increments of recursion depth counter to XML parser. (CVE-2016-3705)
- Avoid building recursive entities (CVE-2016-3627)
- Fix some format string warnings with possible format string vulnerability (CVE-2016-4448)
- More format string warnings with possible format string vulnerability (CVE-2016-4448)
KZd�KR��_I�David King <dking@redhat.com> - 2.9.1-6.6aQ�@- Fix CVE-2016-4658 (#1966916)�>��_��David King <dking@redhat.com> - 2.9.1-6.5^�1�- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)�q��_��David King <dking@redhat.com> - 2.9.1-6.4]�@- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)���
�5�Daniel Veillard <veillard@redhat.com> - libxml2-2.9.1-6.3WUe�- Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
- Bug 763071: Heap-buffer-overflow in xmlStrncat <https://bugzilla.gnome.org/show_bug.cgi?id=763071> (CVE-2016-1834)
- Bug 757711: Heap-buffer-overflow in xmlFAParsePosCharGroup <https://bugzilla.gnome.org/show_bug.cgi?id=757711> (CVE-2016-1840)
- Bug 758588: Heap-based buffer overre-k

e�r+��V��:��eD��
189cab5bc603286773946e73c42d38c539c7a0de2d36fdb6fa6aba0763c86a44D��
552d8f1a349abd352ed882be0cfbe9423589f98f6621627e58afa84d6c83599dD��
95d76c0c65f9a62fc846a490f4d2b19a993d7bfe3b29c8f5435e619d31f10fe5D��
be4cfd2a6f6ccca83e063fb2eccc0c3e16716ba370638be5de4deda72c80848aD��
af27db711b76e9af2239a13ace9776ebce5fd5642631930f1b9ad66c9bc391f0D��
fdad65275349657bbcdf47559eea430b65c4e7b72549cbc6960987457bc53c5bD��
1c5b7d04128c901ef27ab4d83ef677d205b161991be8f9d8b1210a92bde8b3abD��
14b5a03ea26d2ce50c3b85067c66d70c255d308324891750f4deb390e7a68518D��
5d92d36050c5d7174cd65358882ce23f7eab51af6a02070c42917f77f9dcb3feD��
02153be2996d05b396970b128ff1c8411eb8c6920328c7f2bb84271d28caeff7D��
8a8a993d640a917f86f781a7b6f422fb2bc8f0cdeafa9a8b16d5205c76f2a164D��
12c0315c9a306dde2cbcb74039dc11f2dfc2490f50ccf2ab16411ba4c3093b63D��
6f4c1e2f1a4962df4b746e55c425cf5ae75b8d5b8768adede04c96f2e00ddffe
�*��(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�����+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438)�Q�����Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190318-71.git283373f\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.3.0 (rhbz 1642422)
35\�D�3�����5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m���[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)�����5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)
f�^1f�F�����Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(����O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�����+�Bruno E. O. Meneguele <bmeneg@redhat.com> - 20190429-72.gitddde598\��@- Update to latest upstream linux-firmware image for assorted updates
- cxgb4: update firmware to revision 1.23.4.0 (rhbz 1690727)
- linux-firmware: Add firmware file for Intel Bluetooth 22161 (rhbz 1622438){���	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)
'���{��#�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���"��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��!�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)��� ��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t���i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T����'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)
].6]�T��'��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��&���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�(��%��O�Jan Stancek <jstancek@redhat.com> - 20190815-73.git07b925b]V��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1741356)
- iwlwifi- Update to support the Cyclone Peak Dual Band 2x2 802.11ax
- iwl7265-firmware sub-package merged into iwl7260-firmware sub-package�M��$���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250)
���w�X��M��-���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��,�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���+��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)m��*�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���)��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��(�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)
J�.�m��3�[�Jan Stancek <jstancek@redhat.com> - 20200323-78.git8eb0b28^�k@- Set higher compression (rhbz 1817410)���2��5�Jan Stancek <jstancek@redhat.com> - 20200323-77.git8eb0b28^x��- Update to latest upstream linux-firmware image for assorted updates (rhbz 1813818)t��1�i�Jan Stancek <jstancek@redhat.com> - 20191203-76.gite8a0f4c]��@- Fix missing firmware symlinks (rhbz 1783196)�T��0��'�Jan Stancek <jstancek@redhat.com> - 20191203-75.gite8a0f4c]�N@- Update to latest upstream linux-firmware image for assorted updates
- Update qed zipped/unzipped firmware to latest upstream (rhbz 1720385)�F��/���Jan Stancek <jstancek@redhat.com> - 20190918-74.git6c6918a]�@- Update to latest upstream linux-firmware image for assorted updates
- Update bnx2x firmware to latest upstream (rhbz 1720386)�1��.��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-80.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)
v`�Yv�^��8��5�Denys Vlasenko <dvlasenk@redhat.com> - 20200421-83.git78c0348fXj@- hw: intel: Fix protection mechanism failure for some Intel(R) PROSet/Wireless WiFi
Resolves: RHEL-4010, RHEL-4013, RHEL-4016, RHEL-4018, RHEL-4021�1��7��]�Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-82.git78c0348e���- AMD: INVD instruction may lead to a loss of SEV-ES guest machine memory integrity problem (RHEL-13985)�M��6���Rado Vrbovsky <rvrbovsk@redhat.com> - 20200421-81.git78c0348e:T�- Cross-Process Information Leak (RHEL-8938)
- Return Address Predictor velunerability leading to information disclosure (RHEL-9250){��5�	o�Augusto Caringi <acaringi@redhat.com> - 20200421-80.git78c0348_԰�- Update Intel Bluetooth firmwares (rhbz 1895787)���4��5�Jan Stancek <jstancek@redhat.com> - 20200421-79.git78c0348^�U@- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
�E��)���g��>e�k�Miroslav Lichvar <mlichvar@redhat.com> 1.8-5Y�+@- add support for active-backup bonding (#1002657)
- add support for IP over InfiniBand (#1472880)
- fix handling of unknown/invalid management TLVs in pmc (#1459446 #1459449)g��=em�Michal Ruprich <mruprich@redhat.com> - 1.8-4Y�4�- Resolves: #1487522 - Race condition in phc2sysW��<eM�Miroslav Lichvar <mlichvar@redhat.com> 1.8-3X�,�- fix backport of linkdown patch_��;e]�Miroslav Lichvar <mlichvar@redhat.com> 1.8-2X��@- force BMC election when link goes downZ��:eS�Miroslav Lichvar <mlichvar@redhat.com> 1.8-1X���- update to 1.8 (#1359311 #1353336)�6��9�	�c�Miroslav Lichvar <mlichvar@redhat.com> 1.4-3.20140718gitbdb6a3Tto@- fix resetting of linreg servo (#1165045)
- fix phc2sys automatic mode with multiple interfaces (#1108795)
1��+�1|��Cc��Petr Šabata <contyk@redhat.com> - 0.9.46-8S)��- Ignore supplied PG configuration if PG is being disabled (#1067261)v��Bu{�Miroslav Lichvar <mlichvar@redhat.com> 2.0-2.el7_9.1`�s�- validate length of forwarded messages (CVE-2021-3570)���Ae�)�Miroslav Lichvar <mlichvar@redhat.com> 2.0-2\�@- fix comparing of unicast addresses
- don't leak memory when allocation fails���@e�9�Miroslav Lichvar <mlichvar@redhat.com> 2.0-1\�|�- update to 2.0 (#1623919)
- add support for more accurate synchronization to phc2sys (#1643977)
- add support for active-backup team interface (#1650672)
- limit unicast message rate per address and grant duration�2��?e��Miroslav Lichvar <mlichvar@redhat.com> 1.8-6[�@- add support for bonding to timemaster (#1549015)
- improve timemaster to restart terminated processes (#1527170)
- start ptp4l, timemaster and phc2sys after network-online target (#1541991)
- don't forward management requests to UDS port (#1520366)
��:�7��n��Jyg�Aaron Conole <aconole@redhat.com> - 1.0.1-5.git036e314\u*@- Fix memory leak on TLV reception (#1196320)j��Iy_�Aaron Conole <aconole@redhat.com> - 1.0.1-4.git036e314[j�@- fix the OID printing routine (#1551623)�(��Hu�]�Chris Leech <cleech@redhat.com> - 1.0.1-3.git036e314W|�- 1273663 sync with upstream v1.0.1-26-g036e314
  system capability incorrect advertised as station only���Gu��Chris Leech <cleech@redhat.com> - 1.0.1-2.git986eb2eU�5@- convert from sysv shm to posix, to allow selinux restorecon (#1080287)r��Fus�Chris Leech <cleech@redhat.com> - 1.0.1-1.git986eb2eU���- rebased to upstream v1.0.1-23-g986eb2e (#1175802)j��Ecu�Chris Leech <cleech@redhat.com> - 0.9.46-10TFJ�- Sync with upstream v0.9.46-123-g48a5f38 (#1087096)T��DaK�Chris Leech <cleech@redhat.com> - 0.9.46-9S�\�- Fix IEEE mode DCBX (#1102886)
�Y�(�D����Qu��Chris Leech <cleech@redhat.com> - 1.0.1-2.git986eb2eU�5@- convert from sysv shm to posix, to allow selinux restorecon (#1080287)r��Pus�Chris Leech <cleech@redhat.com> - 1.0.1-1.git986eb2eU���- rebased to upstream v1.0.1-23-g986eb2e (#1175802)j��Ocu�Chris Leech <cleech@redhat.com> - 0.9.46-10TFJ�- Sync with upstream v0.9.46-123-g48a5f38 (#1087096)T��NaK�Chris Leech <cleech@redhat.com> - 0.9.46-9S�\�- Fix IEEE mode DCBX (#1102886)|��Mc��Petr Šabata <contyk@redhat.com> - 0.9.46-8S)��- Ignore supplied PG configuration if PG is being disabled (#1067261)U��Ly5�Aaron Conole <aconole@redhat.com> - 1.0.1-7.git036e314b�'�- Fix compiler guard�"��Ky�M�Aaron Conole <aconole@redhat.com> - 1.0.1-6.git036e314]rJ@- Fix lldpad dereference NULL (#1513337)
- Fix ecp22_start() failure to create object (#1510945)
-S�s�s��-j��Ycu�Chris Leech <cleech@redhat.com> - 0.9.46-10TFJ�- Sync with upstream v0.9.46-123-g48a5f38 (#1087096)T��XaK�Chris Leech <cleech@redhat.com> - 0.9.46-9S�\�- Fix IEEE mode DCBX (#1102886)|��Wc��Petr Šabata <contyk@redhat.com> - 0.9.46-8S)��- Ignore supplied PG configuration if PG is being disabled (#1067261)U��Vy5�Aaron Conole <aconole@redhat.com> - 1.0.1-7.git036e314b�'�- Fix compiler guard�"��Uy�M�Aaron Conole <aconole@redhat.com> - 1.0.1-6.git036e314]rJ@- Fix lldpad dereference NULL (#1513337)
- Fix ecp22_start() failure to create object (#1510945)n��Tyg�Aaron Conole <aconole@redhat.com> - 1.0.1-5.git036e314\u*@- Fix memory leak on TLV reception (#1196320)j��Sy_�Aaron Conole <aconole@redhat.com> - 1.0.1-4.git036e314[j�@- fix the OID printing routine (#1551623)�(��Ru�]�Chris Leech <cleech@redhat.com> - 1.0.1-3.git036e314W|�- 1273663 sync with upstream v1.0.1-26-g036e314
  system capability incorrect advertised as station only
p��P�p�pU��`y5�Aaron Conole <aconole@redhat.com> - 1.0.1-7.git036e314b�'�- Fix compiler guard�"��_y�M�Aaron Conole <aconole@redhat.com> - 1.0.1-6.git036e314]rJ@- Fix lldpad dereference NULL (#1513337)
- Fix ecp22_start() failure to create object (#1510945)n��^yg�Aaron Conole <aconole@redhat.com> - 1.0.1-5.git036e314\u*@- Fix memory leak on TLV reception (#1196320)j��]y_�Aaron Conole <aconole@redhat.com> - 1.0.1-4.git036e314[j�@- fix the OID printing routine (#1551623)�(��\u�]�Chris Leech <cleech@redhat.com> - 1.0.1-3.git036e314W|�- 1273663 sync with upstream v1.0.1-26-g036e314
  system capability incorrect advertised as station only���[u��Chris Leech <cleech@redhat.com> - 1.0.1-2.git986eb2eU�5@- convert from sysv shm to posix, to allow selinux restorecon (#1080287)r��Zus�Chris Leech <cleech@redhat.com> - 1.0.1-1.git986eb2eU���- rebased to upstream v1.0.1-23-g986eb2e (#1175802)
*�(�D�
�*n��hyg�Aaron Conole <aconole@redhat.com> - 1.0.1-5.git036e314\u*@- Fix memory leak on TLV reception (#1196320)j��gy_�Aaron Conole <aconole@redhat.com> - 1.0.1-4.git036e314[j�@- fix the OID printing routine (#1551623)�(��fu�]�Chris Leech <cleech@redhat.com> - 1.0.1-3.git036e314W|�- 1273663 sync with upstream v1.0.1-26-g036e314
  system capability incorrect advertised as station only���eu��Chris Leech <cleech@redhat.com> - 1.0.1-2.git986eb2eU�5@- convert from sysv shm to posix, to allow selinux restorecon (#1080287)r��dus�Chris Leech <cleech@redhat.com> - 1.0.1-1.git986eb2eU���- rebased to upstream v1.0.1-23-g986eb2e (#1175802)j��ccu�Chris Leech <cleech@redhat.com> - 0.9.46-10TFJ�- Sync with upstream v0.9.46-123-g48a5f38 (#1087096)T��baK�Chris Leech <cleech@redhat.com> - 0.9.46-9S�\�- Fix IEEE mode DCBX (#1102886)|��ac��Petr Šabata <contyk@redhat.com> - 0.9.46-8S)��- Ignore supplied PG configuration if PG is being disabled (#1067261)
�Y��1����n���Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-3.20160601gitf9185e5W��@- Replace Revision string with release and date. Resolves: #1362658z��m�c�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-2.20160601gitf9185e5WaC@- Add explicit package version requirement.�X��l���Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-0.20160601gitf9185e5.1WN�@- New upstream release
- Drop patches that are already present in upstream
- Apply upstream fix for systemd paths
- Resolves: #1297795p��ke�Jaromir Capik <jcapik@redhat.com> - 3.3.4-11T+�- Hardening the build (#1092536)
- Resolves: rhbz#1092536U��jy5�Aaron Conole <aconole@redhat.com> - 1.0.1-7.git036e314b�'�- Fix compiler guard�"��iy�M�Aaron Conole <aconole@redhat.com> - 1.0.1-6.git036e314]rJ@- Fix lldpad dereference NULL (#1513337)
- Fix ecp22_start() failure to create object (#1510945)
Q�����s��	�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-8.20160601gitf9185e5\�e�- Fixed stale links and outdated info
- Resolves: rhbz#1356253���r���Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-7.20160601gitf9185e5\=�@- Detect AMD Rome - Family 17h model 30h
- Resolves: rhbz#1650199���q���Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-6.20160601gitf9185e5Z��- Fix License field capitalization
- Resolves: rhbz#1577175
- Add detection of AMD Ryzen w/ Vega graphics
- Resolves: rhbz#1569542
- Fix issues found by Coverity Scan
- Resolves: rhbz#1578007���p��
�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-5.20160601gitf9185e5Z��@- Detect AMD Family 17h thermal sensors
- Resolves: rhbz#1569542�*��o��A�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-4.20160601gitf9185e5W�:�- Print warning message when running on an alternative architecture. 
- Resolves: #1362664
���@����x���Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-3.20160601gitf9185e5W��@- Replace Revision string with release and date. Resolves: #1362658z��w�c�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-2.20160601gitf9185e5WaC@- Add explicit package version requirement.�X��v���Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-0.20160601gitf9185e5.1WN�@- New upstream release
- Drop patches that are already present in upstream
- Apply upstream fix for systemd paths
- Resolves: #1297795p��ue�Jaromir Capik <jcapik@redhat.com> - 3.3.4-11T+�- Hardening the build (#1092536)
- Resolves: rhbz#1092536�l��t��C�Bryan Mason <bmason@redhat.com> - 3.4.0-8.20160601gitf9185e5.el7_9.1eu�@- New flag for no sensors added. This flag is used in VM environment
  to make sensors binaries not fail if no sensors was detected.
- Resolves: RHEL-17699
Q�����}��	�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-8.20160601gitf9185e5\�e�- Fixed stale links and outdated info
- Resolves: rhbz#1356253���|���Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-7.20160601gitf9185e5\=�@- Detect AMD Rome - Family 17h model 30h
- Resolves: rhbz#1650199���{���Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-6.20160601gitf9185e5Z��- Fix License field capitalization
- Resolves: rhbz#1577175
- Add detection of AMD Ryzen w/ Vega graphics
- Resolves: rhbz#1569542
- Fix issues found by Coverity Scan
- Resolves: rhbz#1578007���z��
�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-5.20160601gitf9185e5Z��@- Detect AMD Family 17h thermal sensors
- Resolves: rhbz#1569542�*��y��A�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-4.20160601gitf9185e5W�:�- Print warning message when running on an alternative architecture. 
- Resolves: #1362664
���@�������Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-3.20160601gitf9185e5W��@- Replace Revision string with release and date. Resolves: #1362658z���c�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-2.20160601gitf9185e5WaC@- Add explicit package version requirement.�X�����Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-0.20160601gitf9185e5.1WN�@- New upstream release
- Drop patches that are already present in upstream
- Apply upstream fix for systemd paths
- Resolves: #1297795p��e�Jaromir Capik <jcapik@redhat.com> - 3.3.4-11T+�- Hardening the build (#1092536)
- Resolves: rhbz#1092536�l��~��C�Bryan Mason <bmason@redhat.com> - 3.4.0-8.20160601gitf9185e5.el7_9.1eu�@- New flag for no sensors added. This flag is used in VM environment
  to make sensors binaries not fail if no sensors was detected.
- Resolves: RHEL-17699
Q�������	�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-8.20160601gitf9185e5\�e�- Fixed stale links and outdated info
- Resolves: rhbz#1356253������Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-7.20160601gitf9185e5\=�@- Detect AMD Rome - Family 17h model 30h
- Resolves: rhbz#1650199������Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-6.20160601gitf9185e5Z��- Fix License field capitalization
- Resolves: rhbz#1577175
- Add detection of AMD Ryzen w/ Vega graphics
- Resolves: rhbz#1569542
- Fix issues found by Coverity Scan
- Resolves: rhbz#1578007�����
�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-5.20160601gitf9185e5Z��@- Detect AMD Family 17h thermal sensors
- Resolves: rhbz#1569542�*����A�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-4.20160601gitf9185e5W�:�- Print warning message when running on an alternative architecture. 
- Resolves: #1362664
���@�������Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-3.20160601gitf9185e5W��@- Replace Revision string with release and date. Resolves: #1362658z���c�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-2.20160601gitf9185e5WaC@- Add explicit package version requirement.�X��
���Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-0.20160601gitf9185e5.1WN�@- New upstream release
- Drop patches that are already present in upstream
- Apply upstream fix for systemd paths
- Resolves: #1297795p��	e�Jaromir Capik <jcapik@redhat.com> - 3.3.4-11T+�- Hardening the build (#1092536)
- Resolves: rhbz#1092536�l����C�Bryan Mason <bmason@redhat.com> - 3.4.0-8.20160601gitf9185e5.el7_9.1eu�@- New flag for no sensors added. This flag is used in VM environment
  to make sensors binaries not fail if no sensors was detected.
- Resolves: RHEL-17699
Q�������	�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-8.20160601gitf9185e5\�e�- Fixed stale links and outdated info
- Resolves: rhbz#1356253������Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-7.20160601gitf9185e5\=�@- Detect AMD Rome - Family 17h model 30h
- Resolves: rhbz#1650199������Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-6.20160601gitf9185e5Z��- Fix License field capitalization
- Resolves: rhbz#1577175
- Add detection of AMD Ryzen w/ Vega graphics
- Resolves: rhbz#1569542
- Fix issues found by Coverity Scan
- Resolves: rhbz#1578007�����
�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-5.20160601gitf9185e5Z��@- Detect AMD Family 17h thermal sensors
- Resolves: rhbz#1569542�*��
��A�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-4.20160601gitf9185e5W�:�- Print warning message when running on an alternative architecture. 
- Resolves: #1362664
���@�������Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-3.20160601gitf9185e5W��@- Replace Revision string with release and date. Resolves: #1362658z���c�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-2.20160601gitf9185e5WaC@- Add explicit package version requirement.�X�����Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-0.20160601gitf9185e5.1WN�@- New upstream release
- Drop patches that are already present in upstream
- Apply upstream fix for systemd paths
- Resolves: #1297795p��e�Jaromir Capik <jcapik@redhat.com> - 3.3.4-11T+�- Hardening the build (#1092536)
- Resolves: rhbz#1092536�l����C�Bryan Mason <bmason@redhat.com> - 3.4.0-8.20160601gitf9185e5.el7_9.1eu�@- New flag for no sensors added. This flag is used in VM environment
  to make sensors binaries not fail if no sensors was detected.
- Resolves: RHEL-17699

e�r+��V��:��eD�)�
14b4703549cb70dba8871814b76da451a63a067a0c48cbf78c90a94b528e8071D�(�
4a27bc911920120ba55850208fce562c36cd54a517a88cc8a4b4adde165bdbc5D�'�
40a9bbf97909feac9fdb52ebe77bd0ec92e96ff00529d4803ce6c56086f78337D�&�
9d34ca3784c0b623e48bc95dca03187a3404a69dd41baa19138db561f25be0f9D�%�
90f9bcfc03ace81b54541dfb0892bbacaabcc873c597d5c78bd3e56e91a2cd80D�$�
7bbf77456d5e310210c4bd541fee70097c26568f34f44184c878e5874e2b57f1D�#�
6f168ecee0a2bbae92e0564565c3d22e1bae72f64557c32569a7bffd94b76ca4D�"�
e4950b148639895cb3ed78b8a00c0708abe4685bd380e0003ebeb947ea1edc42D�!�
9c006d26a3fc490337a403596c661c5f56ddf827bc6cbd0f2da8d9f0c325eeb9D� �
1b461b4e217ac5f51d8990aad583c7f189e73fd3220a54053124772b83c42ebaD��
cbc27f39937173e8134e59deb6baac91cea3e9497f76d2e139b4eb64bc1aade3D��
60f10f4641f2dac4d689ad5b1ee25cc224768eadce58b7f0d64c3eecf32b94ffD��
0af4fa113704a011a3594459a6619542c384a68bce85aa250f90448e347431fe
Q�������	�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-8.20160601gitf9185e5\�e�- Fixed stale links and outdated info
- Resolves: rhbz#1356253������Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-7.20160601gitf9185e5\=�@- Detect AMD Rome - Family 17h model 30h
- Resolves: rhbz#1650199������Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-6.20160601gitf9185e5Z��- Fix License field capitalization
- Resolves: rhbz#1577175
- Add detection of AMD Ryzen w/ Vega graphics
- Resolves: rhbz#1569542
- Fix issues found by Coverity Scan
- Resolves: rhbz#1578007�����
�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-5.20160601gitf9185e5Z��@- Detect AMD Family 17h thermal sensors
- Resolves: rhbz#1569542�*����A�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-4.20160601gitf9185e5W�:�- Print warning message when running on an alternative architecture. 
- Resolves: #1362664
���@���� ���Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-3.20160601gitf9185e5W��@- Replace Revision string with release and date. Resolves: #1362658z���c�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-2.20160601gitf9185e5WaC@- Add explicit package version requirement.�X�����Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-0.20160601gitf9185e5.1WN�@- New upstream release
- Drop patches that are already present in upstream
- Apply upstream fix for systemd paths
- Resolves: #1297795p��e�Jaromir Capik <jcapik@redhat.com> - 3.3.4-11T+�- Hardening the build (#1092536)
- Resolves: rhbz#1092536�l����C�Bryan Mason <bmason@redhat.com> - 3.4.0-8.20160601gitf9185e5.el7_9.1eu�@- New flag for no sensors added. This flag is used in VM environment
  to make sensors binaries not fail if no sensors was detected.
- Resolves: RHEL-17699
Q�����%��	�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-8.20160601gitf9185e5\�e�- Fixed stale links and outdated info
- Resolves: rhbz#1356253���$���Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-7.20160601gitf9185e5\=�@- Detect AMD Rome - Family 17h model 30h
- Resolves: rhbz#1650199���#���Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-6.20160601gitf9185e5Z��- Fix License field capitalization
- Resolves: rhbz#1577175
- Add detection of AMD Ryzen w/ Vega graphics
- Resolves: rhbz#1569542
- Fix issues found by Coverity Scan
- Resolves: rhbz#1578007���"��
�Ondřej Lysoněk <olysonek@redhat.com> - 3.4.0-5.20160601gitf9185e5Z��@- Detect AMD Family 17h thermal sensors
- Resolves: rhbz#1569542�*��!��A�Martin Sehnoutka <msehnout@redhat.com> - 3.4.0-4.20160601gitf9185e5W�:�- Print warning message when running on an alternative architecture. 
- Resolves: #1362664
<q�c��<L��,a;�Michal Srb <msrb@redhat.com> - 0:1.2.17-13Qޞ@- Enable tests
- Fix BRi��+og�Ville Skyttä <ville.skytta@iki.fi> - 0:1.2.17-12Q�'@- Add DTD public id to XML and SGML catalogs.f��*u[�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-11Q~`�- Remove unneeded BR: maven-idea-pluginv��)u{�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-10Qf��- Fix manpage names, thanks to Michal Srb for reporting���(s�-�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-9Qb�@- Reindex sources in more sensible way
- Add manual pages; resolves: rhbz#949413���'���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0:1.2.17-8Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�l��&��C�Bryan Mason <bmason@redhat.com> - 3.4.0-8.20160601gitf9185e5.el7_9.1eu�@- New flag for no sensors added. This flag is used in VM environment
  to make sensors binaries not fail if no sensors was detected.
- Resolves: RHEL-17699
U�T�:�,�Ui��4og�Ville Skyttä <ville.skytta@iki.fi> - 0:1.2.17-12Q�'@- Add DTD public id to XML and SGML catalogs.f��3u[�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-11Q~`�- Remove unneeded BR: maven-idea-pluginv��2u{�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-10Qf��- Fix manpage names, thanks to Michal Srb for reporting���1s�-�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-9Qb�@- Reindex sources in more sensible way
- Add manual pages; resolves: rhbz#949413���0u��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-17a��- Fix remote code execution vulnerability
- Resolves: CVE-2021-4104�
��/u�'�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-16Yd��- Fix socket receiver deserialization vulnerability
- Resolves: CVE-2017-5645O��.c?�Daniel Mach <dmach@redhat.com> - 01.2.17-15R�k�- Mass rebuild 2013-12-27U��-u9�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-14Ri�- Remove desktop files
��Wr���D��:u��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-18a�r@- Fix Unsafe deserialization flaw in Chainsaw log viewer
- Fix SQL injection when application is configured to use JDBCAppender
- Fix remote code execution when application is configured to use JMSSink
- Resolves: CVE-2022-23307, CVE-2022-23305, CVE-2022-23302���9u��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-17a��- Fix remote code execution vulnerability
- Resolves: CVE-2021-4104�
��8u�'�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-16Yd��- Fix socket receiver deserialization vulnerability
- Resolves: CVE-2017-5645O��7c?�Daniel Mach <dmach@redhat.com> - 01.2.17-15R�k�- Mass rebuild 2013-12-27U��6u9�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-14Ri�- Remove desktop filesL��5a;�Michal Srb <msrb@redhat.com> - 0:1.2.17-13Qޞ@- Enable tests
- Fix BR
�b�T�}-��O��Bc?�Daniel Mach <dmach@redhat.com> - 01.2.17-15R�k�- Mass rebuild 2013-12-27U��Au9�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-14Ri�- Remove desktop filesL��@a;�Michal Srb <msrb@redhat.com> - 0:1.2.17-13Qޞ@- Enable tests
- Fix BRi��?og�Ville Skyttä <ville.skytta@iki.fi> - 0:1.2.17-12Q�'@- Add DTD public id to XML and SGML catalogs.f��>u[�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-11Q~`�- Remove unneeded BR: maven-idea-pluginv��=u{�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-10Qf��- Fix manpage names, thanks to Michal Srb for reporting���<s�-�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-9Qb�@- Reindex sources in more sensible way
- Add manual pages; resolves: rhbz#949413���;���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0:1.2.17-8Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
Xn�R�n�XU��Ju9�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-14Ri�- Remove desktop filesL��Ia;�Michal Srb <msrb@redhat.com> - 0:1.2.17-13Qޞ@- Enable tests
- Fix BRi��Hog�Ville Skyttä <ville.skytta@iki.fi> - 0:1.2.17-12Q�'@- Add DTD public id to XML and SGML catalogs.f��Gu[�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-11Q~`�- Remove unneeded BR: maven-idea-pluginv��Fu{�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-10Qf��- Fix manpage names, thanks to Michal Srb for reporting���Es�-�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-9Qb�@- Reindex sources in more sensible way
- Add manual pages; resolves: rhbz#949413���Du��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-17a��- Fix remote code execution vulnerability
- Resolves: CVE-2021-4104�
��Cu�'�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-16Yd��- Fix socket receiver deserialization vulnerability
- Resolves: CVE-2017-5645
��J����Ps�-�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-9Qb�@- Reindex sources in more sensible way
- Add manual pages; resolves: rhbz#949413���O���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0:1.2.17-8Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�D��Nu��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-18a�r@- Fix Unsafe deserialization flaw in Chainsaw log viewer
- Fix SQL injection when application is configured to use JDBCAppender
- Fix remote code execution when application is configured to use JMSSink
- Resolves: CVE-2022-23307, CVE-2022-23305, CVE-2022-23302���Mu��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-17a��- Fix remote code execution vulnerability
- Resolves: CVE-2021-4104�
��Lu�'�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-16Yd��- Fix socket receiver deserialization vulnerability
- Resolves: CVE-2017-5645O��Kc?�Daniel Mach <dmach@redhat.com> - 01.2.17-15R�k�- Mass rebuild 2013-12-27
���_�!����Xu��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-17a��- Fix remote code execution vulnerability
- Resolves: CVE-2021-4104�
��Wu�'�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-16Yd��- Fix socket receiver deserialization vulnerability
- Resolves: CVE-2017-5645O��Vc?�Daniel Mach <dmach@redhat.com> - 01.2.17-15R�k�- Mass rebuild 2013-12-27U��Uu9�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-14Ri�- Remove desktop filesL��Ta;�Michal Srb <msrb@redhat.com> - 0:1.2.17-13Qޞ@- Enable tests
- Fix BRi��Sog�Ville Skyttä <ville.skytta@iki.fi> - 0:1.2.17-12Q�'@- Add DTD public id to XML and SGML catalogs.f��Ru[�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-11Q~`�- Remove unneeded BR: maven-idea-pluginv��Qu{�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-10Qf��- Fix manpage names, thanks to Michal Srb for reporting
�l���r��
��`u�'�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-16Yd��- Fix socket receiver deserialization vulnerability
- Resolves: CVE-2017-5645O��_c?�Daniel Mach <dmach@redhat.com> - 01.2.17-15R�k�- Mass rebuild 2013-12-27U��^u9�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-14Ri�- Remove desktop filesL��]a;�Michal Srb <msrb@redhat.com> - 0:1.2.17-13Qޞ@- Enable tests
- Fix BRi��\og�Ville Skyttä <ville.skytta@iki.fi> - 0:1.2.17-12Q�'@- Add DTD public id to XML and SGML catalogs.f��[u[�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-11Q~`�- Remove unneeded BR: maven-idea-pluginv��Zu{�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-10Qf��- Fix manpage names, thanks to Michal Srb for reporting���Ys�-�Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-9Qb�@- Reindex sources in more sensible way
- Add manual pages; resolves: rhbz#949413
x/�H��	��fs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���es�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��dsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��c�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�D��bu��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-18a�r@- Fix Unsafe deserialization flaw in Chainsaw log viewer
- Fix SQL injection when application is configured to use JDBCAppender
- Fix remote code execution when application is configured to use JMSSink
- Resolves: CVE-2022-23307, CVE-2022-23305, CVE-2022-23302���au��Mikolaj Izdebski <mizdebsk@redhat.com> - 0:1.2.17-17a��- Fix remote code execution vulnerability
- Resolves: CVE-2021-4104
f�p��
��l���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��k���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���j���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��is�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��hsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���gs�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
>��Z�Y�>���s���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��rs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��qsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���ps�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��os�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���ns�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��msu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.
Y*�#��Y���ys�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��xs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���ws�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t��v�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��u���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��t���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
��
~��t���g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��~���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��}���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���|���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��{s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��zsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
 8�Q�!� c��sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m���Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.
hq��
h���s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
��
���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��	���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.
�r�q�V��Q�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��
s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.
9q�W�/�9�
��s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t���g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.

e�r+��V��:��eD�6�
7d80d5c3223ee7166a1d09374bac557258cbea615497efbd575aaf673d58b321D�5�
40ff738de8c90ab572f7f1b75bd512df524c5b0251c9fbf54e4d81783f7d5a34D�4�
fdbf4bfe28188e74649c64f6a210cdce1aec37dafe82324cc4a7403e012e4c4fD�3�
bd945872965d8eeb4accc4fc087400341b7ecfd21918499fa21ff68810cb4194D�2�
0202fe311e75a00ac449bf922bf22eacbdfcbc62ea3fb9eca5285643347ec389D�1�
92b1ec3eeccc76ef95cbdf3336b545c2ded469e9d6ebaa81b98312b0ef0cc80aD�0�
3687a70548cbd4d02fcf7f26b82c06330dc5e341e67504643b30e20c257b33a3D�/�
7954c520b09dc7bfb10b62124f03b0340cfc571dc7d61d91873543f3a413149bD�.�
06d86e24f67250850372882170efd7d12d041a90b28a72fb952a0f3d10141825D�-�
75f984b4cdee8c054416401d8e1a4f00cb8d0fa104e54d12456f8884c58d7db5D�,�
05b66ae9aef06d6c9d64f8dd5f1ffb50591c5686b5d538f6a698b5725f8a5b12D�+�
45664af56e8ecd30d4df0d0ca03b53d10f0840e2da053735655a3283b7b1fb6dD�*�
252358bff773a45f41c33ac5e89717fa9768dccf112a04337a33f37cc5737ac4
^t���^m���Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t���g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.
>��Z�Y�>���&���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��%s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��$sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���#s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��"s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���!s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r�� su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.
�*�*���	��,s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���+s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��*su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��)�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�
��(���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��'���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
f�p��
��2���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��1���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���0���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��/s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��.sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���-s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
>��Z�Y�>���9���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��8s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��7sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���6s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��5s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���4s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��3su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.
}*�#�}�	��?s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���>s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��=su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.t��<�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��;���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��:���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
f�p��
��E���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��D���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���C���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��Bs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��AsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���@s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
<��X�W�<���L���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��Ks�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��JsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���Is�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��Hs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���Gs�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t��F�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
+*�#[�+�	��Rs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���Qs�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.�C��P���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t��O�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��N���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��M���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
f�p��
��X���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��W���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���V���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��Us�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��TsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���Ss�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
���O�7��	��^s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���]s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��\su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��[�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C��Z���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t��Y�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
f�p��
��d���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��c���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���b���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��as�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��`sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���_s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
Y�w�O�Y�
��ks�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��jsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���is�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��hs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���gs�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��fsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��e�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.
it���i�	��qs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���ps�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��osu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
��n���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��m���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���l���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.
f�p��
��w���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��v���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���u���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��ts�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��ssW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���rs�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
R�p�H�R�
��~s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��}sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���|s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��{s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���zs�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��ysu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.t��x�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
gt���g�	��s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t���g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.
f�p��
��
���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��	���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
������c��sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���
s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.�C�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t���g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
@q��@�C�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t���g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.

e�r+��V��:��eD�C�
c990d11d35716ef252caf3630273bd9502a4f8556105b0ee8005c3164ce118dfD�B�
56fdfe56e71473fc17bdd4e12e6ff4713e56fd02c7595517593f0cabc98308f9D�A�
76398082a1500552d12445932d6e5689e02b1ebdced0a38e4003a7fa56871ce1D�@�
81f4f035197f26565bfc9caddcd8374921d1e73e9c89c65d4769e9daf437a158D�?�
6856b6c454d9ab38557feb769e9f6ad01dab3cef1e61417d841eb5c243932401D�>�
c3b133e5f06890f86c2c918c35177dfe1000500cfee3fc5ff248faab874324f1D�=�
80fba5d63f2251d74b40f2d94f3fa1ea15c4abee2772339081238b1d17a44eb3D�<�
38375293dabf1abf54765991dcbdc6f2a1cd8c3ebe3d7fabc2405e566a16c5f0D�;�
bff2adfbc894a60df24055ab573b81c8128737c5d8b2530955f48d64f1c121b5D�:�
a8011f7c5d7ee7b597856c9c2ae5e2c6fc7ae896c60e16be78780dc6f09a5babD�9�
88ee54419e99f4dacae891d93199c6fed6512d9a534c7d923a9477877d953d6aD�8�
a1e667c441a340c5ac1f0544c4a3d934fde4bf968688af42f5d33e773f092b5bD�7�
cedf74bcc18ccfbbe277b033c31b3a65c6fae8135a0c90fadef65c35b5da0d1c
Y�w�O�Y�
��s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m���Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.
it���i�	��#s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���"s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��!su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
�� ���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.
f�p��
��)���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��(���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���'���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��&s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��%sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���$s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.
<��X�W�<���0���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��/s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��.sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���-s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��,s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���+s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.t��*�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.
t*�#[�tr��6su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��5�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C��4���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t��3�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��2���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��1���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�^�6�@����<���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��;s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��:sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���9s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��8s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���7s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
[*�%��[���Bs�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��As�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���@s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��?su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
��>���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��=���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
��
~��t��H�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��G���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��F���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���E���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��Ds�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��CsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
�^�6�@����N���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��Ms�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��LsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���Ks�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��Js�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���Is�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
t*�#[�tr��Tsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��S�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C��R���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t��Q�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��P���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��O���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.bR-�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������-���J-���P-���X-���`-���f-���l-���s-���y-���-���-���-���-���-���-���&-���,-���2-���9-���?-���E-���L-���R-���X-���^-���d-���k-���q-���w-���~-���-���
-���-���-���-���#-���)-���0-���6-���<-���B-���H-���N-���T-���Z-���`-���f-���l-���r-���x-�~-Â�-Ă�
-ł�-Ƃ�-Ȃ� -ɂ�(-ʂ�0-˂�9-̂�A-͂�I-΂�R-ς�[-Ђ�d-т�m-҂�v-ӂ�-Ԃ�-Ղ�-ւ�-ׂ�!-ق�*-ڂ�3-ۂ�<-܂�E-݂�M-ނ�U-߂�^-�g-Ⴅp-₥y-ウ-䂦-傦-悦-炦$-邦--ꂦ6-낦?-삦H-킦Q-Y-a-�j-�s-�|-�-�-���
�^�6�@����Z���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��Ys�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��XsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���Ws�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��Vs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���Us�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
[*�%��[���`s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��_s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���^s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��]su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
��\���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��[���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
��
~��t��f�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��e���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��d���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.���c���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��bs�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��asW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
�^�6�@����l���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��ks�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��jsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���is�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��hs�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���gs�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
t*�#[�tr��rsu�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.m��q�Y�Marian Csontos <mcsontos@redhat.com> - 7:2.02.186-7.el7_8.1^j$@- Fix failing pvs with locking_type 4.�C��p���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t��o�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
��n���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��m���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
�^�6�@����x���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��ws�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��vsW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���us�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��ts�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���ss�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
[*�%��[���~s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��}s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���|s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.r��{su�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-1^y�@- Bug fix release.
- See WHATS_NEW file for details.�
��z���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q��y���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
��
~��t���g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.������Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.
�^�6�@����
���Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.1_��- Fix conversion to mirrored mirror log with larger regionsize.�
��	s�#�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6^��- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.c��sW�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-5^��- Update boom to bug fix release 1.2.���s�9�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-4^��- boom: Fix traceback in error path.
- boom: Improve error path handling with --debug.�	��s�!�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-3^��@- Add allow_mixed_block_sizes into lvm.conf.
- Update boom to version 1.1.���s�I�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-2^�H�- No validation for thin pools not used by lvm,
- Add support for VDO in blkdeactivate script.
'*�#[�'���q��Pavel Šimerda <psimerda@redhat.com> - 3:2.1.15-24X�}A- Resolves: #1232737 - Fix instances of #!/usr/bin/env python in mailman�$��q�Y�Pavel Šimerda <psimerda@redhat.com> - 3:2.1.15-23X�}@- Resolves: #1232749 - fix bad subject of the welcome email when creating list
  using newlist command�C�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.5`J@- Fix fsadm failure due to accessing unbound variable.
- Fix segfault in vgextend when a PV is missing in the processed VG.t��
�g�Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.4`!'�- Fix fsadm behavior with missing parameters.�
�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.3_���- Fix lvresize handling of fsck exit code 1 - FS errors corrected.�Q�����Marian Csontos <mcsontos@redhat.com> - 7:2.02.187-6.el7_9.2_��@- Fix dmeventd crash with modified reserved_stack configuration option.
- Fix lvm crashing when .cache file is changed by external tools.
����j��qg�Martin Osvald <mosvald@redhat.com> - 3:2.1.15-30.2a�o@- Fix for CVE-2021-44227
- Resolves: #2026866�
��q�+�Martin Osvald <mosvald@redhat.com> - 3:2.1.15-30.1a�b�- Fix for CVE-2016-6893
- Fix for CVE-2021-42097
- Resolves: #2024884, #2020688���k��Pavel Zhukov <pzhukov@redhat.com> - 3:2.1.15-30]A��- Resolves: #1599692 - Sanitize input on listinfo page (CVE-2018-0618)|��k��Pavel Zhukov <pzhukov@redhat.com> - 3:2.1.15-29]A��- Resolves: #1611689 -  Trim long text in "no such list" messagesp��ky�Pavel Zhukov <pzhukov@redhat.com> - 3:2.1.15-28]5�@- Resolves: #1718180 - Try to decode member name first~��k��Pavel Zhukov <pzhukov@redhat.com> - 3:2.1.15-27Z���- Related : #1545973 -  Bump release to override rhel-7.4.z versionr��k}�Pavel Zhukov <pzhukov@redhat.com> - 3:2.1.15-26Z�<�- Resolves: #1545973 -  Add sanitizer for XSS mitigationq��k{�Pavel Zhukov <pzhukov@redhat.com> - 3:2.1.15-25Z��- Resolves: #1545973 -  Fix XSS vulnerability in web UI

e�r+��V��:��eD�P�
c48cdbee47b50246eeff421099d33fa4c714820624f898dd7b17a6940d7ea5b9D�O�
298d464e537220ee820bd7139581301c828d6e60d9deb0f490ea21510f3a7884D�N�
8c61ae91b0b15370cc12465214b2a97e5f414aec4feb6af550ac11024416aaa4D�M�
9ffa36744512a13fc23ae4541bafd054b58dfcecb57c59e6cbe9575f74e20809D�L�
8862c2d66552b96db725de231e282bb308785e3aceaa1a3373dd4a21a3279f14D�K�
537f6ca06c1c64b8b443ddea71e5ed3c2e491cdc767579a7e3a42473aced25b0D�J�
1e1f0a4ca49b831262ecfe3ac11e0eaf955da130a0d8c2a9887d17d6514fad7eD�I�
ed62288ee271d53bb3c81742a33a6fe77f2edda3206814cfbd782ea0e9a2983bD�H�
4555608cef90da4d409d7d09f1176fc6cc4348f516c64411e318379a54137083D�G�
de0f021707bee4c5aaee236900b154d83bb1e1fb6cf13faf8ff2b8f68fd04dcbD�F�
222af4af29ee9e4dea368547514867dd1734fdc205d9dc9b484dd99e567f4d75D�E�
9253408f51b5e89b9beb8bfd7b35383d55a86420ea8834e2d54d161be9d81233D�D�
8f63c53cfad328c376db111c9f46d7f6c7de014b98eb16dd9bbcf62583303adb
l�"�0�X�lv�� M�!�Xiao Ni <xni@redhat.com> - 4.1.5^�%@- mdcheck continue/start service has grammer error
- Resolves rhbz#1774354n��M��Xiao Ni <xni@redhat.com> - 4.1.4^C�- Innorrect UUID reported in volume detail
- Resolves rhbz#1789816Z��Mk�Xiao Ni <xni@redhat.com> - 4.1.3]�@- Fix CI building error
- Resolves rhbz#1773607v��M�!�Xiao Ni <xni@redhat.com> - 4.1.2]��- imsm: fix spare activation for old matrix arrays
- Resolves rhbz#1773607~��M�1�Xiao Ni <xni@redhat.com> - 4.1.1\�M�- Update to upstream 4.1 and backport 21 patches after 4.1
- Resolves rhbz#1641473l��U��Xiao Ni <xni@redhat.com> - 4.1-rc1-2[b�@- Fix two IMSM bugs
- Resolves rhbz#1602362 and rhbz#1602358k��U��Xiao Ni <xni@redhat.com> - 4.1-rc1-1[,�- Upgrade to upstream mdadm-4.1-rc1
- Resolves rhbz#1494472k��O�	�Xiao Ni <xni@redhat.com> - 4.0-13Zz�@- stop previous reshape process first 
- Resolves rhbz#1507415
��:�[�_�n��(M��Xiao Ni <xni@redhat.com> - 4.1.4^C�- Innorrect UUID reported in volume detail
- Resolves rhbz#1789816Z��'Mk�Xiao Ni <xni@redhat.com> - 4.1.3]�@- Fix CI building error
- Resolves rhbz#1773607v��&M�!�Xiao Ni <xni@redhat.com> - 4.1.2]��- imsm: fix spare activation for old matrix arrays
- Resolves rhbz#1773607~��%M�1�Xiao Ni <xni@redhat.com> - 4.1.1\�M�- Update to upstream 4.1 and backport 21 patches after 4.1
- Resolves rhbz#1641473l��$U��Xiao Ni <xni@redhat.com> - 4.1-rc1-2[b�@- Fix two IMSM bugs
- Resolves rhbz#1602362 and rhbz#1602358k��#U��Xiao Ni <xni@redhat.com> - 4.1-rc1-1[,�- Upgrade to upstream mdadm-4.1-rc1
- Resolves rhbz#1494472Z��"Mk�Xiao Ni <xni@redhat.com> - 4.1.7_h��- Disable raid5 journal
- Resolves rhbz#1875457d��!M�Xiao Ni <xni@redhat.com> - 4.1.6^��@- Update mdadm to latest upstream
- Resolves rhbz#1801605
���T�b��Z��0Mk�Xiao Ni <xni@redhat.com> - 4.1.3]�@- Fix CI building error
- Resolves rhbz#1773607v��/M�!�Xiao Ni <xni@redhat.com> - 4.1.2]��- imsm: fix spare activation for old matrix arrays
- Resolves rhbz#1773607~��.M�1�Xiao Ni <xni@redhat.com> - 4.1.1\�M�- Update to upstream 4.1 and backport 21 patches after 4.1
- Resolves rhbz#1641473l��-U��Xiao Ni <xni@redhat.com> - 4.1-rc1-2[b�@- Fix two IMSM bugs
- Resolves rhbz#1602362 and rhbz#1602358h��,M��Xiao Ni <xni@redhat.com> - 4.1.8aM��- mdcheck start timer starts failure
- Resolves rhbz#1830736Z��+Mk�Xiao Ni <xni@redhat.com> - 4.1.7_h��- Disable raid5 journal
- Resolves rhbz#1875457d��*M�Xiao Ni <xni@redhat.com> - 4.1.6^��@- Update mdadm to latest upstream
- Resolves rhbz#1801605v��)M�!�Xiao Ni <xni@redhat.com> - 4.1.5^�%@- mdcheck continue/start service has grammer error
- Resolves rhbz#1774354
	]��N�]�]L��9c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��8ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��7c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shm���6M�5�Xiao Ni <xni@redhat.com> - 4.1.9a�@- imsm: After reboot put spare devices into right container.
- Resolves rhbz#2005306h��5M��Xiao Ni <xni@redhat.com> - 4.1.8aM��- mdcheck start timer starts failure
- Resolves rhbz#1830736Z��4Mk�Xiao Ni <xni@redhat.com> - 4.1.7_h��- Disable raid5 journal
- Resolves rhbz#1875457d��3M�Xiao Ni <xni@redhat.com> - 4.1.6^��@- Update mdadm to latest upstream
- Resolves rhbz#1801605v��2M�!�Xiao Ni <xni@redhat.com> - 4.1.5^�%@- mdcheck continue/start service has grammer error
- Resolves rhbz#1774354n��1M��Xiao Ni <xni@redhat.com> - 4.1.4^C�- Innorrect UUID reported in volume detail
- Resolves rhbz#1789816
nx��!�-�nF��Ac-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��@my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��?my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��>a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��=_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��<ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��;a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���:e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)
w�J�?�k�wq��Imy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��Ha��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��G_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��Fci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��Ea��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���De�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��Cc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Bce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit apps
	-�A����-{��Ra��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��Q_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��Pci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��Oa��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���Ne�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��Mc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Lce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��Kc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��Jmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)
	7��f��7h��[_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��Zci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��Ya��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���Xe�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��Wc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Vce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��Uc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��Tmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��Smy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811)
	$��M���$d��dci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��ca��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���be�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��ac9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��`ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��_c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��^my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��]my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��\a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.
	 ��+�{+� ��ma��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���le�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��kc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��jce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��ic-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��hmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��gmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��fa��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��e_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965
	;�,�8�y�;���ve�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��uc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��tce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��sc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��rmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��qmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��pa��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��o_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��nci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)
	@}�*�@��@L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��~ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��}c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��|my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��{my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��za��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��y_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��xci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��wa��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)
nx��!�-�nF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)
w�J�?�k�wq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��
_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���
e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��	c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit apps
	-�A����-{��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)
	7��f��7h��!_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d�� ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811)

e�r+��V��:��eD�]�
e185e29258de4ab6f27caaedc2002626f5e10ca9ec0c4c0d9b98007fb617fa6fD�\�
aa52ec63113bfbe6468d7f69cefadbc170784e01175f841608614bc4443b6eb9D�[�
8799ebab64d83170ce71b98732944e96f18743f83950b9452d4ca10c21d7455aD�Z�
4709ece2740b527335e0d4d46746a1f8ddcdfbb92aef8389bef8e6944d560ee5D�Y�
976cd3979b04d952ae4511353b7a157eff7733234abb279a441ad447656af9feD�X�
59f3e6ecf2f05648af5bd7cf1479e1cb010929f1310143f5e007725c4773c36cD�W�
0a804c07144041c1bb5d619535096838e17f54b6d6c4295d4b1551f45f7031bfD�V�
129ffba6bb846528ce31e13c3c411fca71678d07fa6e0e112e5862ec25ba2827D�U�
754f6af1bc5302dd16280e706cba386ac96e7198be4530e907559fe08ab098e3D�T�
de8317deebc44e01bffee751beab8a8a0e35efa4cccd2d3dd442f02026778754D�S�
da05a8dcff76310419bb1fc12a7598dd9d24206d8f1a6db041a8900ce84de810D�R�
792164299f57de7fad013d1cbb4d0847d3228f6a89e6ed330af88b4f95b4e458D�Q�
8f33285bb25298291523ef6f04cb95fa5815d34f7b05d4efa5f5308614c6a8db
	$��M���$d��*ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��)a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���(e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��'c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��&ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��%c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��$my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��#my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��"a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.
	 ��+�{+� ��3a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���2e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��1c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��0ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��/c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��.my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��-my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��,a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��+_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965
	;�,�8�y�;���<e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��;c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��:ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��9c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��8my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��7my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��6a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��5_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��4ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)
	@}�*�@��@L��Ec9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Dce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��Cc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��Bmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��Amy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��@a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��?_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��>ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��=a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)
nx��!�-�nF��Mc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��Lmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��Kmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��Ja��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��I_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��Hci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��Ga��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���Fe�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)
w�J�?�k�wq��Umy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��Ta��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��S_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��Rci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��Qa��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���Pe�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��Oc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Nce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit apps
	-�A����-{��^a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��]_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��\ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��[a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���Ze�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��Yc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Xce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��Wc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��Vmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)
	7��f��7h��g_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��fci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��ea��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���de�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��cc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��bce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��ac-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��`my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��_my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811)
	$��M���$d��pci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��oa��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���ne�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��mc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��lce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��kc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��jmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��imy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��ha��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.
	 ��+�{+� ��ya��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���xe�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��wc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��vce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��uc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��tmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��smy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��ra��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��q_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965
	;�,�8�y�;���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��~my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��}my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��|a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��{_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��zci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)
	@}�*�@��@L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��
ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��	c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)
nx��!�-�nF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��
a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)
w�J�?�k�wq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit apps
	-�A����-{��$a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��#_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��"ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��!a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)��� e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)

e�r+��V��:��eD�j�
8a3167ab075b7b5fb344b2c1a8b338bb5fe197f76d476082cb8f2c3ab6e464d3D�i�
b9b66cac17e884fd31966a5fd2874494926a1a8d4408b6ceb84dd898b05ce3f9D�h�
2f18acc2929e31dcc316b54ca1bb28829287b1d12176f94d365d38d1a1ef23c9D�g�
c6531fa5a214fb87e4f247ba04ec04f2330a77311ac144e58229390092eac77cD�f�
4a8faacf86955f2abf551cdb070907bfb67ba8d81e0df1c694adb79e873aa809D�e�
f4deeab3c5a75216ce3af70b11f8d415b9ca7db8bbbabd522ec02ba360b945c4D�d�
d67f32510e94c118c64283659db64d073108bebd5993b1c728d0d366e4aad1bdD�c�
4331d246086138c76b626867bfe7e22ada968505bcd02d526951cb2236da0d31D�b�
c756565e383627d473b483efbba85ad5704019846d85a5578c515082ff9cf44cD�a�
d892760dbed5cfbe821c1f743b05a838bb1a8e646c36fc267a6ce003baac6d8bD�`�
8e6626556734c046cef5124024bb71c2d64d98b0563d3b93b4769c8f47380342D�_�
b30805264689335b37e185dca416f299366d9a6516f7c7a10cbafad4f800f432D�^�
df3f90935ef976e235c93ee9f86af7d2ce39b33df6bbfbd00b0187a2a6055b4f
	7��f��7h��-_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��,ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��+a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���*e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��)c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��(ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��'c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��&my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��%my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811)
	$��M���$d��6ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��5a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���4e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��3c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��2ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��1c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��0my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��/my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��.a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.
	 ��+�{+� ��?a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���>e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��=c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��<ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��;c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��:my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��9my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��8a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��7_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965
	;�,�8�y�;���He�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��Gc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Fce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��Ec-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��Dmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��Cmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��Ba��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��A_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��@ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)
	@}�*�@��@L��Qc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Pce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��Oc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��Nmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��Mmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��La��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��K_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��Jci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��Ia��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)
nx��!�-�nF��Yc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��Xmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��Wmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��Va��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��U_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��Tci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��Sa��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���Re�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)
w�J�?�k�wq��amy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��`a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��__u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��^ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��]a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���\e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��[c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��Zce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit apps
	-�A����-{��ja��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��i_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��hci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��ga��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���fe�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��ec9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��dce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��cc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��bmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)
	7��f��7h��s_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��rci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��qa��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���pe�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��oc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��nce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��mc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��lmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��kmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811)
	$��M���$d��|ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��{a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���ze�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��yc9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��xce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��wc-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��vmy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��umy�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��ta��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.
	 ��+�{+� ��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��~a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��}_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965
	;�,�8�y�;���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)L��
c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��
my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��	my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)
	@}�*�@��@L��c9�Dave Airlie <airlied@redhat.com> - 18.3.4-5\��- fix remote shm patchb��ce�Dave Airlie <airlied@redhat.com> - 18.3.4-4\�e�- Enable i686 vulkan drivers for 32-bit appsF��c-�Dave Airlie <airlied@redhat.com> - 18.3.4-3\�@- fix remote shmq��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)
�x��!�-�q��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-12_��- Fix for defect reported by Coverity/clang (#1803811)q��my�Michel Dänzer <mdaenzer@redhat.com> - 18.3.4-11_��- Backport upstream i965 multi-screen fixes (#1803811){��a��Adam Jackson <ajax@redhat.com> - 18.3.4-10^�W@- Revert the previous fix due to regressions in Firefox, Chrome, etc.h��_u�Adam Jackson <ajax@redhat.com> - 18.3.4-9^���- Fix context sharing with multiple screens for i965d��ci�Dave Airlie <airlied@redhat.com> - 18.3.4-8^ku�- Backport put/get shm fixes to EL7 (#1749699)��a��Tomas Pelka <tpelka@redhat.com> - 18.3.4-7^)��- bump version and rebuild to avoind conflict with 7.7.z build (#1543572)���e�#�Ben Crocker <bcrocker@redhat.com> - 18.3.4-6^!@- Patch to require Large CodeModel for llvmpipe on ppc64/ppc64le (#1543572)

e�r+��V��:��eD�w�
bddae66326cff2ad3bae20dfe8698be8546b0620b72acfdd23feb708989d5e53D�v�
5d5db220e9130b6d2c5d13730c7f90b5554b0201e7fbeb60cfed67b092ebed44D�u�
ce7d925a850e5e2f13538931031755559aff5bd0677306a69a885cc9bdc20822D�t�
db3908bf5643d267bcfaa924ae478da8414a6179e1b83c3700e7f99f75d8164aD�s�
0cf6bb4e5beb49f3a45a5171babb25685cf72156e8666dc2a57f9fef6af67838D�r�
c39f22a6884386aa2ab755116305a2ebdc6ae0a68f0992d56e87e8772c8dc240D�q�
52e08c5707423c423c562574e04e5f1da46c6b67f3ef38f30e4725f991a49a12D�p�
09b0a412ef431cf5907e6d41f5bf960d051927c73b0a292dea9a52585f306e01D�o�
fb38f857551fb354a5eed747d7a1167588232589a2bfc88abc3f695d37b7e705D�n�
02cae02000e8b7bc7519aaeb70ed3f09854a6bd0cb622de6b22e75aa2c644230D�m�
10ba9a38035d22f8a1ee9eb610447ad60ca74948c3e82cb712eb09cf97eeecebD�l�
b2fbef479f23da380eafd4aa77e97d08cb7415937a751ac477c8dd39371379baD�k�
68b647f3d90f5828c04a513b4561ba0866363b42452fbf73668418e2faa06983-�UP4 B1) microcode at revision 0x68;
  - Addition of 06-a5-02/0x20 (CML-H R1) microcode at revision 0xe0;
  - Addition of 06-a5-03/0x22 (CML-S 6+2 G1) microcode at revision 0xe0;
  - Addition of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode at revision 0xe0;
  - Addition of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode at revision
    0xe0;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xdc up to 0xe2;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006906 up
    to 0x2006a08;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xdc up to 0xe2;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) -�from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xd6 up
    to 0xe0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xd6 up to 0xde;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xd6 up
    to 0xde;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x43 up to 0x44;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000157
    up to 0x1000159;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4002f01
    up to 0x4003003;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5002f01 up to 0x5003003;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x38 up
    to 0x40;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x16 up
    to 0x1e;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x16 up
    to 0x18;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0x78
    up to 0xa0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xca
    up to 0xe0.
���K��"s�%�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.5_�_@- Do not use "grep -q" in a pipe in check_caveats.
- Add 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats
  (#1905111).�0��!s�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.4_�uA- Update Intel CPU microcode to microcode-20201112 release:
  - Addition of 06-8a-01/0x10 (LKF B2/B3) microcode at revision 0x28;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x32 up
    to 0x34;
  - Updated releasenote file.�� s�
�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.3_�u@- Disable 06-8c-01 (TGL-UP3/UP4 B1) microcode update by default.�J��s�#�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.2_�@- Update Intel CPU microcode to microcode-20201027 release, addresses
  CVE-2020-8694, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698
  (#1893261, #1893249, #1893229):
  - Addition of 06-55-0b/0xbf (CPX-SP A1) microcode at revision 0x700001e;
  - Addition of 06-8c-01/0x80 (TGL-UP3/-�
f��f���&s��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.9`���- Update Intel CPU microcode to microcode-20210525 release, addresses
  CVE-2020-24489, CVE-2-��e��%s�Y�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.8`-A- Update Intel CPU microcode to microcode-20210216 release (#1905111):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a08 up
    to 0x2006a0a;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003003
    up to 0x4003006;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003003 up to 0x5003006.���$s�+�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.7`-@- Remove 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats.t��#sy�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.6`%@- Backport check_dmi_val to check_caveats from RHEL 8.-�020-24511, CVE-2020-24512, and CVE-2020-24513
  (#1962659, #1962709, #1962729, #1962675):
  - Addition of 06-55-05/0xb7 (CLX-SP A0) microcode at revision 0x3000010;
  - Addition of 06-6a-05/0x87 (ICX-SP C0) microcode at revision 0xc0002f0;
  - Addition of 06-6a-06/0x87 (ICX-SP D0) microcode at revision 0xd0002a0;
  - Addition of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Addition of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  - Addition of 06-8c-02/0xc2 (TGL-R C0) microcode at revision 0x16;
  - Addition of 06-8d-01/0xc2 (TGL-H R0) microcode at revision 0x2c;
  - Addition of 06-96-01/0x01 (EHL B1) microcode at revision 0x11;
  - Addition of 06-9c-00/0x01 (JSL A0/A1) microcode at revision 0x1d;
  - Addition of 06-a7-01/0x02 (RKL-S B0) microcode at revision 0x40;
  - Update of-� 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xe2 up to 0xea;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb000038 up
    to 0xb00003e;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a0a up
    to 0x2006b06;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xe2 up to 0xea;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x68 up to 0x88;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0a/0x.c0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xe0 up
    to 0xea;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xde up to 0xea;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xde up
    to 0xea;
  - Upd.ate of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xde up
    to 0xea;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x44 up to 0x46;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x16 up
    to 0x19;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000159
    up to 0x100015b;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003006
    up to 0x4003102;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003006 up to 0x5003102;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x700001e
    up to 0x7002302;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x7000019 up to 0x700001b;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000017
    up to 0xf000019;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe00000f up to 0xe000012;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x40 up
    to 0x44;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x2e up
    to 0x34;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x18 up
    to 0x1a;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa0
    up to 0xa6;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x28 up
    to 0x2a;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xe0 up
    to 0xea;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xe0
    up to 0xea;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xe0
    up to 0xec;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe0
    up to 0xe8;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode from revision
    0xe0 up to 0xea.
�����0��)s�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.4_�u@- Update Intel CPU microcode to microcode-20201112 release:
  - Addition of 06-8a-01/0x10 (LKF B2/B3) microcode at revision 0x28;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x32 up
    to 0x34;
  - Updated releasenote file.���(u�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.11`��A- Update Intel CPU microcode to microcode-20210608 release:
  - Fixes in releasenote.md file.�i��'u�_�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.10`��@- Make intel-06-2d-07, intel-06-4e-03, intel-06-4f-01, intel-06-55-04,
  intel-06-5e-03, intel-06-8c-01, intel-06-8e-9e-0x-0xca,
  and intel-06-8e-9e-0x-dell caveats dependent on intel caveat.
- Enable 06-8c-01 microcode update by default.
- Enable 06-5e-03 microcode update by default (#1897684).
;0�%;�e��-s�Y�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.8`-A- Update Intel CPU microcode to microcode-20210216 release (#1905111):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a08 up
    to 0x2006a0a;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003003
    up to 0x4003006;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003003 up to 0x5003006.���,s�+�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.7`-@- Remove 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats.t��+sy�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.6`%@- Backport check_dmi_val to check_caveats from RHEL 8.�K��*s�%�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.5_�_@- Do not use "grep -q" in a pipe in check_caveats.
- Add 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats
  (#1905111)..020-24511, CVE-2020-24512, and CVE-2020-24513
  (#1962659, #1962709, #1962729, #1962675):
  - Addition of 06-55-05/0xb7 (CLX-SP A0) microcode at revision 0x3000010;
  - Addition of 06-6a-05/0x87 (ICX-SP C0) microcode at revision 0xc0002f0;
  - Addition of 06-6a-06/0x87 (ICX-SP D0) microcode at revision 0xd0002a0;
  - Addition of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Addition of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  - Addition of 06-8c-02/0xc2 (TGL-R C0) microcode at revision 0x16;
  - Addition of 06-8d-01/0xc2 (TGL-H R0) microcode at revision 0x2c;
  - Addition of 06-96-01/0x01 (EHL B1) microcode at revision 0x11;
  - Addition of 06-9c-00/0x01 (JSL A0/A1) microcode at revision 0x1d;
  - Addition of 06-a7-01/0x02 (RKL-S B0) microcode at revision 0x40;
  - Update of. 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xe2 up to 0xea;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb000038 up
    to 0xb00003e;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a0a up
    to 0x2006b06;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xe2 up to 0xea;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x68 up to 0x88;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0a/0x.c0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xe0 up
    to 0xea;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xde up to 0xea;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xde up
    to 0xea;
  - Upd.ate of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xde up
    to 0xea;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x44 up to 0x46;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x16 up
    to 0x19;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000159
    up to 0x100015b;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003006
    up to 0x4003102;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003006 up to 0x5003102;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x700001e
    up to 0x7002302;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x7000019 up to 0x700001b;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000017
    up to 0xf000019;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe00000f up to 0xe000012;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x40 up
    to 0x44;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x2e up
    to 0x34;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x18 up
    to 0x1a;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa0
    up to 0xa6;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x28 up
    to 0x2a;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xe0 up
    to 0xea;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xe0
    up to 0xea;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xe0
    up to 0xec;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe0
    up to 0xe8;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode from revision
    0xe0 up to 0xea.
K[�K���0u�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.11`��A- Update Intel CPU microcode to microcode-20210608 release:
  - Fixes in releasenote.md file.�i��/u�_�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.10`��@- Make intel-06-2d-07, intel-06-4e-03, intel-06-4f-01, intel-06-55-04,
  intel-06-5e-03, intel-06-8c-01, intel-06-8e-9e-0x-0xca,
  and intel-06-8e-9e-0x-dell caveats dependent on intel caveat.
- Enable 06-8c-01 microcode update by default.
- Enable 06-5e-03 microcode update by default (#1897684).���.s��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.9`���- Update Intel CPU microcode to microcode-20210525 release, addresses
  CVE-2020-24489, CVE-2.. Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xea up to 0xec;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb00003e up
    to 0xb000040;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006b06 up
    to 0x2006c0a;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xea up to 0xec;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x88 up to 0x9a;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x46 up to 0x49;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x19 up
    to 0x1a;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015b
    up to 0x100015c;
  - Update of 06-55-.06/0xbf (CLX-SP B0) microcode from revision 0x4003102
    up to 0x400320a;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003102 up to 0x500320a;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002302
    up to 0x7002402;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x700001b up to 0x700001c;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000019
    up to 0xf00001a;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe000012 up to 0xe000014;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x44 up
    to 0x46;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x20 up
    to 0x24;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd0002a0
    up to 0xd000331;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-7a-08/.
0x01 (GLK-R R0) microcode from revision 0x1a up
    to 0x1c;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa6
    up to 0xa8;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2a up
    to 0x2d;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x16 up
    to 0x22;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x2c up
    to 0x3c;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode from revision
    0xea up to 0xec;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xea up
    to 0xec;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode from revision 0xea up to 0xec;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x11 up
    to 0x15;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x1d up
    to 0x2400001f;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode from revision
    0xea up to 0xec;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xea up
    to 0xec;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xea
    up to 0xec;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xec
    up to 0xee;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe8
    up to 0xea;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xea up to 0xec;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x40 up
    to 0x50.
U�%U�K��3s�%�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.5_�_@- Do not use "grep -q" in a pipe in check_caveats.
- Add 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats
  (#1905111).���2u�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.13b�@- Update Intel CPU microcode to microcode-20220207 release:
  - Fixes in releasenote.md file.� ��1u�M�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.12b	�- Update Intel CPU microcode to microcode-20220204 release, addresses
  CVE-2021-0127, CVE-2021-0145, CVE-2021-33120 (#2051547, #2049549, #2049566):
  - Removal of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Removal of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  -.

f��f���7s��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.9`���- Update Intel CPU microcode to microcode-20210525 release, addresses
  CVE-2020-24489, CVE-2.�e��6s�Y�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.8`-A- Update Intel CPU microcode to microcode-20210216 release (#1905111):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a08 up
    to 0x2006a0a;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003003
    up to 0x4003006;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003003 up to 0x5003006.���5s�+�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.7`-@- Remove 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats.t��4sy�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.6`%@- Backport check_dmi_val to check_caveats from RHEL 8..020-24511, CVE-2020-24512, and CVE-2020-24513
  (#1962659, #1962709, #1962729, #1962675):
  - Addition of 06-55-05/0xb7 (CLX-SP A0) microcode at revision 0x3000010;
  - Addition of 06-6a-05/0x87 (ICX-SP C0) microcode at revision 0xc0002f0;
  - Addition of 06-6a-06/0x87 (ICX-SP D0) microcode at revision 0xd0002a0;
  - Addition of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Addition of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  - Addition of 06-8c-02/0xc2 (TGL-R C0) microcode at revision 0x16;
  - Addition of 06-8d-01/0xc2 (TGL-H R0) microcode at revision 0x2c;
  - Addition of 06-96-01/0x01 (EHL B1) microcode at revision 0x11;
  - Addition of 06-9c-00/0x01 (JSL A0/A1) microcode at revision 0x1d;
  - Addition of 06-a7-01/0x02 (RKL-S B0) microcode at revision 0x40;
  - Update of. 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xe2 up to 0xea;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb000038 up
    to 0xb00003e;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a0a up
    to 0x2006b06;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xe2 up to 0xea;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x68 up to 0x88;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0a/0x.c0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xe0 up
    to 0xea;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xde up to 0xea;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xde up
    to 0xea;
  - Upd.ate of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xde up
    to 0xea;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x44 up to 0x46;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x16 up
    to 0x19;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000159
    up to 0x100015b;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003006
    up to 0x4003102;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003006 up to 0x5003102;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x700001e
    up to 0x7002302;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x7000019 up to 0x700001b;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000017
    up to 0xf000019;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe00000f up to 0xe000012;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x40 up
    to 0x44;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x2e up
    to 0x34;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x18 up
    to 0x1a;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa0
    up to 0xa6;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x28 up
    to 0x2a;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xe0 up
    to 0xea;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xe0
    up to 0xea;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xe0
    up to 0xec;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe0
    up to 0xe8;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode from revision
    0xe0 up to 0xea.
������9u�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.11`��A- Update Intel CPU microcode to microcode-20210608 release:
  - Fixes in releasenote.md file.�i��8u�_�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.10`��@- Make intel-06-2d-07, intel-06-4e-03, intel-06-4f-01, intel-06-55-04,
  intel-06-5e-03, intel-06-8c-01, intel-06-8e-9e-0x-0xca,
  and intel-06-8e-9e-0x-dell caveats dependent on intel caveat.
- Enable 06-8c-01 microcode update by default.
- Enable 06-5e-03 microcode update by default (#1897684).. Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xea up to 0xec;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb00003e up
    to 0xb000040;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006b06 up
    to 0x2006c0a;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xea up to 0xec;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x88 up to 0x9a;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x46 up to 0x49;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x19 up
    to 0x1a;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015b
    up to 0x100015c;
  - Update of 06-55-.06/0xbf (CLX-SP B0) microcode from revision 0x4003102
    up to 0x400320a;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003102 up to 0x500320a;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002302
    up to 0x7002402;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x700001b up to 0x700001c;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000019
    up to 0xf00001a;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe000012 up to 0xe000014;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x44 up
    to 0x46;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x20 up
    to 0x24;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd0002a0
    up to 0xd000331;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-7a-08/.0x01 (GLK-R R0) microcode from revision 0x1a up
    to 0x1c;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa6
    up to 0xa8;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2a up
    to 0x2d;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x16 up
    to 0x22;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x2c up
    to 0x3c;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode from revision
    0xea up to 0xec;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xea up
    to 0xec;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode from revision 0xea up to 0xec;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x11 up
    to 0x15;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x1d up
    to 0x2400001f;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode from revision
    0xea up to 0xec;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xea up
    to 0xec;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xea
    up to 0xec;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xec
    up to 0xee;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe8
    up to 0xea;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xea up to 0xec;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x40 up
    to 0x50.
=�%�=t��=sy�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.6`%@- Backport check_dmi_val to check_caveats from RHEL 8.�c��<u�S�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.14bzS�- Update Intel CPU microcode to microco.���;u�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.13b�@- Update Intel CPU microcode to microcode-20220207 release:
  - Fixes in releasenote.md file.� ��:u�M�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.12b	�- Update Intel CPU microcode to microcode-20220204 release, addresses
  CVE-2021-0127, CVE-2021-0145, CVE-2021-33120 (#2051547, #2049549, #2049566):
  - Removal of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Removal of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  -..de-20220510 release, addresses
  CVE-2022-0005, CVE-2022-21131, CVE-2022-21136, CVE-2022-21151 (#2090246,
    - Addition of 06-97-02/0x03 (ADL-HX C0) microcode at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    at revision 0x1f;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-97-05) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    at revision 0x1f;
  - Addition of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode at
    revision 0x41c;
  - Addition of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) at revi.sion 0x41c;
  - Addition of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) at revision 0x41c;
  - Addition of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode at revision 0x41c;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-bf-02) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-bf-02)
    at revision 0x1f;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-bf-05) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-bf-05)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode at revision 0x1f;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/inte.l-ucode/06-4e-03) from revision 0xec up to 0xf0;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006c0a up
    to 0x2006d05;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xec up to 0xf0;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x9a up to 0xa4;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) .from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xec up to 0xf0;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xec up
    to 0xf0;
  - Update of 06-37-09/0x0f (VLV D0) microcode from revision 0x90c up
    to 0x90d;
  - Up. date of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015c
    up to 0x100015d;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x400320a
    up to 0x4003302;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x500320a up to 0x5003302;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002402
    up to 0x7002501;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x46 up
    to 0x48;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x24 up
    to 0x28;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000331
    up to 0xd000363;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x38 up
    to 0x3a;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x1c up
    to 0x1e;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa8
    up to 0xb0;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2d up
    to 0x31;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x22 up
    to 0x26;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x3c up
    to 0x3e;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x15 up
    to 0x16;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x2400001f
    up to 0x24000023;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xec up
    to 0xf0;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xec
    up to 0xf0;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xee
    up to 0xf0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xea
    up to 0xf0;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xec up to 0xf0;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x50 up
    to 0x53.
�m�����@s��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.9`���- Update Intel CPU microcode to microcode-20210525 release, addresses
  CVE-2020-24489, CVE-2."�e��?s�Y�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.8`-A- Update Intel CPU microcode to microcode-20210216 release (#1905111):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a08 up
    to 0x2006a0a;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003003
    up to 0x4003006;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003003 up to 0x5003006.���>s�+�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.7`-@- Remove 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats..#020-24511, CVE-2020-24512, and CVE-2020-24513
  (#1962659, #1962709, #1962729, #1962675):
  - Addition of 06-55-05/0xb7 (CLX-SP A0) microcode at revision 0x3000010;
  - Addition of 06-6a-05/0x87 (ICX-SP C0) microcode at revision 0xc0002f0;
  - Addition of 06-6a-06/0x87 (ICX-SP D0) microcode at revision 0xd0002a0;
  - Addition of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Addition of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  - Addition of 06-8c-02/0xc2 (TGL-R C0) microcode at revision 0x16;
  - Addition of 06-8d-01/0xc2 (TGL-H R0) microcode at revision 0x2c;
  - Addition of 06-96-01/0x01 (EHL B1) microcode at revision 0x11;
  - Addition of 06-9c-00/0x01 (JSL A0/A1) microcode at revision 0x1d;
  - Addition of 06-a7-01/0x02 (RKL-S B0) microcode at revision 0x40;
  - Update of.$ 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xe2 up to 0xea;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb000038 up
    to 0xb00003e;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a0a up
    to 0x2006b06;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xe2 up to 0xea;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x68 up to 0x88;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0a/0x.%c0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xe0 up
    to 0xea;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xde up to 0xea;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xde up
    to 0xea;
  - Upd.&ate of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xde up
    to 0xea;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x44 up to 0x46;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x16 up
    to 0x19;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000159
    up to 0x100015b;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003006
    up to 0x4003102;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003006 up to 0x5003102;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x700001e
    up to 0x7002302;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x7000019 up to 0x700001b;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000017
    up to 0xf000019;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe00000f up to 0xe000012;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x40 up
    to 0x44;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x2e up
    to 0x34;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x18 up
    to 0x1a;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa0
    up to 0xa6;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x28 up
    to 0x2a;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xe0 up
    to 0xea;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xe0
    up to 0xea;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xe0
    up to 0xec;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe0
    up to 0xe8;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode from revision
    0xe0 up to 0xea.
������Bu�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.11`��A- Update Intel CPU microcode to microcode-20210608 release:
  - Fixes in releasenote.md file.�i��Au�_�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.10`��@- Make intel-06-2d-07, intel-06-4e-03, intel-06-4f-01, intel-06-55-04,
  intel-06-5e-03, intel-06-8c-01, intel-06-8e-9e-0x-0xca,
  and intel-06-8e-9e-0x-dell caveats dependent on intel caveat.
- Enable 06-8c-01 microcode update by default.
- Enable 06-5e-03 microcode update by default (#1897684)..) Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xea up to 0xec;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb00003e up
    to 0xb000040;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006b06 up
    to 0x2006c0a;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xea up to 0xec;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x88 up to 0x9a;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x46 up to 0x49;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x19 up
    to 0x1a;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015b
    up to 0x100015c;
  - Update of 06-55-.*06/0xbf (CLX-SP B0) microcode from revision 0x4003102
    up to 0x400320a;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003102 up to 0x500320a;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002302
    up to 0x7002402;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x700001b up to 0x700001c;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000019
    up to 0xf00001a;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe000012 up to 0xe000014;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x44 up
    to 0x46;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x20 up
    to 0x24;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd0002a0
    up to 0xd000331;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-7a-08/.+0x01 (GLK-R R0) microcode from revision 0x1a up
    to 0x1c;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa6
    up to 0xa8;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2a up
    to 0x2d;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x16 up
    to 0x22;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x2c up
    to 0x3c;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode from revision
    0xea up to 0xec;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xea up
    to 0xec;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode from revision 0xea up to 0xec;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x11 up
    to 0x15;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x1d up
    to 0x2400001f;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode from revision
    0xea up to 0xec;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xea up
    to 0xec;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xea
    up to 0xec;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xec
    up to 0xee;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe8
    up to 0xea;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xea up to 0xec;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x40 up
    to 0x50.
E�%�E�3��Fu�s�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.15b�L@- Update Intel CPU microcode to microco.3�c��Eu�S�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.14bzS�- Update Intel CPU microcode to microco.-���Du�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.13b�@- Update Intel CPU microcode to microcode-20220207 release:
  - Fixes in releasenote.md file.� ��Cu�M�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.12b	�- Update Intel CPU microcode to microcode-20220204 release, addresses
  CVE-2021-0127, CVE-2021-0145, CVE-2021-33120 (#2051547, #2049549, #2049566):
  - Removal of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Removal of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  -.(..de-20220510 release, addresses
  CVE-2022-0005, CVE-2022-21131, CVE-2022-21136, CVE-2022-21151 (#2090246,
    - Addition of 06-97-02/0x03 (ADL-HX C0) microcode at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    at revision 0x1f;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-97-05) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    at revision 0x1f;
  - Addition of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode at
    revision 0x41c;
  - Addition of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) at revi./sion 0x41c;
  - Addition of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) at revision 0x41c;
  - Addition of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode at revision 0x41c;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-bf-02) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-bf-02)
    at revision 0x1f;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-bf-05) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-bf-05)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode at revision 0x1f;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/inte.0l-ucode/06-4e-03) from revision 0xec up to 0xf0;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006c0a up
    to 0x2006d05;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xec up to 0xf0;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x9a up to 0xa4;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) .1from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xec up to 0xf0;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xec up
    to 0xf0;
  - Update of 06-37-09/0x0f (VLV D0) microcode from revision 0x90c up
    to 0x90d;
  - Up.2date of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015c
    up to 0x100015d;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x400320a
    up to 0x4003302;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x500320a up to 0x5003302;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002402
    up to 0x7002501;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x46 up
    to 0x48;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x24 up
    to 0x28;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000331
    up to 0xd000363;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x38 up
    to 0x3a;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x1c up
    to 0x1e;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa8
    up to 0xb0;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2d up
    to 0x31;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x22 up
    to 0x26;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x3c up
    to 0x3e;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x15 up
    to 0x16;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x2400001f
    up to 0x24000023;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xec up
    to 0xf0;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xec
    up to 0xf0;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xee
    up to 0xf0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xea
    up to 0xf0;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xec up to 0xf0;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x50 up
    to 0x53..4de-20220510 release, addresses
  CVE-2022-21233 (#2119080):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006d05 up
    to 0x2006e05;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015d
    up to 0x100015e;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000363
    up to 0xd000375;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x3a up
    to 0x3c;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xb0
    up to 0xb2;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x26 up
    to 0x28;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x3e up
    to 0x40;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode from revision
    0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) from revision 0x1f up.5 to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x1f up to 0x22;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-97-05) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode from revision 0x1f
    up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x1f up to 0x22;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode from revision
    0x41c up to 0x421;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) from revision 0x41c up to 0x421;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) from revision 0x41c up to 0x421;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode from revision 0x41c
    up to 0x421;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x53 up
    to 0x54;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-02) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) from revision 0x1f up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode from revision 0x1f up
    to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-bf-02)
    from revision 0x1f up to 0x22;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-05) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) from revision 0x1f up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-bf-05)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode from revision 0x1f up
    to 0x22.
�m�����Is��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.9`���- Update Intel CPU microcode to microcode-20210525 release, addresses
  CVE-2020-24489, CVE-2.7�e��Hs�Y�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.8`-A- Update Intel CPU microcode to microcode-20210216 release (#1905111):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a08 up
    to 0x2006a0a;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003003
    up to 0x4003006;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003003 up to 0x5003006.���Gs�+�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.7`-@- Remove 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats..8020-24511, CVE-2020-24512, and CVE-2020-24513
  (#1962659, #1962709, #1962729, #1962675):
  - Addition of 06-55-05/0xb7 (CLX-SP A0) microcode at revision 0x3000010;
  - Addition of 06-6a-05/0x87 (ICX-SP C0) microcode at revision 0xc0002f0;
  - Addition of 06-6a-06/0x87 (ICX-SP D0) microcode at revision 0xd0002a0;
  - Addition of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Addition of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  - Addition of 06-8c-02/0xc2 (TGL-R C0) microcode at revision 0x16;
  - Addition of 06-8d-01/0xc2 (TGL-H R0) microcode at revision 0x2c;
  - Addition of 06-96-01/0x01 (EHL B1) microcode at revision 0x11;
  - Addition of 06-9c-00/0x01 (JSL A0/A1) microcode at revision 0x1d;
  - Addition of 06-a7-01/0x02 (RKL-S B0) microcode at revision 0x40;
  - Update of.9 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xe2 up to 0xea;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb000038 up
    to 0xb00003e;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a0a up
    to 0x2006b06;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xe2 up to 0xea;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x68 up to 0x88;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0a/0x.:c0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xe0 up
    to 0xea;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xde up to 0xea;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xde up
    to 0xea;
  - Upd.;ate of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xde up
    to 0xea;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x44 up to 0x46;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x16 up
    to 0x19;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000159
    up to 0x100015b;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003006
    up to 0x4003102;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003006 up to 0x5003102;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x700001e
    up to 0x7002302;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x7000019 up to 0x700001b;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000017
    up to 0xf000019;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe00000f up to 0xe000012;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x40 up
    to 0x44;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x2e up
    to 0x34;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x18 up
    to 0x1a;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa0
    up to 0xa6;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x28 up
    to 0x2a;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xe0 up
    to 0xea;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xe0
    up to 0xea;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xe0
    up to 0xec;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe0
    up to 0xe8;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode from revision
    0xe0 up to 0xea.
������Ku�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.11`��A- Update Intel CPU microcode to microcode-20210608 release:
  - Fixes in releasenote.md file.�i��Ju�_�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.10`��@- Make intel-06-2d-07, intel-06-4e-03, intel-06-4f-01, intel-06-55-04,
  intel-06-5e-03, intel-06-8c-01, intel-06-8e-9e-0x-0xca,
  and intel-06-8e-9e-0x-dell caveats dependent on intel caveat.
- Enable 06-8c-01 microcode update by default.
- Enable 06-5e-03 microcode update by default (#1897684)..> Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xea up to 0xec;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb00003e up
    to 0xb000040;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006b06 up
    to 0x2006c0a;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xea up to 0xec;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x88 up to 0x9a;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x46 up to 0x49;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x19 up
    to 0x1a;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015b
    up to 0x100015c;
  - Update of 06-55-.?06/0xbf (CLX-SP B0) microcode from revision 0x4003102
    up to 0x400320a;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003102 up to 0x500320a;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002302
    up to 0x7002402;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x700001b up to 0x700001c;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000019
    up to 0xf00001a;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe000012 up to 0xe000014;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x44 up
    to 0x46;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x20 up
    to 0x24;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd0002a0
    up to 0xd000331;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-7a-08/.@0x01 (GLK-R R0) microcode from revision 0x1a up
    to 0x1c;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa6
    up to 0xa8;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2a up
    to 0x2d;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x16 up
    to 0x22;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x2c up
    to 0x3c;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode from revision
    0xea up to 0xec;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xea up
    to 0xec;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode from revision 0xea up to 0xec;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x11 up
    to 0x15;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x1d up
    to 0x2400001f;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode from revision
    0xea up to 0xec;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xea up
    to 0xec;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xea
    up to 0xec;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xec
    up to 0xee;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe8
    up to 0xea;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xea up to 0xec;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x40 up
    to 0x50.
E�%�E�3��Ou�s�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.15b�L@- Update Intel CPU microcode to microco.H�c��Nu�S�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.14bzS�- Update Intel CPU microcode to microco.B���Mu�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.13b�@- Update Intel CPU microcode to microcode-20220207 release:
  - Fixes in releasenote.md file.� ��Lu�M�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.12b	�- Update Intel CPU microcode to microcode-20220204 release, addresses
  CVE-2021-0127, CVE-2021-0145, CVE-2021-33120 (#2051547, #2049549, #2049566):
  - Removal of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Removal of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  -.=.Cde-20220510 release, addresses
  CVE-2022-0005, CVE-2022-21131, CVE-2022-21136, CVE-2022-21151 (#2090246,
    - Addition of 06-97-02/0x03 (ADL-HX C0) microcode at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    at revision 0x1f;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-97-05) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    at revision 0x1f;
  - Addition of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode at
    revision 0x41c;
  - Addition of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) at revi.Dsion 0x41c;
  - Addition of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) at revision 0x41c;
  - Addition of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode at revision 0x41c;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-bf-02) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-bf-02)
    at revision 0x1f;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-bf-05) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-bf-05)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode at revision 0x1f;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/inte.El-ucode/06-4e-03) from revision 0xec up to 0xf0;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006c0a up
    to 0x2006d05;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xec up to 0xf0;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x9a up to 0xa4;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) .Ffrom revision 0xec up
    to 0xf0;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xec up to 0xf0;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xec up
    to 0xf0;
  - Update of 06-37-09/0x0f (VLV D0) microcode from revision 0x90c up
    to 0x90d;
  - Up.Gdate of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015c
    up to 0x100015d;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x400320a
    up to 0x4003302;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x500320a up to 0x5003302;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002402
    up to 0x7002501;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x46 up
    to 0x48;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x24 up
    to 0x28;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000331
    up to 0xd000363;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x38 up
    to 0x3a;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x1c up
    to 0x1e;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa8
    up to 0xb0;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2d up
    to 0x31;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x22 up
    to 0x26;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x3c up
    to 0x3e;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x15 up
    to 0x16;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x2400001f
    up to 0x24000023;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xec up
    to 0xf0;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xec
    up to 0xf0;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xee
    up to 0xf0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xea
    up to 0xf0;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xec up to 0xf0;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x50 up
    to 0x53..Ide-20220510 release, addresses
  CVE-2022-21233 (#2119080):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006d05 up
    to 0x2006e05;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015d
    up to 0x100015e;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000363
    up to 0xd000375;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x3a up
    to 0x3c;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xb0
    up to 0xb2;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x26 up
    to 0x28;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x3e up
    to 0x40;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode from revision
    0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) from revision 0x1f up.J to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x1f up to 0x22;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-97-05) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode from revision 0x1f
    up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x1f up to 0x22;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode from revision
    0x41c up to 0x421;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) from revision 0x41c up to 0x421;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) from revision 0x41c up to 0x421;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode from revision 0x41c
    up to 0x421;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x53 up
    to 0x54;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-02) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) from revision 0x1f up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode from revision 0x1f up
    to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-bf-02)
    from revision 0x1f up to 0x22;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-05) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) from revision 0x1f up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-bf-05)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode from revision 0x1f up
    to 0x22..Lode-20230214 release, addresses
  CVE-2022-21216, CVE-2022-33196, CVE-2022-33972, CVE-2022-38090 (#2171238,
    - Addition of 06-6c-01/0x10 (ICL-D B0) microcode at revision 0x1000211;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode at revision
    0x2b000181;
  - Addition of 06-8f-04/0x10 microcode at revision 0x2c000170;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-04) at revision 0x2b000181;
  - Addition of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-04) at revision 0x2c000170;
  - Addition of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-04) at revision 0x2b000181;
  - Addition of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-04) at
    revision 0x2c000170;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-04) at revision 0x2b000181;
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-04) at revision 0x2b000181;
  - Addition of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
 .M   intel-ucode/06-8f-04) at revision 0x2c000170;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-05) at revision 0x2b000181;
  - Addition of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-05) at
    revision 0x2c000170;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode at revision
    0x2b000181;
  - Addition of 06-8f-05/0x10 (SPR-HBM B1) microcode at revision
    0x2c000170;
  - Addition of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-05) at revision 0x2b000181;
  - Addition of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-05) at
    revision 0x2c000170;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-05) at revision 0x2b000181;
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-05) at revision 0x2b000181;
  - Addition of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-05) at revision 0x2c000170;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-0.N6) at revision 0x2b000181;
  - Addition of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-06) at
    revision 0x2c000170;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-06) at revision 0x2b000181;
  - Addition of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-06) at revision 0x2c000170;
  - Addition of 06-8f-06/0x87 (SPR-SP E3) microcode at revision
    0x2b000181;
  - Addition of 06-8f-06/0x10 microcode at revision 0x2c000170;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-06) at revision 0x2b000181;
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-06) at revision 0x2b000181;
  - Addition of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-06) at revision 0x2c000170;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-07) at revision 0x2b000181;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-07) at revision 0x2b000181;
  .O- Addition of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-07) at revision 0x2b000181;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode at revision
    0x2b000181;
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-07) at revision 0x2b000181;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-08) at revision 0x2b000181;
  - Addition of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-08) at
    revision 0x2c000170;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-08) at revision 0x2b000181;
  - Addition of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-08) at revision 0x2c000170;
  - Addition of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-08) at revision 0x2b000181;
  - Addition of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-08) at
    revision 0x2c000170;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-08) at revision 0x2b000181;.P
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode at revision
    0x2b000181;
  - Addition of 06-8f-08/0x10 (SPR-HBM B3) microcode at revision
    0x2c000170;
  - Addition of 06-b7-01/0x32 (RPL-S S0) microcode at revision 0x112;
  - Addition of 06-ba-02/0xc0 microcode at revision 0x410e;
  - Addition of 06-ba-03/0xc0 microcode (in intel-ucode/06-ba-02) at
    revision 0x410e;
  - Addition of 06-ba-02/0xc0 microcode (in intel-ucode/06-ba-03) at
    revision 0x410e;
  - Addition of 06-ba-03/0xc0 microcode at revision 0x410e;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0xa4 up to 0xa6;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xf0 up to 0xf4;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xf0 up
    to 0xf4;
  - Update of 06-55-03/0x97 (SKX-SP B1) mic.Qrocode from revision 0x100015e
    up to 0x1000161;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003302
    up to 0x4003303;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003302 up to 0x5003303;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002501
    up to 0x7002503;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000375
    up to 0xd000389;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x3c up
    to 0x3e;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x20 up
    to 0x22;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xb2
    up to 0xb8;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x31 up
    to 0x32;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x40 up
    to 0x42;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x16 up
    to 0x17;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode from revision
    0x22.R up to 0x2c (old pf 0x3);
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-97-05) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode from revision 0x22
    up to 0x2c (old pf 0x3);
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode from revision
    0x421 up to 0x429;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (.Sin
    intel-ucode/06-9a-03) from revision 0x421 up to 0x429;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) from revision 0x421 up to 0x429;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode from revision 0x421
    up to 0x429;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x24000023
    up to 0x24000024;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xf0 up
    to 0xf4;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xf0
    up to 0xf4;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xf0
    up to 0xf4;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xf0
    up to 0xf4;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xf0 up to 0xf4;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x54 up
    to 0x57;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-02) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-02/0x07 (ADL C0) microcode from revision 0x22 up to
    0x2c (old pf 0x3);
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-bf-02)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-05) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-bf-05)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-05/0x07 (ADL C0) microcode from revision 0x22 up to
    0x2c (old pf 0x3).
- Change the logger severity level to warning to align with the kmsg one.
P��P�^��So�O�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-68^א�- Update Intel CPU microcode to microcode-.U�A��Ro��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-67^Ǿ�- Update Intel CPU microcode to microcode-20200520 release (#1783103):
  - Update of 06-2d-06/0x6d (SNB-E/EN/EP C1/M0) microcode from revision 0x61f
    up to 0x621;
  - Update of 06-2d-07/0x6d (SNB-E/EN/EP C2/M1) microcode from revision 0x718
    up to 0x71a.���Qo��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-66^�2�- Update Intel CPU microcode to microcode-20200508 release (#1835549):
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0x46
    up to 0x78.
- Change the URL in the intel-microcode2ucode.8 to point to the GitHub
  repository since the microcode download section at Intel Download Center
  does not exist anymore.�G��Pu���Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.16c��@- Update Intel CPU microcode to microc.K.V20200602 release, addresses
  CVE-2020-0543, CVE-2020-0548, CVE-2020-0549 (#1795352, #1795355, #1827190):
  - Update of 06-3c-03/0x32 (HSW C0) microcode from revision 0x27 up to 0x28;
  - Update of 06-3d-04/0xc0 (BDW-U/Y E0/F0) microcode from revision 0x2e
    up to 0x2f;
  - Update of 06-45-01/0x72 (HSW-U C0/D0) microcode from revision 0x25
    up to 0x26;
  - Update of 06-46-01/0x32 (HSW-H C0) microcode from revision 0x1b up to 0x1c;
  - Update of 06-47-01/0x22 (BDW-H/Xeon E3 E0/G0) microcode from revision 0x21
    up to 0x22;
  - Update of 06-4e-03/0xc0 (SKL-U/Y D0) microcode from revision 0xd6
    up to 0xdc;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000151
    up to 0x1000157;
  - Update of 06-55-04/0xb7 (SKX-SP H0/M0/U0, SKX-D M1) microcode
    (in intel-06-55-04/intel-ucode/06-55-04) from revision 0x2000065
    up to 0x2006906;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x400002c
    up to 0x4002f01;
  - Update of 06-55-07/0xbf (CLX-SP B1) microcode from revision 0x500002c
    up to 0x5002f01;
  - Update of 06-5e-03/0x36 (SKL-H/S R0/N0) microcode from revision 0xd6
    up to 0xdc;
  - Update of 06-8e-09/0x10 (AML-Y22 H0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-8e-09/0xc0 (KBL-U/Y H0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-8e-0a/0xc0 (CFL-U43e D0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-8e-0c/0x94 (AML-Y42 V0, CML-Y42 V0, WHL-U V0) microcode
    from revision 0xca up to 0xd6;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from revision
    0xca up to 0xd6;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E3 U0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-9e-0b/0x02 (CFL-S B0) microcode from revision 0xca up to 0xd6;
  - Update of 06-9e-0c/0x22 (CFL-H/S P0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-9e-0d/0x22 (CFL-H R0) microcode from revision 0xca up to 0xd6.
t�L��.��Xo�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73^�b�- Update Intel CPU microcode to microcode-20200609 release (#1826589):
  - Fixed a typo in the release note file.z��Wo��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-72^�b�- Enable 06-2d-07 (SNB-E/EN/EP) caveat by default (#1846023).j��Voi�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-71^�b�- Enable 06-55-04 (SKL-X/W) caveat by default.�5��Uo�}�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-70^�@- Do not update 06-4e-03 (SKL-U/Y) and 06-5e-03 (SKL-H/S/Xeon E3 v5) to revision
  0xdc, use 0xd6 by default (#1846133).���To�!�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-69^��@- Avoid temporary file creation, used for here-documents in check_caveats.
��I����[u�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.11`��@- Update Intel CPU microcode to microcode-20210608 release:
  - Fixes in releasenote.md file.�J��Zs�#�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.2_�A- Update Intel CPU microcode to microcode-20201027 release, addresses
  CVE-2020-8694, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698
  (#1893261, #1893249, #1893229):
  - Addition of 06-55-0b/0xbf (CPX-SP A1) microcode at revision 0x700001e;
  - Addition of 06-8c-01/0x80 (TGL-UP3/.Y�S��Ys�5�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.1_�@- Add README file to the documentation directory.
- Add publicly-sourced codenames list to supply to gen_provides.sh; update
  the latter to handle the somewhat different format.
- Add SUMMARY.intel-ucode file containing metadata information from
  the microcode file headers..ZUP4 B1) microcode at revision 0x68;
  - Addition of 06-a5-02/0x20 (CML-H R1) microcode at revision 0xe0;
  - Addition of 06-a5-03/0x22 (CML-S 6+2 G1) microcode at revision 0xe0;
  - Addition of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode at revision 0xe0;
  - Addition of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode at revision
    0xe0;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xdc up to 0xe2;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006906 up
    to 0x2006a08;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xdc up to 0xe2;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) .[from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xd6 up
    to 0xe0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xd6 up to 0xde;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xd6 up
    to 0xde;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x43 up to 0x44;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000157
    up to 0x1000159;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4002f01
    up to 0x4003003;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5002f01 up to 0x5003003;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x38 up
    to 0x40;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x16 up
    to 0x1e;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x16 up
    to 0x18;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0x78
    up to 0xa0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xca
    up to 0xe0..] Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xea up to 0xec;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb00003e up
    to 0xb000040;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006b06 up
    to 0x2006c0a;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xea up to 0xec;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x88 up to 0x9a;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x46 up to 0x49;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x19 up
    to 0x1a;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015b
    up to 0x100015c;
  - Update of 06-55-.^06/0xbf (CLX-SP B0) microcode from revision 0x4003102
    up to 0x400320a;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003102 up to 0x500320a;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002302
    up to 0x7002402;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x700001b up to 0x700001c;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000019
    up to 0xf00001a;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe000012 up to 0xe000014;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x44 up
    to 0x46;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x20 up
    to 0x24;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd0002a0
    up to 0xd000331;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-7a-08/._0x01 (GLK-R R0) microcode from revision 0x1a up
    to 0x1c;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa6
    up to 0xa8;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2a up
    to 0x2d;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x16 up
    to 0x22;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x2c up
    to 0x3c;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode from revision
    0xea up to 0xec;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xea up
    to 0xec;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode from revision 0xea up to 0xec;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x11 up
    to 0x15;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x1d up
    to 0x2400001f;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from
    revision 0xea up to 0xec;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode from revision 0xea
    up to 0xec;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode from revision
    0xea up to 0xec;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode from revision
    0xea up to 0xec;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xea up
    to 0xec;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xea
    up to 0xec;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xec
    up to 0xee;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe8
    up to 0xea;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xea up to 0xec;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x40 up
    to 0x50.
E�%�E�3��_u�s�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.15b�L@- Update Intel CPU microcode to microco.g�c��^u�S�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.14bzS�- Update Intel CPU microcode to microco.a���]u�G�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.13b�@- Update Intel CPU microcode to microcode-20220207 release:
  - Fixes in releasenote.md file.� ��\u�M�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.12b	�- Update Intel CPU microcode to microcode-20220204 release, addresses
  CVE-2021-0127, CVE-2021-0145, CVE-2021-33120 (#2051547, #2049549, #2049566):
  - Removal of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Removal of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Removal of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  -.\.bde-20220510 release, addresses
  CVE-2022-0005, CVE-2022-21131, CVE-2022-21136, CVE-2022-21151 (#2090246,
    - Addition of 06-97-02/0x03 (ADL-HX C0) microcode at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    at revision 0x1f;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-97-05) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    at revision 0x1f;
  - Addition of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode at
    revision 0x41c;
  - Addition of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) at revi.csion 0x41c;
  - Addition of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) at revision 0x41c;
  - Addition of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode at revision 0x41c;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-bf-02) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-bf-02)
    at revision 0x1f;
  - Addition of 06-97-02/0x03 (ADL-HX C0) microcode (in
    intel-ucode/06-bf-05) at revision 0x1f;
  - Addition of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) at revision 0x1f;
  - Addition of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-bf-05)
    at revision 0x1f;
  - Addition of 06-bf-05/0x03 (ADL C0) microcode at revision 0x1f;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/inte.dl-ucode/06-4e-03) from revision 0xec up to 0xf0;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006c0a up
    to 0x2006d05;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xec up to 0xf0;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x9a up to 0xa4;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xec up
    to 0xf0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) .efrom revision 0xec up
    to 0xf0;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xec up to 0xf0;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xec up
    to 0xf0;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xec up
    to 0xf0;
  - Update of 06-37-09/0x0f (VLV D0) microcode from revision 0x90c up
    to 0x90d;
  - Up.fdate of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015c
    up to 0x100015d;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x400320a
    up to 0x4003302;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x500320a up to 0x5003302;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002402
    up to 0x7002501;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x46 up
    to 0x48;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x24 up
    to 0x28;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x36 up
    to 0x38;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000331
    up to 0xd000363;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x38 up
    to 0x3a;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x1c up
    to 0x1e;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa8
    up to 0xb0;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x2d up
    to 0x31;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x22 up
    to 0x26;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x3c up
    to 0x3e;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x15 up
    to 0x16;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x2400001f
    up to 0x24000023;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xec up
    to 0xf0;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xec
    up to 0xf0;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xee
    up to 0xf0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xea
    up to 0xf0;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xec up to 0xf0;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x50 up
    to 0x53..hde-20220510 release, addresses
  CVE-2022-21233 (#2119080):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006d05 up
    to 0x2006e05;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x100015d
    up to 0x100015e;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000363
    up to 0xd000375;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x3a up
    to 0x3c;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xb0
    up to 0xb2;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x26 up
    to 0x28;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x3e up
    to 0x40;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode from revision
    0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) from revision 0x1f up.i to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x1f up to 0x22;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-97-05) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode from revision 0x1f
    up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x1f up to 0x22;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode from revision
    0x41c up to 0x421;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) from revision 0x41c up to 0x421;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) from revision 0x41c up to 0x421;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode from revision 0x41c
    up to 0x421;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x53 up
    to 0x54;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-02) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) from revision 0x1f up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode from revision 0x1f up
    to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode (in intel-ucode/06-bf-02)
    from revision 0x1f up to 0x22;
  - Update of 06-97-02/0x03 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-05) from revision 0x1f up to 0x22;
  - Update of 06-97-05/0x03 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) from revision 0x1f up to 0x22;
  - Update of 06-bf-02/0x03 (ADL C0) microcode (in intel-ucode/06-bf-05)
    from revision 0x1f up to 0x22;
  - Update of 06-bf-05/0x03 (ADL C0) microcode from revision 0x1f up
    to 0x22..kode-20230214 release, addresses
  CVE-2022-21216, CVE-2022-33196, CVE-2022-33972, CVE-2022-38090 (#2171238,
    - Addition of 06-6c-01/0x10 (ICL-D B0) microcode at revision 0x1000211;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode at revision
    0x2b000181;
  - Addition of 06-8f-04/0x10 microcode at revision 0x2c000170;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-04) at revision 0x2b000181;
  - Addition of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-04) at revision 0x2c000170;
  - Addition of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-04) at revision 0x2b000181;
  - Addition of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-04) at
    revision 0x2c000170;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-04) at revision 0x2b000181;
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-04) at revision 0x2b000181;
  - Addition of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
 .l   intel-ucode/06-8f-04) at revision 0x2c000170;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-05) at revision 0x2b000181;
  - Addition of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-05) at
    revision 0x2c000170;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode at revision
    0x2b000181;
  - Addition of 06-8f-05/0x10 (SPR-HBM B1) microcode at revision
    0x2c000170;
  - Addition of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-05) at revision 0x2b000181;
  - Addition of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-05) at
    revision 0x2c000170;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-05) at revision 0x2b000181;
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-05) at revision 0x2b000181;
  - Addition of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-05) at revision 0x2c000170;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-0.m6) at revision 0x2b000181;
  - Addition of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-06) at
    revision 0x2c000170;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-06) at revision 0x2b000181;
  - Addition of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-06) at revision 0x2c000170;
  - Addition of 06-8f-06/0x87 (SPR-SP E3) microcode at revision
    0x2b000181;
  - Addition of 06-8f-06/0x10 microcode at revision 0x2c000170;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-06) at revision 0x2b000181;
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-06) at revision 0x2b000181;
  - Addition of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-06) at revision 0x2c000170;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-07) at revision 0x2b000181;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-07) at revision 0x2b000181;
  .n- Addition of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-07) at revision 0x2b000181;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode at revision
    0x2b000181;
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-07) at revision 0x2b000181;
  - Addition of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-08) at revision 0x2b000181;
  - Addition of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-08) at
    revision 0x2c000170;
  - Addition of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-08) at revision 0x2b000181;
  - Addition of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-08) at revision 0x2c000170;
  - Addition of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-08) at revision 0x2b000181;
  - Addition of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-08) at
    revision 0x2c000170;
  - Addition of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-08) at revision 0x2b000181;.o
  - Addition of 06-8f-08/0x87 (SPR-SP E5/S3) microcode at revision
    0x2b000181;
  - Addition of 06-8f-08/0x10 (SPR-HBM B3) microcode at revision
    0x2c000170;
  - Addition of 06-b7-01/0x32 (RPL-S S0) microcode at revision 0x112;
  - Addition of 06-ba-02/0xc0 microcode at revision 0x410e;
  - Addition of 06-ba-03/0xc0 microcode (in intel-ucode/06-ba-02) at
    revision 0x410e;
  - Addition of 06-ba-02/0xc0 microcode (in intel-ucode/06-ba-03) at
    revision 0x410e;
  - Addition of 06-ba-03/0xc0 microcode at revision 0x410e;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0xa4 up to 0xa6;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xf0 up to 0xf4;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xf0 up
    to 0xf4;
  - Update of 06-55-03/0x97 (SKX-SP B1) mic.procode from revision 0x100015e
    up to 0x1000161;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003302
    up to 0x4003303;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003302 up to 0x5003303;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002501
    up to 0x7002503;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000375
    up to 0xd000389;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x3c up
    to 0x3e;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x20 up
    to 0x22;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xb2
    up to 0xb8;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x31 up
    to 0x32;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x40 up
    to 0x42;
  - Update of 06-96-01/0x01 (EHL B1) microcode from revision 0x16 up
    to 0x17;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode from revision
    0x22.q up to 0x2c (old pf 0x3);
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-97-05) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode from revision 0x22
    up to 0x2c (old pf 0x3);
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode from revision
    0x421 up to 0x429;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (.rin
    intel-ucode/06-9a-03) from revision 0x421 up to 0x429;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) from revision 0x421 up to 0x429;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode from revision 0x421
    up to 0x429;
  - Update of 06-9c-00/0x01 (JSL A0/A1) microcode from revision 0x24000023
    up to 0x24000024;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xf0 up
    to 0xf4;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xf0
    up to 0xf4;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xf0
    up to 0xf4;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xf0
    up to 0xf4;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xf0 up to 0xf4;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x54 up
    to 0x57;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-02) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-02/0x07 (ADL C0) microcode from revision 0x22 up to
    0x2c (old pf 0x3);
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-bf-02)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-05) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-bf-05)
    from revision 0x22 up to 0x2c (old pf 0x3);
  - Update of 06-bf-05/0x07 (ADL C0) microcode from revision 0x22 up to
    0x2c (old pf 0x3).
- Change the logger severity level to warning to align with the kmsg one.
������au�;�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.17d��- Force locale to C in check_caveats, reload_microcode, and update_ucode.
- Cleanup the dangling symlinks in update_ucode.
- Avoid spurious find failures due to calls on directories that may not exist.
- Add support for the new, more correct, variant of dracut's default
  $fw_dir path in dracut_99microcode_ctl-fw_dir_override_module_init.sh.�G��`u���Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.16c��@- Update Intel CPU microcode to microc.j.utel-06-8c-01/intel-ucode/06-8c-01) from revision 0xa6 up to 0xaa;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000161
    up to 0x1000171;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003303
    up to 0x4003501;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003303 up to 0x5003501;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002503
    up to 0x7002601;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000389
    up to 0xd000390;
  - Update of 06-6c-01/0x10 (ICL-D B0) microcode from revision 0x1000211
    up to 0x1000230;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xb8
    up to 0xba;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x32 up
    to 0x33;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x28 up
    to 0x2a;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x42 up
    to 0x44;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 .vH0) microcode from revision 0xf0
    up to 0xf2;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode from revision
    0xf0 up to 0xf2;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode from
    revision 0xf0 up to 0xf2;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xf0 up
    to 0xf2;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode from revision 0xf4 up to 0xf6;
  - Update of 06-8f-04/0x10 microcode from revision 0x2c000170 up to
    0x2c0001d1;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode from revision
    0x2b000181 up to 0x2b000461;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-04) from revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-04) from
    revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-06/0x87 (SPR-SP E.w3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-05) from
    revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode from revision
    0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode from revision 0x2b000181
    up to 0x2b000461;
  - Update of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-05) from
    revision 0x2c000170 up to 0x2c0001d1;
  - Update of 0.x6-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-06) from
    revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-06) from revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-06/0x10 microcode from revision .y0x2c000170 up to
    0x2c0001d1;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode from revision 0x2b000181
    up to 0x2b000461;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-06) from revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode from revision
    0x2b000181 up to 0x2b000461;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3).z microcode (in
    intel-ucode/06-8f-07) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-08) from
    revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-08) from revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-08) from
    revision 0x2c000170 up to 0x2c0001d1;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b000181 up to 0x2b000461;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode from revision
    0x2c000170 up to 0x2c00.{01d1;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode from revision
    0x2b000181 up to 0x2b000461;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode from revision
    0x429 up to 0x42a;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) from revision 0x429 up to 0x42a;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) from revision 0x429 up to 0x42a;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode from revision 0x429
    up to 0x42a;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from
    revision 0xf0 up to 0xf2;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode from revision
    0xf0 up to 0xf2;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode from revision 0xf0
    up to 0xf2;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode from revision
    0xf0 up to 0xf2;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode from revision
    0xf4 up to 0xf8;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xf4 up
    to 0xf6;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xf4
    up to 0xf6;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xf4
    up to 0xf6;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xf4
    up to 0xf6;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xf4 up to 0xf6;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x57 up
    to 0x58;
  - Update of 06-b7-01/0x32 (RPL-S B0) microcode from revision 0x112 up
    to 0x113;
  - Update of 06-ba-02/0xc0 (RPL-H 6+8/P 6+8 J0) microcode from revision
    0x410e up to 0x4112;
  - Update of 06-ba-03/0xc0 (RPL-U 2+8 Q0) microcode (in
    intel-ucode/06-ba-02) from revision 0x410e up to 0x4112;
  - Update of 06-ba-02/0xc0 (RPL-H 6+8/P 6+8 J0) microcode (in
    intel-ucode/06-ba-03) from revision 0x410e up to 0x4112;
  - Update of 06-ba-03/0xc0 (RPL-U 2+8 Q0) microcode from revision 0x410e
    up to 0x4112.
P��P�^��eo�O�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-68^א�- Update Intel CPU microcode to microcode-.��>��du���Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.20eB=�- Update Intel CPU microcode to microcode-20231009 release, addresses
  CVE-2023-23583 (RHEL-3920):
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (i.��z��cu���Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.19d��@- Update Intel CPU microcode to microc.}�@��bu���Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.18d��- Update Intel CPU microcode to microcode-20230516 release:
  - Addition of 06-be-00/0x01 (ADL-N A0) microcode at revision 0x10;
  - Addition of 06-9a-04/0x40 (AZB A0) microcode at revision 0x4;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006e05 up
    to 0x2006f05;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    in.t.~ode-20230808 release, addresses
  CVE-2022-40982, CVE-2022-41804, CVE-2023-23908 (#2223994):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006f05 up
    to 0x2007006;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0xaa up to 0xac;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000171
    up to 0x1000181;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003501
    up to 0x4003604;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003501 up to 0x5003604;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x7002601
    up to 0x7002703;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd000390
    up to 0xd0003a5;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xba
    up to 0xbc;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x2a up
  .  to 0x2c;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x44 up
    to 0x46;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode from revision
    0xf2 up to 0xf4;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode from revision 0xf2
    up to 0xf4;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode from
    revision 0xf2 up to 0xf4;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xf2 up
    to 0xf4;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode from revision 0xf6 up to 0xf8;
  - Update of 06-8f-04/0x10 microcode from revision 0x2c0001d1 up to
    0x2c000271;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode from revision
    0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-04) from revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of .�06-8f-06/0x10 microcode (in intel-ucode/06-8f-04) from
    revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-05) from
    revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode from revision
    0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode from revision 0x2b000461
    up to 0x2b.�0004b1;
  - Update of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-05) from
    revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-06) from
    revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-06) from revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-05/0x87 (SPR-SP E2) m.�icrocode (in
    intel-ucode/06-8f-06) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-06/0x10 microcode from revision 0x2c0001d1 up to
    0x2c000271;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode from revision 0x2b000461
    up to 0x2b0004b1;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-06) from revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b000461 up to 0x2b0004b1;
  - Upda.�te of 06-8f-07/0x87 (SPR-SP E4/S2) microcode from revision
    0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-08) from
    revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-08) from revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-08) from
    revision 0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-08) f.�rom revision 0x2b000461 up to 0x2b0004b1;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode from revision
    0x2c0001d1 up to 0x2c000271;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode from revision
    0x2b000461 up to 0x2b0004b1;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode from revision
    0x2c up to 0x2e;
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) from revision 0x2c up to 0x2e;
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x2c up to 0x2e;
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x2c up to 0x2e;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-97-05) from revision 0x2c up to 0x2e;
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode from revision 0x2c
    up to 0x2e;
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x2c up to 0x2e;
  - Update of 06-bf-05/0x07 (ADL C0) microcode.� (in intel-ucode/06-97-05)
    from revision 0x2c up to 0x2e;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode from revision
    0x42a up to 0x42c;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) from revision 0x42a up to 0x42c;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) from revision 0x42a up to 0x42c;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode from revision 0x42a
    up to 0x42c;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from
    revision 0xf2 up to 0xf4;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode from revision
    0xf2 up to 0xf4;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode from revision 0xf2
    up to 0xf4;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode from revision
    0xf2 up to 0xf4;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode from revision
    0xf8 up to 0xfa;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0x.�f6 up
    to 0xf8;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xf6
    up to 0xf8;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xf6
    up to 0xf8;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xf6
    up to 0xf8;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K1) microcode from revision
    0xf6 up to 0xf8;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x58 up
    to 0x59;
  - Update of 06-b7-01/0x32 (RPL-S B0) microcode from revision 0x113 up
    to 0x119;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-02) from revision 0x2c up to 0x2e;
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) from revision 0x2c up to 0x2e;
  - Update of 06-bf-02/0x07 (ADL C0) microcode from revision 0x2c up
    to 0x2e;
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-bf-02)
    from revision 0x2c up to 0x2e;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-05) from revision 0x2c up to 0x2e;
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) from revision 0x2c up to 0x2e;
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-bf-05)
    from revision 0x2c up to 0x2e;
  - Update of 06-bf-05/0x07 (ADL C0) microcode from revision 0x2c up
    to 0x2e;
  - Update of 06-ba-02/0xe0 (RPL-H 6+8/P 6+8 J0) microcode from revision
    0x4112 up to 0x4119 (old pf 0xc0);
  - Update of 06-ba-03/0xe0 (RPL-U 2+8 Q0) microcode (in
    intel-ucode/06-ba-02) from revision 0x4112 up to 0x4119 (old pf 0xc0);
  - Update of 06-ba-02/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in
    intel-ucode/06-ba-03) from revision 0x4112 up to 0x4119 (old pf 0xc0);
  - Update of 06-ba-03/0xe0 (RPL-U 2+8 Q0) microcode from revision 0x4112
    up to 0x4119 (old pf 0xc0);
  - Update of 06-be-00/0x11 (ADL-N A0) microcode from revision 0x10 up
    to 0x11 (old pf 0x1)..�n
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0xac up to 0xb4;
  - Update of 06-6a-06/0x87 (ICX-SP D0) microcode from revision 0xd0003a5
    up to 0xd0003b9;
  - Update of 06-6c-01/0x10 (ICL-D B0) microcode from revision 0x1000230
    up to 0x1000268;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xbc
    up to 0xc2;
  - Update of 06-8c-02/0xc2 (TGL-R C0) microcode from revision 0x2c up
    to 0x34;
  - Update of 06-8d-01/0xc2 (TGL-H R0) microcode from revision 0x46 up
    to 0x4e;
  - Update of 06-8f-04/0x10 microcode from revision 0x2c000271 up to
    0x2c000290;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode from revision
    0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-04) from revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-04) from
  .�  revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-04) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-05) from
    revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode from revision
    0x2c000271 up to 0x2c000290;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode from revision 0x2b0004b1
    up to 0x2b0004d0;
  - Update of 06-8f-06/0x10 microcode (in intel-u.�code/06-8f-05) from
    revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-05) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-06) from
    revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-06) from revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b.�0004b1 up to 0x2b0004d0;
  - Update of 06-8f-06/0x10 microcode from revision 0x2c000271 up to
    0x2c000290;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode from revision 0x2b0004b1
    up to 0x2b0004d0;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-08/0x10 (SPR-HBM B3) microcode (in
    intel-ucode/06-8f-06) from revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-06) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode from revisio.�n
    0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode (in
    intel-ucode/06-8f-07) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-04/0x10 microcode (in intel-ucode/06-8f-08) from
    revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-04/0x87 (SPR-SP E0/S1) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-05/0x10 (SPR-HBM B1) microcode (in
    intel-ucode/06-8f-08) from revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-05/0x87 (SPR-SP E2) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-06/0x10 microcode (in intel-ucode/06-8f-08) from
    revision 0x2c000271 up to 0x2c000290;
  - Update of 06-8f-06/0x87 (SPR-SP E3) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-8f-07/0x87 (SPR-SP E4/S2) microcode (in
    intel-ucode/06-8f-08) from revision 0x2b0004b1 up to 0x2b0004d0;
  - Update of 0.�6-8f-08/0x10 (SPR-HBM B3) microcode from revision
    0x2c000271 up to 0x2c000290;
  - Update of 06-8f-08/0x87 (SPR-SP E5/S3) microcode from revision
    0x2b0004b1 up to 0x2b0004d0;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode from revision
    0x2e up to 0x32;
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-97-02) from revision 0x2e up to 0x32;
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x2e up to 0x32;
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-97-02)
    from revision 0x2e up to 0x32;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-97-05) from revision 0x2e up to 0x32;
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode from revision 0x2e
    up to 0x32;
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x2e up to 0x32;
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-97-05)
    from revision 0x2e up to 0.�x32;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode from revision
    0x42c up to 0x430;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode (in
    intel-ucode/06-9a-03) from revision 0x42c up to 0x430;
  - Update of 06-9a-03/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in
    intel-ucode/06-9a-04) from revision 0x42c up to 0x430;
  - Update of 06-9a-04/0x80 (ADL-P 2+8 R0) microcode from revision 0x42c
    up to 0x430;
  - Update of 06-9a-04/0x40 (AZB A0) microcode from revision 0x4 up
    to 0x5;
  - Update of 06-a7-01/0x02 (RKL-S B0) microcode from revision 0x59 up
    to 0x5d;
  - Update of 06-b7-01/0x32 (RPL-S B0) microcode from revision 0x119 up
    to 0x11d;
  - Update of 06-ba-02/0xe0 (RPL-H 6+8/P 6+8 J0) microcode from revision
    0x4119 up to 0x411c;
  - Update of 06-ba-03/0xe0 (RPL-U 2+8 Q0) microcode (in
    intel-ucode/06-ba-02) from revision 0x4119 up to 0x411c;
  - Update of 06-ba-02/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in
    intel-ucode/06-ba-03) from revision 0x4119 up to 0x411c;
  - Update of 06-ba-03/0xe0 (RPL-U 2+8 Q0) microcode from revision 0x4119
    up to 0x411c;
  - Update of 06-be-00/0x11 (ADL-N A0) microcode from revision 0x11 up
    to 0x12;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-02) from revision 0x2e up to 0x32;
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-02) from revision 0x2e up to 0x32;
  - Update of 06-bf-02/0x07 (ADL C0) microcode from revision 0x2e up
    to 0x32;
  - Update of 06-bf-05/0x07 (ADL C0) microcode (in intel-ucode/06-bf-02)
    from revision 0x2e up to 0x32;
  - Update of 06-97-02/0x07 (ADL-HX/S 8+8 C0) microcode (in
    intel-ucode/06-bf-05) from revision 0x2e up to 0x32;
  - Update of 06-97-05/0x07 (ADL-S 6+0 K0) microcode (in
    intel-ucode/06-bf-05) from revision 0x2e up to 0x32;
  - Update of 06-bf-02/0x07 (ADL C0) microcode (in intel-ucode/06-bf-05)
    from revision 0x2e up to 0x32;
  - Update of 06-bf-05/0x07 (ADL C0) microcode from revision 0x2e up
    to 0x32..�20200602 release, addresses
  CVE-2020-0543, CVE-2020-0548, CVE-2020-0549 (#1795352, #1795355, #1827190):
  - Update of 06-3c-03/0x32 (HSW C0) microcode from revision 0x27 up to 0x28;
  - Update of 06-3d-04/0xc0 (BDW-U/Y E0/F0) microcode from revision 0x2e
    up to 0x2f;
  - Update of 06-45-01/0x72 (HSW-U C0/D0) microcode from revision 0x25
    up to 0x26;
  - Update of 06-46-01/0x32 (HSW-H C0) microcode from revision 0x1b up to 0x1c;
  - Update of 06-47-01/0x22 (BDW-H/Xeon E3 E0/G0) microcode from revision 0x21
    up to 0x22;
  - Update of 06-4e-03/0xc0 (SKL-U/Y D0) microcode from revision 0xd6
    up to 0xdc;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000151
    up to 0x1000157;
  - Update of 06-55-04/0xb7 (SKX-SP H0/M0/U0, SKX-D M1) microcode
    (in intel-06-55-04/intel-ucode/06-55-04) from revision 0x2000065
    up to 0x2006906;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x400002c
    up to 0x4002f01;
  - Update of 06-55-07/0xbf (CLX-SP B1) microcode from revision 0x500002c
    up to 0x5002f01;
  - Update of 06-5e-03/0x36 (SKL-H/S R0/N0) microcode from revision 0xd6
    up to 0xdc;
  - Update of 06-8e-09/0x10 (AML-Y22 H0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-8e-09/0xc0 (KBL-U/Y H0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-8e-0a/0xc0 (CFL-U43e D0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-8e-0c/0x94 (AML-Y42 V0, CML-Y42 V0, WHL-U V0) microcode
    from revision 0xca up to 0xd6;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from revision
    0xca up to 0xd6;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E3 U0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-9e-0b/0x02 (CFL-S B0) microcode from revision 0xca up to 0xd6;
  - Update of 06-9e-0c/0x22 (CFL-H/S P0) microcode from revision 0xca
    up to 0xd6;
  - Update of 06-9e-0d/0x22 (CFL-H R0) microcode from revision 0xca up to 0xd6.
t�L��.��jo�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73^�b�- Update Intel CPU microcode to microcode-20200609 release (#1826589):
  - Fixed a typo in the release note file.z��io��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-72^�b�- Enable 06-2d-07 (SNB-E/EN/EP) caveat by default (#1846023).j��hoi�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-71^�b�- Enable 06-55-04 (SKL-X/W) caveat by default.�5��go�}�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-70^�@- Do not update 06-4e-03 (SKL-U/Y) and 06-5e-03 (SKL-H/S/Xeon E3 v5) to revision
  0xdc, use 0xd6 by default (#1846133).���fo�!�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-69^��@- Avoid temporary file creation, used for here-documents in check_caveats.
��I���ms�
�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.3_�u@- Disable 06-8c-01 (TGL-UP3/UP4 B1) microcode update by default.�J��ls�#�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.2_�A- Update Intel CPU microcode to microcode-20201027 release, addresses
  CVE-2020-8694, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698
  (#1893261, #1893249, #1893229):
  - Addition of 06-55-0b/0xbf (CPX-SP A1) microcode at revision 0x700001e;
  - Addition of 06-8c-01/0x80 (TGL-UP3/.��S��ks�5�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.1_�@- Add README file to the documentation directory.
- Add publicly-sourced codenames list to supply to gen_provides.sh; update
  the latter to handle the somewhat different format.
- Add SUMMARY.intel-ucode file containing metadata information from
  the microcode file headers..�UP4 B1) microcode at revision 0x68;
  - Addition of 06-a5-02/0x20 (CML-H R1) microcode at revision 0xe0;
  - Addition of 06-a5-03/0x22 (CML-S 6+2 G1) microcode at revision 0xe0;
  - Addition of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode at revision 0xe0;
  - Addition of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode at revision
    0xe0;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xdc up to 0xe2;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006906 up
    to 0x2006a08;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xdc up to 0xe2;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) .�from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xd6 up
    to 0xe0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xd6 up to 0xde;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xd6 up
    to 0xde;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x43 up to 0x44;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000157
    up to 0x1000159;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4002f01
    up to 0x4003003;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5002f01 up to 0x5003003;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x38 up
    to 0x40;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x16 up
    to 0x1e;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x16 up
    to 0x18;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0x78
    up to 0xa0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xca
    up to 0xe0.
B�M�B�S��qs�5�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.1_�@- Add README file to the documentation directory.
- Add publicly-sourced codenames list to supply to gen_provides.sh; update
  the latter to handle the somewhat different format.
- Add SUMMARY.intel-ucode file containing metadata information from
  the microcode file headers.�.��po�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73^�b�- Update Intel CPU microcode to microcode-20200609 release (#1826589):
  - Fixed a typo in the release note file.z��oo��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-72^�b�- Enable 06-2d-07 (SNB-E/EN/EP) caveat by default (#1846023).�0��ns�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.4_�uA- Update Intel CPU microcode to microcode-20201112 release:
  - Addition of 06-8a-01/0x10 (LKF B2/B3) microcode at revision 0x28;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x32 up
    to 0x34;
  - Updated releasenote file..�UP4 B1) microcode at revision 0x68;
  - Addition of 06-a5-02/0x20 (CML-H R1) microcode at revision 0xe0;
  - Addition of 06-a5-03/0x22 (CML-S 6+2 G1) microcode at revision 0xe0;
  - Addition of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode at revision 0xe0;
  - Addition of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode at revision
    0xe0;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xdc up to 0xe2;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006906 up
    to 0x2006a08;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xdc up to 0xe2;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) .�from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xd6 up
    to 0xe0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xd6 up to 0xde;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xd6 up
    to 0xde;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x43 up to 0x44;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000157
    up to 0x1000159;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4002f01
    up to 0x4003003;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5002f01 up to 0x5003003;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x38 up
    to 0x40;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x16 up
    to 0x1e;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x16 up
    to 0x18;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0x78
    up to 0xa0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xca
    up to 0xe0.
���K��us�%�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.5_�_@- Do not use "grep -q" in a pipe in check_caveats.
- Add 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats
  (#1905111).�0��ts�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.4_�uA- Update Intel CPU microcode to microcode-20201112 release:
  - Addition of 06-8a-01/0x10 (LKF B2/B3) microcode at revision 0x28;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x32 up
    to 0x34;
  - Updated releasenote file.��ss�
�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.3_�u@- Disable 06-8c-01 (TGL-UP3/UP4 B1) microcode update by default.�J��rs�#�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.2_�A- Update Intel CPU microcode to microcode-20201027 release, addresses
  CVE-2020-8694, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698
  (#1893261, #1893249, #1893229):
  - Addition of 06-55-0b/0xbf (CPX-SP A1) microcode at revision 0x700001e;
  - Addition of 06-8c-01/0x80 (TGL-UP3/.�
X��X�.��yo�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73^�b�- Update Intel CPU microcode to microcode-20200609 release (#1826589):
  - Fixed a typo in the release note file.�e��xs�Y�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.8`-A- Update Intel CPU microcode to microcode-20210216 release (#1905111):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a08 up
    to 0x2006a0a;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003003
    up to 0x4003006;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003003 up to 0x5003006.���ws�+�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.7`-@- Remove 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats.t��vsy�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.6`%@- Backport check_dmi_val to check_caveats from RHEL 8.
��I���|s�
�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.3_�u@- Disable 06-8c-01 (TGL-UP3/UP4 B1) microcode update by default.�J��{s�#�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.2_�A- Update Intel CPU microcode to microcode-20201027 release, addresses
  CVE-2020-8694, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698
  (#1893261, #1893249, #1893229):
  - Addition of 06-55-0b/0xbf (CPX-SP A1) microcode at revision 0x700001e;
  - Addition of 06-8c-01/0x80 (TGL-UP3/.��S��zs�5�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.1_�@- Add README file to the documentation directory.
- Add publicly-sourced codenames list to supply to gen_provides.sh; update
  the latter to handle the somewhat different format.
- Add SUMMARY.intel-ucode file containing metadata information from
  the microcode file headers..�UP4 B1) microcode at revision 0x68;
  - Addition of 06-a5-02/0x20 (CML-H R1) microcode at revision 0xe0;
  - Addition of 06-a5-03/0x22 (CML-S 6+2 G1) microcode at revision 0xe0;
  - Addition of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode at revision 0xe0;
  - Addition of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode at revision
    0xe0;
  - Update of 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xdc up to 0xe2;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006906 up
    to 0x2006a08;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xdc up to 0xe2;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) .�from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0a/0xc0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xd6 up
    to 0xe0;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xd6 up to 0xde;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xd6 up
    to 0xde;
  - Update of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xd6 up
    to 0xde;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x43 up to 0x44;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000157
    up to 0x1000159;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4002f01
    up to 0x4003003;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5002f01 up to 0x5003003;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x38 up
    to 0x40;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x16 up
    to 0x1e;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x16 up
    to 0x18;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0x78
    up to 0xa0;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xca
    up to 0xe0.
��������s�+�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.7`-@- Remove 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats.t��sy�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.6`%@- Backport check_dmi_val to check_caveats from RHEL 8.�K��~s�%�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.5_�_@- Do not use "grep -q" in a pipe in check_caveats.
- Add 06-55-04/06-55-06/06-55-07 (SKX-SP/CLX-SP) microcode-20201110 caveats
  (#1905111).�0��}s�o�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.4_�uA- Update Intel CPU microcode to microcode-20201112 release:
  - Addition of 06-8a-01/0x10 (LKF B2/B3) microcode at revision 0x28;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x32 up
    to 0x34;
  - Updated releasenote file.
�q��M��_?�Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���s��Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.9`���- Update Intel CPU microcode to microcode-20210525 release, addresses
  CVE-2020-24489, CVE-2.��e��s�Y�Eugene Syromiatnikov <esyr@redhat.com> - 2:2.1-73.8`-A- Update Intel CPU microcode to microcode-20210216 release (#1905111):
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a08 up
    to 0x2006a0a;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003003
    up to 0x4003006;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003003 up to 0x5003006..�020-24511, CVE-2020-24512, and CVE-2020-24513
  (#1962659, #1962709, #1962729, #1962675):
  - Addition of 06-55-05/0xb7 (CLX-SP A0) microcode at revision 0x3000010;
  - Addition of 06-6a-05/0x87 (ICX-SP C0) microcode at revision 0xc0002f0;
  - Addition of 06-6a-06/0x87 (ICX-SP D0) microcode at revision 0xd0002a0;
  - Addition of 06-86-04/0x01 (SNR B0) microcode at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode (in intel-ucode/06-86-04)
    at revision 0xb00000f;
  - Addition of 06-86-04/0x01 (SNR B0) microcode (in intel-ucode/06-86-05)
    at revision 0xb00000f;
  - Addition of 06-86-05/0x01 (SNR B1) microcode at revision 0xb00000f;
  - Addition of 06-8c-02/0xc2 (TGL-R C0) microcode at revision 0x16;
  - Addition of 06-8d-01/0xc2 (TGL-H R0) microcode at revision 0x2c;
  - Addition of 06-96-01/0x01 (EHL B1) microcode at revision 0x11;
  - Addition of 06-9c-00/0x01 (JSL A0/A1) microcode at revision 0x1d;
  - Addition of 06-a7-01/0x02 (RKL-S B0) microcode at revision 0x40;
  - Update of.� 06-4e-03/0xc0 (SKL-U/U 2+3e/Y D0/K1) microcode (in
    intel-06-4e-03/intel-ucode/06-4e-03) from revision 0xe2 up to 0xea;
  - Update of 06-4f-01/0xef (BDX-E/EP/EX/ML B0/M0/R0) microcode (in
    intel-06-4f-01/intel-ucode/06-4f-01) from revision 0xb000038 up
    to 0xb00003e;
  - Update of 06-55-04/0xb7 (SKX-D/SP/W/X H0/M0/M1/U0) microcode (in
    intel-06-55-04/intel-ucode/06-55-04) from revision 0x2006a0a up
    to 0x2006b06;
  - Update of 06-5e-03/0x36 (SKL-H/S/Xeon E3 N0/R0/S0) microcode (in
    intel-06-5e-03/intel-ucode/06-5e-03) from revision 0xe2 up to 0xea;
  - Update of 06-8c-01/0x80 (TGL-UP3/UP4 B1) microcode (in
    intel-06-8c-01/intel-ucode/06-8c-01) from revision 0x68 up to 0x88;
  - Update of 06-8e-09/0x10 (AML-Y 2+2 H0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-09/0xc0 (KBL-U/U 2+3e/Y H0/J1) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-09) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0a/0x.�c0 (CFL-U 4+3e D0, KBL-R Y0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0a) from revision 0xe0 up
    to 0xea;
  - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-8e-0c/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0)
    microcode (in intel-06-8e-9e-0x-dell/intel-ucode/06-8e-0c) from
    revision 0xde up to 0xea;
  - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-09) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E U0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0a) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0b/0x02 (CFL-E/H/S B0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0b) from revision 0xde up
    to 0xea;
  - Update of 06-9e-0c/0x22 (CFL-H/S/Xeon E P0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0c) from revision 0xde up
    to 0xea;
  - Upd.�ate of 06-9e-0d/0x22 (CFL-H/S/Xeon E R0) microcode (in
    intel-06-8e-9e-0x-dell/intel-ucode/06-9e-0d) from revision 0xde up
    to 0xea;
  - Update of 06-3f-02/0x6f (HSX-E/EN/EP/EP 4S C0/C1/M1/R2) microcode
    from revision 0x44 up to 0x46;
  - Update of 06-3f-04/0x80 (HSX-EX E0) microcode from revision 0x16 up
    to 0x19;
  - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000159
    up to 0x100015b;
  - Update of 06-55-06/0xbf (CLX-SP B0) microcode from revision 0x4003006
    up to 0x4003102;
  - Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision
    0x5003006 up to 0x5003102;
  - Update of 06-55-0b/0xbf (CPX-SP A1) microcode from revision 0x700001e
    up to 0x7002302;
  - Update of 06-56-03/0x10 (BDX-DE V2/V3) microcode from revision
    0x7000019 up to 0x700001b;
  - Update of 06-56-04/0x10 (BDX-DE Y0) microcode from revision 0xf000017
    up to 0xf000019;
  - Update of 06-56-05/0x10 (BDX-NS A0/A1, HWL A1) microcode from revision
    0xe00000f up to 0xe000012;
  - Update of 06-5c-09/0x03 (APL D0) microcode from revision 0x40 up
    to 0x44;
  - Update of 06-5c-0a/0x03 (APL B1/F1) microcode from revision 0x1e up
    to 0x20;
  - Update of 06-5f-01/0x01 (DNV B0) microcode from revision 0x2e up
    to 0x34;
  - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x34 up
    to 0x36;
  - Update of 06-7a-08/0x01 (GLK-R R0) microcode from revision 0x18 up
    to 0x1a;
  - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0xa0
    up to 0xa6;
  - Update of 06-8a-01/0x10 (LKF B2/B3) microcode from revision 0x28 up
    to 0x2a;
  - Update of 06-a5-02/0x20 (CML-H R1) microcode from revision 0xe0 up
    to 0xea;
  - Update of 06-a5-03/0x22 (CML-S 6+2 G1) microcode from revision 0xe0
    up to 0xea;
  - Update of 06-a5-05/0x22 (CML-S 10+2 Q0) microcode from revision 0xe0
    up to 0xec;
  - Update of 06-a6-00/0x80 (CML-U 6+2 A0) microcode from revision 0xe0
    up to 0xe8;
  - Update of 06-a6-01/0x80 (CML-U 6+2 v2 K0) microcode from revision
    0xe0 up to 0xea.
e�2�`�H�e���c��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��iO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��
_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���	_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��kC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��k�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 arch
[d�E�s�[y��_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��kC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��k�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��_?�Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���
���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
���O��,����_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��kC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��k�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��_?�Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���c��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��iO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELRO
	Y�%�J�|+�YU��%kC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��$_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��#_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��"k�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��!_?�Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27R�� gA�Matej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���c��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��iO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441

e�r+��V��:��eD��
9bb37ac3924384d007bdead158f96496ee81fe8eefecab3416f0f81800604648D��
04343e0c734f4810fb43a53773019eae05e21428fa5cf05b99db8582265dc3d9D��
658e256dc2a855fce160722fd0be5cc972233fe8bec6cca01cba74d0e6277a43D��
82822855575f68931a78cb69d0b2b66a872fb63e31213c05cb77147946c29c41D��
16a8541fcf4b2cd339c282e65bbae76ff488caf5eed0840a759841b6e56ff912D��
2cb819274f11f736ace2eed931cc816e6c1833a96ebefa661cf5f185432be991D�~�
d7d37b96a50496b4afbe1af4b21e18430fd0714fe31b3d770dbee2da882cb98aD�}�
b0f845b17a6abdd7948335a2e03ef8bdbbf9e61bc00af3b2e543ed8708781374D�|�
9b7811c33c17c0451385a23f2766da783639500821e5bdd7fbea74b07f73a5f0D�{�
c77668ed49c6336ca11d1c0025def5d4583d666b6ee85808328364fc1fdd0a96D�z�
656525e1205096365c3f08ea7899826e736d536330910a13a0d12adff683e362D�y�
b960b52aab1348559908af3d4bae59cf32f1543cfd052b3e2d9fcd3edcfd2353D�x�
b40ba100ed5ee8ae86882af45ded185b07a11fcfe03cc9c0e8481bbe5a89278b
he���2�hu��-_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��,_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��+k�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archR��*gA�Matej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���)c��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��(iO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��'_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���&_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330
2��1�V�2y��5k�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 arch�"��4k�[�Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434R��3gA�Matej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���2c��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��1iO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��0_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���/_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��.kC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500
��6�B�g��R��=gA�Matej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���<c��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��;iO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��:_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���9_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��8kC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��7_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��6_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24
1Y�l��%�1���E_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��DkC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��C_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��B_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��Ak�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��@_?�Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���?���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�"��>k�[�Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434
l�%��6�lu��M_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��L_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��Kk�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��J_?�Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���I���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���Hc��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��GiO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��F_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441
���1�[��M��U_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��Tk�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��S_?�Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���Rc��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��QiO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��P_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���O_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��NkC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500
��.��3��M��]_?�Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27R��\gA�Matej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���[c��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��ZiO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��Y_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���X_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��WkC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��V_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le arch
e�2�`�H�e���ec��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��diO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��c_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���b_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��akC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��`_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��__?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��^k�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 arch
��-�c
o��Z��miO�Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��l_��jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���k_�O�jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��jkC�Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��i_�
�jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��h_?�Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��gk�	�Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archR��fgA�Matej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032
C{%~�7�C���u_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��tkCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��s_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��r_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��qk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 arch�"��pk�[�Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434R��ogA�Matej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���nc��Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)bR.�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������-���"-���&.��).��-.	��0.��3.��7.��9.��=.!��@.'��B.,��F.6��I.<��K.A��O.T��S.W��X.X��[.`��_.s��a.|��e.���j.���m.���q.���u.���y.���|.���.���.���.���.���.���%.���-.���5.���=.���E.���M.���U.���].���e.���m.���u.���|.���.���.���	.���
.���.���.���.���.���.���!.Â�#.Ă�&.ł�*.Ƃ�-.ǂ�/.Ȃ�3.ɂ�6.ʂ�8.˂�<.̂�@.͂�B.΂�E.ς�G.Ђ�I.т�K.҂�O.ӂ�S.Ԃ�X.Ղ�].ւ�b.ׂ�f.؂�i.ق�l.ڂ�n.ۂ�q.܂�s.݂�v.ނ�z.߂�}.�.Ⴊ.₪.オ.䂪.傪.悪.炪.肪.邪.ꂪ.낪.삪#.(.-
)�%�J��)h��|K�<jdennis@redhat.com> - 0.14.0-1[5@- Resolves: rhbz#1553885
- Rebase to current upstream release�	��{c�1John Dennis <jdennis@redhat.com> - 0.13.1-2Z��@- Resolves: rhbz#1481330 Add diagnostic logging
- Resolves: rhbz#1295472 Add MellonSignatureMethod config option to set
  signature method used to sign SAML messages sent by Mellon.
  Defaults to original sha1.�"��zk�[Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434R��ygAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���xc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��wiOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��v_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441
���m��e�wJakub Hrozek <jhrozek@redhat.com> - 0.14.0-5\�N�- Resolves: rhbz#1692470 - CVE-2019-3877 mod_auth_mellon: open redirect
                           in logout url when using URLs with backslashes
                           [rhel-7]�I��e�/Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-4\��@- Resolves: rhbz#1576719 - ECP flow not triggering, instead client access
                           secured resources without ECP authentication�3��~e�Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-3\~d�- Resolves: rhbz#1652980 - mod_auth_mellon Cert files name wrong when
                           hostname contains a numberg��}K�<jdennis@redhat.com> - 0.14.0-2[5A- Resolves: rhbz#1553885
- fix file permissions on doc files
l�7%l�4��e�Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-9^?�@- Resolves: rhbz#1791264 - Backport SameSite=None cookie from upstream to
                           support latest browsers�
��e�7Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-8]��- Resolves: rhbz#1731052 - CVE-2019-13038 mod_auth_mellon: an Open Redirect via
                           the login?ReturnTo= substring which could facilitate
                           information theft [rhel-7]�'��e�kJakub Hrozek <jhrozek@redhat.com> - 0.14.0-7]Ik�- Resolves: rhbz#1727789 - mod_auth_mellon fix for AJAX header name
                           X-Requested-With���e�MJakub Hrozek <jhrozek@redhat.com> - 0.14.0-6\�N�- Apply the patch from the previous commit
- Resolves: rhbz#1692470 - CVE-2019-3877 mod_auth_mellon: open redirect
                           in logout url when using URLs with backslashes
                           [rhel-7]
���c��I��	e�/Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-4\��@- Resolves: rhbz#1576719 - ECP flow not triggering, instead client access
                           secured resources without ECP authentication�3��e�Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-3\~d�- Resolves: rhbz#1652980 - mod_auth_mellon Cert files name wrong when
                           hostname contains a numberg��K�<jdennis@redhat.com> - 0.14.0-2[5A- Resolves: rhbz#1553885
- fix file permissions on doc filesh��K�<jdennis@redhat.com> - 0.14.0-1[5@- Resolves: rhbz#1553885
- Rebase to current upstream release�	��c�1John Dennis <jdennis@redhat.com> - 0.13.1-2Z��@- Resolves: rhbz#1481330 Add diagnostic logging
- Resolves: rhbz#1295472 Add MellonSignatureMethod config option to set
  signature method used to sign SAML messages sent by Mellon.
  Defaults to original sha1.
3�E3�
��
e�7Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-8]��- Resolves: rhbz#1731052 - CVE-2019-13038 mod_auth_mellon: an Open Redirect via
                           the login?ReturnTo= substring which could facilitate
                           information theft [rhel-7]�'��e�kJakub Hrozek <jhrozek@redhat.com> - 0.14.0-7]Ik�- Resolves: rhbz#1727789 - mod_auth_mellon fix for AJAX header name
                           X-Requested-With���e�MJakub Hrozek <jhrozek@redhat.com> - 0.14.0-6\�N�- Apply the patch from the previous commit
- Resolves: rhbz#1692470 - CVE-2019-3877 mod_auth_mellon: open redirect
                           in logout url when using URLs with backslashes
                           [rhel-7]�m��
e�wJakub Hrozek <jhrozek@redhat.com> - 0.14.0-5\�N�- Resolves: rhbz#1692470 - CVE-2019-3877 mod_auth_mellon: open redirect
                           in logout url when using URLs with backslashes
                           [rhel-7]
�G�>^��@��c�Jakub Hrozek <jhrozek@redhat.com> - 1.8.8-4\P@@- Resolves: rhbz#1626299 - CVE-2017-6059 mod_auth_openidc: Shows
                           user-supplied content on error pages [rhel-7]�[��a�WJohn Dennis <jdennis@redhat.com> - 1.8.8-3V�@- fix unit test failure caused by apr_jwe_decrypt_content_aesgcm()
  failing to null terminate decrypted string
  Resolves: bug#1292561 New package: mod_auth_openidc���a�)John Dennis <jdennis@redhat.com> - 1.8.8-2V�nA- Add %check to run test
  Resolves: bug#1292561 New package: mod_auth_openidc|��a�John Dennis <jdennis@redhat.com> - 1.8.8-1V�n@- Initial import
  Resolves: bug#1292561 New package: mod_auth_openidc�4��e�Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-9^?�@- Resolves: rhbz#1791264 - Backport SameSite=None cookie from upstream to
                           support latest browsers
f�ff�{��c�Jakub Hrozek <jhrozek@redhat.com> - 1.8.8-7^ojA- Fix a regression in the previous patches
- Related: rhbz#1805748 - CVE-2019-20479 mod_auth_openidc: open redirect
                          issue exists in URLs with slash and backslash [rhel-7]���c�;Jakub Hrozek <jhrozek@redhat.com> - 1.8.8-6^oj@- Resolves: rhbz#1805748 - CVE-2019-20479 mod_auth_openidc: open redirect
                           issue exists in URLs with slash and backslash [rhel-7]
- Resolves: rhbz#1805067 - CVE-2019-14857 mod_auth_openidc: Open redirect
                           in logout url when using URLs with leading slashes
                           [rhel-7]���c�#Jakub Hrozek <jhrozek@redhat.com> - 1.8.8-5\P@A- Resolves: rhbz#1626297 - CVE-2017-6413 mod_auth_openidc: OIDC_CLAIM and
                           OIDCAuthNHeader not skipped in an "AuthType oauth20"
                           configuration [rhel-7]
)��)�T��k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq��]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)���c�EJakub Hrozek <jhrozek@redhat.com> - 1.8.8-9_~�@- Rebuild to pick up the proper build tag
- Related: rhbz#1823762 - Backport SameSite=None cookie from
                          mod_auth_openidc upstream to support
                          latest browsers [rhel-7.9.z]�l��c�wJakub Hrozek <jhrozek@redhat.com> - 1.8.8-8_FN�- Resolves: rhbz#1823762 - Backport SameSite=None cookie from
                           mod_auth_openidc upstream to support
                           latest browsers [rhel-7.9.z]
eje���k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)���k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�4����k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
 �� �P��!}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.1ah�- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�.�� q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues

e�r+��V��:��eD��
4d1bd70c6b0a083aa5199e8688e2f1a51866cd56dfb5c1d7604347e2bce43b18D��
ed4172e7f07f89851711d81ae9ac691552500f1359efcfa1a0312b3c42b1e171D��
d69a242a1a58b858cffa727cb8193e2ccaf358421e81076cf5c96b4a5082d5f9D��
8bad0cae9095a9462eee405070201f5aa90c8754e0b955a3e7e3599af9f81ffbD�
�
e35ecb4beea182f7288644cabd57114e698301a9bc0577e0b71c41956b316426D��
bd9b457e03a3e875a7f50a246490891ba2bf62f71e73613950b38d17f84d340dD��
931e68ffcae787d5ccc19e02105ea41bb97387921e3e0e7bfa8402118570759dD�
�
ea6f1a1a7c98ce44e3489a64d9fcac1d1df66d5e27e509bf3c0413c0d2f01be2D�	�
d755a7a0945f9ae0c99eaa26a96db5d9fcca41d6a1a533a895cad61a85f4e6d6D��
e91975b3209890c97303eaf69e0732753a849373370d3f3db3d54eaa5d7a540dD��
9bc8c09cfaaabcb254797b1579fccbbf5a7ac3febd8172c07ad6764c33c3270eD��
b505b67a44068dde29102d451d6c870990ee335392b3e5328c79d22c00912870D��
9096f48c5db56f9f48a681b03c82afe3ed04a3f10af7b37ad132a68062fdc34b
����#k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T��"k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
/��/�G��&k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications���%k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��$]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�j_����*q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��)q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��(k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���'k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
&+�&���-k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��,]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)�P��+}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.2a��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases
�4����/k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��.k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��3q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���2q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��1q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��0k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
B��B���6k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry time�P��5}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.4a�Z@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�F��4W�7Luboš Uhliarik <luhliari@redhat.com>a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�4����8k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��7k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��<q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���;q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��:q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��9k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
~��~���@m�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-88[+�@- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple
  SIGUSR1�P��?}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.5b<]@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�:��>q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��=q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
2�2�T��Bk�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq��A]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
eje���Ek�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��D]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)���Ck�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�4����Gk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��Fk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
����N��Iy�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos_���- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�S��Hk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
�4����Kk�9	Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��Jk�%	Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��Oq�k	Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���Nq�/	Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��Mq�m	Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��Lk�=	Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
f��;f�P��S}�%	CentOS Sources <bugs@centos.org> - 2.4.6-98.el7.centos.6c��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�)��Rq�c	Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��Qq�	Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��Pq�7	Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
j_��-��Xq�k
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���Wq�/
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��Vq�m
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��Uk�=
Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���Tk�9
Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
J��;�JF��]OA
Johnny Hughes <johnny@centos.org>d-b�- Manual CentOS Debranding�"��\q�U
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)��[q�c
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��Zq�
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��Yq�7
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
j_��-��bq�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���aq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��`q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��_k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���^k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
���;��"��fq�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)��eq�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��dq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��cq�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�}��T��ik�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq��h]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)��gq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-99.1dJc�- Resolves: #2190143 - mod_rewrite regression with CVE-2023-25690
eje���lk�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��k]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)���jk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�4����nk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��mk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
 �� �P��q}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.1ah�- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�.��pq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��ok�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
����sk�9
Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T��rk�?
Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
/��/�G��vk�%
Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications���uk�I
Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��t]m
Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�j_����zq�/
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��yq�m
Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��xk�=
Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���wk�9
Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
&+�&���}k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��|]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)�P��{}�%
CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.2a��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases
�4����k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��~k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
B��B���k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry time�P��}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.4a�Z@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�F��W�7Luboš Uhliarik <luhliari@redhat.com>a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�4����k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��
q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��	k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
~��~���m�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-88[+�@- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple
  SIGUSR1�P��}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.5b<]@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�:��q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��
q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
2�2�T��k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq��]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
eje���k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)���k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�4����k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
����N��y�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos_���- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�S��k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
�4����k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
f��;f�P��#}�%CentOS Sources <bugs@centos.org> - 2.4.6-98.el7.centos.6c��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�)��"q�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��!q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S�� q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session

e�r+��V��:��eD��
14915891af23de39be92b9e4e610d5fe1f11d691b6c0bd554ea4f71e130b80a8D��
61b97c3a1622caf467be58d602a85f34f16db6320e94c9d471b9ef874ce61982D��
66c291b64d8ff006ef287fd920978e0b901b0947dfa61d8ee3b0f3f76f242480D��
0228887c20e6cb39e203d667f60bf1e06e9496f7302af59a477a3db454b70575D��
81a303d0e2c1f786e5921377bd64c30c8d1daa75fda45c1e17c45ef28b02c568D��
904bf015b9ebdad14b887224bff8f4c245ea3f185ebc64c0a9446b250f5ddcd2D��
1cd1ae8c0b9506f0a8066d9b0a935712889175386de9909062d20b0523e2876bD��
1cbb2208fd1a88235398a0429e2e4dfaef8c5ce0593aa8b550c370224ca23fe1D��
f317e5b0fc8e8e40046f6893b5e1dc36e8b5cf17a92069152dccb27c1ff6c45dD��
db914ded5eb6eb9d8b435563ac6f54fc75c81cd4118ec39a25d1562f420c41f8D��
be8404b5ebae76ba968eb3364b0d41d94244b74d0af84bd6045d32cd88c42932D��
deca008ed0c50034daab0bb70b65cd418b3ae2a3bb46f2fb5b5d2c80f9cbe0e5D��
3b66f1712118ad0d41f8596409e86a1e86066cef3804f7bdd83ef8c519cbc003
j_��-��(q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���'q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��&q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��%k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���$k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
J��;�JF��-OAJohnny Hughes <johnny@centos.org>d-b�- Manual CentOS Debranding�"��,q�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)��+q�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��*q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��)q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
j_��-��2q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���1q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��0q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��/k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���.k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
���;��"��6q�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)��5q�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��4q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��3q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
Z}��[�Z���=��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.2.6-5Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildb��<_iPeter Vrabec <pvrabec@redhat.com> 2.2.6-4P�@- "extras" subpackage is not provided on RHEL7���;u�IAthmane Madjoudj <athmane@fedoraproject.org> 2.2.6-3P~��- Remove the patch since we're requiring mod_security >= 2.7.0
- Require mod_security >= 2.7.0���:u�Athmane Madjoudj <athmane@fedoraproject.org> 2.2.6-2Pi��- Add a patch to fix incompatible rules.
- Update to new git release���9u�Athmane Madjoudj <athmane@fedoraproject.org> 2.2.6-1PTm�- Update to 2.2.6
- Update spec file since upstream moved to Github.i��8uaAthmane Madjoudj <athmane@fedoraproject.org> 2.2.5-5PQ�- Enable extra rules sub-package for EPEL.��7q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-99.1dJc�- Resolves: #2190143 - mod_rewrite regression with CVE-2023-25690
K���K�T��Ck�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq��B]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)}��Ac�Tomas Korbar <tkorbar@redhat.com> - 2.2.9-3c��- Fix application of the response status patch
- Related: rhbz#2124200|��@c�Tomas Korbar <tkorbar@redhat.com> - 2.2.9-2c�- Move response status rule to earlier phase
- Resolves: rhbz#2124200���?i�;Daniel Kopecek <dkopecek@redhat.com> - 2.2.9-1WW@- Rebased to version 2.2.9
- Fixed bogus date in the changelog
  Resolves: rhbz#1150614L��>]?Daniel Mach <dmach@redhat.com> - 2.2.6-6R�k�- Mass rebuild 2013-12-27
eje���Fk�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��E]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)���Dk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�4����Hk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��Gk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
 �� �P��K}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.1ah�- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�.��Jq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��Ik�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
����Mk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T��Lk�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
/��/�G��Pk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications���Ok�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��N]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�j_����Tq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��Sq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��Rk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���Qk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
&+�&���Wk�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��V]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)�P��U}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.2a��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases
�4����Yk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��Xk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��]q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���\q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��[q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��Zk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
B��B���`k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry time�P��_}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.4a�Z@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�F��^W�7Luboš Uhliarik <luhliari@redhat.com>a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�4����bk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��ak�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��fq�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���eq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��dq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��ck�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
~��~���jm�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-88[+�@- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple
  SIGUSR1�P��i}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.5b<]@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�:��hq�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��gq�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
2�2�T��lk�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq��k]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
eje���ok�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��n]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)���mk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�4����qk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��pk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
����N��sy�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos_���- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�S��rk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
�4����uk�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��tk�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��yq�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���xq�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��wq�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��vk�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
f��;f�P��}}�%CentOS Sources <bugs@centos.org> - 2.4.6-98.el7.centos.6c��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�)��|q�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��{q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��zq�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
j_��-��q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���~k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
J��;�JF��OAJohnny Hughes <johnny@centos.org>d-b�- Manual CentOS Debranding�"��q�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)��q�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
j_��-��q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��
q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��	k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
���;��"��q�ULuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)��q�cLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��
q�7Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�}��T��k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq��]�Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)��q�Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-99.1dJc�- Resolves: #2190143 - mod_rewrite regression with CVE-2023-25690
eje���k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)���k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection
�4����k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
 �� �P��}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.1ah�- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�.��q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
����k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connection�T��k�?Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency
/��/�G�� k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications���k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)
�j_����$q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��#q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��"k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���!k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
&+�&���'k�ILubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��&]mJoe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)�P��%}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.2a��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases

e�r+��V��:��eD�+�
1ec9ab3e99e2c5ab2c09573b75bace2a32b399ef7f96411b8be713b0793225deD�*�
7b45707f7663e49ac7b9284020212ac82fa961b018eae09ce504f69ced527ca1D�)�
fd4d10950f499e8ff12b7354df494a29bc6c5c88db808bb7245d05a900fc6dbfD�(�
42bfea454da2eacfb32d84a41908a2e6d89c8e46d04ea6a5ccefa5e251b3f3f9D�'�
eb48815ca014d65a115c0ac9dba6f0c28dc765fbc161fc9ac11d3573786c6b4aD�&�
72872ee299214c68c0fb449a111ab5178f764ab24db86850448332c6b4fb7cfcD�%�
5cc00750206f4e78afabfb9b056e174bae1ac30245373825f150d87b55a7c6abD�$�
25140183ca7e3bbe7db7168653af8054b00324b50e2d6f28041960f5bf914598D�#�
50da2508f98f265f7ea4063d0f2a29fa9248b1aab9b37f54f9278b1addfc22beD�"�
c44b275bbc2e3ffe972b69236172d24d3e22046b3060cd4282021355c2777c8dD�!�
25391ffb1394e063287420508e3e0ba93134a21e2a4cae273434eda6c0613fb1D� �
e1558062e338ec19488115a645f60559e370f1ddbf06a4b6e522b9803ac21304D��
dd0e9de5630bcc248395482170c7a3b3d61876f1b93a950464ca6a1125b6dd53
�4����)k�9Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��(k�%Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��-q�kLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���,q�/Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��+q�mLuboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��*k�=Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
B��B���0k�I Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry time�P��/}�%CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.4a�Z@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�F��.W�7Luboš Uhliarik <luhliari@redhat.com>a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
�4����2k�9 Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��1k�% Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��6q�k Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���5q�/ Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��4q�m Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��3k�= Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
~��~���:m�7!Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-88[+�@- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple
  SIGUSR1�P��9}�% CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos.5b<]@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�:��8q� Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��7q�7 Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
2�2�T��<k�?!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-90\��@- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation
  in mod_auth_digest
- Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control
  bypass due to race condition
- Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistencyq��;]�!Joe Orton <jorton@redhat.com> - 2.4.6-89\���- fix per-request leak of bucket brigade structure (#1583218)
eje���?k�I!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-93]�z@- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect
  expiry timec��>]m!Joe Orton <jorton@redhat.com> - 2.4.6-92]^��- htpasswd: add SHA-2 crypt() support (#1486889)���=k�9!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-91]A��- Resolves: #1630886 - scriptlet can fail if hostname is not installed
- Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in
  mod_authnz_ldap when using too small Accept-Language values
- Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after
  failure in reading the HTTP request
- Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch
  directive
- Resolves: #1633152 - mod_session missing apr-util-openssl
- Resolves: #1649470 - httpd response contains garbage in Content-Type header
- Resolves: #1724034 - Unexpected OCSP in proxy SSL connectionbR/WRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������.�6.�=.�C.�F.���H.���K.���M.���P.���T.���W.���Y.���].���`.���b.���f/��j/��l/��o/��q/��s/��u/��y/��}/��/	��/
��/��/��/
��/��/��/��/�� /��$/��'/��)/��-/��0/��2/��6/��:/��</��?/��A/��C/ ��E/!��I/"��M/#��R/$��W/%��\/&��`/'��h/(��p/)��x/*��/+��/,��/-��/.��//��'/1��//2��6/3��>/4��F/5��N/6��U/7��]/8��e/9��m/:��u/;��|/<��/=��/>��	/?��/@��/A��/B��/C��!/D��%/E��+/G��//H��6/I��;/J��?/K��D/L��H/M��M/N��Q/O��V/P��]/Q��b/R��h/S��m/T��q/U��v/V��{
�4����Ak�9!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��@k�%!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
����N��Cy�%!CentOS Sources <bugs@centos.org> - 2.4.6-97.el7.centos_���- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�S��Bk�=!Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
�4����Ek�9"Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value�G��Dk�%"Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-94^|�@- Resolves: #1565491 - CVE-2017-15715 httpd: <FilesMatch> bypass with a trailing
  newline in the file name
- Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect
- Resolves: #1724879 - httpd terminates all SSL connections using an abortive
  shutdown
- Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive
- Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in
  mod_cache_socache can allow a remote attacker to cause a denial of service
- Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in 
  mod_session can allow a remote user to modify session data for CGI applications
���a��-��Iq�k"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���Hq�/"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��Gq�m"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��Fk�="Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues
f��;f�P��M}�%"CentOS Sources <bugs@centos.org> - 2.4.6-98.el7.centos.6c��@- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases�)��Lq�c"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��Kq�"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��Jq�7"Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
j_��-��Rq�k#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���Qq�/#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��Pq�m#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��Ok�=#Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���Nk�9#Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
J��;�JF��WOA#Johnny Hughes <johnny@centos.org>d-b�- Manual CentOS Debranding�"��Vq�U#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)��Uq�c#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��Tq�#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��Sq�7#Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
j_��-��\q�k$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.3a��- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow
  when parsing multipart content���[q�/$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.2av�@- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix�.��Zq�m$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.1a^�@- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted
  request uri-path containing "unix:"�S��Yk�=$Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-97_}��- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending
  a client cert to backend server
- Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout
- Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool
  concurrency issues���Xk�9$Lubos Uhliarik <luhliari@redhat.com> - 2.4.6-95^��@- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized
  value
���;��"��`q�U$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.7d�@- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with
  mod_rewrite and mod_proxy�)��_q�c$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.6c��@- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes
  corrupt and mixed-up responses�:��^q�$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.5b9�@- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier�S��]q�7$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-97.4a��- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via
  malformed requests
- Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in
  ap_escape_quotes() via malicious input
- Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session
#}
��	�#t��hsy%Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��gse%Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��fs}%Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��es�%Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���dg�%Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164��cs�
%Florian Müllner <fmuellner@redhat.com> - 3.28.3-20]�N@- Free close dialog before unmanaging parent
  Related: #1753799o��bg{%Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-19]�)�- Fix invalid read in idle monitor
  Resolves: #1752378��aq�$Luboš Uhliarik <luhliari@redhat.com> - 2.4.6-99.1dJc�- Resolves: #2190143 - mod_rewrite regression with CVE-2023-25690
&s��'��&v��ps}&Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��os�&Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���ng�&Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164��ms�
&Florian Müllner <fmuellner@redhat.com> - 3.28.3-20]�N@- Free close dialog before unmanaging parent
  Related: #1753799o��lg{&Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-19]�)�- Fix invalid read in idle monitor
  Resolves: #1752378]��kc[%Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��jg�%Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���ig�+%Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242
-���1�-{��xs�'Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���wg�'Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164��vs�
'Florian Müllner <fmuellner@redhat.com> - 3.28.3-20]�N@- Free close dialog before unmanaging parent
  Related: #1753799]��uc[&Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��tg�&Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���sg�+&Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��rsy&Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��qse&Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306
6���:�6��s�
(Florian Müllner <fmuellner@redhat.com> - 3.28.3-20]�N@- Free close dialog before unmanaging parent
  Related: #1753799}��g�'Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��~c['Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��}g�'Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���|g�+'Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��{sy'Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��zse'Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��ys}'Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869
6{����6]��c[(Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��g�(Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���g�+(Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��sy(Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��se(Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��s}(Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��s�(Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���g�(Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164
��{�����g�+)Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��sy)Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��
se)Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��s})Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��s�)Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���
g�)Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164}��	g�(Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063
8�'�$� �8j��se*Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��s}*Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��s�*Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���g�*Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164~��g�)Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-31bf�@- Fix race condition causing stuck pointer grabs
  Resolves: #2054507}��g�)Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��c[)Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��g�)Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029
&���"��&v��s}+Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��s�+Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799~��g�*Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-31bf�@- Fix race condition causing stuck pointer grabs
  Resolves: #2054507}��g�*Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��c[*Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��g�*Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���g�+*Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��sy*Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103
&���3�&���'e�)+Jonas Ådahl <jadahl@redhat.com> - 3.28.3-32b�(�- Fix _NET_WM_FRAME_DRAWN timestamps when overflow occurs
  Resolves: #2128996~��&g�+Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-31bf�@- Fix race condition causing stuck pointer grabs
  Resolves: #2054507}��%g�+Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��$c[+Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��#g�+Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���"g�++Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��!sy+Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j�� se+Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306

e�r+��V��:��eD�8�
9cfc662e7205b955336839340e91d244d4c1151e65f24d263b83a7284397aadcD�7�
ef2da07e17ad85947c0e573c1504b7566d8f242eb7bd44c2113d1acbb0e78a60D�6�
3336d0c5df4e7d13b0a72ba226318a764a5ec8aa70ecdccfb63e3e01fe7dbf42D�5�
81842832fb5e2ebf0b8c4d8f9d6e5fce417deee396059e72dd09a8180b6c94afD�4�
0c05547ab6db1a5fe777068a16ceaf758e35d33abedd3643f7dc8bee4b68af5fD�3�
a44f98ca0940978bcb90de24620d95a537a8c46a0e15d0c211db20d0afe09131D�2�
4b14173ba0287bf249a3f49d9d5968a1bb673fe58f4a0ee8e066a9aa389741bdD�1�
be4849e6f5efd2df57c2054a73f7edaf2b47ce5ce34a2819269e10158ee4d460D�0�
2b4e66ff61ba4a7722ed44b9ca9487b146ddcbe7bc27c08a8b07be8049b546e7D�/�
ca6edad606ed1ae0aad8a9ae177f501264d15718f85d304957942d0ed5768647D�.�
d4f08989f469c8c654a2986c6fe6f0f1f7bb38bec3e1445f93c1df505f92d04aD�-�
7e5b27fb6123ab5f0cdd5f923b6c4f144c4cff9c981c132969b3026427a32a17D�,�
08949cdd78826f2931cedc5db7b5ecee0f22e07f614ab03c88690cc3ad353c4c
:��!��:}��/g�,Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��.c[,Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��-g�,Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���,g�+,Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��+sy,Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��*se,Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��)s},Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��(s�,Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799
~���x�v��6s}-Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��5s�-Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���4g�-Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164��3s�
-Florian Müllner <fmuellner@redhat.com> - 3.28.3-20]�N@- Free close dialog before unmanaging parent
  Related: #1753799o��2g{-Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-19]�)�- Fix invalid read in idle monitor
  Resolves: #1752378���1e�),Jonas Ådahl <jadahl@redhat.com> - 3.28.3-32b�(�- Fix _NET_WM_FRAME_DRAWN timestamps when overflow occurs
  Resolves: #2128996~��0g�,Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-31bf�@- Fix race condition causing stuck pointer grabs
  Resolves: #2054507
9���A�9���>g�.Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164��=s�
.Florian Müllner <fmuellner@redhat.com> - 3.28.3-20]�N@- Free close dialog before unmanaging parent
  Related: #1753799o��<g{.Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-19]�)�- Fix invalid read in idle monitor
  Resolves: #1752378]��;c[-Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��:g�-Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���9g�+-Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��8sy-Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��7se-Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306
8��!��8��Fs�
/Florian Müllner <fmuellner@redhat.com> - 3.28.3-20]�N@- Free close dialog before unmanaging parent
  Related: #1753799]��Ec[.Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��Dg�.Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���Cg�+.Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��Bsy.Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��Ase.Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��@s}.Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��?s�.Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799
6{����6]��Nc[/Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��Mg�/Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���Lg�+/Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��Ksy/Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��Jse/Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��Is}/Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��Hs�/Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���Gg�/Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164
��w�~�t��Usy0Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��Tse0Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��Ss}0Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��Rs�0Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���Qg�0Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164��Ps�
0Florian Müllner <fmuellner@redhat.com> - 3.28.3-20]�N@- Free close dialog before unmanaging parent
  Related: #1753799}��Og�/Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063
-s����-j��]se1Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��\s}1Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��[s�1Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���Zg�1Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164}��Yg�0Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��Xc[0Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��Wg�0Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���Vg�+0Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242
���"��{��es�2Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���dg�2Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-21^`�- Add PING_TIMEOUT_DELAY to mutter MetaPreferences
  Resolves: #1809164~��cg�1Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-31bf�@- Fix race condition causing stuck pointer grabs
  Resolves: #2054507}��bg�1Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��ac[1Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��`g�1Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���_g�+1Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��^sy1Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103
7���:�7~��mg�2Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-31bf�@- Fix race condition causing stuck pointer grabs
  Resolves: #2054507}��lg�2Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��kc[2Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��jg�2Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���ig�+2Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��hsy2Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��gse2Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��fs}2Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869
:��!��:}��ug�3Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��tc[3Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��sg�3Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029���rg�+3Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��qsy3Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��pse3Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��os}3Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��ns�3Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799
�~�t������|g�+4Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-26^�@- Only treat WM_PROTOCOLS messages as WM_PROTOCOL messages
  Resolves: #1846242t��{sy4Florian Müllner <fmuellner@redhat.com> - 3.28.3-25^��- Notify workspace layout changes
  Resolves: #1848103j��zse4Florian Müllner <fmuellner@redhat.com> - 3.28.3-24^��- Fix extended OSK keys
  Resolves: #1625306v��ys}4Florian Müllner <fmuellner@redhat.com> - 3.28.3-23^��@- Improve performance under IO load
  Resolves: #1824869{��xs�4Florian Müllner <fmuellner@redhat.com> - 3.28.3-22^b;@- Include one more close-dialog backport
  Related: #1753799���we�)3Jonas Ådahl <jadahl@redhat.com> - 3.28.3-32b�(�- Fix _NET_WM_FRAME_DRAWN timestamps when overflow occurs
  Resolves: #2128996~��vg�3Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-31bf�@- Fix race condition causing stuck pointer grabs
  Resolves: #2054507
-�'�$�-h��[y5Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320���e�)4Jonas Ådahl <jadahl@redhat.com> - 3.28.3-32b�(�- Fix _NET_WM_FRAME_DRAWN timestamps when overflow occurs
  Resolves: #2128996~��g�4Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-31bf�@- Fix race condition causing stuck pointer grabs
  Resolves: #2054507}��g�4Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-30_�#�- Try to fix leaks even more and a log spew fix
  Resolves: #1897063]��~c[4Ray Strode <rstrode@redhat.com> - 3.28.3-28_��@- Try to fix leaks
  Resolves: #1717000t��}g�4Jonas Ådahl <jadahl@redhat.com>) - 3.28.3-27^�A- Turn stacking warning into debug log
  Resolves: #1811029
����	��[�95Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348�?��[�%5Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441�)��W�}5Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320
?]��?���	_�95Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383�4��_�5Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405�P��_�C5Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153���_�_5Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481
�~��_��?��[�%6Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441�)��
W�}6Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h��[y6Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320���_�#5Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~��
_�5Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199
Ar��A�4��_�6Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405�P��_�C6Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153���_�_6Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481�	��[�96Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348
�p�i���)��W�}7Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h��[y7Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320���_�#6Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~��_�6Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199���_�96Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383
6<�6�P��_�C7Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153���_�_7Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481�	��[�97Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348�?��[�%7Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441
G�5�D�)��!W�}8Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h�� [y8Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320���_�#7Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~��_�7Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199���_�97Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383�4��_�7Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405
6<�6�P��%_�C8Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153���$_�_8Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481�	��#[�98Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348�?��"[�%8Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441
G�5�D�)��+W�}9Jeff Moyer <jmoyer@redhat.com> - 62-1[~��- Rebase to v62 (Jeff Moyer)
  - a new monitor command / daemon
  - an ndctl udev rule for recording the unsafe shutdown count
  - smart error injection
  - create-namespace fix for fragmented namespaces
- Resolves: bz#1610649 bz#1611833 bz#1456320h��*[y9Jeff Moyer <jmoyer@redhat.com> - 60.3-4[^��- Apply all patches (Jeff Moyer)
- Related: bz#1456320���)_�#8Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~��(_�8Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199���'_�98Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383�4��&_�8Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405

e�r+��V��:��eD�E�
e1da241785b81fa88a78902772f84fe8352a55fdf1c3e24e75f1489f0ed6c85eD�D�
9384178dce07e0ac299086cce68e4bb80df8f3f7a7fbb3157138f9c5959fefa1D�C�
51baa210ba3ca7c7a874db3fb24682d5b524662f17895952c53f472c0c1d4c45D�B�
58bf74631393f9fcc43410a3e2bed3cad154da2aa6ea87017696651917d10727D�A�
aa775be36b0d57745dd1f04714358ec65cc663466eb081aaac7ad87e1fa83ddbD�@�
203db3d0d6a1ba449e52187f6910583ce0b23cd0c8ee52676a996d6659236bd9D�?�
9337c05672cf9bfec36d4f07ea3e1ff83103684578d98cb0b7c93d90c03620dcD�>�
940d3c647a6731e9ac3db41e0ac29dd98c5646b2f3d6559663e1ef5e309d5a77D�=�
27aff6d12be971449c18fbddaf62e746dbde00a72186da96eeb19d8af6a3783cD�<�
c355bbad46f478fe445b10f024dcf94c2baf4e0c856db5be8d2cb654bc37f559D�;�
8634b9087fce679a0f75d56b47ee7f5bab818bafc65af5c3bbf22d74b7807c3cD�:�
46bca967117d9441489461b3e6c17e9d3e387f3c3bfba523e30b819bb00825efD�9�
ff451f91104128c99b259625e000b9cbae52cee36db749f5b2e5291742d7ecc2
6<�6�P��/_�C9Jeff Moyer <jmoyer@redhat.com> - 65.2.el7]>�- Remove 'daxctl migrate-device-model' command.  We won't
  support hot-plugging device dax into the memory hierarchy
  on RHEL 7.
- Resolves: rhbz#1734153���._�_9Jeff Moyer <jmoyer@redhat.com> - 65.1.el7]9��- Rebase to v65
  - clear-errors: new command to clear errors on a namespace
  - monitor: remove the requirement of a default config
  - sanitize-dimm: allow a zero-key for secure-erase
  - sanitize-dimm: preserve keys after an overwrite
  - load-keys: fix for non-TPM keys
- Fix test harness to run against the rhel7 test kernel modules
- Related: rhbz#1722481�	��-[�99Jeff Moyer <jmoyer@redhat.com> - 64.1-2\�e�- Fix initramfs creating by forcing installation of libnvdimm.ko
- Related: bz#1634348�?��,[�%9Jeff Moyer <jmoyer@redhat.com> - 64.1-1\��@- Rebase to v64.1 (Jeff Moyer)
  - add security commands
  - fix broken udev rule for dirty shutdown count
- Resolves: bz#1634348 bz#1635441
`G�5�:�`d��6eg:Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��5e{:Josef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��4e�:Josef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)���3_�#9Jeff Moyer <jmoyer@redhat.com> - 65.6.el7_ܙ�- add space to install_items in dracut config file
- Resolves: rhbz#1909233~��2_�9Jeff Moyer <jmoyer@redhat.com> - 65.5.el7]w�@- Once again attempt to fix nvdimm-security.conf
- Resolves: rhbz#1750199���1_�99Jeff Moyer <jmoyer@redhat.com> - 65.4.el7]QT�- Add spaces to the add_driver directive in the dracut module
- Resolves: rhbz#1740383�4��0_�9Jeff Moyer <jmoyer@redhat.com> - 65.3.el7]Ik�- modify nvdimm-security.conf touse '&&' instead of ';'
  Without this change, the module doesn't load
- Resolves: rhbz#1725405
)y
�)u��;e�:Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��:eg:Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��9eu:Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���8e�!:Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��7e�:Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���*�d��?eg;Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��>e{;Josef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��=iK:Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���<e�#:Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��De�;Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��Ceg;Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��Beu;Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Ae�!;Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��@e�;Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��Heg<Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��Gii;Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��FiK;Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Ee�#;Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��Me�<Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��Leg<Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��Keu<Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Je�!<Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Ie�<Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��Qiq<Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��Pii<Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��OiK<Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Ne�#<Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��Ve�=Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��Ueg=Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��Teu=Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Se�!=Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Re�=Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
d��1�L�dn��]e{>Josef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��\e�>Josef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)r��[i=Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��Ziq=Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��Yii=Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��XiK=Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���We�#=Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
:���:d��beg>Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��aeu>Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���`e�!>Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��_e�>Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)d��^eg>Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)
��#�;�d��heg?Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��ge{?Josef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��fe�?Josef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)X��eiK>Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���de�#>Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)u��ce�>Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)
)y
�)u��me�?Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��leg?Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��keu?Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���je�!?Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��ie�?Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���*�d��qeg@Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��pe{@Josef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��oiK?Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���ne�#?Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��ve�@Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��ueg@Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��teu@Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���se�!@Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��re�@Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
W��1�Wd��{egAJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��ze{AJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)g��yii@Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��xiK@Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���we�#@Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��e�AJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��egAJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��~euAJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���}e�!AJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��|e�AJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��egBJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��iiAJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iKAJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#AJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��	e�BJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��egBJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��euBJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!BJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�BJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
Z��1�Zd��egCJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)k��
iqBJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��iiBJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iKBJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���
e�#BJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��e�CJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��egCJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��euCJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!CJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�CJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��iqCJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��iiCJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iKCJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#CJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��e�DJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��egDJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��euDJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!DJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�DJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
L��1�Lr��!iDJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k�� iqDJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��iiDJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iKDJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#DJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��&e�EJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��%egEJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��$euEJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���#e�!EJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��"e�EJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
d��1�L�dn��-e{FJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��,e�FJosef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)r��+iEJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��*iqEJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��)iiEJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��(iKEJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���'e�#EJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)

e�r+��V��:��eD�R�
b9e5d765d9cdb4e753cc90c405374ae4f1e90a89b8969164455783fc60720afdD�Q�
d85313c82ec7673519a211411e459e2105de52fc4111ca7c8f5993153e516415D�P�
f3cd33690b0532fcbb6ef97043d3026fa11e0d5e3583d070659675619ccd31b3D�O�
cb56c1afbb8da7034985bbc168d9be562e1692239a7ac99ac69557a2743af4cdD�N�
8bad4d40202c32d3b92c589f87621067f44ac2cd0793dc3c8ca85d82dc069603D�M�
729bff77f6c7fc23bab8a062cad450e4fec1ed72327936a033ec519b4a1f1a5dD�L�
003d6e4f36c75c96397d74a2057705deb39e076f3fc1a18799709b07c8140187D�K�
217a929503c5b9fc47654c4bd44a691380f40b921379b5acb0c12f913296b4ebD�J�
002d4f7023944abaa5047112477822bce1cf921f395bbc76065f1bc6ecfa3c22D�I�
e6b656e21f27f47b357f21b2071ae59b0a85a6c23d1e221ddaa30e32116bf9e2D�H�
12a68692369968ab2848f9b52e492d4de687d092607a4bb029d6032c6b8512d8D�G�
b987f0cc8431b286cd14af878fe7d373d1fef790672495746f45a37477544b88D�F�
743f6a2f0afed6f677ea24028a9be02fb82801ed898d3523695bc6b923a302d3
:���:d��2egFJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��1euFJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���0e�!FJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��/e�FJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)d��.egFJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)
��#�;�d��8egGJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��7e{GJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��6e�GJosef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)X��5iKFJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���4e�#FJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)u��3e�FJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)
)y
�)u��=e�GJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��<egGJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��;euGJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���:e�!GJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��9e�GJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���*�d��AegHJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��@e{HJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��?iKGJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���>e�#GJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��Fe�HJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��EegHJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��DeuHJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Ce�!HJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Be�HJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
W��1�Wd��KegIJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��Je{IJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)g��IiiHJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��HiKHJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Ge�#HJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��Pe�IJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��OegIJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��NeuIJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Me�!IJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Le�IJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��TegJJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��SiiIJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��RiKIJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Qe�#IJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��Ye�JJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��XegJJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��WeuJJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Ve�!JJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Ue�JJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
Z��1�Zd��^egKJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)k��]iqJJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��\iiJJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��[iKJJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Ze�#JJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��ce�KJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��begKJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��aeuKJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���`e�!KJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��_e�KJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��giqKJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��fiiKJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��eiKKJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���de�#KJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��le�LJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��kegLJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��jeuLJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���ie�!LJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��he�LJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
L��1�Lr��qiLJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��piqLJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��oiiLJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��niKLJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���me�#LJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��ve�MJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��uegMJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��teuMJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���se�!MJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��re�MJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
d��1�L�dn��}e{NJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��|e�NJosef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)r��{iMJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��ziqMJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��yiiMJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��xiKMJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���we�#MJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
:���:d��egNJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��euNJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!NJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�NJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)d��~egNJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)
I�#�Id��egOJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��e{OJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��iKNJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#NJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)u��e�NJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)
)y
�)u��e�OJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��egOJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��
euOJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���	e�!OJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�OJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��egPJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��iiOJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iKOJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���
e�#OJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��e�PJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��egPJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��euPJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!PJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�PJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��iqPJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��iiPJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iKPJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#PJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��e�QJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��egQJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��euQJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!QJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�QJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
d��1�L�dn��%e{RJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��$e�RJosef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)r��#iQJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��"iqQJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��!iiQJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X�� iKQJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#QJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
:���:d��*egRJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��)euRJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���(e�!RJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��'e�RJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)d��&egRJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)
��#�;�d��0egSJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��/e{SJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��.e�SJosef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)X��-iKRJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���,e�#RJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)u��+e�RJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)

e�r+��V��:��eD�_�
ea9c2c4f4cd124e0cdbfbb60888f7eea8cf1e397c7c5596b9b262f491182efdaD�^�
3ed462219356a67f4b4e61ac7fe20b5177652f7b0016197ed02c546f91020c7fD�]�
6e3ec45785f4e53b2ba5cb144820351bce901ac38bbe5bfece3b71293c84197aD�\�
141f11e739940e647d36915972ce6be77e89f7033f570f3ce6cad86a511b9f3fD�[�
ce1575869a76eeb5a281f8df3980870380850f3aff9297f84f741f893b7244fdD�Z�
5800fe1251af68096a15f87c737c6bb60eea189076391a14cee6c95f32fdb304D�Y�
f9934db5cc1113b572f8e7b163ba8385a71464f8594e0a39efcdf885afab2e39D�X�
eaffff0c99bd293104ff77f035145a5872da50599d8f1b26609f145f305e2df4D�W�
648278bb5ec15af8835f0ac633c1ae82e1135e7a6bdc7ff8c3723b9319b41e7dD�V�
b6d30937baeaab87a757d348cb7d1c880d0d7835e383cdd00aa3006f7b1a6cecD�U�
92cbd8f4ae37e782c4571e81f3d13e76955fa6b037771d881242a1ec17cc5490D�T�
ab0dfa386979e8d8bdf410b61199e02f3996a0cafa084450435d18e99a7d33d2D�S�
bf6158e17a81b9067714e7011f8111f3764aec96494c531e4518423d302b355b
)y
�)u��5e�SJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��4egSJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��3euSJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���2e�!SJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��1e�SJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���*�d��9egTJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��8e{TJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��7iKSJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���6e�#SJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��>e�TJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��=egTJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��<euTJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���;e�!TJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��:e�TJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
W��1�Wd��CegUJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��Be{UJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)g��AiiTJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��@iKTJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���?e�#TJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��He�UJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��GegUJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��FeuUJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Ee�!UJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��De�UJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��LegVJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��KiiUJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��JiKUJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Ie�#UJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��Qe�VJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��PegVJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��OeuVJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Ne�!VJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Me�VJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
Z��1�Zd��VegWJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)k��UiqVJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��TiiVJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��SiKVJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Re�#VJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)bR/�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������/X��/Y��	/Z��/[��/\��/]��/^��!/_��&/`��-/b��2/c��8/d��=/e��A/f��F/g��K/h��P/i��T/j��Y/k��^/l��c/m��g/n��l/o��q/p��v/q��}/r��/s��/t��/u��/v��/w��/x��/y��%/z��*/{��0/}��5/~��9/��>/���C/���H/���L/���Q/���V/���[/���_/���d/���i/���n/���u/���z/���/���/���/���
/���/���/���/���"/���'/���,/���0/���5/���9/���>/���E/���J/���O/���T/���X/���]/���a/���f/���m/���r/���w/���|/���/���/���	/���/���/���/���%/���./���5/���</���B/���G/���L/���T/���[/���b/���i/���p/���w/���~/���/���

)y
�)u��[e�WJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��ZegWJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��YeuWJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Xe�!WJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��We�WJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��_iqWJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��^iiWJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��]iKWJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���\e�#WJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��de�XJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��cegXJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��beuXJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���ae�!XJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��`e�XJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
L��1�Lr��iiXJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��hiqXJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��giiXJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��fiKXJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���ee�#XJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��ne�YJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��megYJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��leuYJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���ke�!YJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��je�YJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
d��1�L�dn��ue{ZJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��te�ZJosef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)r��siYJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��riqYJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��qiiYJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��piKYJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���oe�#YJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
:���:d��zegZJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��yeuZJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���xe�!ZJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��we�ZJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)d��vegZJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)
I�#�Id��eg[Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��~e{[Josef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��}iKZJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���|e�#ZJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)u��{e�ZJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)
)y
�)u��e�[Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��eg[Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��eu[Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�![Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�[Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��eg\Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��ii[Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iK[Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#[Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��
e�\Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��eg\Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��eu\Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���
e�!\Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��	e�\Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��iq\Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��ii\Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iK\Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#\Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��e�]Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��eg]Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��eu]Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!]Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�]Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
d��1�L�dn��e{^Josef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��e�^Josef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)r��i]Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��iq]Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��ii]Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iK]Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#]Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
:���:d��"eg^Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��!eu^Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)��� e�!^Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�^Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)d��eg^Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)
I�#�Id��'eg_Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��&e{_Josef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��%iK^Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���$e�#^Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)u��#e�^Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)
)y
�)u��,e�_Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��+eg_Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��*eu_Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���)e�!_Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��(e�_Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��0eg`Josef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��/ii_Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��.iK_Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���-e�#_Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)

e�r+��V��:��eD�l�
764049c60a710f88bfffed5ba17cd51ea7bb2822f89390f24d0db26a94bb9220D�k�
a8f566d686a31517c6e1f0981aa8a7650ec4c8d5cea01c3500ae51e847966eeeD�j�
11d3ad095a9838e98b8360b005aa07fa292cf9a71c4265bdf7c5adda14d463b3D�i�
bb6c4bb2a43504110b58abd968a896a9cb28e447e17abd926b4366f43bb50835D�h�
8737c27147724574d3a8eca1a97c42dbd392c654e638efa67e05c34316dbefa8D�g�
9d052bd282880b22a3fdd0e733ea2b915e29942748f9ccc7ea825a12f74d2f1bD�f�
ecac7aae69f045e6bb94ecf2521d78d9f8f856a67352b6d877799477a31afa6bD�e�
da833fcbf72323a7a85e0da6ba8c9336419447f7d6dab0d5107ab974425ae951D�d�
c2a79994207490930e3a02bf699b03b7c209983a3342dc5e7c7ba2451f5355c7D�c�
fba2b7f38bb5d3e71e06753d36856e49f231e20be3c06505b414184bd656d595D�b�
bd8ba984e8b76d404b8422b2aeaf6d8ebee207f7fe92acda66e7ef0e2f94f312D�a�
eb2b61c0a574c0e3c540083c4f4f8009c0832616ae48554fa6f402b145b77bb0D�`�
47decaf77cfab5ae9ac6ca376aea7b186c9ab835d41abe31c6bcd91c3dee313f
)y
�)u��5e�`Josef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��4eg`Josef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��3eu`Josef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���2e�!`Josef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��1e�`Josef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��9iq`Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��8ii`Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��7iK`Josef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���6e�#`Josef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��>e�aJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��=egaJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��<euaJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���;e�!aJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��:e�aJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
d��1�L�dn��Ee{bJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��De�bJosef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)r��CiaJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��BiqaJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��AiiaJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��@iKaJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���?e�#aJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
:���:d��JegbJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��IeubJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���He�!bJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Ge�bJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)d��FegbJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)
I�#�Id��OegcJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��Ne{cJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��MiKbJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Le�#bJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)u��Ke�bJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)
)y
�)u��Te�cJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��SegcJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��ReucJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Qe�!cJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Pe�cJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��XegdJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��WiicJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��ViKcJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���Ue�#cJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��]e�dJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��\egdJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��[eudJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���Ze�!dJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��Ye�dJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��aiqdJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��`iidJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��_iKdJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���^e�#dJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��fe�eJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��eegeJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��deueJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���ce�!eJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��be�eJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
d��1�L�dn��me{fJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)r��le�fJosef Ridky <jridky@redhat.com> - 1:5.7.2-41\�@- secure magic variable to prevent daemon crash (#1635201)r��kieJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��jiqeJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��iiieJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��hiKeJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���ge�#eJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
:���:d��regfJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��qeufJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���pe�!fJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��oe�fJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)d��negfJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)
I�#�Id��weggJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)n��ve{gJosef Ridky <jridky@redhat.com> - 1:5.7.2-42\�g�- fix trapd crash when forward snmp v3 traps (#1680547)X��uiKfJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���te�#fJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)u��se�fJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)
)y
�)u��|e�gJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��{eggJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��zeugJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���ye�!gJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��xe�gJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�d��eghJosef Ridky <jridky@redhat.com> - 1:5.7.2-43\�9�- fix available memory calculation (#1250060)g��iigJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��~iKgJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���}e�#gJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��e�hJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��eghJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��euhJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!hJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��e�hJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
���1�k��	iqhJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��iihJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iKhJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#hJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
)y
�)u��e�iJosef Ridky <jridky@redhat.com> - 1:5.7.2-48^h�- fix crash due of double-free of security context (#1809076)d��
egiJosef Ridky <jridky@redhat.com> - 1:5.7.2-47]�7@- revert calculation of free space (#1779609)k��euiJosef Ridky <jridky@redhat.com> - 1:5.7.2-46]�- fix sha224 and sha384 declaration check (#1774693)���e�!iJosef Ridky <jridky@redhat.com> - 1:5.7.2-45]��- fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)�{��
e�iJosef Ridky <jridky@redhat.com> - 1:5.7.2-44]S��- add support for glusterfs (#1316386)
- change services to start after network-online.target (#1388118)
- fix interface fadeout configuration (#1547355)
- fix scanf pattern for ICMP stats (#1693547)
- change buffer size in pass_common.c file (#1695363 and #1731357)
- remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
- fix for CVE-2018-18066 (#1638911)
- add Counter64 support for UCD-SNMP-MIB (#1703752)
>��1�L��>J��Y?jDaniel Mach <dmach@redhat.com> - 2.6-4R�k�- Mass rebuild 2013-12-27j��oijNikos Mavrogiannopoulos <nmav@redhat.com> - 2.6-3R���- Added patch nettle-tmpalloc.patch (#1033570)N��]CjTomáš Mráz <tmraz@redhat.com> - 2.6-2QE�- nettle includes use gmp.hr��iiJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.4e�5@- fix a crash triggered by a wrong passphrase (RHEL-2882)k��iqiJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.3d��@- fix sendmsg error code for new kernel (#2229858)g��iiiJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.2b%�- fix send response: Too long error (#2008696)X��iKiJosef Ridky <jridky@redhat.com> - 1:5.7.2-49.1_��@- fix CVE-2020-15862 (#1875496)���e�#iJosef Ridky <jridky@redhat.com> - 1:5.7.2-49^��@- add missing part of memory leak patch (#1794168)
- fix if_inet6 messages floood (#1765449)
- revert bz#1486733 (#1771050)
- fix issue for process status when process name contains whitespace (#1782180)
L�^����Lw��[�jDaiki Ueno <dueno@redhat.com> - 2.7.1-9`m��- Port fixes for potential miscalculation in ecdsa_verify (#1943156)�E��s�jNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-8W�t@- Use a cache-silent version of mpz_powm to prevent cache-timing
  attacks against RSA and DSA in shared VMs. (#1364897,CVE-2016-6489)�~��s�jNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-5V��- Fixed SHA-3 implementation to conform to final standard (#1252936)
- Fixed CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 which caused issues
  in secp256r1 and secp384r1 calculations (#1314374)`��sQjNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-4S׌�- Correct path of links (#1117782)b��sUjNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-3S�;@- Added fipshmac checksum (#1117782)L��]?jDaniel Mach <dmach@redhat.com> - 2.7.1-2R�U�- Mass rebuild 2014-01-24N��a?jTomáš Mráz <tmraz@redhat.com> - 2.7.1-1R�x@- Updated to nettle 2.7.1
��@��P����~��%s�kNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-5V��- Fixed SHA-3 implementation to conform to final standard (#1252936)
- Fixed CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 which caused issues
  in secp256r1 and secp384r1 calculations (#1314374)`��$sQkNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-4S׌�- Correct path of links (#1117782)b��#sUkNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-3S�;@- Added fipshmac checksum (#1117782)L��"]?kDaniel Mach <dmach@redhat.com> - 2.7.1-2R�U�- Mass rebuild 2014-01-24N��!a?kTomáš Mráz <tmraz@redhat.com> - 2.7.1-1R�x@- Updated to nettle 2.7.1J�� Y?kDaniel Mach <dmach@redhat.com> - 2.6-4R�k�- Mass rebuild 2013-12-27j��oikNikos Mavrogiannopoulos <nmav@redhat.com> - 2.6-3R���- Added patch nettle-tmpalloc.patch (#1033570)N��]CkTomáš Mráz <tmraz@redhat.com> - 2.6-2QE�- nettle includes use gmp.h
	A6�i��[�A`��.sQlNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-4S׌�- Correct path of links (#1117782)b��-sUlNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-3S�;@- Added fipshmac checksum (#1117782)L��,]?lDaniel Mach <dmach@redhat.com> - 2.7.1-2R�U�- Mass rebuild 2014-01-24N��+a?lTomáš Mráz <tmraz@redhat.com> - 2.7.1-1R�x@- Updated to nettle 2.7.1J��*Y?lDaniel Mach <dmach@redhat.com> - 2.6-4R�k�- Mass rebuild 2013-12-27j��)oilNikos Mavrogiannopoulos <nmav@redhat.com> - 2.6-3R���- Added patch nettle-tmpalloc.patch (#1033570)N��(]ClTomáš Mráz <tmraz@redhat.com> - 2.6-2QE�- nettle includes use gmp.hw��'[�kDaiki Ueno <dueno@redhat.com> - 2.7.1-9`m��- Port fixes for potential miscalculation in ecdsa_verify (#1943156)�E��&s�kNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-8W�t@- Use a cache-silent version of mpz_powm to prevent cache-timing
  attacks against RSA and DSA in shared VMs. (#1364897,CVE-2016-6489)
X�3�f��XN��5a?mTomáš Mráz <tmraz@redhat.com> - 2.7.1-1R�x@- Updated to nettle 2.7.1J��4Y?mDaniel Mach <dmach@redhat.com> - 2.6-4R�k�- Mass rebuild 2013-12-27j��3oimNikos Mavrogiannopoulos <nmav@redhat.com> - 2.6-3R���- Added patch nettle-tmpalloc.patch (#1033570)N��2]CmTomáš Mráz <tmraz@redhat.com> - 2.6-2QE�- nettle includes use gmp.hw��1[�lDaiki Ueno <dueno@redhat.com> - 2.7.1-9`m��- Port fixes for potential miscalculation in ecdsa_verify (#1943156)�E��0s�lNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-8W�t@- Use a cache-silent version of mpz_powm to prevent cache-timing
  attacks against RSA and DSA in shared VMs. (#1364897,CVE-2016-6489)�~��/s�lNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-5V��- Fixed SHA-3 implementation to conform to final standard (#1252936)
- Fixed CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 which caused issues
  in secp256r1 and secp384r1 calculations (#1314374)

e�r+��V��:��eD�y�
c73295f51e8bcd58ab89943d676e27d4d7473a645904454667ae786d5b948bebD�x�
065c61acd07e5d7bf4396d3bb011f0b6440c73eae51c4902ebc118cfce7b8fd4D�w�
7474f32c17d8003c3366608f1620d6945efdcff859c4f6900ae7da9ce3f9585bD�v�
b970000edfe83918a60d36a58443e70febbc8053c3ced7c67732f55f07d0a976D�u�
8d43d74f369183dc4073b21eb34b054828ea394433bb870f7b75b636e1135b24D�t�
a1c734e7a148f0540c34ece6fc172664f88cf275abd4199a642731dc9f9bf5abD�s�
aa8fbebb1b09f5d4b003e51cc7e4003474c19e82d8bc3d986af0b378eb4ee9b5D�r�
f725b54a5b7f5170fe4100a72816877759353b4ed7786387970c66d43de05d9dD�q�
27d1ba676d3d4007102e714f71f0f4e97d46890c6eed54e5f10720ff65e7cea8D�p�
05fbad1e72d3fc82cab1e83391bf6c22c224dd3554ceed92227b792e08bf75b4D�o�
fd5d1ca9a11a3575a3c34f7dbcd30cc924d2b41a0a004c3a793506098be60bcaD�n�
4f58b903b21acdc1828cdfde9dd84d381db27ebca47cc84a8a8225dd657221ebD�m�
16a78c16f102931cd4ab634fc4177b99535edda6436721529c1f30e8ec464b9a
 �J��� z��<e�nSteve Dickson <steved@redhat.com> 1.3.0-0.60[z�@- Updated: nfsd: Allow the caller to turn off NFSv4.0 (bz 1596138)w��;[�mDaiki Ueno <dueno@redhat.com> - 2.7.1-9`m��- Port fixes for potential miscalculation in ecdsa_verify (#1943156)�E��:s�mNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-8W�t@- Use a cache-silent version of mpz_powm to prevent cache-timing
  attacks against RSA and DSA in shared VMs. (#1364897,CVE-2016-6489)�~��9s�mNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-5V��- Fixed SHA-3 implementation to conform to final standard (#1252936)
- Fixed CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 which caused issues
  in secp256r1 and secp384r1 calculations (#1314374)`��8sQmNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-4S׌�- Correct path of links (#1117782)b��7sUmNikos Mavrogiannopoulos <nmav@redhat.com> - 2.7.1-3S�;@- Added fipshmac checksum (#1117782)L��6]?mDaniel Mach <dmach@redhat.com> - 2.7.1-2R�U�- Mass rebuild 2014-01-24
4w��6�4��Be�nSteve Dickson <steved@redhat.com> 1.3.0-0.66]H@- nfs-utils_env.sh: Removed the hard coded number of nfsds (bz 1736801){��Ae�nSteve Dickson <steved@redhat.com> 1.3.0-0.65\�A- Fixed typo of mountd-memleak.patch not being applied (bz 1711210)r��@e�nSteve Dickson <steved@redhat.com> 1.3.0-0.64\�@- rpc.mountd: Fix e_hostname and e_uuid leaks (bz 1711210)�>��?e�nSteve Dickson <steved@redhat.com> 1.3.0-0.63\���- nfs.conf: Fixed manage-gids option typo (bz 1677403)
- sm-notify: Added -f flag to nfs.conf parsing (bz 1688932)
- Add nfs.conf equivalent for the statd --no-notify cmdline option (bz 1688918)
- nfs-server: Use reload not restart to start gssproxy (bz 1644169)���>e�#nSteve Dickson <steved@redhat.com> 1.3.0-0.62\ac�- statd: fix use-after-free in monitor list if insertion fails (bz 1624542)���=e�%nSteve Dickson <steved@redhat.com> 1.3.0-0.61[�t�- nfs.conf: fail to disable major NFS version 4 using "vers4=n" (bz 1625032)
B$�S�B���Ge�#oSteve Dickson <steved@redhat.com> 1.3.0-0.62\ac�- statd: fix use-after-free in monitor list if insertion fails (bz 1624542)���Fe�%oSteve Dickson <steved@redhat.com> 1.3.0-0.61[�t�- nfs.conf: fail to disable major NFS version 4 using "vers4=n" (bz 1625032)h��EiknSteve Dickson <steved@redhat.com> 1.3.0-0.68.1^�y�- exportfs: fix unexporting of '/' (bz 1958975)a��DeanSteve Dickson <steved@redhat.com> 1.3.0-0.68^�(@- gssd: closed resource leak. (bz 1167629)�W��Ce�KnSteve Dickson <steved@redhat.com> 1.3.0-0.67^��- rpc.gssd: removed a number memory leaks (bz 1807110)
- mount: Report correct error in the fall_back cases (bz 1752329)
- gssd: daemonize earlier (bz 1645083)
i�G�Ei�W��Le�KoSteve Dickson <steved@redhat.com> 1.3.0-0.67^��- rpc.gssd: removed a number memory leaks (bz 1807110)
- mount: Report correct error in the fall_back cases (bz 1752329)
- gssd: daemonize earlier (bz 1645083)��Ke�oSteve Dickson <steved@redhat.com> 1.3.0-0.66]H@- nfs-utils_env.sh: Removed the hard coded number of nfsds (bz 1736801){��Je�oSteve Dickson <steved@redhat.com> 1.3.0-0.65\�A- Fixed typo of mountd-memleak.patch not being applied (bz 1711210)r��Ie�oSteve Dickson <steved@redhat.com> 1.3.0-0.64\�@- rpc.mountd: Fix e_hostname and e_uuid leaks (bz 1711210)�>��He�oSteve Dickson <steved@redhat.com> 1.3.0-0.63\���- nfs.conf: Fixed manage-gids option typo (bz 1677403)
- sm-notify: Added -f flag to nfs.conf parsing (bz 1688932)
- Add nfs.conf equivalent for the statd --no-notify cmdline option (bz 1688918)
- nfs-server: Use reload not restart to start gssproxy (bz 1644169)
T�/�i�`�Th��TikpFlorian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)���Si�OpCarlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u��Ri�pFlorian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)���Qi�/pFlorian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)c��PiapFlorian Weimer <fweimer@redhat.com> - 2.17-313^0"@- Remove problematic Obsoletes: (#1795573)[��OiQoSteve Dickson <steved@redhat.com> 1.3.0-0.68.2aj@- gssd: mutex updates (bz 1990981)h��NikoSteve Dickson <steved@redhat.com> 1.3.0-0.68.1^�y�- exportfs: fix unexporting of '/' (bz 1958975)a��MeaoSteve Dickson <steved@redhat.com> 1.3.0-0.68^�(@- gssd: closed resource leak. (bz 1167629)
H����Q�Hu��[i�qFlorian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)���Zi�/qFlorian Weimer <fweimer@redhat.com> - 2.17-314^1s�- Disable libio vtable validation for interposed pre-2.1 stdio handles (#1775816)x��Yi�	pCarlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/��Xi�wpCarlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x��Wi�	pCarlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)���Vi�pCarlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z��Ui�
pCarlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)
E`�v�u�Ex��bi�	qCarlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/��ai�wqCarlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x��`i�	qCarlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)���_i�qCarlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z��^i�
qCarlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h��]ikqFlorian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)���\i�OqCarlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)
��}��x��ii�	rCarlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)���hi�rCarlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)z��gi�
rCarlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h��fikrFlorian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)���ei�OrCarlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)u��di�rFlorian Weimer <fweimer@redhat.com> - 2.17-315^1s�- argp: Do not override GCC keywords with macros (#1763325)f��cs]qSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)
ML�f�7�Mz��pi�
sCarlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h��oiksFlorian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)���ni�OsCarlos O'Donell <carlos@redhat.com> - 2.17-316^2�@- Adjust security hardening changes for 64-bit POWER BE due to
  toolchain limitations (#1793853)�
��ms�#rSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f��ls]rSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x��ki�	rCarlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/��ji�wrCarlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)
{�K�e��5��wi�sFlorian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
��vs�#sSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f��us]sSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x��ti�	sCarlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/��si�wsCarlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x��ri�	sCarlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)���qi�sCarlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
4��T�[�4i��~WtDJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)�5��}i�tFlorian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
��|s�#tSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f��{s]tSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x��zi�	tCarlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/��yi�wtCarlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x��xi�	tCarlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)
-g��-z��i�
uCarlos O'Donell <carlos@redhat.com> - 2.17-318_�T�- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)h��ikuFlorian Weimer <fweimer@redhat.com> - 2.17-317^���- Do not clobber errno in nss_compat (#1834816)r��m{tFlorian Weimer <fweimer@redhat.com> - 2.17-326.3f3�@- nscd: Fix timeout type in netgroup cache (RHEL-34263)�U��m�?tFlorian Weimer <fweimer@redhat.com> - 2.17-326.2f0�@- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2021-27645: nscd: double-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules���m�=tFlorian Weimer <fweimer@redhat.com> - 2.17-326.1fh@- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)
{�K�e��5��
i�uFlorian Weimer <fweimer@redhat.com> - 2.17-325aG�- Support /etc/sysconfig/strcasecmp-nonascii for enabling non-ASCII case
  conversion in strcasecmp, strncasecmp (#1993930)�
��	s�#uSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-324`]�- Move __isnanl_pseudo into its own file and link only into libc (#1927536)f��s]uSiddhesh Poyarekar <siddhesh@redhat.com> - 2.17-323`3@- Fix isnanl check in printf. (#1925204)x��i�	uCarlos O'Donell <carlos@redhat.com> - 2.17-322_��A- Enable file-based IFUNC selection on NVMe devices (#1883162)�/��i�wuCarlos O'Donell <carlos@redhat.com> - 2.17-321_��@- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
  sincosl, and tanl function. (#1812119)x��i�	uCarlos O'Donell <carlos@redhat.com> - 2.17-320_�T�- CVE-2020-29573: Harden printf family of functions (#1869380)���i�uCarlos O'Donell <carlos@redhat.com> - 2.17-319_�T�- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
	=���y-��=H��]7vDaiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21H��]7vDaiki Ueno <dueno@redhat.com> - 4.19.0-1Z�1@- Rebase to NSPR 4.19T��kAvDaiki Ueno <dueno@redhat.com> - 4.19.0-0.1.betaZ��@- Rebase to NSPR 4.19 BETAH��]7vDaiki Ueno <dueno@redhat.com> - 4.17.0-1Y�p@- Rebase to NSPR 4.17H��]7vDaiki Ueno <dueno@redhat.com> - 4.16.0-1Y�n@- Rebase to NSPR 4.16L��a;vDaiki Ueno <dueno@redhat.com> - 4.13.1-1.0X��@- Rebase to NSPR 4.13.1�$��
k�_vElio Maldonado <emaldona@redhat.com> - 4.11.0-1V��- Rebase to NSPR 4.11
- Resolves: Bug 1297941 - Rebase RHEL 7.3 to NSS 3.21 in preparation for Firefox 45�P��k�7vElio Maldonado <emaldona@redhat.com> - 4.10.8-2V �- Resolves: Bug 1269363 - CVE-2015-7183
- nspr: heap-buffer overflow in PL_ARENA_ALLOCATE can lead to crash (under ASAN), potential memory corruptioni��WuDJ Delorie <dj@redhat.com> - 2.17-326b4t@- resolv: Handle DNS transaction ID collisions (#2065058)
	T�^���D��TH��]7wDaiki Ueno <dueno@redhat.com> - 4.19.0-1Z�1@- Rebase to NSPR 4.19T��kAwDaiki Ueno <dueno@redhat.com> - 4.19.0-0.1.betaZ��@- Rebase to NSPR 4.19 BETAH��]7wDaiki Ueno <dueno@redhat.com> - 4.17.0-1Y�p@- Rebase to NSPR 4.17H��]7wDaiki Ueno <dueno@redhat.com> - 4.16.0-1Y�n@- Rebase to NSPR 4.16L��a;wDaiki Ueno <dueno@redhat.com> - 4.13.1-1.0X��@- Rebase to NSPR 4.13.1�$��k�_wElio Maldonado <emaldona@redhat.com> - 4.11.0-1V��- Rebase to NSPR 4.11
- Resolves: Bug 1297941 - Rebase RHEL 7.3 to NSS 3.21 in preparation for Firefox 45�P��k�7wElio Maldonado <emaldona@redhat.com> - 4.10.8-2V �- Resolves: Bug 1269363 - CVE-2015-7183
- nspr: heap-buffer overflow in PL_ARENA_ALLOCATE can lead to crash (under ASAN), potential memory corruptionR��]KvDaiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��]7vDaiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25
L�h�z"��>��LJ��(a7xBob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��'a7xBob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��&]KxDaiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��%]7xDaiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��$]7xDaiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21H��#]7xDaiki Ueno <dueno@redhat.com> - 4.19.0-1Z�1@- Rebase to NSPR 4.19T��"kAxDaiki Ueno <dueno@redhat.com> - 4.19.0-0.1.betaZ��@- Rebase to NSPR 4.19 BETAH��!]7xDaiki Ueno <dueno@redhat.com> - 4.17.0-1Y�p@- Rebase to NSPR 4.17H�� ]7xDaiki Ueno <dueno@redhat.com> - 4.16.0-1Y�n@- Rebase to NSPR 4.16R��]KwDaiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��]7wDaiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��]7wDaiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21
4�W�g�y+��4H��4]7zDaiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21Y��3aUyBob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��2a7yBob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��1a7yBob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��0]KyDaiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��/]7yDaiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��.]7yDaiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21H��-]7yDaiki Ueno <dueno@redhat.com> - 4.19.0-1Z�1@- Rebase to NSPR 4.19T��,kAyDaiki Ueno <dueno@redhat.com> - 4.19.0-0.1.betaZ��@- Rebase to NSPR 4.19 BETAH��+]7yDaiki Ueno <dueno@redhat.com> - 4.17.0-1Y�p@- Rebase to NSPR 4.17H��*]7yDaiki Ueno <dueno@redhat.com> - 4.16.0-1Y�n@- Rebase to NSPR 4.16Y��)aUxBob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91

e�r+��V��:��eD��
5789e9eefcb8257802229f6c4a0c33ffeebca3524e72f87f7094d6126e171b3fD��
09c89c08debacc489fe15a2e0025630de1bd775a0f8b0e4ef911abb61cc7f0d1D��
c0b12c0fdbe123567a7fdef5ac2588a2251ae9765f4962c97c73d4a897684662D��
15a8be046768a2968cfabc11099c94d9e4758a47f1ad0a4684b5381191fef135D��
32f2360a1cd39e18ee281e0776cfb076b98630d9d2f537026ade2e9f9781d773D��
e5da7feab326c7d54715dd536bcd5dfd2fb186f7fb2c524d033599095a696f93D��
d21ecbddef5ee619c1909b27a81f4793db8cbaca93baa944afe265fce0c076c8D��
990637f443055506d031e7c48d1973aa08e372a46ffffec43207a9c00ff8e8c4D�~�
9869383533db8674f9c9ae37eddb0b159acdfe01aa0d5ad7dfc0fbd06b550883D�}�
2d2d708e0066e80880184f19ceae8aceb4c6fdafaa3674831f96b0d35d4f1fd9D�|�
587553122ef589c1cf5063202b40fd092f24f3f9b50a3d38f3deb36d00ed7d2cD�{�
f2365b1ca47b98315778026ca1ce13fb99b6db32a6919f3686b8ecf3a457b96eD�z�
3034b99da622294d9d3140fc599314e5bd6267cc30dcbb8d88f15027d96d7fe0
G�^�e�:��GH��?]7{Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��>]7{Daiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21W��=eMzBob Relyea <rrelyea@redhat.com> - 4.34.0-3.1b�c@- Actually apply the patch in -3|��<a�zBob Relyea <rrelyea@redhat.com> - 4.34.0-3b�@- return the AI_PASSIVE result so servers can connect to all
  clientsI��;a5zBob Relyea <rrelyea@redhat.com> - 4.34.0-2b��@- Fix coverity issueZ��:aWzBob Relyea <rrelyea@redhat.com> - 4.34.0-1b��@- Rebase to NSPR 4.34 for firefox 102Y��9aUzBob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��8a7zBob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��7a7zBob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��6]KzDaiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��5]7zDaiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25
;�\�S�+��;J��Ja7|Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��I]K|Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��H]7|Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25W��GeM{Bob Relyea <rrelyea@redhat.com> - 4.34.0-3.1b�c@- Actually apply the patch in -3|��Fa�{Bob Relyea <rrelyea@redhat.com> - 4.34.0-3b�@- return the AI_PASSIVE result so servers can connect to all
  clientsI��Ea5{Bob Relyea <rrelyea@redhat.com> - 4.34.0-2b��@- Fix coverity issueZ��DaW{Bob Relyea <rrelyea@redhat.com> - 4.34.0-1b��@- Rebase to NSPR 4.34 for firefox 102Y��CaU{Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��Ba7{Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��Aa7{Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��@]K{Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tag

E�U��*�5��EJ��Ta7}Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��S]K}Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��R]7}Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25���Q�	�!|Frantisek Krenzelok <krenzelok.frantisek@gmail.com> - 4.35.0-1d� �- Rebase to NSPR 4.35 for firefox 115
- Move from deprecate %patchN formatW��PeM|Bob Relyea <rrelyea@redhat.com> - 4.34.0-3.1b�c@- Actually apply the patch in -3|��Oa�|Bob Relyea <rrelyea@redhat.com> - 4.34.0-3b�@- return the AI_PASSIVE result so servers can connect to all
  clientsI��Na5|Bob Relyea <rrelyea@redhat.com> - 4.34.0-2b��@- Fix coverity issueZ��MaW|Bob Relyea <rrelyea@redhat.com> - 4.34.0-1b��@- Rebase to NSPR 4.34 for firefox 102Y��LaU|Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��Ka7|Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31
`�U��*�5`�P��\k�7~Elio Maldonado <emaldona@redhat.com> - 4.10.8-2V �- Resolves: Bug 1269363 - CVE-2015-7183
- nspr: heap-buffer overflow in PL_ARENA_ALLOCATE can lead to crash (under ASAN), potential memory corruption���[�	�!}Frantisek Krenzelok <krenzelok.frantisek@gmail.com> - 4.35.0-1d� �- Rebase to NSPR 4.35 for firefox 115
- Move from deprecate %patchN formatW��ZeM}Bob Relyea <rrelyea@redhat.com> - 4.34.0-3.1b�c@- Actually apply the patch in -3|��Ya�}Bob Relyea <rrelyea@redhat.com> - 4.34.0-3b�@- return the AI_PASSIVE result so servers can connect to all
  clientsI��Xa5}Bob Relyea <rrelyea@redhat.com> - 4.34.0-2b��@- Fix coverity issueZ��WaW}Bob Relyea <rrelyea@redhat.com> - 4.34.0-1b��@- Rebase to NSPR 4.34 for firefox 102Y��VaU}Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��Ua7}Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31
	�W�o�3�R��e]K~Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��d]7~Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��c]7~Daiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21H��b]7~Daiki Ueno <dueno@redhat.com> - 4.19.0-1Z�1@- Rebase to NSPR 4.19T��akA~Daiki Ueno <dueno@redhat.com> - 4.19.0-0.1.betaZ��@- Rebase to NSPR 4.19 BETAH��`]7~Daiki Ueno <dueno@redhat.com> - 4.17.0-1Y�p@- Rebase to NSPR 4.17H��_]7~Daiki Ueno <dueno@redhat.com> - 4.16.0-1Y�n@- Rebase to NSPR 4.16L��^a;~Daiki Ueno <dueno@redhat.com> - 4.13.1-1.0X��@- Rebase to NSPR 4.13.1�$��]k�_~Elio Maldonado <emaldona@redhat.com> - 4.11.0-1V��- Rebase to NSPR 4.11
- Resolves: Bug 1297941 - Rebase RHEL 7.3 to NSS 3.21 in preparation for Firefox 45
	^+�2��B��^H��n]7Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��m]7Daiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21H��l]7Daiki Ueno <dueno@redhat.com> - 4.19.0-1Z�1@- Rebase to NSPR 4.19T��kkADaiki Ueno <dueno@redhat.com> - 4.19.0-0.1.betaZ��@- Rebase to NSPR 4.19 BETAH��j]7Daiki Ueno <dueno@redhat.com> - 4.17.0-1Y�p@- Rebase to NSPR 4.17H��i]7Daiki Ueno <dueno@redhat.com> - 4.16.0-1Y�n@- Rebase to NSPR 4.16L��ha;Daiki Ueno <dueno@redhat.com> - 4.13.1-1.0X��@- Rebase to NSPR 4.13.1�$��gk�_Elio Maldonado <emaldona@redhat.com> - 4.11.0-1V��- Rebase to NSPR 4.11
- Resolves: Bug 1297941 - Rebase RHEL 7.3 to NSS 3.21 in preparation for Firefox 45�P��fk�7Elio Maldonado <emaldona@redhat.com> - 4.10.8-2V �- Resolves: Bug 1269363 - CVE-2015-7183
- nspr: heap-buffer overflow in PL_ARENA_ALLOCATE can lead to crash (under ASAN), potential memory corruption
;�^�n"��2��;H��z]7�Daiki Ueno <dueno@redhat.com> - 4.16.0-1Y�n@- Rebase to NSPR 4.16Y��yaU�Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��xa7�Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��wa7�Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��v]K�Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��u]7�Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��t]7�Daiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21H��s]7�Daiki Ueno <dueno@redhat.com> - 4.19.0-1Z�1@- Rebase to NSPR 4.19T��rkA�Daiki Ueno <dueno@redhat.com> - 4.19.0-0.1.betaZ��@- Rebase to NSPR 4.19 BETAH��q]7�Daiki Ueno <dueno@redhat.com> - 4.17.0-1Y�p@- Rebase to NSPR 4.17H��p]7�Daiki Ueno <dueno@redhat.com> - 4.16.0-1Y�n@- Rebase to NSPR 4.16R��o]KDaiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tag
;�\�x"��)��;R��]K�Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��]7�Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��]7�Daiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21Y��aU�Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��a7�Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��a7�Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��]K�Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��]7�Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��~]7�Daiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21H��}]7�Daiki Ueno <dueno@redhat.com> - 4.19.0-1Z�1@- Rebase to NSPR 4.19T��|kA�Daiki Ueno <dueno@redhat.com> - 4.19.0-0.1.betaZ��@- Rebase to NSPR 4.19 BETAH��{]7�Daiki Ueno <dueno@redhat.com> - 4.17.0-1Y�p@- Rebase to NSPR 4.17
E�d�\��5��EJ��a7�Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��]K�Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��]7�Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25H��]7�Daiki Ueno <dueno@redhat.com> - 4.21.0-1\�+@- Rebase to NSPR 4.21W��
eM�Bob Relyea <rrelyea@redhat.com> - 4.34.0-3.1b�c@- Actually apply the patch in -3|��a��Bob Relyea <rrelyea@redhat.com> - 4.34.0-3b�@- return the AI_PASSIVE result so servers can connect to all
  clientsI��a5�Bob Relyea <rrelyea@redhat.com> - 4.34.0-2b��@- Fix coverity issueZ��
aW�Bob Relyea <rrelyea@redhat.com> - 4.34.0-1b��@- Rebase to NSPR 4.34 for firefox 102Y��	aU�Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��a7�Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��a7�Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30
4�U��*��-��4Y��aU�Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��a7�Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��a7�Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��]K�Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��]7�Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25W��eM�Bob Relyea <rrelyea@redhat.com> - 4.34.0-3.1b�c@- Actually apply the patch in -3|��a��Bob Relyea <rrelyea@redhat.com> - 4.34.0-3b�@- return the AI_PASSIVE result so servers can connect to all
  clientsI��a5�Bob Relyea <rrelyea@redhat.com> - 4.34.0-2b��@- Fix coverity issueZ��aW�Bob Relyea <rrelyea@redhat.com> - 4.34.0-1b��@- Rebase to NSPR 4.34 for firefox 102Y��aU�Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��a7�Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31

E�U�z��>��EY��&aU�Bob Relyea <rrelyea@redhat.com> - 4.32.0-1a#��- Rebase to NSPR 4.32 for firefox 91J��%a7�Bob Relyea <rrelyea@redhat.com> - 4.31.0-1`�9@- Rebase to NSPR 4.31J��$a7�Bob Relyea <rrelyea@redhat.com> - 4.30.0-1`��@- Rebase to NSPR 4.30R��#]K�Daiki Ueno <dueno@redhat.com> - 4.25.0-2_�@- Rebuild to fix wrong dist tagH��"]7�Daiki Ueno <dueno@redhat.com> - 4.25.0-1^��- Rebase to NSPR 4.25���!�	�!�Frantisek Krenzelok <krenzelok.frantisek@gmail.com> - 4.35.0-1d� �- Rebase to NSPR 4.35 for firefox 115
- Move from deprecate %patchN formatW�� eM�Bob Relyea <rrelyea@redhat.com> - 4.34.0-3.1b�c@- Actually apply the patch in -3|��a��Bob Relyea <rrelyea@redhat.com> - 4.34.0-3b�@- return the AI_PASSIVE result so servers can connect to all
  clientsI��a5�Bob Relyea <rrelyea@redhat.com> - 4.34.0-2b��@- Fix coverity issueZ��aW�Bob Relyea <rrelyea@redhat.com> - 4.34.0-1b��@- Rebase to NSPR 4.34 for firefox 102
��U�z�I��8��-a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-5]S��- Fix pkix name constraints processing to only process the common name if the
  certusage you are checking is IPSEC or SSL Server.���,a�E�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4\���- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa���+�	�!�Frantisek Krenzelok <krenzelok.frantisek@gmail.com> - 4.35.0-1d� �- Rebase to NSPR 4.35 for firefox 115
- Move from deprecate %patchN formatW��*eM�Bob Relyea <rrelyea@redhat.com> - 4.34.0-3.1b�c@- Actually apply the patch in -3|��)a��Bob Relyea <rrelyea@redhat.com> - 4.34.0-3b�@- return the AI_PASSIVE result so servers can connect to all
  clientsI��(a5�Bob Relyea <rrelyea@redhat.com> - 4.34.0-2b��@- Fix coverity issueZ��'aW�Bob Relyea <rrelyea@redhat.com> - 4.34.0-1b��@- Rebase to NSPR 4.34 for firefox 102
���8����0��3]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��2]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��1]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���0a�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��/a�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��.a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)
�P���x��8a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�8��7a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-5]S��- Fix pkix name constraints processing to only process the common name if the
  certusage you are checking is IPSEC or SSL Server.���6a�E�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4\���- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa�2��5e��Johnny Hughes <johnny@centos.org> - 3.53.1-3_��@- much thanks to both Tuomo Soini (foobar.fi) and Pat Riehecky (scientificlinux.org)
  for finding the fix to these issues�t��4Y��Tuomo Soini <tis@foobar.fi> - 3.53.1-3_w@- Fix tests by updating PayPalEE.cert to valid one
- Fix tests to expect small primes failing rhbz#1884793
- Fix Cannot compile code with nss headers and -Werror=strict-prototypes
  rhbz#1885321

e�r+��V��:��eD��
4ea1017b5a921ab782e09ead7f9368a70cc11716ebe116ff1cbc4c7bc8cddf99D��
3645870dc323bf6f63b5757d520178a52a8a714d71e280c47014f095f2c2fe69D��
2077a5a2df3692687ac9b3f892005ec2eabe97368eec05197fbf1f961f013442D��
b53a6924f3594abaaeaa39917b0114b7f6f7dcf8df0ffe03ab3a8957ae3405c4D��
aaa6f5e10bb4f066d056589fbd2c2409c9e33e21cf5e6a20cf1c81c4de17ff57D��
c9abea6a673cf74708122a7d0f1620be7008d59c4f0a60af39850105cb52adadD�
�
4631ab28c6b9c4fb1461b0f98b9c1de4c06d08fc1e07b0e42d44f966c8d31507D��
62dcb9c05fcad8a7e7f0588dcf5a7500f9fb5e4b2cf0250f64430bd3a95b42f8D��
bc3fa21f1527e3d417bd20356fdc535325869f41a856887ba3fa0883c308713eD�
�
502759520df3c6fcc6838d5f2158c4dab3f4aada9ff9455473132a5be1808ca0D�	�
1eb686e8a290603d5223ec70ee6fb522d7289f9e573548836dfd8858a99a978bD��
1b137d71d271e1a3ea8da17a90f65d981a49674c7781a7491eb07f02fd41cee6D��
da19e809bc2749d2727d0bb85172cda681f9f2751137a52646ab7ebe32ebdf66
fT�g_f�t��>Y��Tuomo Soini <tis@foobar.fi> - 3.53.1-3_w@- Fix tests by updating PayPalEE.cert to valid one
- Fix tests to expect small primes failing rhbz#1884793
- Fix Cannot compile code with nss headers and -Werror=strict-prototypes
  rhbz#1885321�0��=]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��<]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��;]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���:a�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��9a�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)
,I�!�4�,�0��E]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��D]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��C]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���Ba�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��Aa�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��@a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�2��?e��Johnny Hughes <johnny@centos.org> - 3.53.1-3_��@- much thanks to both Tuomo Soini (foobar.fi) and Pat Riehecky (scientificlinux.org)
  for finding the fix to these issues
Bg�
��B���La�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��Ka�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��Ja��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)���Ia�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��Ha{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��Gac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���Fa�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.
��`��>����Sa�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��Ra{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��Qac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���Pa�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��O]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��N]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��M]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1
iK�N�U�iI��[a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��Za?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��Ya5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���Xa�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��Wa{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��Vac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���Ua�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��T]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles
"t��"���ba�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��aa{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��`ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���_a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��^]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles�"��]a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a=�- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���\a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processing
t�a��H�tl��ja{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��iac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���ha�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�"��ga�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a=�- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���fa�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��ea5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��da?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��ca5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
rw*���Xr���ra�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.I��qa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��pa�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���oa�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��na5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��ma?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��la5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���ka�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-proto
	7�,�V�+�7I��{a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��za�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���ya�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��xa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��wa?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��va5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���ua�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��ta{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��sac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.
	c�a���2�cm��a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��~a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��}a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��|a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
	�^�3�?�Z��
aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��
a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���	a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66Q��aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.
	[�:��h�[Z��aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsQ��aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression below
	m�:��O��m^��a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsH��a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression below
	P�1��]�PZ��(aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��'a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��&a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��%a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���$a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingH��#a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��"aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��!a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ�� aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite
	3�:�����3^��1a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��0a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��/a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���.a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processing���-a�/�Bob Relyea <rrelyea@redhat.com> - 3.90.0-2d��- fix EMS bug
- disbale ECH
- fix gtests in spec file
- restore missing test caseI��,a5�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d��@- Rebase to NSS 3.90H��+a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��*aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��)a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression below
c�1��C� c�8��9a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-5]S��- Fix pkix name constraints processing to only process the common name if the
  certusage you are checking is IPSEC or SSL Server.���8a�E�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4\���- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa���7a�/�Bob Relyea <rrelyea@redhat.com> - 3.90.0-2d��- fix EMS bug
- disbale ECH
- fix gtests in spec file
- restore missing test caseI��6a5�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d��@- Rebase to NSS 3.90H��5a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��4aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��3a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��2aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite

e�r+��V��:��eD� �
02f9db11a20bee6dfde81279441c6b86bc5047ad9fc1b6243b5b1ed6d3a1608aD��
78923c044dee6993ff55684229e266296bd04b772f4c47761a0e197bf8ddada6D��
4b35cc37198ac1275db864e9be35ef4048337b891115e699165a85a519fdd7a2D��
5ca34c751582faa8c936ab6598cc2492a6b1853a7b3f019060e590b86e7b9ee3D��
abf2f157e578b874738281a5fe3e278b9d6fe5f4a908e78a8a0786e24009222dD��
c8da0723eb57ace188d0bd03e37e8827a42913c10542cfa8bd6bd8817a724916D��
d1faf007d61466191ae5ad07935839a8673f5e51b6c24bd3465e5503da56f20bD��
956c25bea6f5a263d7233838769732e4650583ff222b531bdab7067f4a6a0b6fD��
d4c9bba0cf86d681a086b4238c954468eb5e278505324118d68938f5918c7a89D��
36cbb6317ac31a74661962dff6944ef7630e01a16c0c3426f1e58b4a6dbd259eD��
3171334483be56275cf95caaad81576b0625965bf82c2a8cb91be41784e991d1D��
534afd073131ca7dea6b8cf23565728f280489bcc5783d53e1fc4f3e92bef942D��
ef051c1a4e1bb137134383ae56882cf3cd061c02e00abb7c467c618029133545
���8����0��?]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��>]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��=]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���<a�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��;a�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��:a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)
�P���x��Da��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�8��Ca��Bob Relyea <rrelyea@redhat.com> - 3.44.0-5]S��- Fix pkix name constraints processing to only process the common name if the
  certusage you are checking is IPSEC or SSL Server.���Ba�E�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4\���- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa�2��Ae��Johnny Hughes <johnny@centos.org> - 3.53.1-3_��@- much thanks to both Tuomo Soini (foobar.fi) and Pat Riehecky (scientificlinux.org)
  for finding the fix to these issues�t��@Y��Tuomo Soini <tis@foobar.fi> - 3.53.1-3_w@- Fix tests by updating PayPalEE.cert to valid one
- Fix tests to expect small primes failing rhbz#1884793
- Fix Cannot compile code with nss headers and -Werror=strict-prototypes
  rhbz#1885321
fT�g_f�t��JY��Tuomo Soini <tis@foobar.fi> - 3.53.1-3_w@- Fix tests by updating PayPalEE.cert to valid one
- Fix tests to expect small primes failing rhbz#1884793
- Fix Cannot compile code with nss headers and -Werror=strict-prototypes
  rhbz#1885321�0��I]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��H]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��G]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���Fa�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��Ea�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)
,I�!�4�,�0��Q]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��P]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��O]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���Na�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��Ma�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��La��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�2��Ke��Johnny Hughes <johnny@centos.org> - 3.53.1-3_��@- much thanks to both Tuomo Soini (foobar.fi) and Pat Riehecky (scientificlinux.org)
  for finding the fix to these issues
Bg�
��B���Xa�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��Wa�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��Va��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)���Ua�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��Ta{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��Sac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���Ra�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.
��`��>����_a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��^a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��]ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���\a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��[]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��Z]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��Y]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1
iK�N�U�iI��ga5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��fa?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��ea5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���da�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��ca{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��bac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���aa�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��`]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles
"t��"���na�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��ma{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��lac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���ka�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��j]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles�"��ia�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a=�- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���ha�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processing
t�a��H�tl��va{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��uac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���ta�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�"��sa�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a=�- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���ra�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��qa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��pa?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��oa5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
rw*���Xr���~a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.I��}a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��|a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���{a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��za5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��ya?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��xa5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���wa�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protobR0)RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������/���/���(/�4/Ă�?/ł�J/Ƃ�T/ǂ�\/Ȃ�e/ɂ�n/ʂ�z/˂�/̂�/͂�/΂�&/ς�-/Ђ�3/т�8/ӂ�>/Ԃ�E/Ղ�L/ւ�S/ׂ�[/؂�b/ق�j/ڂ�r/ۂ�{/܂�/݂�
/ނ�/߂�/�(/Ⴔ1/₴9/䂴?/傴D/悴J/炴Q/肴X/邴_/ꂴg/내n/살v/킴~//�/�/�"/�+/�4/���=/���F/���N/���V/���\/���b/���i/���o/���v/���}0��0��0��0��0��%0��.0��70��@0	��I0
��R0��[0��e0
��l0��s0��y0��0��0��0��0��0��0��%0��,0��40��;0��C0��I0��O0��V0��\0 ��a0!��g0"��n0#��u0$��|0%��0&��0'��0(��
	7�,�V�+�7I��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.
	c�a���2�cm��a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��
a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��
a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��	a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
	�^�3�?�Z��aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66Q��aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.
	[�:��h�[Z��"aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��!a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI�� a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsQ��aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression below
	m�:��O��m^��+a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��*a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��)a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���(a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��'a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��&a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsH��%a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��$aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��#a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression below
	P�1��]�PZ��4aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��3a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��2a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��1a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���0a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingH��/a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��.aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��-a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��,aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite
	3�:�����3^��=a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��<a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��;a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���:a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processing���9a�/�Bob Relyea <rrelyea@redhat.com> - 3.90.0-2d��- fix EMS bug
- disbale ECH
- fix gtests in spec file
- restore missing test caseI��8a5�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d��@- Rebase to NSS 3.90H��7a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��6aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��5a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression below

e�r+��V��:��eD�-�
74b63c28e824b50dfd7c42b254636029cedf22dfe885fc3017c73533680e434eD�,�
0328daa881db258b5d0dcafa3d0c1f8bb4e2dd5034a74b2938d69c73b0a7dcbdD�+�
feb6b437532dab8f5310701ed22fb3134f9e87f87fd7786802bcadba0cdeb3d6D�*�
821ad7280fd9322e235862f73d1cb6c433fe48e14911cbc39141b2df2732bc01D�)�
034c9033d1e0262176555d3b7dc0f189885361d53ccb042ac04e98012e34b040D�(�
fee0270ebb6d96079cd62a8292ee140622ec167fe229396b49b1691c2d2d6e74D�'�
64a40a4e60c03c1f3ad8929d3659cd713e7b869eb726d9f8cabf080ed73dfa6bD�&�
13fc5f5dbb279c4648c8bffcbb00b2e14727ae6ef9cbae25e6728251a8b2644eD�%�
1d64801f6bea041340ff67b2461569f13a202632b966b9ca8426a8027c14353bD�$�
0d33e36e3c9f478cdd404e7a15bdde7f8470d1267ae29e4c3127e06d2646a3b8D�#�
6f6a33848cbd89fc9434117312104d1e8bcbc065f6821b6b24ebf04def7bf36dD�"�
3cc12df2dbbe22e4c3186fdf10fdc4f4f176bdac5296996b92aafd1019a8fab1D�!�
e9f64d411062686481236a557581f3593d4706cf5f1fd5f942dc86a107e85be4
	��1��C�k��g��F[w�Kamil Dudka <kdudka@redhat.com> 1.0.3-1X���- update to latest upstream bugfix release (#1427917)q��E[�	�Kamil Dudka <kdudka@redhat.com> 1.0.2-2X��@- explicitly conflict with all nss builds with bundled nss-pemH��D[9�Kamil Dudka <kdudka@redhat.com> 1.0.2-1X�A�- imported into RHEL-7���Ca�/�Bob Relyea <rrelyea@redhat.com> - 3.90.0-2d��- fix EMS bug
- disbale ECH
- fix gtests in spec file
- restore missing test caseI��Ba5�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d��@- Rebase to NSS 3.90H��Aa3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��@aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��?a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��>aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite
ky��.�G�kH��N[9�Kamil Dudka <kdudka@redhat.com> 1.0.2-1X�A�- imported into RHEL-7���Mk�-�Kamil Dudka <kdudka@redhat.com> 1.0.3-7.el7_9.1d6�@- support a scenario where 2 distinct encrypted private keys are used (#2121064){��L[��Kamil Dudka <kdudka@redhat.com> 1.0.3-7\v{�- reintroduce implementation of the WaitForSlotEvent callback (#1615980)d��K[q�Kamil Dudka <kdudka@redhat.com> 1.0.3-6\<y�- fix performance regression in libcurl (#1659108)k��J[�Kamil Dudka <kdudka@redhat.com> 1.0.3-5[j�@- update object ID while reusing a certificate (#1610998)^��I[e�Kamil Dudka <kdudka@redhat.com> 1.0.3-4Y��- fix missing prototypes detected by Covscanv��H[��Kamil Dudka <kdudka@redhat.com> 1.0.3-3X�:@- remove implementation of the WaitForSlotEvent callback (#1445384)���G[�+�Kamil Dudka <kdudka@redhat.com> 1.0.3-2X�O@- require at least the version of nss that nss-pem was built against (#1428965)
g� ��N�g{��V[��Kamil Dudka <kdudka@redhat.com> 1.0.3-7\v{�- reintroduce implementation of the WaitForSlotEvent callback (#1615980)d��U[q�Kamil Dudka <kdudka@redhat.com> 1.0.3-6\<y�- fix performance regression in libcurl (#1659108)k��T[�Kamil Dudka <kdudka@redhat.com> 1.0.3-5[j�@- update object ID while reusing a certificate (#1610998)^��S[e�Kamil Dudka <kdudka@redhat.com> 1.0.3-4Y��- fix missing prototypes detected by Covscanv��R[��Kamil Dudka <kdudka@redhat.com> 1.0.3-3X�:@- remove implementation of the WaitForSlotEvent callback (#1445384)���Q[�+�Kamil Dudka <kdudka@redhat.com> 1.0.3-2X�O@- require at least the version of nss that nss-pem was built against (#1428965)g��P[w�Kamil Dudka <kdudka@redhat.com> 1.0.3-1X���- update to latest upstream bugfix release (#1427917)q��O[�	�Kamil Dudka <kdudka@redhat.com> 1.0.2-2X��@- explicitly conflict with all nss builds with bundled nss-pem
Tp���T���\a�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��[a�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��Za��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�8��Ya��Bob Relyea <rrelyea@redhat.com> - 3.44.0-5]S��- Fix pkix name constraints processing to only process the common name if the
  certusage you are checking is IPSEC or SSL Server.���Xa�E�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4\���- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa���Wk�-�Kamil Dudka <kdudka@redhat.com> 1.0.3-7.el7_9.1d6�@- support a scenario where 2 distinct encrypted private keys are used (#2121064)
d�`���d���ba�E�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4\���- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa�2��ae��Johnny Hughes <johnny@centos.org> - 3.53.1-3_��@- much thanks to both Tuomo Soini (foobar.fi) and Pat Riehecky (scientificlinux.org)
  for finding the fix to these issues�t��`Y��Tuomo Soini <tis@foobar.fi> - 3.53.1-3_w@- Fix tests by updating PayPalEE.cert to valid one
- Fix tests to expect small primes failing rhbz#1884793
- Fix Cannot compile code with nss headers and -Werror=strict-prototypes
  rhbz#1885321�0��_]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��^]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��]]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1
&C�{.�&�0��i]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��h]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��g]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���fa�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��ea�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��da��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�8��ca��Bob Relyea <rrelyea@redhat.com> - 3.44.0-5]S��- Fix pkix name constraints processing to only process the common name if the
  certusage you are checking is IPSEC or SSL Server.
;P�(�;I��o]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���na�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��ma�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��la��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�2��ke��Johnny Hughes <johnny@centos.org> - 3.53.1-3_��@- much thanks to both Tuomo Soini (foobar.fi) and Pat Riehecky (scientificlinux.org)
  for finding the fix to these issues�t��jY��Tuomo Soini <tis@foobar.fi> - 3.53.1-3_w@- Fix tests by updating PayPalEE.cert to valid one
- Fix tests to expect small primes failing rhbz#1884793
- Fix Cannot compile code with nss headers and -Werror=strict-prototypes
  rhbz#1885321
���_���x��va��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)���ua�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��ta{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��sac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���ra�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��q]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��p]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by default
bT�g_�b`��}ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���|a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��{]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��z]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��y]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���xa�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��wa�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)
\�R�U�\���a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles���a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��~a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.
/�a��,�/`��ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��
]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles�"��	a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a=�- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
O��h��O���a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a=�- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��
a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.
	7�,�V�+�7I��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.
�g�
�k����%a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��$a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��#a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��"a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���!a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol�� a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.
	>Y�m ���>^��.a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��-a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��,a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���+a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��*a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��)a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��(a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��'a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��&a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.
	p�1��=�d�pI��7a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��6a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���5a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��4a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��3a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��2a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66Q��1aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��0a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��/aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite
	[�@�z(�O�[I��@a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��?a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���>a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��=a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��<a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsQ��;aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��:a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��9aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��8a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module ID

e�r+��V��:��eD�:�
790b5c852e13d4b60fb3844c4e81a28b8500aad7ad521d07ead00631d519881fD�9�
63b78d16ff05658c1581a33fcbba6aef6d587165c3310243fa9aef6ae820ac57D�8�
2c9e65472d82364af217344ab0110865c917422d27b922d937affb01473027fbD�7�
e34c0ad20744217c96add514c92d0cbc2a8b8784c76ab519306475684082bc7bD�6�
801c2058a333ace01ba2317b6297c530b615d43b97c7c076ab0842fec5a12dfbD�5�
72669bb54a42016961de3ef8bfcc2ec60aef58f9897e239a330679bdcf828e86D�4�
55e1830d8be44d9b010552a3d903913d14a27e26eafcd4cfb45fd3106ce59c32D�3�
47b2d4db641e0cb05ac7567ff73f91567cff400dec134469086e86b41ebe1072D�2�
72e40ba785c31c8259b00c65df653253a9d5ea138de40dbb02d655d32830c0c4D�1�
b8aa34987f1faadf2c76fb58239d11cf1222dba253fc175f21607f57bb0e908cD�0�
1140e209585f7f6f824c94f984cfe8ac43ee1498adcb74c031ce6e8e712d43b1D�/�
458d8d0ed05bdaad8b13b09c5d860beda84b34bf0ab4c5673194584865a68103D�.�
acd182fdbf43efaafafe21332a32ca669b688ad9760f5af2cbe33be296901606
	\�@�z.��\�"��Ia�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���Ha�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��Ga5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��Fa?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsH��Ea3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��DaE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��Ca}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��BaW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��Aa_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module ID
	a�Q��-�U�aI��Ra5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��Qa�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���Pa�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingH��Oa3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��NaE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��Ma}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��LaW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��Ka_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��Ja5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527
	"�@�z.�U�"�"��[a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���Za�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processing���Ya�/�Bob Relyea <rrelyea@redhat.com> - 3.90.0-2d��- fix EMS bug
- disbale ECH
- fix gtests in spec file
- restore missing test caseI��Xa5�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d��@- Rebase to NSS 3.90H��Wa3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��VaE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��Ua}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��TaW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��Sa_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module ID

>�Q��-���>p��e]��Daiki Ueno <dueno@redhat.com> - 3.44.0-6]�@- Fix fipstest to use the standard mechanism for TLS 1.2 PRFR��daG�Bob Relyea <rrelyea@redhat.com> - 3.44.0-5\���- Add pub from priv mechanism���ca�/�Bob Relyea <rrelyea@redhat.com> - 3.90.0-2d��- fix EMS bug
- disbale ECH
- fix gtests in spec file
- restore missing test caseI��ba5�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d��@- Rebase to NSS 3.90H��aa3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��`aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��_a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��^aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��]a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��\a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527
R��_C�Re��l]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���k]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���ja�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.b��i]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��h]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1n��ga�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�- Fix segfault on empty or malformed ecdh keys (#1777712)x��fa��Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)
���&�8��b��s]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��r]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1n��qa�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�- Fix segfault on empty or malformed ecdh keys (#1777712)x��pa��Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)p��o]��Daiki Ueno <dueno@redhat.com> - 3.44.0-6]�@- Fix fipstest to use the standard mechanism for TLS 1.2 PRFR��naG�Bob Relyea <rrelyea@redhat.com> - 3.44.0-5\���- Add pub from priv mechanism���ma�7�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
0�\���0b��y]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��x]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���wa�7�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��v]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���u]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���ta�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.
/�\���/b��ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��~a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���}a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��|]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���{]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���za�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.
!���.�!e��]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���a�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.b��]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1�M��a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67
���<��e��]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change�M��a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��
a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��	ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
��<��M��a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���
a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
_��2�p_���a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous changeU��aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pber��a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm
`�M.�`r��a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm�M��a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
T�A�"�Tr��%a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��$a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��#a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm�M��"a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��!a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b�� ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptU��aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pbe
�Y
�9��M��,a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��+a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��*ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptg��)aq�Bob Relyea <rrelyea@redhat.com> - 3.90.0-6d�h�- Fix double free issue when using dsa check filesK��(a9�Bob Relyea <rrelyea@redhat.com> - 3.90.0-5d�h�- Fix pbkdf indicatorsJ��'a7�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90.U��&aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pbe
{��2��<�{R��4aG�Bob Relyea <rrelyea@redhat.com> - 3.44.0-5\���- Add pub from priv mechanismg��3aq�Bob Relyea <rrelyea@redhat.com> - 3.90.0-6d�h�- Fix double free issue when using dsa check filesK��2a9�Bob Relyea <rrelyea@redhat.com> - 3.90.0-5d�h�- Fix pbkdf indicatorsJ��1a7�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90.U��0aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pber��/a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��.a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��-a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm
G��Q��G���;]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���:a�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.b��9]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��8]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1n��7a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�- Fix segfault on empty or malformed ecdh keys (#1777712)x��6a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)p��5]��Daiki Ueno <dueno@redhat.com> - 3.44.0-6]�@- Fix fipstest to use the standard mechanism for TLS 1.2 PRF
��1�A��b��C]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��B]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1n��Aa�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�- Fix segfault on empty or malformed ecdh keys (#1777712)x��@a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)p��?]��Daiki Ueno <dueno@redhat.com> - 3.44.0-6]�@- Fix fipstest to use the standard mechanism for TLS 1.2 PRFR��>aG�Bob Relyea <rrelyea@redhat.com> - 3.44.0-5\���- Add pub from priv mechanism���=a�7�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��<]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change

e�r+��V��:��eD�G�
d7d05bd3b99401da823317bb7e6c1a90595816c4f9e5eb8c21d12f8f3f5ebf66D�F�
be995dc375c67dc51acf2c699baca627283b58d86d70153bb13df3b2549662d4D�E�
23872416b1e3fe4aeba522975174df37b9536f0c3c2394d432e0af7788af80dfD�D�
e86b714d0c1f2ae4a38a0244f16cb28ce588dd6802d4a4341ea79e52e3cd5799D�C�
8d8b3cb385da57417205c3d9356d8976758920c3bc55610e49f55d64121a248eD�B�
8aa95e78921113508fef7b52fbf20b5c2731cc1b9798d653a482bf00087462c1D�A�
1098fb31b298327e754a43c15283034ffb6c1138ed0b9ba0e5547441891481dcD�@�
313127128dfeab1a78ae930c9890aa99789694b8356bad44d6b56c72932a543cD�?�
8519d3cb6d82e68f50832778a44e1f676b5fbb85f891a07751e7f2c0767112bcD�>�
f12b43b7660d30cf43f854e59aded17e8167850a81e00bc36ff1f71c6366769eD�=�
386bf9ac5cf0faeb2ff2784055e2032e081a36e7187d99c1111cf03fac18d874D�<�
8547960e747f135c2514a024771cf2225c649ca891512c2dd1069a06138796a8D�;�
bc8180bbf3602244c3a34b6a576fcd6db7b1b882332f6a22471bbdb479835f92
0�\���0b��I]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��H]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���Ga�7�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��F]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���E]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���Da�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.
/�\���/b��Oag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��Na5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���Ma�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��L]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���K]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���Ja�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.
!���.�!e��V]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���U]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���Ta�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.b��S]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��R]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1�M��Qa�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��Pa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67
���<��e��\]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change�M��[a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��Za5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��Yag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��Xa5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���Wa�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
��<��M��aa�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��`a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��_ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��^a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���]a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
_��2�p_���ga�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��f]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous changeU��eaM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pber��da��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��ca-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��ba�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm
`�M.�`r��na��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��ma-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��la�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm�M��ka�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��ja5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��iag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��ha5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
T�A�"�Tr��ua��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��ta-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��sa�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm�M��ra�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��qa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��pag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptU��oaM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pbe
�Y
�9��M��|a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��{a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��zag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptg��yaq�Bob Relyea <rrelyea@redhat.com> - 3.90.0-6d�h�- Fix double free issue when using dsa check filesK��xa9�Bob Relyea <rrelyea@redhat.com> - 3.90.0-5d�h�- Fix pbkdf indicatorsJ��wa7�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90.U��vaM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pbe
{��2��<�{R��aG�Bob Relyea <rrelyea@redhat.com> - 3.44.0-5\���- Add pub from priv mechanismg��aq�Bob Relyea <rrelyea@redhat.com> - 3.90.0-6d�h�- Fix double free issue when using dsa check filesK��a9�Bob Relyea <rrelyea@redhat.com> - 3.90.0-5d�h�- Fix pbkdf indicatorsJ��a7�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90.U��aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pber��a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��~a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��}a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm
G��Q��G���]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���
a�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.b��	]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1n��a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�- Fix segfault on empty or malformed ecdh keys (#1777712)x��a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)p��]��Daiki Ueno <dueno@redhat.com> - 3.44.0-6]�@- Fix fipstest to use the standard mechanism for TLS 1.2 PRF
��1�A��b��]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1n��a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�- Fix segfault on empty or malformed ecdh keys (#1777712)x��a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)p��]��Daiki Ueno <dueno@redhat.com> - 3.44.0-6]�@- Fix fipstest to use the standard mechanism for TLS 1.2 PRFR��aG�Bob Relyea <rrelyea@redhat.com> - 3.44.0-5\���- Add pub from priv mechanism���
a�7�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change
0�\���0b��]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���a�7�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���a�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.
/�\���/b��ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���a�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.
!���.�!e��&]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���%]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���$a�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.b��#]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��"]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1�M��!a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI�� a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67
���<��e��,]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change�M��+a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��*a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��)ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��(a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���'a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
��<��M��1a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��0a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��/ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��.a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���-a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
_��2�p_���7a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��6]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous changeU��5aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pber��4a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��3a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��2a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm
`�M.�`r��>a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��=a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��<a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm�M��;a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��:a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��9ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��8a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
T�A�"�Tr��Ea��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��Da-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��Ca�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm�M��Ba�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��Aa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��@ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptU��?aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pbe

e�r+��V��:��eD�T�
98f975d1354a7cc4711afccd61e1974d67622fdcd82305c34e00b404ab02ea8aD�S�
91e11d6d33aef2e3286d36cad20e968159d1995461d24cfd238bc15aa535639cD�R�
48329854b7d3d8bc442c5246bb0589aaffd665388bbecfc7c00032cfffabb222D�Q�
fee8dc3a19870d83d686d8f123acfabb5dcca85f4ee2450ffe3dbd5f3b132a54D�P�
f5e6524f1f2a9dcc72ebf9399a52dc24da1e60c30002c88d69c630e49623aac1D�O�
606cd78f5ca90a81ab3e934fbd5a9355ef4e5232694e0583575fe2c6144e00daD�N�
3b52c38e47ee82671fa761bae2755fd870054dc377cb23f09b0dda2a5da96a65D�M�
3d9a71ffb2359ea5a0dc6d4ed6231ba9e22038c3542aa2e129564b7029b25277D�L�
533e33c4dc57038b0d5c6ee8639e010a745908371d1295b11c0afcfbabbf8231D�K�
9cda3404dd4c70ddebe5fc092534a2952e3c6f66ae3e9452bbdfded07730a7e5D�J�
d81caf81254734559eabc40be6eb6cddaeb393b4e93b64804cb596861d688776D�I�
4499296b0da4f8a6353fc0b32880c2dd463d4a440d98446b29fd4d12a5a2ed28D�H�
b7e366f21ddcc468fdf5911183613253aa34811a255f3ce61359b728e281b233
�Y
�9��M��La�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��Ka5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��Jag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptg��Iaq�Bob Relyea <rrelyea@redhat.com> - 3.90.0-6d�h�- Fix double free issue when using dsa check filesK��Ha9�Bob Relyea <rrelyea@redhat.com> - 3.90.0-5d�h�- Fix pbkdf indicatorsJ��Ga7�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90.U��FaM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pbe
{��2��<�{R��TaG�Bob Relyea <rrelyea@redhat.com> - 3.44.0-5\���- Add pub from priv mechanismg��Saq�Bob Relyea <rrelyea@redhat.com> - 3.90.0-6d�h�- Fix double free issue when using dsa check filesK��Ra9�Bob Relyea <rrelyea@redhat.com> - 3.90.0-5d�h�- Fix pbkdf indicatorsJ��Qa7�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90.U��PaM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pber��Oa��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��Na-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��Ma�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm
G��Q��G���[]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���Za�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.b��Y]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��X]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1n��Wa�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�- Fix segfault on empty or malformed ecdh keys (#1777712)x��Va��Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)p��U]��Daiki Ueno <dueno@redhat.com> - 3.44.0-6]�@- Fix fipstest to use the standard mechanism for TLS 1.2 PRF
��1�A��b��c]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��b]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1n��aa�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�- Fix segfault on empty or malformed ecdh keys (#1777712)x��`a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)p��_]��Daiki Ueno <dueno@redhat.com> - 3.44.0-6]�@- Fix fipstest to use the standard mechanism for TLS 1.2 PRFR��^aG�Bob Relyea <rrelyea@redhat.com> - 3.44.0-5\���- Add pub from priv mechanism���]a�7�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��\]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change
0�\���0b��i]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��h]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���ga�7�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��f]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���e]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���da�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.
/�\���/b��oag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��na5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���ma�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��l]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���k]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���ja�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.
!���.�!e��v]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change���u]�+�Daiki Ueno <dueno@redhat.com> - 3.53.1-4_P�- Fix glibc regression in the rebase; run RNG self-tests only if NSPR is linked���ta�O�Bob Relyea <rrelyea@redhat.com> - 3.53.1-3_G�@- include patches for CVE-2020-6829, CVE-2020-12400,
  and CVE-2020-12401 from upstream (ECC constant time issues).
- include patches for CVE-2020-12403 from upstream
  (CHACHA issues).
- include self-tests for kdfs and cmac.b��s]k�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_*A- Install cmac.h required by blapi.h (#1764513)I��r]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1�M��qa�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��pa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67
���<��e��|]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous change�M��{a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��za5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��yag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��xa5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���wa�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
��<��M��a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��~a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���}a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
_��2�p_���a�9�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6_[f�- turn off ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.e��]q�Daiki Ueno <dueno@redhat.com> - 3.53.1-5_P�- Fix the patch application in the previous changeU��aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pber��a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm
`�M.�`r��a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��
a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm�M��a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��
a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��	ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66
T�A�"�Tr��a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm�M��a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptU��aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pbe
�Y
�9��M��a�;�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a8��- Include softoken specific patches required by the NSS 3.67
  release including:
-  sdb timeout fixes.
-  coverity patch.
-  fixing private key macingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�9@- Rebase to NSS 3.67b��ag�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- fix crash in freebl when called by libcryptg��aq�Bob Relyea <rrelyea@redhat.com> - 3.90.0-6d�h�- Fix double free issue when using dsa check filesK��a9�Bob Relyea <rrelyea@redhat.com> - 3.90.0-5d�h�- Fix pbkdf indicatorsJ��a7�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90.U��aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pbe
:��2��<�:���$a�E�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4\���- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsag��#aq�Bob Relyea <rrelyea@redhat.com> - 3.90.0-6d�h�- Fix double free issue when using dsa check filesK��"a9�Bob Relyea <rrelyea@redhat.com> - 3.90.0-5d�h�- Fix pbkdf indicatorsJ��!a7�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90.U�� aM�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�l�- increase the cache for the pber��a��Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�x@- fix test regression: freebl crash when nss-util not loadedE��a-�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b�2@- include dbtool�
��a�5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b���- Rebase to NSS 3.79.
- add reader/writer lock on encrypted attribute access
- skip attribute verification on attributes with default values
- don't export trust objects if they are default trust objects from dbm
&C�{.�&�0��+]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��*]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��)]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���(a�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��'a�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��&a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�8��%a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-5]S��- Fix pkix name constraints processing to only process the common name if the
  certusage you are checking is IPSEC or SSL Server.
;P�(�;I��1]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���0a�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��/a�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��.a��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�2��-e��Johnny Hughes <johnny@centos.org> - 3.53.1-3_��@- much thanks to both Tuomo Soini (foobar.fi) and Pat Riehecky (scientificlinux.org)
  for finding the fix to these issues�t��,Y��Tuomo Soini <tis@foobar.fi> - 3.53.1-3_w@- Fix tests by updating PayPalEE.cert to valid one
- Fix tests to expect small primes failing rhbz#1884793
- Fix Cannot compile code with nss headers and -Werror=strict-prototypes
  rhbz#1885321
M��_��M�0��8]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles���7a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��6a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��5ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���4a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��3]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��2]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by default
�g�
�k����@a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��?a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��>a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��=a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���<a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��;a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��:ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���9a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.
wY�\�c�wI��Ha5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��Ga?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��Fa5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���Ea�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��Da{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��Cac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���Ba�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�"��Aa�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a=�- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.

e�r+��V��:��eD�a�
0cc793e2d0f59813a9e09567f1c3af4510272946883ebb48cc9cce9189664c7eD�`�
627873cfe317368f11a034089c743611ad85c7f5985f6c68ca714c1b0329eec3D�_�
794a3fb2e476acfb436f4d7da625bc3f96841861ad270f795c67ff6046875f47D�^�
1849014c019076934853ec6d7ad795b91829e59d3946c36ff4c13951f53c6a67D�]�
d2ee3c87b0f7cd858c02969d5c617afe7f2d92c540498c4ce94ecaf46e9f8f0dD�\�
e649737e5bf6a5d2b0bb6c20cbdfd046ba295e9f79765fec2800f61f3d408ac0D�[�
0db1ad475d57dd2dcf3165a763d246f2f2b899c3bc4bad744291c568d041127cD�Z�
7ed2c97dedcd344ca3d389d366a728d3d18c9b22b1f567b0d03394574fd4ba2cD�Y�
c7fd61c26b7aa8ef79e64d61f67cf2643bdfb67b8af8ac5993f3fe4e727d44e6D�X�
ebc3f9be0c742cb29c3852f630ce1ed5605f07849ea71b3f6dcad16424055700D�W�
a687f0ccd9e74160f22533e305c5bb77d33023ba63729183e338ad27461a5494D�V�
fc8271b385663f8ee5b7718d56371ca3af96ca4df7b25c4f38ff59ce2e327270D�U�
56f07c39bdea546bc3f3eb930711eb7562fbf0cd8fbcbd9f5e3f7fae8dbf2013
at��3��a�"��Pa�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���Oa�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��Na5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��Ma?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��La5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��Ka5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��Ja�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���Ia�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processing
	[�Q��-��[�"��Ya�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���Xa�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��Wa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��Va?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsQ��UaE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��Ta}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��SaW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��Ra_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��Qa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527
	a�Q��-�U�aI��ba5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��aa�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���`a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingH��_a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��^aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��]a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��\aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��[a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��Za5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527
��@�z.�U����ja�E�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4\���- Fix certutil man page
- Fix extracting a public key from a private key for dh, ec, and dsa���ia�/�Bob Relyea <rrelyea@redhat.com> - 3.90.0-2d��- fix EMS bug
- disbale ECH
- fix gtests in spec file
- restore missing test caseI��ha5�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d��@- Rebase to NSS 3.90H��ga3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��faE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��ea}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��daW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��ca_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module ID
&C�{.�&�0��q]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��p]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by defaultI��o]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���na�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��ma�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��la��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�8��ka��Bob Relyea <rrelyea@redhat.com> - 3.44.0-5]S��- Fix pkix name constraints processing to only process the common name if the
  certusage you are checking is IPSEC or SSL Server.
;P�(�;I��w]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_*@- Rebase to NSS 3.53.1���va�W�Bob Relyea <rrelyea@redhat.com> - 3.44.0-8]�B�- Increase timeout on ssl_gtest so that slow platforms can complete when
   running on a busy system.�'��ua�o�Bob Relyea <rrelyea@redhat.com> - 3.44.0-7]��@- back out out-of-bounds patch (patch for nss-softokn).
- Fix segfault on empty or malformed ecdh keys (#1777712)x��ta��Bob Relyea <rrelyea@redhat.com> - 3.44.0-6]�- Fix out-of-bounds write in NSC_EncryptUpdate (#1775911,#1775910)�2��se��Johnny Hughes <johnny@centos.org> - 3.53.1-3_��@- much thanks to both Tuomo Soini (foobar.fi) and Pat Riehecky (scientificlinux.org)
  for finding the fix to these issues�t��rY��Tuomo Soini <tis@foobar.fi> - 3.53.1-3_w@- Fix tests by updating PayPalEE.cert to valid one
- Fix tests to expect small primes failing rhbz#1884793
- Fix Cannot compile code with nss headers and -Werror=strict-prototypes
  rhbz#1885321
M��_��M�0��~]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles���}a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��|a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��{ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���za�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�0��y]��Daiki Ueno <dueno@redhat.com> - 3.53.1-3_%Y@- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cyclesO��x]E�Daiki Ueno <dueno@redhat.com> - 3.53.1-2_"�@- Disable TLS 1.3 by default
�g�
�k����a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.
wY�\�c�wI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��
a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66���a�)�Bob Relyea <rrelyea@redhat.com> - 3.53.1-7`?z@- Fix HSM load failure because of CKO_Profile
- Allow builds with strict-protol��
a{�Bob Relyea <rrelyea@redhat.com> - 3.53.1-6`3��- Update to CVE 2020-256423 TLS flood DOS attack patch.`��	ac�Bob Relyea <rrelyea@redhat.com> - 3.53.1-5`.V�- Fix CVE 2020-256423 TLS flood DOS Attack.���a�I�Bob Relyea <rrelyea@redhat.com> - 3.53.1-4`�@- Fix deadlock issue
- Fix 3 FTBS issues, 2 expired certs, one semantic change in nss-softokn.�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a=�- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.
at��3��a�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsI��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processing
	[�Q��-��[�"��a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`��- Rebase to NSS 3.67N��a?�Bob Relyea <rrelyea@redhat.com> - 3.66.0-2`Ȗ@- restore pkcs12 defaultsQ��aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527
	a�Q��-�U�aI��(a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527�"��'a�e�Bob Relyea <rrelyea@redhat.com> - 3.67.0-3a@��- revert sql default language in man pages
- fix SEC_PKCS12EnableCipher so python-nss tests will still work.���&a�/�Bob Relyea <rrelyea@redhat.com> - 3.67.0-2`�@- fix sdb timeout issue
- fix incorrect ssl alerts in Signature scheme processingH��%a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��$aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��#a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��"aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��!a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module IDI�� a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-4a�@@- fix CVE-2021-43527

Y�@�z.�U��YG��2]5�Daiki Ueno <dueno@redhat.com> - 3.36.0-1Z�1@- Rebase to NSS 3.36S��1k?�Daiki Ueno <dueno@redhat.com> - 3.36.0-0.1.betaZ��@- Rebase to NSS 3.36 BETAV��0]S�Daiki Ueno <dueno@redhat.com> - 3.34.0-2Z]�@- Recognize "ECC" flag in slotFlags���/a�/�Bob Relyea <rrelyea@redhat.com> - 3.90.0-2d��- fix EMS bug
- disbale ECH
- fix gtests in spec file
- restore missing test caseI��.a5�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d��@- Rebase to NSS 3.90H��-a3�Bob Relyea <rrelyea@redhat.com> - 3.79.0-5dx�- fix CVE-2023-0767Q��,aE�Bob Relyea <rrelyea@redhat.com> - 3.79.0-4b�?�- fix regression for pkcs12.m��+a}�Bob Relyea <rrelyea@redhat.com> - 3.79.0-3b�y@- fix crash in curl. better fix for the regression belowZ��*aW�Bob Relyea <rrelyea@redhat.com> - 3.79.0-2b���- fix regressions found in test suite^��)a_�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79
- Set FIPS Module ID

Ty.���P��TG��<]5�Daiki Ueno <dueno@redhat.com> - 3.36.0-1Z�1@- Rebase to NSS 3.36S��;k?�Daiki Ueno <dueno@redhat.com> - 3.36.0-0.1.betaZ��@- Rebase to NSS 3.36 BETAV��:]S�Daiki Ueno <dueno@redhat.com> - 3.34.0-2Z]�@- Recognize "ECC" flag in slotFlagsI��9]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��8a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���7a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��6a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��5]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��4]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���3a�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945

3y.���P~3G��F]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���Ea�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945G��D]5�Daiki Ueno <dueno@redhat.com> - 3.36.0-1Z�1@- Rebase to NSS 3.36I��C]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��Ba�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���Aa�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��@a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��?]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��>]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���=a�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945

e�r+��V��:��eD�n�
ac3b19c2af6397ecfc8da1ca8a214b082e2537deb956d6f9ef387d52189be60aD�m�
19978c4af00a791c32ebd350c7567fcaa35f1777bf2095ed486565c265b574f7D�l�
0c048c74887e157b97b761a85580b46558525fc2a03b50627c102edbdffe5e76D�k�
b1ef52251919f4f18e97753ef2b6c690ce946d73749b031333749d21518f5096D�j�
117dfa1e07c65b202f4bbd0243e69bb5e24c7be31b9f971550d6ed083315bdc9D�i�
9e0df1a28efc20a09397d8fda7acd78003130bd6e24eaa47905a3a1c11b8fd1bD�h�
2872eebb01865b8ead0f4f8bb9b8cda849c0b3a564ce459640c72efad9cb6f83D�g�
f6b2698566260a93a03d412c81d071599637c1e75b05da8cabdcc3de0e4591eaD�f�
579a8660d11a9685cd885b48ee54281757a07a1f578e4d25da3e9a0fe38a378dD�e�
b58fd5d0fbbbaf80d3e0405749952cb4e46fea09ad96f495282995d6dc2f0a15D�d�
ee6eb3ef29eea0165c0b0ffc82aba7958b58d0abbb0174433821699be8a41789D�c�
b6e274e05ac34f9451986e5f375b66cef94037ebc8c2b402675b73d23033f6d4D�b�
8d96cac84dd7d2d8bf80953662039db4ad42350b6281599a0f5b97a679b9c4b2
 �h�o"��=�k G��Q]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��P]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���Oa�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945G��N]5�Daiki Ueno <dueno@redhat.com> - 3.36.0-1Z�1@- Rebase to NSS 3.36I��Ma5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��La5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��K]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��Ja�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���Ia�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��Ha5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��G]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44

i�,�m �L�iI��[a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��Z]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��Y]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���Xa�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945I��Wa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��Va5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��U]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��Ta�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���Sa�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��Ra5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanisms

iy�m �L�iI��ea5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��d]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��c]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���ba�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945I��aa5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79I��`a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��_a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��^]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��]a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���\a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEbR0�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������0*��&0+��,0,��10-��70.��>0/��E01��L02��T03��[04��c05��i06��o07��v08��|09��0:��0;��0<��0=��0>��$0?��+0@��10A��80B��@0C��H0E��P0F��Y0G��b0H��j0I��q0J��w0K��~0L��0M��0N��0O��0P��(0Q��20R��<0S��F0U��Q0V��[0W��e0Y��o0Z��y0[��0\��
0]��0^��"0_��,0`��60a��A0b��L0d��T0e��[0f��a0g��h0h��o0i��u0j��z0k��}0l��0m��0n��0o��	0p��0q��0r��0s��0t��0u��0v��0w��!0x��$0y��'0z��*0{��-0|��00}��30~��60��90���<0���@0���C0���F0���I0���L0���O0���R0���U0���X0���[0���^0���a0���d0���g0���j0���m

iy�m ��=�i���oa�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��na5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��m]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��l]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43I��ka5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79I��ja5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��ia5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��h]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��ga�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���fa�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKE

��A��Z��T����ya�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��xa5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��w]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��v]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43l��ua{�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90
- Replace deprecate %patchN syntaxI��ta5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79I��sa5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��ra5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��q]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��pa�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)

g�A��Z��9�g���a�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945G��]5�Daiki Ueno <dueno@redhat.com> - 3.36.0-1Z�1@- Rebase to NSS 3.36S��k?�Daiki Ueno <dueno@redhat.com> - 3.36.0-0.1.betaZ��@- Rebase to NSS 3.36 BETAV��]S�Daiki Ueno <dueno@redhat.com> - 3.34.0-2Z]�@- Recognize "ECC" flag in slotFlagsl��a{�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90
- Replace deprecate %patchN syntaxI��~a5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79I��}a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��|a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��{]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��za�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)

T�j�$�}&�T���
a�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945G��]5�Daiki Ueno <dueno@redhat.com> - 3.36.0-1Z�1@- Rebase to NSS 3.36S��k?�Daiki Ueno <dueno@redhat.com> - 3.36.0-0.1.betaZ��@- Rebase to NSS 3.36 BETAV��
]S�Daiki Ueno <dueno@redhat.com> - 3.34.0-2Z]�@- Recognize "ECC" flag in slotFlagsI��	]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43
"�j�$���o"I��a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���a�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945G��]5�Daiki Ueno <dueno@redhat.com> - 3.36.0-1Z�1@- Rebase to NSS 3.36I��]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43

ky�m �N�kI��"a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��!]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G�� ]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���a�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945G��]5�Daiki Ueno <dueno@redhat.com> - 3.36.0-1Z�1@- Rebase to NSS 3.36I��a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKE

/y�m �N�/���,a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��+a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��*]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��)]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���(a�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945I��'a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��&a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��%]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��$a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���#a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKE

i�A��Z��=�i���6a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��5a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��4]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��3]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43���2a�%�Bob Relyea <rrelyea@redhat.com> - 3.36.0-2[�k@- Update the cert verify code to allow a new ipsec usage and follow RFC 4945I��1a5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79I��0a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��/a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��.]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��-a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)
1�A��Z�w�~1I��A]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��@a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���?a�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��>a5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��=]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��<]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43I��;a5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79I��:a5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��9a5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��8]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��7a�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)
3�f�^�?��3I��La5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66I��K]9�Daiki Ueno <dueno@redhat.com> - 3.53.1-1_�@- Rebase to NSS 3.53.1n��Ja�Bob Relyea <rrelyea@redhat.com> - 3.44.0-4]��@- Fix segfault on empty or malformed ecdh keys (#1777712)���Ia�%�Bob Relyea <rrelyea@redhat.com> - 3.44.0-3\���- Add pub from priv mechanism
- ike mechanisms should not overlap with JPAKEI��Ha5�Bob Relyea <rrelyea@redhat.com> - 3.44.0-2\�9�- Add ike mechanismsG��G]5�Daiki Ueno <dueno@redhat.com> - 3.44.0-1\�@- Rebase to NSS 3.44G��F]5�Daiki Ueno <dueno@redhat.com> - 3.43.0-1\�|�- Rebase to NSS 3.43l��Ea{�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90
- Replace deprecate %patchN syntaxI��Da5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79I��Ca5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66I��Ba5�Bob Relyea <rrelyea@redhat.com> - 3.66.0-1`��@- Rebase to NSS 3.66

e�r+��V��:��eD�{�
013236ef5fa8a51d31d6d13a69fb89b023f7bf87400cfbe7442751e25e4a0c0dD�z�
ee831a9a421c3f86e21ee19ee0a9cf5254cfb534d32e86d6e52c61dba58a55f3D�y�
de9e4e230ed945c27a0bd1d2400e9562d9cfd0a8d54ca6d1bc09dda52211b3f1D�x�
ebcf9402d4327c9a14ef951bf3262aefce60b172528292bf1c628e54a7055235D�w�
6d1470830d621e224bc916d1ef07109d5e9c254b87795bc6bce9f712f138681eD�v�
5ea1964ea7cdad4c1675afa57a96c5cca4a574eb022294b1d38ddcc08e6c6b3dD�u�
55be553fdb6b711c94e1f41369abf744fab2d8d3938dc7af09ee75d2249c22d5D�t�
39b51aaf98eda72373e0ad8ad89a206476833813b0262e2e149bab9f2fa4e4b2D�s�
e256274cc5f1a6f7f97af45288258ffc553c2f425401d35928622845d32c4465D�r�
db0b608c42aca3d5a6652b87d0c3bce10a8ae188cd758704c3f1f4b70ea42cbdD�q�
27554b9b56bcf99ec38c5aac4a10faefaeb0b46d53264ec179036107f7c5461fD�p�
34a441b65b1e00f9aabba569dcd45ab40478d9681269cef9566513b8b0754934D�o�
067642d9046b8566ef1ed0cf884f58e8a6d4e400e732070462b2051471465a19
<�f��u<�B��Ts��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n��Ssm�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
��Rs�)�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���Qs�/�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056V��Ps=�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544l��Oa{�Bob Relyea <rrelyea@redhat.com> - 3.90.0-1d���- Rebase to NSS 3.90
- Replace deprecate %patchN syntaxI��Na5�Bob Relyea <rrelyea@redhat.com> - 3.79.0-1b��@- Rebase to NSS 3.79I��Ma5�Bob Relyea <rrelyea@redhat.com> - 3.67.0-1`�9@- Rebase to NSS 3.66
W�e�@��
��[s�)�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���Zs�/�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056���Yu�;�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500���Xu��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��Ws��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o��Vso�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��Us�W�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.
����,����au��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��`s��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o��_so�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��^s�W�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B��]s��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n��\sm�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286
d�}�V��B��hs��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n��gsm�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
��fs�)�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���es�/�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056V��ds=�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544���cu��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193���bu�;�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500
W�e�@��
��os�)�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���ns�/�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056���mu�;�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500���lu��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��ks��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o��jso�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��is�W�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.
����,����uu��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��ts��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o��sso�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��rs�W�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B��qs��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n��psm�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286
�d�rq����zq�O�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�|��yq�	�Miroslav Rezanina <mrezanin@redhat.com> - 10-2.5-3[{��- ovt-Workaround-for-false-negative-result-when-detecting.patch [bz#1601559]
- Resolves: bz#1601559
  ([ESXi][RHEL7.6] Include new open-vm-tools patches for cloud-init to work with python-2)a��xuQ�Ravindra Kumar <ravindrakumar@vmware.com> - 10.2.5-2Z��- Use tirpc for Fedora 28 onwards.���wu��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193���vu�;�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500
[��[�x��}s��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��|s�c�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��{q�y�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����y�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��y�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��~q�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
T��T���q�O�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�|��q�	�Miroslav Rezanina <mrezanin@redhat.com> - 10-2.5-3[{��- ovt-Workaround-for-false-negative-result-when-detecting.patch [bz#1601559]
- Resolves: bz#1601559
  ([ESXi][RHEL7.6] Include new open-vm-tools patches for cloud-init to work with python-2)������Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��s��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��s�c�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��q�y�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����	y�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��y�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��q�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�����q�O�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�2��m�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���
���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��s��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��s�c�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��
q�y�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����y�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��y�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��q�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
����������Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��m�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")������Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��s��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��s�c�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��q�y�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����y�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��y�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��q�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
����������Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��m�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")������Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
��x��2��!q�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)�x�� s��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)���m�!�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])
n�un���$���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���#y�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��"y�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)
�������'m�!�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���&���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��%m�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")
}44}�2��*q�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)�{��)m��Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])�G��(��
�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)
n�un���-���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���,y�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��+y�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)
�������0m�!�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���/���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��.m�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")
;44;�t��3��g�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.7d��@- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [RHEL-2413]
- Resolves: RHEL-2413
  (CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-7.9.z])�{��2m��Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])�G��1��
�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)
�����2��6m�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���5���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���4y�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)
 �� �G��9��
�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)���8m�!�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���7���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])
�e��<m�_�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.8ej�- ovt-Provide-alternate-method-to-allow-expected-pre-froze.patch [bz#2226921]
- Resolves: bz#2226921
  ([RHEL7.9][ESXi]Latest version of open-vm-tools breaks VM backups)�t��;��g�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.7d��@- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [RHEL-2413]
- Resolves: RHEL-2413
  (CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-7.9.z])�{��:m��Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])
.8��.���@q�O�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�|��?q�	�Miroslav Rezanina <mrezanin@redhat.com> - 10-2.5-3[{��- ovt-Workaround-for-false-negative-result-when-detecting.patch [bz#1601559]
- Resolves: bz#1601559
  ([ESXi][RHEL7.6] Include new open-vm-tools patches for cloud-init to work with python-2)a��>uQ�Ravindra Kumar <ravindrakumar@vmware.com> - 10.2.5-2Z��- Use tirpc for Fedora 28 onwards.�C��=���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.9eC�@- ovt-Don-t-accept-tokens-with-unrelated-certs.patch [RHEL-14642]
- ovt-File-descriptor-vulnerability-in-the-open-vm-tools-v.patch [RHEL-14676]
- Resolves: RHEL-14642
  (CVE-2023-34058 open-vm-tools: SAML token signature bypass [rhel-7.9.z])
- Resolves: RHEL-14676
  (CVE-2023-34059 open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper [rhel-7.9.z])
[��[�x��Cs��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��Bs�c�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��Aq�y�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����Fy�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��Ey�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��Dq�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
T��T���Iq�O�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�|��Hq�	�Miroslav Rezanina <mrezanin@redhat.com> - 10-2.5-3[{��- ovt-Workaround-for-false-negative-result-when-detecting.patch [bz#1601559]
- Resolves: bz#1601559
  ([ESXi][RHEL7.6] Include new open-vm-tools patches for cloud-init to work with python-2)���G���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])

e�r+��V��:��eD��
53d8438b425a4358f4349cb5b43de3ceb51d10df527995c1c37a7d1598e8e8eeD��
0f703e8cc67838485cc773d2d5fbbc55f6844c4144d32644f69e6d0005d860f6D��
f72c4452b5c2bc0bf8146118cc495dcd56c62624ab38dedb3ae6ba2a0abd7a9cD��
95cd2150c007f035eadda039e10d251a6fba3aab09685ce25fd54a2cf296e7b5D��
a7bda59425c5271981f20e38206eeec1c614dac49d55e56b9e6f1d73803d442aD��
295238e79bcc60f7da37eb6e533e39f157bbafa94bbd0724124a24661cfe67f7D��
1c7643a1efa2eb22c7167b8cee83405baa0f986f5f651d3226b0e0e5a443279dD��
6a423d2e3e4b4b0cd81b2df3ad65109a6c7e435cf5f4d7b65f79f895ac7dd281D��
9d07ac1bce7ef2c7b3f3df53bb8c04ddc9c17ab0cc6bc18d729ee1c7f97f800aD��
ee53408fcafec1e4615b6bf7b7991d0eacea72066fe43c1f01e49800d46bebceD�~�
4c0f98326dda59f363bb5eed1feaf1425f58894bb5fc4394be480c3fd35ff517D�}�
029155dd11073cb7e583700a754feaab925bd20b392240a64723cb67d3a4db5bD�|�
bede1b23de7ac03e2016ec4a2b4e29cd230b29837f427b14a2d8d9c06f385151
[��[�x��Ls��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��Ks�c�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��Jq�y�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����Oy�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��Ny�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��Mq�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�����Rq�O�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�2��Qm�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���P���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��Us��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��Ts�c�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��Sq�y�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����Xy�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��Wy�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��Vq�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�������[���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��Zm�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���Y���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��^s��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��]s�c�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��\q�y�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����ay�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��`y�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��_q�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�������d���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��cm�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���b���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
��x��2��gq�u�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)�x��fs��Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)���em�!�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])
n�un���j���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���iy�9�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��hy�[�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)
�������mm�!�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���l���Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��km�y�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")
}44}�2��pq�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)�{��om��Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])�G��n��
�Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)
n�un���s��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���ry�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��qy�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)
�������vm�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���u��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��tm�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")
;44;�t��y��gMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.7d��@- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [RHEL-2413]
- Resolves: RHEL-2413
  (CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-7.9.z])�{��xm�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])�G��w��
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)
�����2��|m�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���{��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���zy�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)
 �� �G����
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)���~m�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���}��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])
�e��m�_Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.8ej�- ovt-Provide-alternate-method-to-allow-expected-pre-froze.patch [bz#2226921]
- Resolves: bz#2226921
  ([RHEL7.9][ESXi]Latest version of open-vm-tools breaks VM backups)�t����gMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.7d��@- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [RHEL-2413]
- Resolves: RHEL-2413
  (CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-7.9.z])�{��m�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])
.8��.���q�OMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�|��q�	Miroslav Rezanina <mrezanin@redhat.com> - 10-2.5-3[{��- ovt-Workaround-for-false-negative-result-when-detecting.patch [bz#1601559]
- Resolves: bz#1601559
  ([ESXi][RHEL7.6] Include new open-vm-tools patches for cloud-init to work with python-2)a��uQRavindra Kumar <ravindrakumar@vmware.com> - 10.2.5-2Z��- Use tirpc for Fedora 28 onwards.�C����Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.9eC�@- ovt-Don-t-accept-tokens-with-unrelated-certs.patch [RHEL-14642]
- ovt-File-descriptor-vulnerability-in-the-open-vm-tools-v.patch [RHEL-14676]
- Resolves: RHEL-14642
  (CVE-2023-34058 open-vm-tools: SAML token signature bypass [rhel-7.9.z])
- Resolves: RHEL-14676
  (CVE-2023-34059 open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper [rhel-7.9.z])
[��[�x��	s�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��s�cMiroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��q�yMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��y�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��
q�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
T��T���q�OMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�|��q�	Miroslav Rezanina <mrezanin@redhat.com> - 10-2.5-3[{��- ovt-Workaround-for-false-negative-result-when-detecting.patch [bz#1601559]
- Resolves: bz#1601559
  ([ESXi][RHEL7.6] Include new open-vm-tools patches for cloud-init to work with python-2)���
��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��s�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��s�cMiroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��q�yMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��y�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��q�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�����q�OMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�2��m�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")�����Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��s�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��s�cMiroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��q�yMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��y�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��q�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�������!��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2�� m�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")�����Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��$s�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��#s�cMiroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��"q�yMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����'y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��&y�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��%q�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�������*��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��)m�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���(��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
��x��2��-q�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)�x��,s�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)���+m�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])
n�un���0��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���/y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��.y�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)
�������3m�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���2��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��1m�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")
}44}�2��6q�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)�{��5m�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])�G��4��
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)
n�un���9��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���8y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��7y�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)
�������<m�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���;��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��:m�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")
;44;�t��?��gMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.7d��@- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [RHEL-2413]
- Resolves: RHEL-2413
  (CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-7.9.z])�{��>m�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])�G��=��
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)
�����2��Bm�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���A��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���@y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)
 �� �G��E��
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)���Dm�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���C��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])
�e��Hm�_Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.8ej�- ovt-Provide-alternate-method-to-allow-expected-pre-froze.patch [bz#2226921]
- Resolves: bz#2226921
  ([RHEL7.9][ESXi]Latest version of open-vm-tools breaks VM backups)�t��G��gMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.7d��@- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [RHEL-2413]
- Resolves: RHEL-2413
  (CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-7.9.z])�{��Fm�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])
.8��.���Lq�O	Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�|��Kq�		Miroslav Rezanina <mrezanin@redhat.com> - 10-2.5-3[{��- ovt-Workaround-for-false-negative-result-when-detecting.patch [bz#1601559]
- Resolves: bz#1601559
  ([ESXi][RHEL7.6] Include new open-vm-tools patches for cloud-init to work with python-2)a��JuQ	Ravindra Kumar <ravindrakumar@vmware.com> - 10.2.5-2Z��- Use tirpc for Fedora 28 onwards.�C��I��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.9eC�@- ovt-Don-t-accept-tokens-with-unrelated-certs.patch [RHEL-14642]
- ovt-File-descriptor-vulnerability-in-the-open-vm-tools-v.patch [RHEL-14676]
- Resolves: RHEL-14642
  (CVE-2023-34058 open-vm-tools: SAML token signature bypass [rhel-7.9.z])
- Resolves: RHEL-14676
  (CVE-2023-34059 open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper [rhel-7.9.z])

e�r+��V��:��eD��
3ae0d9e3b7846210244c8d17e6fbf04621eea150bfe308a6b23c21561cc38acdD��
cd951b49a8dc85630b344b12bc84af00fff22d713c5869528aabb40dc78fa0c0D��
7c4bcb2fae18cd595ec3e02100dba37726442206905efcc349d085f60cef45e3D��
66aed3864f29912482e74e2a3bb2ea45d7402aa197018dc629d10fcebcd960abD��
42e853b9aba262824af1f06fbf3521c29f339081059d0bab496fb26bc0f3ab17D��
de3aeef4443f60aa6795ee64bd6c2d7bf33a2b82ff3b9119c255830faa49f4c4D��
c567a821a6580c7066f9d12f98b47ff92838fdd821cc89005118e82149703252D��
6ccf9907f4606b6cd68c6c6cb2c66c9cdf87b17f1ef8f2839dbf76b985bdf369D�
�
3791b9ec0f2a83fb568d433ee44df76fab4784e85ba1e6da6172d66b8161511eD��
6e083d21d81ff7ba6c8b92912ea5657be3fb00255a52e7d3ad7fbf5f49b55960D��
d96f6359c8daf94bb109d46c6f4da10422a428e3101b641458380f3246030c16D�
�
ffbadd5995846ef0be55a84dee1a668513bc703e46ee467cb84a4e847415cbe4D�	�
e1558a4ef78a248b5c220ba56ed44d6ebb4fc90cf62cd3efcf72e602bc088eb0
[��[�x��Os�	Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��Ns�c	Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��Mq�y	Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����Ry�9	Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��Qy�[	Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��Pq�u	Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
T��T���Uq�O
Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�|��Tq�	
Miroslav Rezanina <mrezanin@redhat.com> - 10-2.5-3[{��- ovt-Workaround-for-false-negative-result-when-detecting.patch [bz#1601559]
- Resolves: bz#1601559
  ([ESXi][RHEL7.6] Include new open-vm-tools patches for cloud-init to work with python-2)���S��	Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��Xs�
Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��Ws�c
Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��Vq�y
Miroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����[y�9
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��Zy�[
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��Yq�u
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�����^q�OMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-1\b�@- Updated RHEL version
- Resolves: bz#1667549
  ([RHEL 7.7, ESXi] Rebase open-vm-tools to 10.3.0)�2��]m�y
Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���\��
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��as�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��`s�cMiroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��_q�yMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����dy�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��cy�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��bq�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�������g��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��fm�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���e��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
[��[�x��js�Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)�*��is�cMiroslav Rezanina <mrezanin@redhat.com> - 10.3.10-1]^��- Rebase to 10.3.10 [bz#1725187]
- Resolves: bz#1725187
  ([ESXi][RHEL7.8 ]Rebase open-vm-tools to 10.3.10)�t��hq�yMiroslav Rezanina <mrezanin@redhat.com> - 10.3.0-2\��- ovt-Enable-cloud-init-by-default-to-change-the-systemd-u.patch [bz#1662278]
- ovt-Fix-RELRO-flag.patch [bz#1678576]
- Resolves: bz#1662278
  ([ESXi][RHEL7.7]Enable cloud-init by default to change the systemd unit file vmtoolsd.service)
- Resolves: bz#1678576
  ([ESXi][RHEL7.6] Several files lost Full RELRO)
�I�����my�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��ly�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)�2��kq�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)
�������p��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��om�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")���n��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])
��x��2��sq�u
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)�x��rs�
Miroslav Rezanina <mrezanin@redhat.com> - 10.3.10-2]��- ovt-Fix-memory-leaks-in-vix-tools-plugin.patch [bz#1760625]
- ovt-End-VGAuth-impersonation-in-the-case-of-error.patch [bz#1760625]
- ovt-Fix-leaks-in-ListAliases-and-ListMappedAliases-9bc72.patch [bz#1760625]
- Resolves: bz#1760625
  ([ESXi][RHEL7.8]Need to backport some severe memory leak fixes from upstream)���qm�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])bR0�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������0���s0���v0���y0���|0���0���0���0���	0���0���0���0���0���0���0���0���!0���$0���'0���*0���-0���00���30���60���90���<0���?0���B0���E0���H0���L0���O0���R0���U0���X0���[0���^0���a0���d0���g0���j0���m0���p0���s0���v0���y0�|0Â�0Ă�0ł�0Ƃ�0ǂ�0Ȃ�0ɂ�0ʂ�0˂�0̂�#0͂�(0΂�.0ς�30Ђ�90т�A0҂�F0ӂ�L0Ղ�Q0ւ�W0ׂ�_0؂�d0ق�j0ڂ�o0ۂ�u0܂�}0݂�0ނ�	0߂�0�0Ⴟ0₿0タ"0䂿'0傿,0悿10炿70肿;0邿A0ꂿF0낿K0삿P0V0[0�a0�e0�k0�o0�u0���z0���0���0���

n�un���v��
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���uy�9
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��ty�[
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)
�������ym�!
Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���x��
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��wm�y
Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")
}44}�2��|q�uMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-1^p��- Rebase to 11.0.5 [bz#1806675]
- Resolves: bz#1806675
 ([ESXi][RHEL7.9]Rebase open-vm-tools to 11.0.5 for RHEL 7.9)�{��{m�
Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])�G��z��

Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)
n�un�����Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���~y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)�i��}y�[Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-2.el7^��- ovt-Fix-ldconfig-call.patch [bz#1815549]
- ovt-add-appinfo-plugin.patch [bz#1809753]
- Resolves: bz#1809753
  ([ESXi][RHEL7.9]open-vm-tools add appinfo plugin patch)
- Resolves: bz#1815549
  ([ESXi][RHEL7.9]open-vm-tools reports line 1: ?ldconfig: command not found during system installation)
�������m�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])�����Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])�2��m�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")
;44;�t����gMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.7d��@- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [RHEL-2413]
- Resolves: RHEL-2413
  (CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-7.9.z])�{��m�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])�G����
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)
�����2��m�yJon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.2`+��- ovt-Rectify-a-log-spew-in-vmsvc-logging-vmware-vmsvc-roo.patch [bz#1911853]
- Resolves: bz#1911853
  ([ESXi][RHEL7.9][ warning] [guestinfo] GuestInfoGetDiskDevice: Missing disk device name; VMDK mapping unavailable for "/", fsName: "/dev/sda2")�����Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.1_�t@- ovt-Updated-PAM-configuration-file-to-follow-configured-.patch [bz#1840309]
- Resolves: bz#1840309
  ([ESXi][RHEL7]vmtoolsd authentication issues with ActiveDirectory (AD) [rhel-7.9.z])���y�9Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7^�k@- ovt-Fix-a-trivial-memory-leak-in-namespacetool.c.patch [bz#1818109]
- ovt-Update-copyright-to-reflect-previous-change.patch [bz#1818109]
- Resolves: bz#1818109
  ([ESXi][RHEL7.9]open-vm-tools coverity scan issue)
 �� �G����
Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.5dm�@- ovt-Track-Linux-filesystem-id-FSID-for-quiesced-frozen-f.patch [bz#1880404 bz#1994590]
- Resolves: bz#1880404
  ([ESXi] [RHEL7] vmtoolsd task is blocked in the uninterruptible state while attempting to delete (unlink) the file 'quiesce_manifest.xml')
- Resolves: bz#1994590
  ([ESXi][RHEL7.9][open-vm-tools] Snapshot of the RHEL7 guest on the VMWare ESXi hypervisor failed vm hangs)���
m�!Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.4c�@- ovt-Properly-check-authorization-on-incoming-guestOps-re.patch [bz#2119310]
- Resolves: bz#2119310
  (CVE-2022-31676 open-vm-tools: local root privilege escalation in the virtual machine [rhel-7.9.z])���	��Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.3`lM@- ovt-Fix-memory-leaks-in-guestInfo-diskInfo.c.patch [bz#1937420]
- Resolves: bz#1937420
  ([ESXi][RHEL7.9] Memory leak in vmtoolsd when disable-query-diskinfo is set to false [rhel-7.9.z])
�e��m�_Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.8ej�- ovt-Provide-alternate-method-to-allow-expected-pre-froze.patch [bz#2226921]
- Resolves: bz#2226921
  ([RHEL7.9][ESXi]Latest version of open-vm-tools breaks VM backups)�t��
��gMiroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.7d��@- ovt-VGAuth-Allow-only-X509-certs-to-verify-the-SAML-toke.patch [RHEL-2413]
- Resolves: RHEL-2413
  (CVE-2023-20900 open-vm-tools: SAML token signature bypass [rhel-7.9.z])�{��m�Jon Maloy <jmaloy@redhat.com> - 11.0.5-3.el7_9.6d�}�- ovt-Remove-some-dead-code.patch [bz#2215562]
- Resolves: bz#2215562
  ([CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module [rhel-7])
�8����e�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not available�C����Miroslav Rezanina <mrezanin@redhat.com> - 11.0.5-3.el7_9.9eC�@- ovt-Don-t-accept-tokens-with-unrelated-certs.patch [RHEL-14642]
- ovt-File-descriptor-vulnerability-in-the-open-vm-tools-v.patch [RHEL-14676]
- Resolves: RHEL-14642
  (CVE-2023-34058 open-vm-tools: SAML token signature bypass [rhel-7.9.z])
- Resolves: RHEL-14676
  (CVE-2023-34059 open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper [rhel-7.9.z])
;`�&�;t��W�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package updateo��W�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��W�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���W�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode���W�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now
=�M�q�=���W�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now���e�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not availableh��W}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��W�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��WWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��WYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0
Lw�S��(�Lh��#W}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��"W�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��!WWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V�� WYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0t��W�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package updateo��W�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��W�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���W�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode
l�C�o��(W�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��'W�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���&W�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode���%W�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now���$e�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not available
e�.�e�e���.e�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not availableh��-W}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��,W�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��+WWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��*WYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0t��)W�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package update
;`�&�;t��3W�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package updateo��2W�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��1W�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���0W�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode���/W�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now
=�M�q�=���9W�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now���8e�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not availableh��7W}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��6W�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��5WWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��4WYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0
Lw�S��(�Lh��AW}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��@W�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��?WWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��>WYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0t��=W�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package updateo��<W�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��;W�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���:W�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode
l�C�o��FW�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��EW�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���DW�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode���CW�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now���Be�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not available
e�.�e�e���Le�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not availableh��KW}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��JW�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��IWWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��HWYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0t��GW�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package update

e�r+��V��:��eD�"�
35add167f7cb884e0fa8709237307f4caa3297832e3165d1530bcf474ed45e74D�!�
a41884a9bea64c478434afa440f59ad7fb2b3251861261bfa51c4a6142be01f3D� �
7dc75ff8c8c8c6b5a6b9fc8c0b75b9ddaaaff8045fabbd17663a334c27c8b9cbD��
4d12827b417a44adfb6029689a3750767d051d27bb01400addcf87233d9c73aaD��
912bd6993c1df63e3c9381201d80fe8178c75ff27aeb3b45999e28983222ff86D��
f42f1e28a26e049582540bf27d99e95a1b241c2fc2e9faf3b2165ac8dbdd35e8D��
2ad84664179e15d935155fba6042722c65d3395b14c39b9f1b0c8766d4fb802bD��
3f3deff3566c606e953d135ea14e38e49de5f579a679c901193204c07cb123f1D��
36621778bbfe07d63cf5e8b83b198171e5f1bcc467910e9ea517faecfc1e27faD��
85d24ca3ceecf07ce09d89a8ea7abcb5f605c7de3bd556f87b0654c517fd5759D��
839520c8f5c973a577f0bb417d4afcf5cee1ae5ae2f72e64134b38bae1468c0cD��
ee16939ba598d58caca0f792ce6324cd0251c779d1d37874af442d8cba4c2f23D��
2aabb9b7280de41a29a8a6d2e099490ab2248876bb0e907b1ac88eee12a34093
;`�&�;t��QW�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package updateo��PW�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��OW�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���NW�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode���MW�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now
=�M�q�=���WW�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now���Ve�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not availableh��UW}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��TW�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��SWWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��RWYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0
Lw�S��(�Lh��_W}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��^W�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��]WWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��\WYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0t��[W�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package updateo��ZW�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��YW�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���XW�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode
l�C�o��dW�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��cW�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���bW�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode���aW�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now���`e�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not available
e�.�e�e���je�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not availableh��iW}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��hW�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��gWWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��fWYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0t��eW�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package update
;`�&�;t��oW�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package updateo��nW�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��mW�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���lW�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode���kW�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now
=�M�q�=���uW�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now���te�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not availableh��sW}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��rW�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��qWWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��pWYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0
Lw�S��(�Lh��}W}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��|W�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��{WWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��zWYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0t��yW�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package updateo��xW�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��wW�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���vW�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode
l�C�o��W�	Than Ngo <than@redhat.com> - 3.11.0-4]��@- Resolves: #1755463, EP11: Support tolerated new crypto cards�,��W�Than Ngo <than@redhat.com> - 3.11.0-3\�B@- Resolves: #1688891 - C_EncryptInit fails with CKR_KEY_TYPE_INCONSISTENT. on ep11 token when using imported RSA public key���W�3Than Ngo <than@redhat.com> - 3.11.0-2\n��- Resolves: #1678788 - EP11 token fails when using Strict-Session mode or VHSM-Mode���W�aThan Ngo <than@redhat.com> - 3.11.0-1\k�- Resolves: #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group 
- Resolves: #1641027 - enhanced IBM z14 functions
- Resolves: #1641026 - support m_*Single functions from ep11 lib
- Resolves: #1641025 - rebase to 3.11.0
- Resolves: #1519386 - use CPACF hashes in ep11 token
- Resolves: #1373833 - lock file directory is %ghost now���~e�;Sinny Kumari <skumari@redhat.com> - 3.10.0-2[~��- Resolves: #1613743 - ICA Token specific des3 cbc encrypt failed - token not available
e�.�e��e���	c�%Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)���c�-Matus Honek <mhonek@redhat.com> - 2.4.44-13Zq��- MozNSS Compat. Layer: fix recursive directory deletion (#1516409)
- MozNSS Compat. Layer: fix PIN disclaimer not always shown (#1516409)
- MozNSS Compat. Layer: fix incorrect parsing of CACertDir (#1533955)h��W}Than Ngo <than@redhat.com> - 3.12.1-3_q�@- Resolves: #1883185, opencryptoki - do_DeriveDHKey FAILl��W�Than Ngo <than@redhat.com> - 3.12.1-2]�q�- Resolves: #1782444, EP11: Fix EC-uncompress buffer lengthU��WWThan Ngo <than@redhat.com> - 3.12.1-1]߶�- Related: #1770883, rebase to 3.12.1V��WYThan Ngo <than@redhat.com> - 3.12.0-1]ʞ�- Resolves: #1770883, rebase to 3.12.0t��W�Than Ngo <than@redhat.com> - 3.11.0-5]��@- Resolves: #1756956, ICA HW token missing after the package update
i=����c�!Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���
c�+Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��c�oMatus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��c�mMatus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���
c�CMatus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)
��+����c�%Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)���c�-Matus Honek <mhonek@redhat.com> - 2.4.44-13Zq��- MozNSS Compat. Layer: fix recursive directory deletion (#1516409)
- MozNSS Compat. Layer: fix PIN disclaimer not always shown (#1516409)
- MozNSS Compat. Layer: fix incorrect parsing of CACertDir (#1533955)�"��m�YSimon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��c�oMatus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��c�Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)
i=����c�!Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���c�+Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��c�oMatus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��c�mMatus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���c�CMatus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)
�+����c�CMatus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���c�%Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)�"��m�YSimon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��c�oMatus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��c�Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)
��'��}��"c�Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���!c�!Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)��� c�+Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��c�oMatus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��c�mMatus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)
S�*����'c�CMatus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���&c�%Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)~��%m�Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��$m�YSimon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��#c�oMatus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)
��'��}��,c�Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���+c�!Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���*c�+Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��)c�oMatus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��(c�mMatus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)
gS�*�g�'��1c�m Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���0c�C Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)~��/m�Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��.m�YSimon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��-c�oMatus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)
mS�B�m�"��7m�Y Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��6c�o Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��5c� Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���4c�! Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���3c�+ Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��2c�o Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)
�~x���'��;c�m!Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���:c�C!Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���9m� Simon Pichugin <spichugi@redhat.com> - 2.4.44-25a�@- Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation (#2040539)
- Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input (#2040538)~��8m� Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)
mS�B�m�"��Am�Y!Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��@c�o!Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��?c�!Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���>c�!!Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���=c�+!Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��<c�o!Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)
M~xl�M���Fc�C"Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���Ec�%"Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)���Dc�-"Matus Honek <mhonek@redhat.com> - 2.4.44-13Zq��- MozNSS Compat. Layer: fix recursive directory deletion (#1516409)
- MozNSS Compat. Layer: fix PIN disclaimer not always shown (#1516409)
- MozNSS Compat. Layer: fix incorrect parsing of CACertDir (#1533955)���Cm�!Simon Pichugin <spichugi@redhat.com> - 2.4.44-25a�@- Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation (#2040539)
- Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input (#2040538)~��Bm�!Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)
��'��}��Kc�"Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���Jc�!"Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���Ic�+"Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��Hc�o"Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��Gc�m"Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)
aS�$�a�'��Pc�m#Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���Oc�C#Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���Nc�%#Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)�"��Mm�Y"Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��Lc�o"Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)

e�r+��V��:��eD�/�
2a6f1dc296b8103e565b9c2b18d2f04ed098a133f239f299f974b5430b5cda97D�.�
5ab1da2e283d1df09cccde7a8681441b9f5b20a027b34d367ff19dda331235d5D�-�
ecbcdfc04b53ea64ad8edb3e42271b75385cb3a6087173d58c0d0e9ac5074c56D�,�
8f4f01e9c17c3579c8a8e8757582b5911c301c9f5219d0fa56b868db7964640fD�+�
51bd5d48aea076879005b6bb6ecd6f14aa7212f61f98a0ad49b0b9379badb17aD�*�
39ac6caf2f744acfdea88f8f05d08f1cc0f3ead1b5cc458a36db4d7d5553972fD�)�
5f4ca284587783143968fcdf3917477a4d6a68b7e9106aa1c96b92591e63a261D�(�
9711433d3deaee69fd66f5b86d352d4250222cc0624b6a64b1cab5215d69348bD�'�
ae3c48f21e37c807df89c63a1fa1216f44279908239b46e4dc5f7fc63160d0ddD�&�
88e20a1e34cd524371d77d54b3e1c9679b5fc0a76238556241eba29703e64e10D�%�
0b29c214b8a3ff37cfcb010079194019a3d4b2e97d32adcd0571daa7b2572234D�$�
bc3ad50d23ee3913b90b02ecb46fe4404d8bee5abbbce1bcd8310b15ba6abf16D�#�
cc0d2cbf6bd6a4619b82b4666f297b6d0d894f6e665d587919aeb24e013118a5
mS�B�m�"��Vm�Y#Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��Uc�o#Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��Tc�#Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���Sc�!#Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���Rc�+#Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��Qc�o#Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)
�~������[c�+$Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��Zc�o$Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��Yc�m$Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���Xc�C$Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)~��Wm�#Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)
z�L�#���am�$Simon Pichugin <spichugi@redhat.com> - 2.4.44-25a�@- Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation (#2040539)
- Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input (#2040538)~��`m�$Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��_m�Y$Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��^c�o$Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��]c�$Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���\c�!$Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)
��l���'��ec�m%Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���dc�C%Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���cc�%%Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)���bc�-%Matus Honek <mhonek@redhat.com> - 2.4.44-13Zq��- MozNSS Compat. Layer: fix recursive directory deletion (#1516409)
- MozNSS Compat. Layer: fix PIN disclaimer not always shown (#1516409)
- MozNSS Compat. Layer: fix incorrect parsing of CACertDir (#1533955)
mS�B�m�"��km�Y%Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��jc�o%Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��ic�%Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���hc�!%Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���gc�+%Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��fc�o%Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)
��l���'��oc�m&Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���nc�C&Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���mc�%&Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)���lc�-&Matus Honek <mhonek@redhat.com> - 2.4.44-13Zq��- MozNSS Compat. Layer: fix recursive directory deletion (#1516409)
- MozNSS Compat. Layer: fix PIN disclaimer not always shown (#1516409)
- MozNSS Compat. Layer: fix incorrect parsing of CACertDir (#1533955)
mS�B�m�"��um�Y&Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��tc�o&Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��sc�&Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���rc�!&Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���qc�+&Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��pc�o&Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)
}x��}���zc�+'Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��yc�o'Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��xc�m'Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���wc�C'Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���vc�%'Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)
�z�L�#����c�%(Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)~��m�'Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��~m�Y'Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��}c�o'Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��|c�'Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���{c�!'Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)
i=����c�!(Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���c�+(Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��c�o(Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��c�m(Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���c�C(Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)
�+����
c�C)Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)~��	m�(Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��m�Y(Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��c�o(Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��c�(Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)
��'��}��c�)Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���c�!)Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���
c�+)Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��c�o)Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��c�m)Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)
�S�*$����c�C*Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���m�)Simon Pichugin <spichugi@redhat.com> - 2.4.44-25a�@- Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation (#2040539)
- Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input (#2040538)~��m�)Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��m�Y)Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��c�o)Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)
��'��}��c�*Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���c�!*Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���c�+*Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��c�o*Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��c�m*Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)
S�*$���c�-+Matus Honek <mhonek@redhat.com> - 2.4.44-13Zq��- MozNSS Compat. Layer: fix recursive directory deletion (#1516409)
- MozNSS Compat. Layer: fix PIN disclaimer not always shown (#1516409)
- MozNSS Compat. Layer: fix incorrect parsing of CACertDir (#1533955)���m�*Simon Pichugin <spichugi@redhat.com> - 2.4.44-25a�@- Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation (#2040539)
- Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input (#2040538)~��m�*Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��m�Y*Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��c�o*Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)
}x��}���#c�++Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��"c�o+Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��!c�m+Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)��� c�C+Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���c�%+Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)
�z�L�����)c�C,Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���(c�%,Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)�"��'m�Y+Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��&c�o+Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��%c�+Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���$c�!+Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)
��'��}��.c�,Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���-c�!,Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���,c�+,Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��+c�o,Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��*c�m,Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)
gS�*�g�'��3c�m-Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���2c�C-Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)~��1m�,Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��0m�Y,Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��/c�o,Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)
mS�B�m�"��9m�Y-Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��8c�o-Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��7c�-Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���6c�!-Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���5c�+-Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��4c�o-Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)
M~xl�M���>c�C.Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���=c�%.Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)���<c�-.Matus Honek <mhonek@redhat.com> - 2.4.44-13Zq��- MozNSS Compat. Layer: fix recursive directory deletion (#1516409)
- MozNSS Compat. Layer: fix PIN disclaimer not always shown (#1516409)
- MozNSS Compat. Layer: fix incorrect parsing of CACertDir (#1533955)���;m�-Simon Pichugin <spichugi@redhat.com> - 2.4.44-25a�@- Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation (#2040539)
- Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input (#2040538)~��:m�-Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)
��'��}��Cc�.Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���Bc�!.Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���Ac�+.Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��@c�o.Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��?c�m.Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)
aS�$�a�'��Hc�m/Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���Gc�C/Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)���Fc�%/Matus Honek <mhonek@redhat.com> - 2.4.44-14Z��@- MozNSS Compat. Layer: Enforce fail when cannot extract CA certs (#1547922)�"��Em�Y.Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��Dc�o.Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)
mS�B�m�"��Nm�Y/Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��Mc�o/Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��Lc�/Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���Kc�!/Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)���Jc�+/Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��Ic�o/Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)
�~������Sc�+0Matus Honek <mhonek@redhat.com> - 2.4.44-19[r�@- Backport upstream fixes for ITS 7506 - fix OpenSSL DH params usage (#1584922)�(��Rc�o0Matus Honek <mhonek@redhat.com> - 2.4.44-18[+�A- MozNSS Compat. Layer: Make log messages more clear (#1543955)
- Build with LDAP_USE_NON_BLOCKING_TLS (#1471039)�'��Qc�m0Matus Honek <mhonek@redhat.com> - 2.4.44-17[+�@- MozNSS Compat. Layer: Fix memleaks reported by valgrind (#1575549)
- Reset OPTIND in libexec/functions for getopts to work in subsequent calls (#1564382)
- MozNSS Compat. Layer: Fix typos, and spelling in the README file header (#1543451)���Pc�C0Matus Honek <mhonek@redhat.com> - 2.4.44-16Zľ@- fix: back-ldap StartTLS short connection timeout with high latency connections (#1540336)~��Om�/Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)

e�r+��V��:��eD�<�
9006cdd20e1088f1fdd49320df4c8447cf22d2feb90151205e9288920768b599D�;�
02ddd2f4ddbeafacbe9cdecd7071ce4d21239067950fce14f915e65b88e056b0D�:�
2eb468f0d5d765cc3f6897270a1abde77e76fa366c6ca1473a03ee15bc47748dD�9�
5bae0cc126abb5ec4f6861872ef8dca8ae25c3d7c3bc9d186d3450e8e5f8cb46D�8�
a979c38358d8c02e4590026e728a88db7c7b8f5f4eb9e080f77812bbe26a018bD�7�
a4d1e02c406da42d667a511a3172beae376e11ced63bb428e16894a66b914592D�6�
a35e2c0d9f1e86c4ba70006c038141ae46bea796e4e9375fff2d525742bf85d7D�5�
24b0fb3cf77c1414e8d4be523ab73cb876049596622b95f63dc9c7aa989b8066D�4�
ce586e3bad67654fe73ef5a5f9ade5281e7611c7839e8ee28c76f1f48753cbfaD�3�
498b3c4385806f5535a6ebd9a444db2e30938bba2f9b1f553b35189edc73b0e4D�2�
1e8f0a4b4a44bd6aebb338ec755620508f9ad59babc55b9832396a5439cbf583D�1�
bb889461e56e1855ace7437bb01465dd50bda036d71e6dc023139aefdb0ee98eD�0�
8c1a2436bb9993077d1787d888e9de96eb7d1ce37e361e8ed8f64c131ab0b58e
z�L�#���Ym�0Simon Pichugin <spichugi@redhat.com> - 2.4.44-25a�@- Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation (#2040539)
- Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input (#2040538)~��Xm�0Simon Pichugin <spichugi@redhat.com> - 2.4.44-24a
�@- CLDAP ldap_result hangs if nobody listens on the port (#1989919)�"��Wm�Y0Simon Pichugin <spichugi@redhat.com> - 2.4.44-23_�@- Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd (#1895328)�(��Vc�o0Matus Honek <mhonek@redhat.com> - 2.4.44-22^ۅ@- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)}��Uc�0Matus Honek <mhonek@redhat.com> - 2.4.44-21\�@- MozNSS Compat. Layer: Protect /tmp/openldap-tlsmc-* files (#1590184)���Tc�!0Matus Honek <mhonek@redhat.com> - 2.4.44-20[{��- Backport upstream fixes for ITS 7595 - add OpenSSL EC support (#1584922)
������u��]y�s1Jakub Jelen <jjelen@redhat.com> - 0.16.0-8.20170227gitZL�- Copy labels from certificate (#1448555)
- Avoid infinite loop in CAC driver when reading non-CAC cards (#1473335)
- Properly parse Simple TLV structures in CAC driver (#1473418)���\y�C1Jakub Jelen <jjelen@redhat.com> - 0.16.0-7.20170227gitZ�@- Fix issues reported by Coverity
- Use upstream accepted fix for CAC Alt tokens (#1473418)���[y�11Jakub Jelen <jjelen@redhat.com> - 0.16.0-6.20170227gitY�Z@- Use label from certificate DN if there is none (#1448555)
- Use Cardholder name in the token label (#1449740)
- Avoid infinite loop when reading CAC cards (#1473335)
- Workaround for CAC Alt tokens (#1473418)c��ZyQ1Jakub Jelen <jjelen@redhat.com> - 0.16.0-5.20170227gitY��- Add missing pkcs11-switch script
����v��`a�
1Jakub Jelen <jjelen@redhat.com> - 0.19.0-1\\�- Rebase to new upstream release (#1656791)
  - Add Support for HID Crescendo 144K (#1612372)
  - Add Support for CAC Alt tokens (#1645581)
  - Fix usage detection from certificates (#1672898)
  - Fix security issues:
    - CVE-2018-16391
    - CVE-2018-16392
    - CVE-2018-16393
    - CVE-2018-16418
    - CVE-2018-16419
    - CVE-2018-16420
    - CVE-2018-16421
    - CVE-2018-16422
    - CVE-2018-16423
    - CVE-2018-16426
    - CVE-2018-16427��_{�1Jakub Jelen <jjelen@redhat.com> - 0.16.0-10.20170227git[;e@- Improve support for ECC-enabled CardOS 5.3 card (#1562277)�p��^y�i1Jakub Jelen <jjelen@redhat.com> - 0.16.0-9.20170227git[(�@- make ECPoint behavior standards compliant by default (#1562572)
- allow mechanism to be specified in hexadecimal (#1562572)
- Disable pinpad by default (#1547117, #1547744)
�}�@'����fy�C2Jakub Jelen <jjelen@redhat.com> - 0.16.0-7.20170227gitZ�@- Fix issues reported by Coverity
- Use upstream accepted fix for CAC Alt tokens (#1473418)���ey�12Jakub Jelen <jjelen@redhat.com> - 0.16.0-6.20170227gitY�Z@- Use label from certificate DN if there is none (#1448555)
- Use Cardholder name in the token label (#1449740)
- Avoid infinite loop when reading CAC cards (#1473335)
- Workaround for CAC Alt tokens (#1473418)c��dyQ2Jakub Jelen <jjelen@redhat.com> - 0.16.0-5.20170227gitY��- Add missing pkcs11-switch scriptg��caq1Jakub Jelen <jjelen@redhat.com> - 0.19.0-4_�u@- Support PIN change for HID Alt tokens (#1893856)g��baq1Jakub Jelen <jjelen@redhat.com> - 0.19.0-3\�e�- Make OpenSC multilib also on s390 and ppc arches��aa�1Jakub Jelen <jjelen@redhat.com> - 0.19.0-2\�e�- Make OpenSC multilib again by moving the conflicting files on ix86 arch
����i{�2Jakub Jelen <jjelen@redhat.com> - 0.16.0-10.20170227git[;e@- Improve support for ECC-enabled CardOS 5.3 card (#1562277)�p��hy�i2Jakub Jelen <jjelen@redhat.com> - 0.16.0-9.20170227git[(�@- make ECPoint behavior standards compliant by default (#1562572)
- allow mechanism to be specified in hexadecimal (#1562572)
- Disable pinpad by default (#1547117, #1547744)�u��gy�s2Jakub Jelen <jjelen@redhat.com> - 0.16.0-8.20170227gitZL�- Copy labels from certificate (#1448555)
- Avoid infinite loop in CAC driver when reading non-CAC cards (#1473335)
- Properly parse Simple TLV structures in CAC driver (#1473418)
-��-{��na�3Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releasesg��maq2Jakub Jelen <jjelen@redhat.com> - 0.19.0-4_�u@- Support PIN change for HID Alt tokens (#1893856)g��laq2Jakub Jelen <jjelen@redhat.com> - 0.19.0-3\�e�- Make OpenSC multilib also on s390 and ppc arches��ka�2Jakub Jelen <jjelen@redhat.com> - 0.19.0-2\�e�- Make OpenSC multilib again by moving the conflicting files on ix86 arch�v��ja�
2Jakub Jelen <jjelen@redhat.com> - 0.19.0-1\\�- Rebase to new upstream release (#1656791)
  - Add Support for HID Crescendo 144K (#1612372)
  - Add Support for CAC Alt tokens (#1645581)
  - Fix usage detection from certificates (#1672898)
  - Fix security issues:
    - CVE-2018-16391
    - CVE-2018-16392
    - CVE-2018-16393
    - CVE-2018-16418
    - CVE-2018-16419
    - CVE-2018-16420
    - CVE-2018-16421
    - CVE-2018-16422
    - CVE-2018-16423
    - CVE-2018-16426
    - CVE-2018-16427
$^��T$�+��tc�u3Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��sag3Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��raK3Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��qa�3Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��pa�/3Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).���om�O3Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826)
9�)�'��9|��{a�4Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��za�/4Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).���ym�O4Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��xa�4Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases��wc�3Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��vc}3Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��ucc3Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)
��B�;���c�4Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��c}4Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��cc4Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��~c�u4Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��}ag4Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��|aK4Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)
a4�\��aa��cc5Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��c�u5Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��ag5Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��aK5Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��a�5Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��a�/5Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).
;��;{��a�6Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases\��cY5Jan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l��
q�i5Marcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)��	c�5Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��c}5Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)
$^��T$�+��c�u6Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��ag6Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��aK6Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��a�6Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��a�/6Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).���
m�O6Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826)
��)��Z�b��ag7Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��aK7Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��a�7Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��a�/7Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).��c�6Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��c}6Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��cc6Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)
v�k�v��c�7Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��c}7Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��cc7Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��c�u7Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)
��0����!m�O8Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){�� a�8Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases\��cY7Jan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l��q�i7Marcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)
a4�\��aa��'cc8Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��&c�u8Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��%ag8Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��$aK8Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��#a�8Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��"a�/8Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).
F����FT��.aK9Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��-a�9Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��,a�/9Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).���+m�O9Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��*a�9Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases��)c�8Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��(c}8Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)
D�j�D�G��4a�/:Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).��3c�9Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��2c}9Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��1cc9Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��0c�u9Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��/ag9Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)
8�(��-�8��;c�:Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��:c}:Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��9cc:Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��8c�u:Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��7ag:Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��6aK:Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��5a�:Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)
��0����?m�O;Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��>a�;Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases\��=cY:Jan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l��<q�i:Marcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)
a4�\��aa��Ecc;Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��Dc�u;Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��Cag;Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��BaK;Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��Aa�;Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��@a�/;Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).
F����FT��LaK<Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��Ka�<Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��Ja�/<Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).���Im�O<Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��Ha�<Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases��Gc�;Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��Fc};Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)
D�j�D�G��Ra�/=Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).��Qc�<Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��Pc}<Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��Occ<Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��Nc�u<Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��Mag<Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)

e�r+��V��:��eD�I�
e65e62f1a74d176259823a76ae7741ded81383eefe67562563e90a903f05c86cD�H�
79de22a187c8d6582548815722742e3d7cc19659ecf90597109866199ec5deeeD�G�
e7e24cc31f3c532de3376ea95f7fa6356ead993a563d11fdc5f66f22f5c565ffD�F�
80f55b0df82d9eb00f5b602013b5219abee2198b4d76be5dbf7622302dc2c749D�E�
56f9a2f564549616cc842c446f06bff9820333e8cf00b5f21132bfd6597f6be2D�D�
20de254161b05ef02d837d21731032c8f4207723f0eccf9665c6f04f2b1e2866D�C�
97f2d1ab20836c94cc0c8fb0f450e8d93261f964058478270e2b309a246e35c0D�B�
cd61cf9c12e868cd95161567895609d82e39f45f923f851caab9d599ebecf0a6D�A�
69a52650aaaa5549296f7aed59178ab2f5ca948416e7e89b182107dc728f0387D�@�
9f4044376829fa18da40d132a93644d44691a5cb6c1af69c266fa8e7c7187cddD�?�
49bbdc6d250ec47750ab688a1618baefc947110bdd51d0ede255d5b1610a74fdD�>�
597a98034f38019a6ec047dd5674188fbb428a55fadfca294b210b303125fa02D�=�
029192b133954b86d152440adc98cc50c2ad3ded6b1f727f31615807b2d6ac98
8�(��-�8��Yc�=Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��Xc}=Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��Wcc=Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��Vc�u=Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��Uag=Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��TaK=Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��Sa�=Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)
��0����]m�O>Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��\a�>Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases\��[cY=Jan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l��Zq�i=Marcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)
a4�\��aa��ccc>Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��bc�u>Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��aag>Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��`aK>Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��_a�>Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��^a�/>Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).
F����FT��jaK?Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��ia�?Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��ha�/?Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).���gm�O?Vojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��fa�?Jan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases��ec�>Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��dc}>Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)
D�j�D�G��pa�/@Matěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).��oc�?Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��nc}?Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��mcc?Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��lc�u?Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��kag?Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)
8�(��-�8��wc�@Jan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��vc}@Jan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��ucc@Jan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��tc�u@Jan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��sag@Jan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��raK@Jan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��qa�@Jan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)
��0����{m�OAVojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��za�AJan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases\��ycY@Jan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l��xq�i@Marcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)bR1aRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������0���0���0���0���#0���)0���.1��31��91��>1��C1��H1��N1��S1��Y1	��]1
��`1��f1��i1
��n1��t1��{1��1��1��1��1��1��1��!1��'1��.1��41��;1��?1��E1��L1��R1 ��Y1!��]1"��c1#��j1$��p1%��w1&��{1(��1)��1*��1+��1,��1-��1.��1/��#10��)11��/12��313��714��=15��C16��G17��L18��T1:��\1;��c1<��j1=��r1>��z1?��1@��1A��1B��1C��1D��1E��%1F��)1G��.1H��21I��91J��=1K��B1L��F1M��M1N��Q1O��V1Q��Z1R��a1S��e1T��j1U��n1V��u1W��y1X��~1Y��1Z��	1[��
1\��1]��1^��1_��!1`��&
a4�\��aa��ccAJan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��c�uAJan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��agAJan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��~aKAJan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��}a�AJan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��|a�/AMatěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).
�?�gb��agBJan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��aKBJan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��a�BJan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��a�/BMatěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).��c�AJan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��c}AJan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)
v�k�v��c�BJan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��
c}BJan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��	ccBJan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��c�uBJan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)
��0����m�OCVojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��a�CJan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases\��
cYBJan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l��q�iBMarcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)
a4�\��aa��ccCJan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��c�uCJan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��agCJan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��aKCJan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��a�CJan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��a�/CMatěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).
�?�gb��agDJan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��aKDJan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��a�DJan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��a�/DMatěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).��c�CJan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��c}CJan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)
v�k�v��c�DJan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��c}DJan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��ccDJan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��c�uDJan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)
��0����#m�OEVojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��"a�EJan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases\��!cYDJan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l�� q�iDMarcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)
a4�\��aa��)ccEJan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��(c�uEJan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��'agEJan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��&aKEJan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��%a�EJan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��$a�/EMatěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).
�?�gb��/agFJan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��.aKFJan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��-a�FJan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��,a�/FMatěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).��+c�EJan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��*c}EJan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)
v�k�v��3c�FJan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��2c}FJan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��1ccFJan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��0c�uFJan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)
��0����7m�OGVojtech Polasek <vpolasek@redhat.com> - 1.2.17-5]�@- Fixed XSLT template making rule details in reports accessible for screenreader users (#1767826){��6a�GJan Černý <jcerny@redhat.com> - 1.2.17-4\�@- Make is_local_fs static again to avoid API changes between releases\��5cYFJan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l��4q�iFMarcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)
a4�\��aa��=ccGJan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��<c�uGJan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)b��;agGJan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��:aKGJan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��9a�GJan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��8a�/GMatěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).
�?�gb��CagHJan Černý <jcerny@redhat.com> - 1.2.17-9^r�- Add new DISA STIG Viewer URI (RHBZ#1783200)T��BaKHJan Černý <jcerny@redhat.com> - 1.2.17-8]߶�- Add RHEL 8 CPE (RHBZ#1777860)|��Aa�HJan Černý <jcerny@redhat.com> - 1.2.17-7]��@- Use and return canonical paths in rpmverifyfile probe (RHBZ#1766489)�G��@a�/HMatěj Týč <matyc@redhat.com> - 1.2.17-6]µ�- Enabled the virtual '(all)' profile support for the scanner (RHBZ#1769272).
- Enabled the '(all)' profile support for oscap-ssh (RHBZ#1769272).��?c�GJan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��>c}GJan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)
v�k�v��Gc�HJan Černý <jcerny@redhat.com> - 1.2.17-13_h��- Enable gzip compression when downloading remote content (RHBZ#1870147)n��Fc}HJan Černý <jcerny@redhat.com> - 1.2.17-12_-B@- Fix memory leaks in rpmverifyfile probe (RHBZ#1861300)a��EccHJan Černý <jcerny@redhat.com> - 1.2.17-11^��- Fix URL for Red Hat Errata (RHBZ#1828779)�+��Dc�uHJan Černý <jcerny@redhat.com> - 1.2.17-10^s^�- Fix segfault in systemdunitdependency probe (RHBZ#1478285)
- Build and ship HTML manual (RHBZ#1465661)
- Fix oscap-ssh with --sudo (RHBZ#1803114)
- Change category of verbose message (RHBZ#1640522)
- Fix segfault in CVRF module (RHBZ#1642283)
#��#���Lg�IDoug Ledford <dledford@redhat.com> - 3.3.19-1Uq�@- Update to latest upstream release
- Build on s390
- Related: bz1186159l��KguIDoug Ledford <dledford@redhat.com> - 3.3.18-2TA�- Fix an issue found by rpmdiff
- Related: bz1061587���Jg�=IDoug Ledford <dledford@redhat.com> - 3.3.18-1T6x�- Update to latest upstream release
- Resolves: bz1061587, bz1042745, bz884555, bz948475\��IcYHJan Černý <jcerny@redhat.com> - 1.2.17-15c��- Prevent memory errors (rhbz#2111041)�l��Hq�iHMarcus Burghardt <maburgha@redhat.com> - 1.2.17-14a��- Fix memory leaks in probe-api (RHBZ#1861793)
- Prevent duplicate variables in Ansible Playbooks (RHBZ#1944683)
- Fix trailing whitespace in Ansible Playbooks
- Fix inconsistent result from security_patches_up_to_date (RHBZ#1858502)
- Fix multiple segfaults and broken test (RHBZ#1911999)
- Improve --stig-viewer output when there is no 1:1 connection between rules
- Lower memory limits and improve their checking (RHBZ#1932833)
An��V�A���Tg�=JDoug Ledford <dledford@redhat.com> - 3.3.18-1T6x�- Update to latest upstream release
- Resolves: bz1061587, bz1042745, bz884555, bz948475{��S_�IHonggang Li <honli@redhat.com> - 3.3.21-4_�j�- Allow MCMR requests with default subnet prefix
- Resolves: bz1898273c��R_kIHonggang Li <honli@redhat.com> - 3.3.21-3^��- Fix subnet_prefix issue
- Resolves: bz1828452]��Q__IHonggang Li <honli@redhat.com> - 3.3.21-2\d�- Fix a few defects
- Resolves: bz1668201���P_�#IHonggang Li <honli@redhat.com> - 3.3.21-1\E�@- Rebase to latest upstream release 3.3.21
- Resolves: bz1535978, bz1653660]��O__IHonggang Li <honli@redhat.com> - 3.3.20-3[(�@- Fix BuildRequires
- Resolves: bz1567528f��N_qIHonggang Li <honli@redhat.com> - 3.3.20-2Y��@- Fix up preuninstall script
- Resolves: bz1508334�
��M_�=IHonggang Li <honli@redhat.com> - 3.3.20-1Y�@- Cleanup the spec file
- Rebase to latest upstream release 3.3.20
- Resolves: bz1456524

e�r+��V��:��eD�V�
e95f299b4e1d9a775808bed9298856196169c363ce0d077bfc1bda79e4c4d4f4D�U�
80ae1fdd564cfbaee7f977fca0a23cb7bb35f9a6955a26b716894f379759d7d0D�T�
15d88fa90e0a746ab04810e8c5001282b587b8a21da83e08f7a05195f6fdd775D�S�
6a5c15723351049958d68d7476e529ec68de1d64478a1e66f36bbf5a50e2f0d9D�R�
a7333d8c99f660e6187ca76984c04c77a50d5b4767823ec52cc7f53fbdeb43bcD�Q�
4371a5846dcf1faffbb4329cff76c64cdf7cf7f9103bbdde6357e230e6f9ba83D�P�
d2d641c7cc9c03e9ca6482ca35b0c36b1e23ba7b853e1bdc6bec25eb9af46a6eD�O�
3ab4d0b3d34008809f0d657e9f4732dbc33963cf480b77f6b3afa455be2b0eb3D�N�
537d165748ea34474b3c9f20b83e298df8f9c60a97f43737c751dec828963330D�M�
f3a76eebff774f1e84066ca2ae1e4c12833ebcff375ee7d2d50547214c4f9d1bD�L�
53dcd4410dcf2e10fbcb28e2ca530d42ca4402dc531e3e719f798111531560f9D�K�
328f46b687b75e421aa0632db00bd3a424a9bb575aee94e2ddd24cd9fa19ab14D�J�
afc40dc3937d9d41e9145c8c39744dfafffd80bb988b7e391d6d9deddaa9e317
`�
x�(�`c��\_kJHonggang Li <honli@redhat.com> - 3.3.21-3^��- Fix subnet_prefix issue
- Resolves: bz1828452]��[__JHonggang Li <honli@redhat.com> - 3.3.21-2\d�- Fix a few defects
- Resolves: bz1668201���Z_�#JHonggang Li <honli@redhat.com> - 3.3.21-1\E�@- Rebase to latest upstream release 3.3.21
- Resolves: bz1535978, bz1653660]��Y__JHonggang Li <honli@redhat.com> - 3.3.20-3[(�@- Fix BuildRequires
- Resolves: bz1567528f��X_qJHonggang Li <honli@redhat.com> - 3.3.20-2Y��@- Fix up preuninstall script
- Resolves: bz1508334�
��W_�=JHonggang Li <honli@redhat.com> - 3.3.20-1Y�@- Cleanup the spec file
- Rebase to latest upstream release 3.3.20
- Resolves: bz1456524���Vg�JDoug Ledford <dledford@redhat.com> - 3.3.19-1Uq�@- Update to latest upstream release
- Build on s390
- Related: bz1186159l��UguJDoug Ledford <dledford@redhat.com> - 3.3.18-2TA�- Fix an issue found by rpmdiff
- Related: bz1061587
���{�c��]��c__KHonggang Li <honli@redhat.com> - 3.3.20-3[(�@- Fix BuildRequires
- Resolves: bz1567528f��b_qKHonggang Li <honli@redhat.com> - 3.3.20-2Y��@- Fix up preuninstall script
- Resolves: bz1508334�
��a_�=KHonggang Li <honli@redhat.com> - 3.3.20-1Y�@- Cleanup the spec file
- Rebase to latest upstream release 3.3.20
- Resolves: bz1456524���`g�KDoug Ledford <dledford@redhat.com> - 3.3.19-1Uq�@- Update to latest upstream release
- Build on s390
- Related: bz1186159l��_guKDoug Ledford <dledford@redhat.com> - 3.3.18-2TA�- Fix an issue found by rpmdiff
- Related: bz1061587���^g�=KDoug Ledford <dledford@redhat.com> - 3.3.18-1T6x�- Update to latest upstream release
- Resolves: bz1061587, bz1042745, bz884555, bz948475{��]_�JHonggang Li <honli@redhat.com> - 3.3.21-4_�j�- Allow MCMR requests with default subnet prefix
- Resolves: bz1898273
�{�4�.����jg�LDoug Ledford <dledford@redhat.com> - 3.3.19-1Uq�@- Update to latest upstream release
- Build on s390
- Related: bz1186159l��iguLDoug Ledford <dledford@redhat.com> - 3.3.18-2TA�- Fix an issue found by rpmdiff
- Related: bz1061587���hg�=LDoug Ledford <dledford@redhat.com> - 3.3.18-1T6x�- Update to latest upstream release
- Resolves: bz1061587, bz1042745, bz884555, bz948475{��g_�KHonggang Li <honli@redhat.com> - 3.3.21-4_�j�- Allow MCMR requests with default subnet prefix
- Resolves: bz1898273c��f_kKHonggang Li <honli@redhat.com> - 3.3.21-3^��- Fix subnet_prefix issue
- Resolves: bz1828452]��e__KHonggang Li <honli@redhat.com> - 3.3.21-2\d�- Fix a few defects
- Resolves: bz1668201���d_�#KHonggang Li <honli@redhat.com> - 3.3.21-1\E�@- Rebase to latest upstream release 3.3.21
- Resolves: bz1535978, bz1653660
An��V�A���rg�=MDoug Ledford <dledford@redhat.com> - 3.3.18-1T6x�- Update to latest upstream release
- Resolves: bz1061587, bz1042745, bz884555, bz948475{��q_�LHonggang Li <honli@redhat.com> - 3.3.21-4_�j�- Allow MCMR requests with default subnet prefix
- Resolves: bz1898273c��p_kLHonggang Li <honli@redhat.com> - 3.3.21-3^��- Fix subnet_prefix issue
- Resolves: bz1828452]��o__LHonggang Li <honli@redhat.com> - 3.3.21-2\d�- Fix a few defects
- Resolves: bz1668201���n_�#LHonggang Li <honli@redhat.com> - 3.3.21-1\E�@- Rebase to latest upstream release 3.3.21
- Resolves: bz1535978, bz1653660]��m__LHonggang Li <honli@redhat.com> - 3.3.20-3[(�@- Fix BuildRequires
- Resolves: bz1567528f��l_qLHonggang Li <honli@redhat.com> - 3.3.20-2Y��@- Fix up preuninstall script
- Resolves: bz1508334�
��k_�=LHonggang Li <honli@redhat.com> - 3.3.20-1Y�@- Cleanup the spec file
- Rebase to latest upstream release 3.3.20
- Resolves: bz1456524
`�
x�(�`c��z_kMHonggang Li <honli@redhat.com> - 3.3.21-3^��- Fix subnet_prefix issue
- Resolves: bz1828452]��y__MHonggang Li <honli@redhat.com> - 3.3.21-2\d�- Fix a few defects
- Resolves: bz1668201���x_�#MHonggang Li <honli@redhat.com> - 3.3.21-1\E�@- Rebase to latest upstream release 3.3.21
- Resolves: bz1535978, bz1653660]��w__MHonggang Li <honli@redhat.com> - 3.3.20-3[(�@- Fix BuildRequires
- Resolves: bz1567528f��v_qMHonggang Li <honli@redhat.com> - 3.3.20-2Y��@- Fix up preuninstall script
- Resolves: bz1508334�
��u_�=MHonggang Li <honli@redhat.com> - 3.3.20-1Y�@- Cleanup the spec file
- Rebase to latest upstream release 3.3.20
- Resolves: bz1456524���tg�MDoug Ledford <dledford@redhat.com> - 3.3.19-1Uq�@- Update to latest upstream release
- Build on s390
- Related: bz1186159l��sguMDoug Ledford <dledford@redhat.com> - 3.3.18-2TA�- Fix an issue found by rpmdiff
- Related: bz1061587
���{�c��]��__NHonggang Li <honli@redhat.com> - 3.3.20-3[(�@- Fix BuildRequires
- Resolves: bz1567528f��_qNHonggang Li <honli@redhat.com> - 3.3.20-2Y��@- Fix up preuninstall script
- Resolves: bz1508334�
��_�=NHonggang Li <honli@redhat.com> - 3.3.20-1Y�@- Cleanup the spec file
- Rebase to latest upstream release 3.3.20
- Resolves: bz1456524���~g�NDoug Ledford <dledford@redhat.com> - 3.3.19-1Uq�@- Update to latest upstream release
- Build on s390
- Related: bz1186159l��}guNDoug Ledford <dledford@redhat.com> - 3.3.18-2TA�- Fix an issue found by rpmdiff
- Related: bz1061587���|g�=NDoug Ledford <dledford@redhat.com> - 3.3.18-1T6x�- Update to latest upstream release
- Resolves: bz1061587, bz1042745, bz884555, bz948475{��{_�MHonggang Li <honli@redhat.com> - 3.3.21-4_�j�- Allow MCMR requests with default subnet prefix
- Resolves: bz1898273
�{�4�.����g�ODoug Ledford <dledford@redhat.com> - 3.3.19-1Uq�@- Update to latest upstream release
- Build on s390
- Related: bz1186159l��guODoug Ledford <dledford@redhat.com> - 3.3.18-2TA�- Fix an issue found by rpmdiff
- Related: bz1061587���g�=ODoug Ledford <dledford@redhat.com> - 3.3.18-1T6x�- Update to latest upstream release
- Resolves: bz1061587, bz1042745, bz884555, bz948475{��_�NHonggang Li <honli@redhat.com> - 3.3.21-4_�j�- Allow MCMR requests with default subnet prefix
- Resolves: bz1898273c��_kNHonggang Li <honli@redhat.com> - 3.3.21-3^��- Fix subnet_prefix issue
- Resolves: bz1828452]��__NHonggang Li <honli@redhat.com> - 3.3.21-2\d�- Fix a few defects
- Resolves: bz1668201���_�#NHonggang Li <honli@redhat.com> - 3.3.21-1\E�@- Rebase to latest upstream release 3.3.21
- Resolves: bz1535978, bz1653660
Jn��V�J���w�PJakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982){��_�OHonggang Li <honli@redhat.com> - 3.3.21-4_�j�- Allow MCMR requests with default subnet prefix
- Resolves: bz1898273c��_kOHonggang Li <honli@redhat.com> - 3.3.21-3^��- Fix subnet_prefix issue
- Resolves: bz1828452]��
__OHonggang Li <honli@redhat.com> - 3.3.21-2\d�- Fix a few defects
- Resolves: bz1668201���_�#OHonggang Li <honli@redhat.com> - 3.3.21-1\E�@- Rebase to latest upstream release 3.3.21
- Resolves: bz1535978, bz1653660]��__OHonggang Li <honli@redhat.com> - 3.3.20-3[(�@- Fix BuildRequires
- Resolves: bz1567528f��
_qOHonggang Li <honli@redhat.com> - 3.3.20-2Y��@- Fix up preuninstall script
- Resolves: bz1508334�
��	_�=OHonggang Li <honli@redhat.com> - 3.3.20-1Y�@- Cleanup the spec file
- Rebase to latest upstream release 3.3.20
- Resolves: bz1456524
���*����w�GPJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��wSPJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���w�PJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)a���9PNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5
�N�D��a���9QNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5�����7PDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���w�PJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��w�PJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���w�PJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)�-��w�ePJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)
:���:�-��w�eQJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���w�GQJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��wSQJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���w�QJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
/v�i�!�/a��%�9RNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���$w�RJakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)���#��7QDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408���"��7QDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���!w�QJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|�� w�QJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���w�QJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��)w�eRJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���(w�GRJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��'wSRJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���&w�RJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
`v�i�`a��.�9SNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���-��7RDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���,w�RJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��+w�RJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���*w�RJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��2w�eSJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���1w�GSJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��0wSSJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���/w�SJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
/v�i�!�/a��9�9TNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���8w�TJakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)���7��7SDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408���6��7SDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���5w�SJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��4w�SJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���3w�SJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��=w�eTJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���<w�GTJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��;wSTJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���:w�TJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
`v�i�`a��B�9UNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���A��7TDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���@w�TJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��?w�TJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���>w�TJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��Fw�eUJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���Ew�GUJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��DwSUJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���Cw�UJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
/v�i�!�/a��M�9VNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���Lw�VJakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)���K��7UDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408���J��7UDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���Iw�UJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��Hw�UJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���Gw�UJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��Qw�eVJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���Pw�GVJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��OwSVJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���Nw�VJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
`v�i�`a��V�9WNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���U��7VDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���Tw�VJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��Sw�VJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���Rw�VJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)

e�r+��V��:��eD�c�
04f581972286e776f852cf380fd0a4c05af1556c3d62f8ad579d87985ee0467cD�b�
23e60a3de6f5ccfa5704efa5c39a19b795f04e65312ef6af6e4264233e4fa953D�a�
a9775c264bc9077729880ff223db6978a0ee4aae22b8fbdf9d5c6d935f6518a3D�`�
969eab9ba9b8ec436addf7c0e053780ff8e9fcafc51ae2195eee7d809f21dc64D�_�
e73f1115eaf8a0021df6047f5efc221b536a0cd13fdd292d1f38a1f658589414D�^�
bc124f709e0c7debfdda22b0a98dbce5ebc798a8c16477f0129128e573b3a65cD�]�
4f162133b3536d798fabbd26d093d1126b87e049d6687beb758da8930753e4f8D�\�
01b2d6f4dd3c509eda7a3396036cc2ba36461c6d867b18c64e8358fba4982e34D�[�
975ab2772de42fecf4ee5854a33ecf17992227d28f7a91eec834e9caac12e7feD�Z�
339f233813e1f39b24e1e909a69e3050071f267633c137494ad16972ff55f201D�Y�
2df5c1c5020f78e8c1d592e7c531833f864133f64fb76513eda7fa4b1d3f8a79D�X�
11d891b8f8df76c76199d0d95bc23fe7ef53c80851883e2f7981576c44654966D�W�
5d6009ff10b81ed847436f4edd71eb726209b7ed8b9c98078577cd9ace844de0
:���:�-��Zw�eWJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���Yw�GWJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��XwSWJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���Ww�WJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
/v�i�!�/a��a�9XNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���`w�XJakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)���_��7WDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408���^��7WDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���]w�WJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��\w�WJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���[w�WJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��ew�eXJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���dw�GXJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��cwSXJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���bw�XJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
`v�i�`a��j�9YNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���i��7XDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���hw�XJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��gw�XJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���fw�XJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��nw�eYJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���mw�GYJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��lwSYJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���kw�YJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
/v�i�!�/a��u�9ZNikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���tw�ZJakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)���s��7YDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408���r��7YDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���qw�YJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��pw�YJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���ow�YJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��yw�eZJakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���xw�GZJakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��wwSZJakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���vw�ZJakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
`v�i�`a��~�9[Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���}��7ZDmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���|w�ZJakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��{w�ZJakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���zw�ZJakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��w�e[Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���w�G[Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��wS[Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���w�[Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
/v�i�!�/a��	�9\Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���w�\Jakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)�����7[Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408�����7[Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���w�[Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��w�[Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���w�[Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��
w�e\Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���w�G\Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��wS\Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���
w�\Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
`v�i�`a���9]Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5�����7\Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���w�\Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��w�\Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���w�\Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��w�e]Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���w�G]Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��wS]Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���w�]Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
/v�i�!�/a���9^Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���w�^Jakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)�����7]Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408�����7]Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���w�]Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��w�]Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���w�]Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��!w�e^Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)��� w�G^Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��wS^Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���w�^Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
`v�i�`a��&�9_Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���%��7^Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���$w�^Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��#w�^Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���"w�^Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��*w�e_Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���)w�G_Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��(wS_Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���'w�_Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
�v�i�!�f��0ao`Tomáš Mráz <tmraz@redhat.com> 1.0.2k-11Z'�- fix deadlock in RNG in the FIPS mode in mariadb���/��7_Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408���.��7_Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���-w�_Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��,w�_Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���+w�_Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
\9�(\�G��4a�/`Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��3ao`Tomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��2a�e`Tomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��1a�%`Tomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus
�7K�9����9c�#`Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��8c�`Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���7a�?`Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��6a�o`Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��5a�)`Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
\9�(\�G��=a�/aTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��<aoaTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��;a�eaTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��:a�%aTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus
�7K�9����Bc�#aSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��Ac�aSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���@a�?aTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��?a�oaTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��>a�)aTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
���g��Ga�obTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��Fa�)bTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��Ea�/bTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��DaobTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�v��Cc�aSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
&l�gl�&� ��Mc�_bSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���Lc�WbSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��Kc�bSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���Jc�#bSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��Ic�bSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���Ha�?bTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)
m4k�mz��Rc�cSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���Qa�?cTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��Pa�ocTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��Oa�)cTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��Na�/cTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
�y~�8��1��Ww�mcDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��Vc�_cSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���Uc�WcSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��Tc�cSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���Sc�#cSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch

e�r+��V��:��eD�p�
820567529a85b68ae8094f0be50f5116b0622ed1c526afa0e239f84b9bcb0860D�o�
15eee91d297a4a3b7715b991e5411fa38326f5c44b7a58895868067a828537daD�n�
a5f13a41cc54cc7e9bcaf76ee19fec24dd4c8b4f637c43a411f8fe4af310a88cD�m�
1771d7f870046fcd2d0c96d054f425f3032a0f4271dfb54c5e5bb22cd2f87d11D�l�
5989f8701c6fe912d154675a3f7ad276f5dccc5afc8ccce28405408ee673c16cD�k�
08396cb866f024b0054c16918fe544406f737f7ddefcecbda04ad29ab9a27a15D�j�
94cc4c729c9fc12e3385fb74c8004acc5ebf27eed73cae3facf775403d14109eD�i�
37388f00a7d1fc6d93e26f1ef6a2ace5b99ec8b0ff895e5d156253d00fa59db3D�h�
3f51b4953396f40f83ef6281561e6aa2bd69daf5e98921e1562160c40eb64061D�g�
bf4623f90ace835b85614e7e022ffcb2427a5b8235c7dedd511d580ac0c878aaD�f�
96b2891b2db1ae3878909b85454b12d4f3bf98634a199e8944cd81886d37e424D�e�
eb5ebcc220cbcdd1df7a8fd9b4c1dcc27b611af10741997070d522208153e79bD�d�
74be24de7bd01781535f8ae78fba77bf331f0afd97e69de054496dfa406689b1
�7K�9����\c�#dSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��[c�dSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���Za�?dTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��Ya�odTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��Xa�)dTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
cd�	c�!��aw�MdDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-26d�- Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
- Resolves: rhbz#2176790�1��`w�mdDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��_c�_dSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���^c�WdSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��]c�dSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
���(�f��eaoeTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��da�eeTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��ca�%eTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulusf��baoeTomáš Mráz <tmraz@redhat.com> 1.0.2k-11Z'�- fix deadlock in RNG in the FIPS mode in mariadb
m4k�mz��jc�eSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���ia�?eTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��ha�oeTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��ga�)eTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��fa�/eTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
7yH�7f��oaofTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��na�efTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��ma�%fTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulusf��laofTomáš Mráz <tmraz@redhat.com> 1.0.2k-11Z'�- fix deadlock in RNG in the FIPS mode in mariadb���kc�#eSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
m4k�mz��tc�fSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���sa�?fTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��ra�ofTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��qa�)fTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��pa�/fTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
�y��f��xaogTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��wa�egTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��va�%gTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus���uc�#fSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
m4k�mz��}c�gSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���|a�?gTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��{a�ogTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��za�)gTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��ya�/gTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
y~��"��a�ehTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��a�%hTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus�v��c�gSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���~c�#gSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
�������a�?hTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�ohTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��a�)hTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��a�/hTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��aohTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)
������G��a�/iTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��
aoiTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�v��	c�hSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���c�#hSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��c�hSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference
�7K�9����c�#iSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��c�iSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���a�?iTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��
a�oiTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��a�)iTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
�d�U��G��a�/jTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��aojTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)� ��c�_iSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���c�WiSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��c�iSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
�7K�9����c�#jSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��c�jSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���a�?jTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�ojTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��a�)jTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
*d��*�D��a�)kTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��a�/kTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)� ��c�_jSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���c�WjSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��c�jSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
��{��v��$c�kSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���#c�#kSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��"c�kSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���!a�?kTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g�� a�okTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)
o_�8o�D��)a�)lTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��(a�/lTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)�1��'w�mkDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��&c�_kSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���%c�WkSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054
��{��v��.c�lSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���-c�#lSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��,c�lSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���+a�?lTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��*a�olTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)
O_�;O�g��3a�omTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��2a�)mTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�1��1w�mlDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��0c�_lSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���/c�WlSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054
&l�gl�&� ��9c�_mSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���8c�WmSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��7c�mSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���6c�#mSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��5c�mSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���4a�?mTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)
[J���[���>a�?nTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��=a�onTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��<a�)nTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�!��;w�MmDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-26d�- Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
- Resolves: rhbz#2176790�1��:w�mmDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160
���_�� ��Cc�_nSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���Bc�WnSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��Ac�nSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���@c�#nSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��?c�nSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference
sJ�:s�B��Ga�%oTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulusf��FaooTomáš Mráz <tmraz@redhat.com> 1.0.2k-11Z'�- fix deadlock in RNG in the FIPS mode in mariadb�!��Ew�MnDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-26d�- Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
- Resolves: rhbz#2176790�1��Dw�mnDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160
ZY�#Z�D��Ka�)oTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��Ja�/oTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��IaooTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��Ha�eoTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure
J�{J�B��Qa�%pTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulusf��PaopTomáš Mráz <tmraz@redhat.com> 1.0.2k-11Z'�- fix deadlock in RNG in the FIPS mode in mariadb���Oc�#oSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��Nc�oSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���Ma�?oTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��La�ooTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)
ZY�#Z�D��Ua�)pTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��Ta�/pTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��SaopTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��Ra�epTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure
��{��B��Za�%qTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus���Yc�#pSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��Xc�pSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���Wa�?pTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��Va�opTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)

e�r+��V��:��eD�}�
de13d1a20b6a077c828b91d64b7be5abb1b5809f45b27d389afd2811ffa6f9c1D�|�
593df90370183706f3bc69451b1aa4c6cd88b0a4d1d3964bc1b8e621b3d67d97D�{�
fc6cceaef55bd37f4fcdef13e567e0f496246d1ef59bd1803f1d77af60ef774aD�z�
60601627ced255e03b49d78f605f8c7726747b2eb27ab5531b5296d0afd1b2ceD�y�
d7327ee1af7919fb77069b475af28300ad4c73d10e840a156a1105e5099f1885D�x�
658486f1d946fc518624c59a2badf6990f524bb7d5d660d1e34420cc78dcfe62D�w�
49a7e87cdd6368571e9c30b74a1800f53df55d4cd91fc41ab8073e666edbda38D�v�
c01bfc1d06b6e8d39a0bb038993a565a42a4f152542fec05d266098c4206140fD�u�
7a1256ee4fd271d588649f70d8aa4492d3967b0afd9d82a145275924442baae0D�t�
9f4028fe73544b73e189e0028f1dae14bb0a141130988e21021ac4cef2074065D�s�
c403db828d16aa325941eddc93e7be599767dc0bb4ec3be436c20c8a9ad14744D�r�
b3004d122d0a738cbff817b9531b9787dcd2e46f3ed06c59e99fd50749720806D�q�
4d49a5d533e4c753cbeaf06a490dca1f72f5462a8fa7f3c634484c68241ddc7c
ZY�#Z�D��^a�)qTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��]a�/qTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��\aoqTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��[a�eqTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure
��{��v��cc�qSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���bc�#qSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��ac�qSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���`a�?qTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��_a�oqTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)
\9�(\�G��ga�/rTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��faorTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��ea�erTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��da�%rTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus
�7K�9����lc�#rSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��kc�rSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���ja�?rTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��ia�orTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��ha�)rTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
���g��qa�osTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��pa�)sTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��oa�/sTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��naosTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�v��mc�rSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
&l�gl�&� ��wc�_sSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���vc�WsSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��uc�sSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���tc�#sSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��sc�sSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���ra�?sTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)
�������|a�?tTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��{a�otTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��za�)tTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��ya�/tTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��xaotTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)bR1�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������1b��01c��41d��91e��=1f��B1g��G1h��M1i��R1j��W1l��\1m��a1n��e1o��j1p��o1q��t1r��x1s��}1t��1u��1v��1w��1x��1y��1z��1{��$1|��)1}��.1~��31��91���>1���C1���G1���K1���Q1���U1���Z1���^1���c1���g1���l1���q1���w1���|1���1���1���1���1���1���1���1���$1���)1���-1���21���61���;1���@1���E1���J1���P1���U1���Z1���_1���d1���i1���n1���r1���w1���{1���1���1���
1���1���1���1���1���#1���(1���-1���31���81���=1���B1���G1���K1���N1���Q1���T1���W1���[1���^1�a1Â�e1Ă�h1ł�k1Ƃ�o1ǂ�r1Ȃ�u
���_�� ��c�_tSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���c�WtSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��c�tSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���~c�#tSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��}c�tSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference
m4k�mz��c�uSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���a�?uTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�ouTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��a�)uTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��a�/uTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
�y~�8��1��w�muDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��
c�_uSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���	c�WuSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��c�uSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���c�#uSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
m4k�mz��c�vSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���a�?vTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�ovTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��
a�)vTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��a�/vTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
�y~�8��1��w�mvDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��c�_vSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���c�WvSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��c�vSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���c�#vSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
�7K�9����c�#wSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��c�wSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���a�?wTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�owTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��a�)wTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
cd�	c�!��w�MwDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-26d�- Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
- Resolves: rhbz#2176790�1��w�mwDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��c�_wSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���c�WwSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��c�wSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
�7K�9����$c�#xSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��#c�xSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���"a�?xTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��!a�oxTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D�� a�)xTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
cd�	c�!��)w�MxDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-26d�- Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
- Resolves: rhbz#2176790�1��(w�mxDmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��'c�_xSahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���&c�WxSahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��%c�xSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
���(�f��-aoyTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��,a�eyTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��+a�%yTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulusf��*aoyTomáš Mráz <tmraz@redhat.com> 1.0.2k-11Z'�- fix deadlock in RNG in the FIPS mode in mariadb
m4k�mz��2c�ySahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���1a�?yTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��0a�oyTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��/a�)yTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��.a�/yTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
�y��f��6aozTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��5a�ezTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��4a�%zTomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus���3c�#ySahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
m4k�mz��;c�zSahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���:a�?zTomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��9a�ozTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��8a�)zTomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��7a�/zTomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
y~H�D��@a�){Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��?a�/{Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��>ao{Tomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�v��=c�zSahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���<c�#zSahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
��{��v��Ec�{Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���Dc�#{Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��Cc�{Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���Ba�?{Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��Aa�o{Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)
9_��%9�g��Ja�o|Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��Ia�)|Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��Ha�/|Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)� ��Gc�_{Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���Fc�W{Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054
&l�gl�&� ��Pc�_|Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���Oc�W|Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��Nc�|Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���Mc�#|Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��Lc�|Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���Ka�?|Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)
�J���z��Uc�}Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���Ta�?}Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��Sa�o}Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��Ra�)}Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�1��Qw�m|Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160
�y~�8��1��Zw�m}Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��Yc�_}Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���Xc�W}Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��Wc�}Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���Vc�#}Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
Z�)�f��_ao~Tomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��^a�e~Tomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��]a�%~Tomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulusf��\ao~Tomáš Mráz <tmraz@redhat.com> 1.0.2k-11Z'�- fix deadlock in RNG in the FIPS mode in mariadb�!��[w�M}Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-26d�- Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
- Resolves: rhbz#2176790

e�r+��V��:��eD�
�
9160f97ee226a06b3da3e93f37a538bc89b639fbbfac6c152018d42532d6799bD�	�
712ab01fa46be5aaee9891582b7f8a686291b410d047f9e6094789f904b00faaD��
888ebbd06b84707dedf11dfd38f8932aad6140dc08932e3e14ac9591d14843c5D��
cc98e7151dca218503a6d908ee58257a7e7958347117c435c93746255a841c89D��
62ee7eed9057a933f386601510a2ee1dbe6cee295c00a4e75c1d5ca32a0e17cdD��
1adcef07e0e83f4fc27809eacf51bdd1d75267095f0cf92832e1d636e04e477cD��
d2bc75a69afc2e940e2a933c55941d7c4f269ade992c161c681b9cd72ff158a4D��
0460e382ab0b0ff062ef27fbd07fe4a599aeb4704c295ef0ba4f0c14632a257aD��
eff160acd2825b382858cba77f4f60a433755fd1621b6510f0a8a57dae54a512D��
2130f82985059fdc1825e34c818c10ce54691d99d56fb5b663cd8452c750913eD��
d8d9646b9eb2ea7556c1afe53b0eacb8fcacd861d66fc82fd1bcecaf2c47e41aD��
569c75b83fb8869babbff7da458924e4ef2a3cceabd9c1e5b1274d1d95ca521cD�~�
eee4cb71588d025d63ac9b8c966fe2a49c4d9ab89f23553fcb7e360eb7ef2343
m4k�mz��dc�~Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���ca�?~Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��ba�o~Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��aa�)~Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��`a�/~Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
7yH�7f��iaoTomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��ha�eTomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��ga�%Tomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulusf��faoTomáš Mráz <tmraz@redhat.com> 1.0.2k-11Z'�- fix deadlock in RNG in the FIPS mode in mariadb���ec�#~Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
m4k�mz��nc�Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���ma�?Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��la�oTomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��ka�)Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��ja�/Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
�y��f��rao�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�"��qa�e�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��pa�%�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus���oc�#Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
m4k�mz��wc��Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���va�?�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��ua�o�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��ta�)�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��sa�/�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)
y~��"��{a�e�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-13['��- add S390x assembler updates
- make CA name list comparison function case sensitive (#1548401)
- fix CVE-2017-3735 - possible one byte overread with X.509 IPAdressFamily
- fix CVE-2018-0732 - large prime DH DoS of TLS client
- fix CVE-2018-0737 - RSA key generation cache timing vulnerability
- fix CVE-2018-0739 - stack overflow parsing recursive ASN.1 structure�B��za�%�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-12Z1@- fix CVE-2017-3737 - incorrect handling of fatal error state
- fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus�v��yc��Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���xc�#�Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patch
�������a�?�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�o�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��~a�)�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��}a�/�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��|ao�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)
������G��a�/�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��ao�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)�v��c��Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���c�#�Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��c��Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference
�7K�9����
c�#�Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��	c��Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���a�?�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�o�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��a�)�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
�d�U��G��a�/�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)f��ao�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-14[(�@- ppc64le is not multilib architecture (#1585004)� ��
c�_�Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���c�W�Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��c��Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
�7K�9����c�#�Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��c��Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���a�?�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�o�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��a�)�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction
*d��*�D��a�)�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��a�/�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)� ��c�_�Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���c�W�Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��c��Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126
��{��v��c��Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���c�#�Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��c��Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���a�?�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��a�o�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)
o_�8o�D��#a�)�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�G��"a�/�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-16[r�@- fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA
- fix incorrect error message on FIPS DSA parameter generation (#1603597)�1��!w�m�Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� �� c�_�Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���c�W�Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054
��{��v��(c��Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���'c�#�Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��&c��Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���%a�?�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��$a�o�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)
O_�;O�g��-a�o�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��,a�)�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�1��+w�m�Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160� ��*c�_�Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���)c�W�Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054
&l�gl�&� ��3c�_�Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���2c�W�Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��1c��Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���0c�#�Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��/c��Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference���.a�?�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)
[J���[���8a�?�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-19\��@- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)�g��7a�o�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-18\�C@- fix CVE-2018-0734 - DSA signature local timing side channel
- fix CVE-2019-1559 - 0-byte record padding oracle
- close the RSA decryption One & done EM side channel (#1619558)�D��6a�)�Tomáš Mráz <tmraz@redhat.com> 1.0.2k-17\Z�@- use SHA-256 in FIPS RSA pairwise key check
- fix CVE-2018-5407 (and CVE-2018-0735) - EC signature local
  timing side-channel key extraction�!��5w�M�Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-26d�- Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
- Resolves: rhbz#2176790�1��4w�m�Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160
���_�� ��=c�_�Sahana Prasad <sahana@redhat.com> 1.0.2k-24a�@- Updates patch openssl-1.0.2k-cve-2021-3712.patch to only free on push failure.
- Resolves: rhbz#2039993���<c�W�Sahana Prasad <sahana@redhat.com> 1.0.2k-23a��@- fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings
- Resolves: rhbz#1996054�v��;c��Sahana Prasad <sahana@redhat.com> 1.0.2k-22a/k@- fix CVE-2021-23841 openssl: NULL pointer dereference
  in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126���:c�#�Sahana Prasad <sahana@redhat.com> 1.0.2k-21_�$�- remove ASN1_F_ASN1_ITEM_EMBED_D2I from openssl-1.0.2k-cve-2020-1971.patchz��9c��Sahana Prasad <sahana@redhat.com> 1.0.2k-20_�$�- fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference
�J�Bb����Bg�A�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��Ag�Q�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603^��@gY�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129�!��?w�M�Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-26d�- Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
- Resolves: rhbz#2176790�1��>w�m�Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:1.0.2k-25b;�- Fixes CVE-2022-2078 Infinite loop in BN_mod_sqrt() reachable when parsing certificates
- Related: rhbz#2067160
^0�	W^�t��Gi��Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��Fi�s�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762���Ei�O�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���Di��Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��Ci�/�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441
Wm��W���Ke�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907�h��Je�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907���Ii��Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���Hi�5�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401
�z:����Ne�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189�;��Me��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���Le��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366
�Z���b��Qe�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��Pe��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��Oe�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659
��}��h��Te�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��Si�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���Re�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��We��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���Ve��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���Ue�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��[e�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��Ze��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��Ye�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���Xe�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��^e�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��]i�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���\e�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492

e�r+��V��:��eD��
548503fcc3f2803339a5af3de411713359e79ca6ca3db7aa4c0e221102c86c86D��
5a1a14cf6500d688cfc898ef4ad3cdca51ca829da10e098f412a9a7c63ce86a6D��
75e71ed053fe00917b68d0c20c63e517d0ac97df8a4844808522ccadcc94f568D��
b44b031eb36308c5d95e0003f3cb129a5fec117dca9e4bca0e8448da97c03db7D��
b465213867e16065d782ed8791eb493ef1e3a0260294e730ea9d4c86e4e7510fD��
ce2818bc990e044731480c4212c5c16d899dd8492d225c3948f138e58c8031c5D��
d56af4f540372397f7f6ab93063de3ab226d756872e62f763f65d636a00b901cD��
8dedf2da6f27ca502253716ed29c2de2e1c11c34463b46e12d9e88053e48796cD��
232dc47c310816030f4221dedbaacb35004dc24f0a8fd53b574e4aaf87fa67d7D��
0a050612befea77a0541c8b1e8c5655262271ebc40a5897b3fcb7bc85c56fc53D�
�
8d89498cb8dcf0209edf2265d251f9c645f540e964d455d6554b04f5f5f6edd8D��
54ab243faa67657b5614c4deb2cdc3ed777723a654a2faa316fcbea81f89ea3aD��
7878e948667fc382edca199743ec7e4e3bd9f82c2a0b2e50af7f93121264ee6e
�_���;��ae��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���`e��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���_e�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��ee�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��de��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��ce�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���be�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��he�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��gi�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���fe�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��ke��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���je��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���ie�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��oe�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��ne��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��me�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���le�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��re�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��qi�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���pe�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��ue��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���te��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���se�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��ye�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��xe��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��we�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���ve�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��|e�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��{i�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���ze�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���~e��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���}e�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��e�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��e�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���e�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��e�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��i�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���e�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��	e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���e��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���e�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��
e�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��e�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���
e�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��e�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��i�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���e�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���e��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���e�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��e�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��e�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���e�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��e�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��i�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���e�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���e��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���e�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��!e�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r�� e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��e�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���e�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��$e�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��#i�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���"e�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��'e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���&e��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���%e�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��+e�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��*e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��)e�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���(e�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��.e�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��-i�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���,e�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��1e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���0e��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���/e�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��5e�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��4e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��3e�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���2e�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��h��8e�m�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-3\��- Support more than 64KB of fence agent output
- Avoid unnecessary recovery of group member
- Improve IPC clients' authentication of servers (CVE-2018-16877)
- Improve pacemakerd authentication of running subdaemons (CVE-2018-16878)
- Fix use-after-free with potential information disclosure (CVE-2019-3885)
- Resolves: rhbz#1549366
- Resolves: rhbz#1609453
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907x��7i�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���6e�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
�_���;��;e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-1]@1@- Recover from quiesced DC disk
- Avoid timeouts and excessive stonithd CPU usage at start-up in large clusters
- Default serialized order constraints to symmetrical=false
- Avoid fence loops due to incorrect Pacemaker Remote ordering
- Default concurrent-fencing to true
- Harden GnuTLS priorities
- Rebase on upstream 1.1.21 final version
- Resolves: rhbz#1596125
- Resolves: rhbz#1625671
- Resolves: rhbz#1672225
- Resolves: rhbz#1704870
- Resolves: rhbz#1710422
- Resolves: rhbz#1727280
- Resolves: rhbz#1731189���:e��Ken Gaillot <kgaillot@redhat.com> - 1.1.20-5\��- Correct memory issue in fence agent output fix
- Resolves: rhbz#1549366���9e�U�Ken Gaillot <kgaillot@redhat.com> - 1.1.20-4\��@- Update security patches
- Resolves: rhbz#1694556
- Resolves: rhbz#1694559
- Resolves: rhbz#1694907
ps�Wp�b��?e�a�Ken Gaillot <kgaillot@redhat.com> - 1.1.22-1^��@- Show correct disabled resource count in status display
- Run-time option for Pacemaker Remote bind address
- Avoid restart loop when migration is left dangling
- Improve help for clean-up option
- Do not overweight group colocation scores
- Rebase on upstream 1.1.22+63d2d79
- Resolves: rhbz#1458953
- Resolves: rhbz#1743373
- Resolves: rhbz#1757951
- Resolves: rhbz#1758969
- Resolves: rhbz#1760669
- Resolves: rhbz#1792492r��>e��Ken Gaillot <kgaillot@redhat.com> - 1.1.21-4^ P@- Implement shutdown-lock feature
- Resolves: rhbz#1781820�!��=e�_�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-3]�@- Avoid invalid transition when guest node's host is unclean but can't be fenced
- Resolves: rhbz#1755659���<e�-�Ken Gaillot <kgaillot@redhat.com> - 1.1.21-2]e@- Add latest upstream bug fixes to rebase roll-up patch
- Resolves: rhbz#1731189
��}��a��C�9�Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���Bw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)x��Ai�	�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1.1_���- Prevent ACL bypass (CVE-2020-25654)
- Resolves: rhbz#1892140���@e�!�Ken Gaillot <kgaillot@redhat.com> - 1.1.23-1^�V@- Improve help for clean-up option
- Avoid pending DC fencing getting "stuck" in status display
- Rebase on upstream 1.1.23-rc1
- Resolves: rhbz#1758969
- Resolves: rhbz#1787749
- Resolves: rhbz#1792492
:���:�-��Gw�e�Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���Fw�G�Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��EwS�Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���Dw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
�v�i�8�a��M�9�Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���Lw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-13 + 0.10.3-1Y��- Revert default of GSSAPIStrictAcceptorCheck=no back to yes (#1488982)���K��7�Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���Jw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��Iw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���Hw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��Qw�e�Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���Pw�G�Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��OwS�Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���Nw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
`v�i�`a��V�9�Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���U��7�Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���Tw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��Sw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���Rw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
:���:�-��Zw�e�Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���Yw�G�Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��XwS�Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���Ww��Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
�v�i�!�a��`�9�Nikos Mavrogiannopoulos <nmav@redhat.com> - 7.4p1-14 + 0.10.3-2Y�Z@- Rebuilt for RHEL-7.5���_��7�Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408���^��7�Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���]w��Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��\w��Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���[w��Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)

e�r+��V��:��eD�$�
1d55e611e9d8085d8a329b27450b4fb96d5c488a59e0f8043df68d8765940b62D�#�
c72ec63e342428ba130a7b46db76c98e1bb002c13c208a1768a433c1cb1625f6D�"�
0e0d9ae9f3664f3a8aa2a994019ef5a1293a67c401f5fde714661afc37cd8438D�!�
1e9916f4ea1571cb999400331ff1a0186d71b4f21844b0f5ed33712e42b454deD� �
92f5cebdb6aa43fe3966ec42e66aa71cfa74ff2c65896eb315d447b773ceeffaD��
ffa522d1a8d77788b084a92a321a67dd3087522b4c665f5b59ff0576763efcd2D��
b54db851c807040a3e77a35898fb88a95a15258a38f47ec41a9657101b87a477D��
524cdd869b6f342223fb2289ff3e3ebaa8408bf57bbd257d0349efe0946b9dbdD��
06218f80b35658bc0f58476f103dcd67638009385f21b603c1005339fbd5841eD��
ce80d24890bb555cc41eecc7ee95f5ff2de2c648c51eb9f4c10e2d48275a1c45D��
c382bcbdefe46cc6dfe4495a86577e964b1e6d8d445b5112c6f6224c1177b7ebD��
dd909825185de2980f63f3adca1ec98161c8737e440d1fdcae489d50885111a0D��
e204c387125736b5126202b4d99222db286a7d676c022fc50ccfe99a1a8ed302
:���:�-��dw�e�Jakub Jelen <jjelen@redhat.com> - 7.4p1-18 + 0.10.3-2\d�- invalidate supplemental group cache used by temporarily_use_uid()
  when the target uid differs (#1583735)���cw�G�Jakub Jelen <jjelen@redhat.com> - 7.4p1-17 + 0.10.3-2\<y�- Fix for CVE-2018-15473 (#1619079)
- Enable GCM mode for AES ciphers in FIPS mode (#1600869)c��bwS�Jakub Jelen <jjelen@redhat.com> - 7.4p1-16 + 0.10.3-2Z	�- Fix for CVE-2017-15906 (#1517226)���aw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-15 + 0.10.3-2ZN�- Do not hang if SSH AuthorizedKeysCommand output is too large (#1496467)
- Do not segfault pam_ssh_agent_auth if keyfile is missing (#1494268)
- Do not segfault in audit code during cleanup (#1488083)
- Add WinSCP 5.10+ compatibility (#1496808)
- Clatch between ClientAlive and rekeying timeouts (#1480510)
- Exclude dsa and ed25519 from default proposed keys in FIPS mode (#1456853)
- Add enablement for openssl-ibmca and openssl-ibmpkcs11 (#1478035)
Jv�i�!�J8��kW�Tim Waugh <twaugh@redhat.com> 0.3.2-1MS�@- 0.3.2.���j���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.1-4MQ0@- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild���i��7�Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-23 + 0.10.3-2d�!�- Avoid remote code execution in ssh-agent PKCS#11 support
  Resolves: CVE-2023-38408���h��7�Dmitry Belyavskiy <dbelyavs@redhat.com> - 7.4p1-22 + 0.10.3-2aU��- avoid segfault in Kerberos cache cleanup (#1999263)
- fix CVE-2021-41617 (#2008884)���gw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-21 + 0.10.3-2]�- Avoid double comma in the default cipher list in FIPS mode (#1722446)|��fw��Jakub Jelen <jjelen@redhat.com> - 7.4p1-20 + 0.10.3-2\��@- Revert the updating of cached passwd structure (#1712053)���ew��Jakub Jelen <jjelen@redhat.com> - 7.4p1-19 + 0.10.3-2\}@- Update cached passwd structure after PAM authentication (#1674541)
Se�/��3�S���sU�C�Than Ngo <than@redhat.com> - 0.3.3-5_��- Resolves: #1905282, filterdiff not removing the header from excluded files in a git patchL��r]?�Daniel Mach <dmach@redhat.com> - 0.3.3-4R�U�- Mass rebuild 2014-01-24L��q]?�Daniel Mach <dmach@redhat.com> - 0.3.3-3R�k�- Mass rebuild 2013-12-27l��pW��Tim Waugh <twaugh@redhat.com> 0.3.3-2Qf��- Fixed help output (bug #948973).
- Fixed changelog dates.8��oW�Tim Waugh <twaugh@redhat.com> 0.3.3-1QZ�@- 0.3.3.���n���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.2-4Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���m���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.2-3P	H@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���l���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.2-2O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
��+����vc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��uc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��tc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��zc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���yc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��xc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��wc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��~c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��}e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��|e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��{c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��	c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���
c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���
c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)bR20RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������1ʂ�|1˂�1̂�1͂�1΂�	1ς�
1Ђ�1т�1҂�1ӂ�1Ԃ�1Ղ�!1ւ�$1ׂ�'1؂�+1ق�.1ڂ�11ۂ�51܂�81݂�;1ނ�?1߂�C1��G1��M1��Q1��V1��Z1��`1��d1��k1��s1��v1��z1��~1��1��1��	1��
1��1��1��1��1���1���$1���'1���+1���/1���21���61���:1���=1���B2��E2��I2��M2��P2��T2��X2��[2��`2��c2
��g2��k2��n2
��r2��v2��y2��~2��2��2��	2��2��2��2��2��2��2��#2��'2��*2��.2��22��52 ��:2!��=2"��A2#��E2$��H2%��L2&��P2'��S2(��X2)��[2*��_2+��c2-��f2.��j2/��n
�G�x��$e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��#c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��"c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���!c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s�� c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��'c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��&c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��%e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���+c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��*c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��)c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���(c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��/e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��.e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��-c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��,c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����2c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��1c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��0c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��6c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���5c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��4c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��3c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��:c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��9e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��8e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��7c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��=c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���<c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��;c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��Be�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Ac��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��@c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���?c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��>c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��Ec�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Dc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ce�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���Ic�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Hc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Gc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Fc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��Me�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Le�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Kc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Jc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����Pc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Oc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Nc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��Tc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Sc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Rc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Qc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��Xc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��We�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Ve�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Uc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��[c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Zc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Yc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��`e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��_c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��^c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���]c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��\c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��cc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��bc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��ae�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)

e�r+��V��:��eD�1�
a679dce4cdf9324f44ec3dde672fc1978611c584f08c5d478d5091c78cbd8d27D�0�
47969fe770db3c0a761b6cada255644049a5915767baa562e1ad4010e338fa35D�/�
1563bc40289a666bdb5b6b948e788815b2b17e6ae8e32bd7645f8b2183f82d81D�.�
61a3387e568e2d46dba9932a1b959d8cdcdc17e7ba5ba6162d1085700bca40bfD�-�
afbb3b090c43e945d72c42562f98eaacc46b54087a8745127ab819b83c16c1d4D�,�
a9fe909da2403e47e2010f35a9f2d61ffe1808b042a987b503c7c7c86a4ca895D�+�
935c4a6b750a10f3954948c3fdc3d3d3fc914b613533a75f0b3f087222591c52D�*�
6d7a031416a306298ea9aa3f89fda52e0ed56ff1a48e7c9aa6e2d05c299a912bD�)�
cb8f53283b6ea93d8c0582b7445551d68528dd0bc9eb4f0843b5026088dc7d1bD�(�
c6d99f5b0af764bb805c8a25d287df1075775cac7560d92681c1956e45be1836D�'�
db61bcfb079f0f252d5ffb4b3f3f8e5ecb7d0963e782c43dc2c33b98250903afD�&�
e2c51db626a29271a596a4998c57628cb1a37278b0c06566729c4f36ebe12ebfD�%�
1c18af2ea0813b4f11b632925aa26a45a80769bbc1970188c2088f2a572d15f2
|`{|���gc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��fc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��ec�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���dc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��ke�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��je�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��ic��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��hc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����nc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��mc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��lc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��rc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���qc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��pc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��oc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��vc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��ue�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��te�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��sc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��yc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���xc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��wc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��~e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��}c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��|c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���{c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��zc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��	e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��
c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��
c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���#c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��"c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��!c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)��� c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��'e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��&e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��%c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��$c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����*c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��)c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��(c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��.c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���-c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��,c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��+c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��2c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��1e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��0e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��/c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��5c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���4c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��3c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��:e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��9c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��8c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���7c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��6c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��=c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��<c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��;e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���Ac�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��@c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��?c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���>c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��Ee�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��De�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Cc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Bc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����Hc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Gc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Fc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��Lc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Kc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Jc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Ic�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��Pc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Oe�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Ne�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Mc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��Sc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Rc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Qc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��Xe�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Wc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Vc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Uc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Tc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��[c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Zc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ye�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���_c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��^c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��]c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���\c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��ce�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��be�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��ac��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��`c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)

e�r+��V��:��eD�>�
ef66a09a84348d5622f0a06d5b40c4c3a826cd62cc050713646da3398248d3bcD�=�
000c783ad67a44fbc26df8ad81ecd49cdb80c72bac2e0468445fe1454d75a522D�<�
3d240ca1688d3b6d6b6371756d97a6aeb744a9a8557a0e554507ed284c013250D�;�
fb054f7e2c4002421c1a192b728bcaf7b397d066ecfefa67cb8fef0e35bc581cD�:�
58e972759347ee479f41461c94e8a34221731d3f5e4a517f3472362a853548e8D�9�
517ba6cf72ceb45dad798a989a8d5555073598c3fdb08328ca70ce3270d794ecD�8�
555b9b32b3933d547da1546861b8ba783cebcece9d878cb604bcea85de993e1eD�7�
9c7aa04ec57ce07caa9cac6c9e1c323ac60dccf00396891f117caa96863e4bc8D�6�
0e50e504282d4892f5bb05084db338d47c7312f569aaa3fcbb60451b38e17abdD�5�
3d77cb8ffdf08db08553aa94df7707d9a0b2fdd0e4b233f18189356e16f26f6dD�4�
50637eb878b9d983dd9ef2ddcf46fd38bb751310409cbed318028c6ff3c514daD�3�
31030f948b4de98b9532d047d42d0551f372894911f715fa36be3ad12c33673bD�2�
830b3c9f628ae0632f8a286c53dd687d6d9700525aa381704ed8d5f152ff43d5
��+����fc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��ec�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��dc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��jc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���ic�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��hc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��gc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��nc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��me�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��le�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��kc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��qc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���pc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��oc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��ve�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��uc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��tc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���sc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��rc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��yc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��xc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��we�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���}c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��|c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��{c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���zc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��~c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��
e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��	c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��
c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����"c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��!c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y�� c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��&c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���%c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��$c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��#c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��*c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��)e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��(e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��'c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��-c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���,c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��+c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��2e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��1c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��0c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���/c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��.c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��5c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��4c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��3e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���9c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��8c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��7c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���6c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��=e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��<e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��;c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��:c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����@c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��?c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��>c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��Dc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Cc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Bc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Ac�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��Hc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ge�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Fe�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Ec��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��Kc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Jc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Ic�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��Pe�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Oc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Nc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Mc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Lc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��Sc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Rc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Qe�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���Wc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Vc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Uc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Tc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��[e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Ze�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Yc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Xc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����^c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��]c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��\c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��bc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���ac�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��`c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��_c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��fc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��ee�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��de�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��cc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)

e�r+��V��:��eD�K�
593add2cc79905baeb70c882cdcad64327b85acb067b1c40ed26d9b81428f98fD�J�
fdd43196e4073342f9366aaa990c71e1f5ed36c633b8c6bc935da0a5d6fd8dd6D�I�
e1c638e35cb4c885aeeee8317465b9424dc26e85b3d95b1a84601727366a7bafD�H�
1d1a5f1c9af127056984dbd611ad930070668a97c33632c67e5261d7e1cb2491D�G�
02bef4b4e654f8dd811b3eecdf5516bd91608806ac3f8f3f596117947edc6652D�F�
e6275a113df1d4b0f258355e75adebd1cc562e086cb9229721d17bdf2efe7547D�E�
5b2d852e11af1f062bd27d2ec053f7544ae75e75c9c69a0eba94e287ef60f044D�D�
25c2ea7e33ae0636ef4ab7f805e637c22a39efff5c74c6192209cc229e03cc3fD�C�
f26eeb8cccc9c113330f61096bc1da10e3aa2798e3da03526928f761d77785ecD�B�
3aca72fcb712db6bcacfb3033aa1cee51230819ab53e90a5d44e468d36de4777D�A�
625bcfa68a8612af0baa8859f0b08904bf96f2b85129d8b178500dc33ae0d9b1D�@�
e15ae7c19afb196a228163866e632f1a6dcc877a8490009959707d354bf833c5D�?�
3b6da3b418fa4789feaf744245bf1f8d61ffecf40017e594ba7ddac0372332c0
#�#�`��ic�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���hc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��gc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��ne�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��mc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��lc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���kc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��jc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��qc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��pc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��oe�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���uc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��tc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��sc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���rc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��ye�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��xe�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��wc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��vc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����|c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��{c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��zc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��~c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��}c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��
c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���	c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��
e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issuebR2�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������21��v22��y23��}24��25��26��27��28��29��2:��2;��2<��2=��"2>��&2?��*2@��-2A��22B��52C��92D��=2E��@2F��D2G��H2H��K2I��P2J��S2K��W2L��[2M��^2N��b2O��f2Q��i2R��n2S��q2T��u2U��y2V��|2W��2X��2Y��2Z��2[��2\��2^��2_��2`��2a��"2b��%2c��*2d��-2e��12f��52g��82h��<2i��@2j��C2k��H2l��K2m��O2n��S2o��V2p��Z2q��^2r��a2s��f2t��i2v��m2w��q2x��t2y��x2z��|2{��2|��2}��2~��2��2���2���2���2���2���"2���%2���)2���-2���02���42���82���;2���@2���C2���G2���K2���N2���R2���V2���Y2���^2���a
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��"c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��!e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x�� e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��%c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���$c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��#c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��*e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��)c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��(c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���'c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��&c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��-c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��,c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��+e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���1c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��0c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��/c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���.c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��5e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��4e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��3c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��2c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����8c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��7c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��6c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��<c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���;c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��:c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��9c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��@c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��?e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��>e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��=c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��Cc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Bc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Ac�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��He�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Gc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Fc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Ec�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Dc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��Kc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Jc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ie�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���Oc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Nc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Mc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Lc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��Se�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Re�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Qc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Pc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����Vc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Uc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Tc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��Zc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Yc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Xc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Wc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��^c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��]e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��\e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��[c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��ac�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���`c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��_c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��fe�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��ec��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��dc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���cc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��bc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��ic�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��hc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��ge�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)

e�r+��V��:��eD�X�
fabce6473ab9dd2d36533444066b3b09b7055e6949844f6b7b52531e3d42f914D�W�
f6db1b3fb1c1f752662a489c152e531a9bb3841011827eb8aa03225e7521e058D�V�
f26c9b240bf171505aca04c2bee6244c21da11124c5c4e9424507df05251fc9dD�U�
c17c899c85f4bf07e0a3d27c864052d979465728527bfb0e23eee049af68e8daD�T�
07061aa8f12ae1f09d204f2dc47e1608d9dce33042da18739a076fb7fa37fc13D�S�
484cb9d2c6a1b098378ddaf70bdb38133dc17da620e66106b68fe5d774de37f0D�R�
83798801595394e9798351e90ce24993027044de3f66b95c7da60059c1e8b1e1D�Q�
f636e55dd0ac87d64782eab7493353a4a5210c1b1178a67593b356a1a82b9180D�P�
c03292752990aca90663df6d79d0ced6a2ec2471fe674a726f6cb19f9a3d1044D�O�
a24b7bc1700c9020bc5e2e066c84007538c58004033ee208ec22a6eaec755711D�N�
66fb08b8f23996f9e3c5ff82303886294a5596df60377f29eaf713d40038fe52D�M�
f63a8f468eb357e3dd612d59f718c35eb2605df94684b551b1a984c732862fbeD�L�
9fff25a7253ba8afcc5b3c163312a1f8eb3150a5d840c690f898fdad96a16863
|`{|���mc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��lc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��kc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���jc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��qe�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��pe�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��oc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��nc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����tc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��sc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��rc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��xc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���wc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��vc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��uc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��|c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��{e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��ze�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��yc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���~c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��}c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��
c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��	c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��
c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��"e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��!c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5�� c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��%c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��$c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��#e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���)c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��(c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��'c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���&c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��-e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��,e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��+c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��*c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����0c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��/c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��.c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��4c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���3c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��2c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��1c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��8c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��7e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��6e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��5c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��;c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���:c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��9c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��@e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��?c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��>c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���=c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��<c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��Cc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Bc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ae�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���Gc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Fc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Ec�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Dc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��Ke�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Je�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Ic��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Hc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����Nc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Mc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Lc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��Rc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Qc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Pc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Oc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��Vc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ue�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Te�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Sc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��Yc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Xc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Wc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��^e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��]c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��\c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���[c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Zc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��ac�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��`c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��_e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���ec�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��dc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��cc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���bc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��ie�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��he�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��gc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��fc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)

e�r+��V��:��eD�e�
3a8eb48fa6a00af9e9dcaea80df8b2f0afdff3c5e06bdb7f02f38db59317e110D�d�
80f69ad6b79f4c708720c43f742e85b81d91b383f247fed78bd4d579dc9c3358D�c�
1ff119238acc93098135e4601d4178d8f681c72ad91be0993739d0774b0824fcD�b�
f01ff7e1c5e53cb4a291d2d25285e11895191ae658824d9c05669907941f4c34D�a�
4bc4f9b1528598d166b590b62bdc782e328cf226edcc858a3d5a60dfc73ace54D�`�
0265dca6e210e12ede6c0a683df0e1068291dfc35f0589544af045bc6f7bc898D�_�
80476ff98812cbbcef61bbadab92341dfb34cec67d6654aa104495f4469a5e98D�^�
4933dfa26c52c90e550bd7f8821e6e879a155babc9e60eba5472271aa463f60dD�]�
319595ccfe3f0ebb45ebf6df0161096bcff75941edf191e4b985817405996515D�\�
8f4946bea37ca0505511d6afe2aeaedbca2a9b61c752de65d10866dcea00fad4D�[�
7ec31554c4d3119952f3384c6c4e611722a6b4069ee4f6de885660f933e49194D�Z�
764b877678619df456d5a383316616afaadcb63072ba391f1e306803942b51c7D�Y�
ef84b3d3c085de9b3168fe830f5afbe609ea6253e83c2174f7a07ed4efa94889
��+����lc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��kc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��jc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��pc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���oc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��nc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��mc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��tc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��se�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��re�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��qc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��wc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���vc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��uc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��|e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��{c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��zc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���yc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��xc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��~c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��}e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����
c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��	c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���
c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���!c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s�� c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��%e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��$e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��#c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��"c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����(c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��'c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��&c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��,c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���+c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��*c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��)c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��0c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��/e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��.e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��-c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��3c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���2c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��1c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��8e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��7c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��6c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���5c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��4c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��;c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��:c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��9e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���?c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��>c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��=c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���<c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��Ce�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Be�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Ac��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��@c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����Fc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Ec�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Dc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��Jc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Ic�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Hc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Gc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��Nc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Me�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Le�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Kc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��Qc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Pc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Oc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��Ve�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Uc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Tc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Sc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Rc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��Yc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Xc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��We�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���]c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��\c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��[c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Zc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��ae�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��`e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��_c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��^c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����dc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��cc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��bc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��hc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���gc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��fc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��ec�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��lc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��ke�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��je�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��ic��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)

e�r+��V��:��eD�r�
e7dd086b27d2e2fb6eeac4d5032cfb52149916c6c88f31b59a12c5bc48c71672D�q�
d5ca3273956d3492b8666156d82f9217e75f2dc732b30d638dfba9f17f7cebd1D�p�
d8993e0975c0634b18618194daf0bdb6dc0edc17cb7ba015d6a03e74436a21b9D�o�
af1a3c42b3b93fdac07667c059dd206acf1333b397990288ff235aa9fb0d2febD�n�
8d0c9dc0f9481cf8541a333911be9aaa997c3a44c8cccd0692a6c28d7a5cc0afD�m�
492eb3d51d30fb1af43e49282e578161b5b19cce5b45e3fad31bb1affd621cffD�l�
f3feee0430c1446d861e17d9a043a72cc0690f3c3618ae27a60610bfc197c499D�k�
26d3fc7fdf6a25b2590dc3f7c8cdb80f22bcb6b5d68c1dad9f14e3337c0ff45bD�j�
4d30dcad5eaa26754ca93719c17a0897f17b0ffe1c050c78afd90769cefa027dD�i�
72c749a3e397bf18c32e697dd5d3adea234b8aa2a9755e5fd2cd34140f3988eeD�h�
9f3c7997d99823801fcaa63e46125569a1f11fcfe6050871f1260ac19a424cabD�g�
b7b161ba7512043214d72f44fb3c9276bcc89dc678e4ff85292f3754b4a8eb45D�f�
7a77df777aa49e715d99b786d4ec6329b8453f637359c0c17c35c656462e7f18
#�#�`��oc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���nc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��mc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��te�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��sc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��rc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���qc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��pc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��wc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��vc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��ue�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���{c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��zc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��yc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���xc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��~e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��}c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��|c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)bR2�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������2���i2���l2���p2���t2���w2���|2���2���2���2���
2���2���2���2���2���2���!2���%2���(2���,2���02���32���82���;2���?2���C2���F2���J2���N2���Q2���V2���Y2���]2���a2���d2���h2���l2���o2���t2���w2���{2���2�2Â�2ł�
2Ƃ�
2ǂ�2Ȃ�2ɂ�2ʂ�2˂� 2̂�$2͂�(2΂�+2ς�02Ђ�32т�72҂�;2ӂ�>2Ԃ�B2Ղ�F2ւ�I2ׂ�N2؂�Q2ق�U2ڂ�Y2ۂ�\2܂�`2݂�d2ނ�g2߂�l2��o2��s2��w2��z2��~2��2��2��
2��
2��2��2��2��2��!2��%2��)2��-2��12��52��92���=2���@2���A2���C2���E2���H2���J2���L
|G��|y��
c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��	e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��
c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+���� c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��$c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���#c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��"c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��!c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��(c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��'e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��&e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��%c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��+c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���*c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��)c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��0e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��/c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��.c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���-c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��,c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��3c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��2c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��1e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���7c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��6c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��5c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���4c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��;e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��:e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��9c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��8c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����>c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��=c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��<c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��Bc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Ac�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��@c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��?c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��Fc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ee�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��De�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Cc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��Ic�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Hc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Gc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��Ne�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Mc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Lc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Kc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Jc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��Qc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Pc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Oe�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���Uc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Tc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Sc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Rc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��Ye�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Xe�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Wc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Vc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����\c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��[c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Zc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��`c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���_c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��^c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��]c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��dc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��ce�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��be�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��ac��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��gc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���fc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��ec�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��le�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��kc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��jc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���ic�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��hc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��oc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��nc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��me�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)

e�r+��V��:��eD��
0af8a6a9e3b24968bed3be9b8de12ef658fbbfc2164edfd7186a7cced585e5ecD�~�
ab2758dd1426e326fee61bd2598d1e3e1099478f8620ffce7bed64945dec78b0D�}�
5bee4fc25b489a427e91f9972dc2c6116c2159fb420fda53da7e793376b51ff1D�|�
d9c05b12d02951ae6c67f270d0144e1db212577c99d87cbff4e1fbf63e9576cdD�{�
dc05a54d0cc4b8594a65cf6d4163952f2a15da4e0eb7775e31af36653653ed82D�z�
27200e5f598a44637d8820694fe7f924e715e6052b300a7ab49405cf2a482a7fD�y�
59c284ae5662792cf83c5c6b3c1f1a903d45dae94e28667259f016a7aec17a9fD�x�
eb29338fad95f41a0a8ae1941a0bf623792e7b35ba434c87283f68788f25817dD�w�
e2176587ba77f1d2a38ee9ec89781028cc33042f069dc103523ebee850d6b68fD�v�
36de51c65d7a208f69d6a68ad07d468a5ba7dc6b245097eac3e9db107d5d6ef4D�u�
63558d42575ae3f93c0f05594402264ff08a7344fbea29b0340f75e051de0cf2D�t�
555f9e2c01c86b0dd1946344981074918e29ef0848b6ac14772ed9fef57c2115D�s�
6ddc2c9687b0552d18c038d01ec287088d430f5ce898b65fb0fe065c00b8ef8f
|`{|���sc�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��rc��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��qc�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���pc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��we�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��ve�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��uc��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��tc�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����zc�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��yc�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��xc��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��~c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���}c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��|c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��{c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��
e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��	c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��
c�E�Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��c��Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���c�%�Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c��Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��c�_�Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U�Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��e�7�Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��e�
�Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c��Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	�Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
5��5�#��a�g�Ivan Devat <idevat@redhat.com> - 0.9.168-2]��@- Do not generate custom DH key if it was not requested by setting its custom length
- Resolves: rhbz#1760434�"��a�e�Ivan Devat <idevat@redhat.com> - 0.9.168-1]H@- Rebased to latest upstream sources (see CHANGELOG.md)
- Resolves: rhbz#1730747 rhbz#1725849 rhbz#1551663 rhbz#1595444 rhbz#1671174 rhbz#1712315 rhbz#1619253 rhbz#1710750 rhbz#1466088 rhbz#1558063 rhbz#1665898 rhbz#1500012 rhbz#1673829���a�!�Ivan Devat <idevat@redhat.com> - 0.9.167-3]@- Fixed crashes in the `pcs cluster auth` command
- Resolves: rhbz#1676956s��a��Ivan Devat <idevat@redhat.com> - 0.9.167-2\�8�- Updated logo and favicon in web UI
- Resolves: rhbz#1700542
p�\p�g��a�o�Ivan Devat <idevat@redhat.com> - 0.9.169-2^���- Keep autogenerated IDs of set constraints reasonably short
- Use fixed version of python module subprocess (package python2-subprocess32)
- Resolves: rhbz#1820813 rhbz#1824206� ��a�a�Ivan Devat <idevat@redhat.com> - 0.9.169-1^�@- Rebased to latest upstream sources (see CHANGELOG.md)
- Resolves: rhbz#1822078 rhbz#1759269 rhbz#1448569�2��e��Ondrej Mular <omular@redhat.com> - 0.9.168-4]��- Added command 'pcs resource relations'
- Added command 'pcs resource safe-disable'
- Resolves: rhbz#1770975 rhbz#1770973�C��a�'�Ivan Devat <idevat@redhat.com> - 0.9.168-3]�d@- More fixes for the case when PATH environment variable is not set
- Pcsd no longer sends Server HTTP header
- Empty constraint option are not allowed in pcs constraint order and pcs constraint colocation add commands
- Resolves: rhbz#1500012 rhbz#1765606 rhbz#1671174
<��c<�"��!a�e�Ivan Devat <idevat@redhat.com> - 0.9.168-1]H@- Rebased to latest upstream sources (see CHANGELOG.md)
- Resolves: rhbz#1730747 rhbz#1725849 rhbz#1551663 rhbz#1595444 rhbz#1671174 rhbz#1712315 rhbz#1619253 rhbz#1710750 rhbz#1466088 rhbz#1558063 rhbz#1665898 rhbz#1500012 rhbz#1673829��� a�!�Ivan Devat <idevat@redhat.com> - 0.9.167-3]@- Fixed crashes in the `pcs cluster auth` command
- Resolves: rhbz#1676956�q��q�s�Ivan Devat <idevat@redhat.com> - 0.9.169-3.el7_3.1_�u@- Explicitly close libcurl connections to prevent stalled TCP connections in CLOSE-WAIT state
- Added support for loading DH keys from a file
- Resolves: rhbz#1870551 rhbz#1888479���a�[�Ivan Devat <idevat@redhat.com> - 0.9.169-3^�W@- Added option: pcs resource [safe-]disable --simulate` has a new option `--brief` to print only a list of affected resources
- Fixed race-condition when removing multiple resources from web UI
- Resolves: rhbz#1833115 rhbz#1843593
�XY�� ��%a�a�Ivan Devat <idevat@redhat.com> - 0.9.169-1^�@- Rebased to latest upstream sources (see CHANGELOG.md)
- Resolves: rhbz#1822078 rhbz#1759269 rhbz#1448569�2��$e��Ondrej Mular <omular@redhat.com> - 0.9.168-4]��- Added command 'pcs resource relations'
- Added command 'pcs resource safe-disable'
- Resolves: rhbz#1770975 rhbz#1770973�C��#a�'�Ivan Devat <idevat@redhat.com> - 0.9.168-3]�d@- More fixes for the case when PATH environment variable is not set
- Pcsd no longer sends Server HTTP header
- Empty constraint option are not allowed in pcs constraint order and pcs constraint colocation add commands
- Resolves: rhbz#1500012 rhbz#1765606 rhbz#1671174�#��"a�g�Ivan Devat <idevat@redhat.com> - 0.9.168-2]��@- Do not generate custom DH key if it was not requested by setting its custom length
- Resolves: rhbz#1760434
c��c���)q�9�Ivan Devat <idevat@redhat.com> - 0.9.169-3.el7_3.2c>�@- Update rubygem rack
- Upgrade jquery in web-ui
- Resolves: rhbz#2099578 rhbz#2093232�q��(q�s�Ivan Devat <idevat@redhat.com> - 0.9.169-3.el7_3.1_�u@- Explicitly close libcurl connections to prevent stalled TCP connections in CLOSE-WAIT state
- Added support for loading DH keys from a file
- Resolves: rhbz#1870551 rhbz#1888479���'a�[�Ivan Devat <idevat@redhat.com> - 0.9.169-3^�W@- Added option: pcs resource [safe-]disable --simulate` has a new option `--brief` to print only a list of affected resources
- Fixed race-condition when removing multiple resources from web UI
- Resolves: rhbz#1833115 rhbz#1843593�g��&a�o�Ivan Devat <idevat@redhat.com> - 0.9.169-2^���- Keep autogenerated IDs of set constraints reasonably short
- Use fixed version of python module subprocess (package python2-subprocess32)
- Resolves: rhbz#1820813 rhbz#1824206
5��5�#��-a�g�Ivan Devat <idevat@redhat.com> - 0.9.168-2]��@- Do not generate custom DH key if it was not requested by setting its custom length
- Resolves: rhbz#1760434�"��,a�e�Ivan Devat <idevat@redhat.com> - 0.9.168-1]H@- Rebased to latest upstream sources (see CHANGELOG.md)
- Resolves: rhbz#1730747 rhbz#1725849 rhbz#1551663 rhbz#1595444 rhbz#1671174 rhbz#1712315 rhbz#1619253 rhbz#1710750 rhbz#1466088 rhbz#1558063 rhbz#1665898 rhbz#1500012 rhbz#1673829���+a�!�Ivan Devat <idevat@redhat.com> - 0.9.167-3]@- Fixed crashes in the `pcs cluster auth` command
- Resolves: rhbz#1676956s��*a��Ivan Devat <idevat@redhat.com> - 0.9.167-2\�8�- Updated logo and favicon in web UI
- Resolves: rhbz#1700542
p�\p�g��1a�o�Ivan Devat <idevat@redhat.com> - 0.9.169-2^���- Keep autogenerated IDs of set constraints reasonably short
- Use fixed version of python module subprocess (package python2-subprocess32)
- Resolves: rhbz#1820813 rhbz#1824206� ��0a�a�Ivan Devat <idevat@redhat.com> - 0.9.169-1^�@- Rebased to latest upstream sources (see CHANGELOG.md)
- Resolves: rhbz#1822078 rhbz#1759269 rhbz#1448569�2��/e��Ondrej Mular <omular@redhat.com> - 0.9.168-4]��- Added command 'pcs resource relations'
- Added command 'pcs resource safe-disable'
- Resolves: rhbz#1770975 rhbz#1770973�C��.a�'�Ivan Devat <idevat@redhat.com> - 0.9.168-3]�d@- More fixes for the case when PATH environment variable is not set
- Pcsd no longer sends Server HTTP header
- Empty constraint option are not allowed in pcs constraint order and pcs constraint colocation add commands
- Resolves: rhbz#1500012 rhbz#1765606 rhbz#1671174
<��c<�"��5a�e�Ivan Devat <idevat@redhat.com> - 0.9.168-1]H@- Rebased to latest upstream sources (see CHANGELOG.md)
- Resolves: rhbz#1730747 rhbz#1725849 rhbz#1551663 rhbz#1595444 rhbz#1671174 rhbz#1712315 rhbz#1619253 rhbz#1710750 rhbz#1466088 rhbz#1558063 rhbz#1665898 rhbz#1500012 rhbz#1673829���4a�!�Ivan Devat <idevat@redhat.com> - 0.9.167-3]@- Fixed crashes in the `pcs cluster auth` command
- Resolves: rhbz#1676956�q��3q�s�Ivan Devat <idevat@redhat.com> - 0.9.169-3.el7_3.1_�u@- Explicitly close libcurl connections to prevent stalled TCP connections in CLOSE-WAIT state
- Added support for loading DH keys from a file
- Resolves: rhbz#1870551 rhbz#1888479���2a�[�Ivan Devat <idevat@redhat.com> - 0.9.169-3^�W@- Added option: pcs resource [safe-]disable --simulate` has a new option `--brief` to print only a list of affected resources
- Fixed race-condition when removing multiple resources from web UI
- Resolves: rhbz#1833115 rhbz#1843593
�XY�� ��9a�a�Ivan Devat <idevat@redhat.com> - 0.9.169-1^�@- Rebased to latest upstream sources (see CHANGELOG.md)
- Resolves: rhbz#1822078 rhbz#1759269 rhbz#1448569�2��8e��Ondrej Mular <omular@redhat.com> - 0.9.168-4]��- Added command 'pcs resource relations'
- Added command 'pcs resource safe-disable'
- Resolves: rhbz#1770975 rhbz#1770973�C��7a�'�Ivan Devat <idevat@redhat.com> - 0.9.168-3]�d@- More fixes for the case when PATH environment variable is not set
- Pcsd no longer sends Server HTTP header
- Empty constraint option are not allowed in pcs constraint order and pcs constraint colocation add commands
- Resolves: rhbz#1500012 rhbz#1765606 rhbz#1671174�#��6a�g�Ivan Devat <idevat@redhat.com> - 0.9.168-2]��@- Do not generate custom DH key if it was not requested by setting its custom length
- Resolves: rhbz#1760434
c��c���=q�9�Ivan Devat <idevat@redhat.com> - 0.9.169-3.el7_3.2c>�@- Update rubygem rack
- Upgrade jquery in web-ui
- Resolves: rhbz#2099578 rhbz#2093232�q��<q�s�Ivan Devat <idevat@redhat.com> - 0.9.169-3.el7_3.1_�u@- Explicitly close libcurl connections to prevent stalled TCP connections in CLOSE-WAIT state
- Added support for loading DH keys from a file
- Resolves: rhbz#1870551 rhbz#1888479���;a�[�Ivan Devat <idevat@redhat.com> - 0.9.169-3^�W@- Added option: pcs resource [safe-]disable --simulate` has a new option `--brief` to print only a list of affected resources
- Fixed race-condition when removing multiple resources from web UI
- Resolves: rhbz#1833115 rhbz#1843593�g��:a�o�Ivan Devat <idevat@redhat.com> - 0.9.169-2^���- Keep autogenerated IDs of set constraints reasonably short
- Use fixed version of python module subprocess (package python2-subprocess32)
- Resolves: rhbz#1820813 rhbz#1824206
{�3{�3��@��e�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]�<��?��w�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���>��
�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]
���K��A}��Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��C��g�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��B��Q�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]2�
����-��E��W�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��D���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K��H}��Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]���G��9�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��F���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��J��g�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��I��Q�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]2�
����-��L��W�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��K���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������N��9�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��M���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����P��1�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f3�J��O���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��R���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��Q��{�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��T���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��S��W�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������W��1�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f3�J��V���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���U��9�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��X��{�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��Y��E�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��[��k�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��Z���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��]���Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol3
�^��\��9�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��_��o�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow3
�t��^��e�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command3erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���a��7�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han3�X��`��-�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��b��I�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���c���Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��d��Y�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��e��]�Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d��f��E�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��i��u�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��h��k�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��g���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}��l��w�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��k���Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��j��A�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��o��{�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��n��e�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��m��9�Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}

e�r+��V��:��eD��
5dd9606b0cc78d1b1b9d016a6fa1467882e158f9ff00e4781a33715ab0889212D��
290f6f5895e4d30a12a9560261497d6ad631dbba6dd34aa352f5df74c5b51a5fD�
�
82af7be38d0c8eb49df265c4c0138bdc35cb7ac26a1b6e3a4d0f0a47d293dc93D�	�
cc99796988903240582ca2234451a6b7eaa5f9534e910f4f9838cbd024cc7b0aD��
135902f9e5faac7a0682e6189f5cfddf652759007d300d8dd5ccb7d527fec1f4D��
6de2aaa52ef36e3802e22e8f09a0ff085d85520f42e12fcdb9a095686b4d365cD��
9124221e268619f8424d72980a7b256e0e00ba0639fcf0be1387712d145c7416D��
2520a8d9459f82ba9401fb0a86ddb5154277672b55919b252535b199ef9fc3d4D��
37dc67f68342f587481c58ec0ac8c6ada7eb0f9e8b5e356c1864db3cec910332D��
1e2e0f37c2f3a9f903d1952f17782bcb4362107488cc541c0bb3de118635d8f4D��
f9905c0c94b3cb7db5412f3ffcce1c6b2b13d3d3d679ba948bd55a6d413c8944D��
733a34dc60cdc0d449bbed26105adcf2ede2d935f0d054e31690592628f2fd4dD��
a48132ab5f5f42b2a741922bb5933c0f84e9994688313798505382288ac76453
�X�B��r��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��q��ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��p��uRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��s��wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4��u��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��t��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��w��ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��v��yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��z��ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���y��7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���x��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens3
����}��|��wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��{��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4��~��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��}��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b����ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~����yRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+���	�MRadomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]�����7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]�����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens3"dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�������7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han3$
�f����IAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo�����Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o����YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q����]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��
��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE3+�^��	��7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O����Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����
��1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T����#Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���s�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check 3/�J��s�#Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�mJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�cJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5�����+Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��s�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����s�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check 34�^����9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�mJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�cJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5�����+Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��s�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]bR3yRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������3��P3��R3��T3��W3��X3��Y3��[3	��]3��_3��a3��b3��c3��d3��e3��f3��i3��l3��o3��r3��s3��u3��w3��z3��|3 ��~3!��3#��3%��3&��3'��3(��3)��3*��
3,��3-��
3.��30��31��32��33��35��36��37��39�� 3:��"3<��$3=��&3?��'3@��(3A��)3B��*3D��+3E��-3G��.3H��/3I��03J��13L��23M��43N��63P��73Q��83R��93S��:3U��;3V��=3W��>3X��?3Y��A3Z��B3[��D3\��F3]��G3^��H3_��I3`��J3a��K3b��L3c��M3e��O3f��Q3g��S3i��U3j��W3k��X3l��Y3m��Z3n��\3o��^3p��_3q��`3r��a3s��b3t��d3u��g3v��h3w��i3x��k
�^�� ��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��"��7Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��!��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��$��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��#��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE3;
?'?�[��&��1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [19017973>�T��%��#Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��'��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��(��cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��)��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��*��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����+��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend3C
?'?�[��-��1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [19017973F�T��,��#Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��.��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��/��cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��0��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��1��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����2��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend3K
KK�/��4��YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��3��sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[��6��1Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [19017973O�3��5��aAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b��7��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4��8��cAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J��9��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��:��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����;��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend3T
KK�/��=��YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��<��sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��>��aAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:��?��oAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/��A��YAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|��@��sAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3��B��aAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4���D��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:��C��oAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/���F��	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@��E��{Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>��G��wAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����H��#Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��I��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
tt���J��		Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��K��w	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����L��#	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��M��	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���O��'	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��N��	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP 3d
SzS�"��Q��?	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���P��}	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���S��-	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��R��]	Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���U��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��T��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP 3h
SzS�"��W��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���V��}
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��X��]
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����Y��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����Z��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��\��_
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���[��'
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����^��}Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���]��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"��_��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��`��]Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����a��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����b��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��d��_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���c��'Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����g��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��f��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���e��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�����h��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����i��Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��k��_Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���j��'Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����n��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��m��?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���l��9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��o��
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���p��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [183483{
nn���r��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��q��QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]

e�r+��V��:��eD��
2ae808b4a690aa7b3a3a08ea73c102fff26dca7c8554dd72bc2269c985154726D��
62f9c2b74b51bf8854ad9eb25a2929d8ce7ccc484972923e91b52d1a2e026a77D��
6288171549b2c71602c97035ef0f1d087455361c00d42948b460d82d0c0c4387D��
d6c3d91ad22937af9a211a458f12e6b3d4f7bdc4b0d3241d7559e29615a2e379D��
6f2f5c5aaa6b9cf8f21471e48aa6a2516a79b06217aba938f508f1ec9e32759dD��
1a13b258a98c48877d221312e7236468718d76e2db7278d2da0271a016036278D��
38e563cf1d4db62856dbadb61d0f77927c69dd05e4c6cc79a131fa4eb2081514D��
df82dbee56b4fa877e8f7aef9b9d8dbc81c598816135c2ccea24f43af66790f7D��
20c77d771507c889e3dc80615a78f99df44de70df4d11450949897b0fb73e028D��
c72af8695184bcf71c7eb184fbd1f20bd8db5be9ccb44f698e3109b9ac66cb88D��
b41d7b6dcc5a7a79787391b203c6f01ca8cc2b821d1918b71d1f1e0fd2182b3cD��
70e9899b03ea3d4adef955f81b9ef893b9391bf9f209434d85b8d5254d3b97e0D�
�
2e128ce7e0b40d016f4c989a929934ab7599ef1aeb57ed1bb868a609e4680dc3
�Y����t��9
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��s��?
Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��u��

Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���v��
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [183483�
�i��w��Q
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��x��=
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��y��m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��{��A
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��z��m
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���|��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [183483�
�i��}��QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��~��=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7����mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!����ARado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7����mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p����_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]�����+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!������+Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n����[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig3��Z����3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]3�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush 3�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r3�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��	��[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig3��Z����3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p����_Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]3�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush 3�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r3�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030603����
��}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����
��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<����wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���s�1Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%����IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��s�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��s�cJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�������+Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P����Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol3��^����9Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9����oAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow3��t����eAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command3�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n����[Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig3��X����-Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}3�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush 3�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r3�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030603������}Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?������Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<����wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%�� ��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]�����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��!��7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT3�
PP�+��"��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��#��%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%��&��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���%��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���$��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��'��7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT3�
PP�+��(��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��)��%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��,��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��+��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���*��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��-��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S��.��%Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��1��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%��0��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}���/��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��2��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L��4��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���3��	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
��7��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���6��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���5��-Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]bR4RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������3z��o3|��p3}��r3��t3���u3���v3���w3���x3���y3���{3���|3���}3���~3���3���3���3���3���	3���3���
3���3���3���3���3���3���3���3���3��� 3���!3���"3���#3���&3���'3���(3���)3���,3���-3���.3���13���23���43���73���93���=3���?3���@3�D3Â�E3ł�F3Ƃ�H3ǂ�K3͂�N3ς�O3Ђ�Q3т�T3ׂ�V3ق�W3ڂ�Y3ۂ�\3��]3��^3��`3��b3��c3��e3��f3��h3��j3��k3��m3��n3��p3���s3���u3���v3���x3���|3���~3���3���4��	4��4��4��4��4	��4��4��4
��4��%4��+4��34��<4��D4��J4��P4��W
%v%�L��9��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]���8��	Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&��=��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��<��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���;��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���:��-Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx���?��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��>��WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��@��'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 3�
3^O$3�l��D��WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��C��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
��B��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]���A��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii���E��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��F��'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 3�
G^G���H��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���G��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��K��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���J��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-238253ȁ+��I��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}3� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV3�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 3�CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [20902273�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
M��M���N��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��M��WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��L��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��O��'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 3�
G^G���Q��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���P��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��T��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���S��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-238253ҁ+��R��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}3� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV3�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 3�CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [20902273�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����V��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��U��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��W��'Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 3�
G^G���Y��#Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���X��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��\��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���[��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-238253܁+��Z��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}3� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV3�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 3�CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [20902273�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��]��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��^��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������`��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-238253���_��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}3� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV3�E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 3�CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [20902273�] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��b��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��a��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��c��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��e��QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���d��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��f��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��h��mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc3���g��1Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��j��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��i��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U��k��)Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��m��QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���l��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��n��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��p��mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc3���o��1Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��s��=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���r��3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��q��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]

e�r+��V��:��eD�&�
c58619a42724ddd986279b0da66e4cf0f075d25cfbc11cc80a105c9c47f0cc1cD�%�
8e6103f5bc92eabbe008d9d10cd7ea86a1fd82eed882657037c36f9c0dd9ef59D�$�
03c52d5fc8024d804e827e048d07e835a984ac5f5d9391614c51b0905c9772a0D�#�
6c91bb92ae5a0ac8598c4281307b9ca0d51ba4690e5f6927ebd9bc857c360de6D�"�
c1de6a4cb5385396b3e8ffd02b9cdbcb0a79b12b5db809d846de74cd4322d1a3D�!�
a42f0d2d5c250a9f3a20b0d1766de040990c5ff04917d87601eb5ecaca50cc8bD� �
4cd8e9cddd54af538fc6e1a395c1cb5338b2616fac4687ec3606a53441b3b88dD��
a85e9e7ec0cfd813ac23ae166540cb1ddbf0a4789afa4784dbb9d8f3c07ce5feD��
02cad16355e1d26c8bd3d5c772f181d7659d048dff3d0ae06e95050139572debD��
d81e6ad3a689839ef620ae3e5c932a9d0f5ef9bcd3f88d2e10f029ceb30a4f23D��
8be164f0d67b7adb4850c664fc43b933559317a3a400aea58cb4c0f28d317ff3D��
995ede74f9ad67d498e9de6c2936cb1589f9d0f6316193c57d226d30e41b59eaD��
06e4169680e37d4d65bf7fd8382c034d2d0434ae20eadb40888e7ab261de6aa2
����i��u��QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���t��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��v��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��x��mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc3����w��1Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����|��7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��{��=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���z��3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��y��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���~��1Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���}��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_����=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�����3Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3����eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7����mRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc3�
�_TH��<����wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]�����7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����	��7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_����=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3����eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<����wRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���
��Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��}�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��
��eRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t����gRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i����QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]4
�����s�Jan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono4�	��s�!Jan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean4�M����Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}4v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���s�Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check 4
�J��s�#Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��s�Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��s�mJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��s�cJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���s�1Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���s�7Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
k5�k� ��w�KJitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��w�UJitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��w{Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)�F��s�Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
)�
��)���%w�Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��$gSPetr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��#g�	Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��"wyJitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��!g�Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)��� w�+Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��g�ePetr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)
@��6L�@s��+g�Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���*w�+Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��)g�ePetr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��(w�KJitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��'w�UJitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��&w{Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)
I���0�I���3�� Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.19.2-3P	H@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildG��2_3 Petr Pisar <ppisar@redhat.com> - 2.19.2-2O�u@- Perl 5.16 rebuildO��1u- Marcela Mašláňová <mmaslano@redhat.com> 2.19.2-1O`�@- bump to 2.19.2���0�� Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.18.0-4O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild���/w�Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��.gSPetr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��-g�	Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��,wyJitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)
	��j��K�*��G��<_3!Petr Pisar <ppisar@redhat.com> - 2.19.2-2O�u@- Perl 5.16 rebuildO��;u-!Marcela Mašláňová <mmaslano@redhat.com> 2.19.2-1O`�@- bump to 2.19.2���:��!Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.18.0-4O�- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild���9o� Jitka Plesnikova <jplesnik@redhat.com> - 2.19.3-5a��@- Always clear out libpq results before reassigning (rhbz #2020111)M��8_? Daniel Mach <dmach@redhat.com> - 2.19.3-4R�U�- Mass rebuild 2014-01-24M��7_? Daniel Mach <dmach@redhat.com> - 2.19.3-3R�k�- Mass rebuild 2013-12-27y��6_� Petr Pisar <ppisar@redhat.com> - 2.19.3-2P4�- Specify all dependencies
- Move testme.tmp.pl to tests sub-packageA��5_' Petr Pisar <ppisar@redhat.com> - 2.19.3-1P4�- 2.19.3 bumpM��4c; Daniel Mach <dmach@redhat.com> - 2.19.2-3.1P+�@- Rebuild for perl 5.16
�d�Q�*�w��Dw{"Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���Co�!Jitka Plesnikova <jplesnik@redhat.com> - 2.19.3-5a��@- Always clear out libpq results before reassigning (rhbz #2020111)M��B_?!Daniel Mach <dmach@redhat.com> - 2.19.3-4R�U�- Mass rebuild 2014-01-24M��A_?!Daniel Mach <dmach@redhat.com> - 2.19.3-3R�k�- Mass rebuild 2013-12-27y��@_�!Petr Pisar <ppisar@redhat.com> - 2.19.3-2P4�- Specify all dependencies
- Move testme.tmp.pl to tests sub-packageA��?_'!Petr Pisar <ppisar@redhat.com> - 2.19.3-1P4�- 2.19.3 bumpM��>c;!Daniel Mach <dmach@redhat.com> - 2.19.2-3.1P+�@- Rebuild for perl 5.16���=��!Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.19.2-3P	H@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
AV��2�Av��Jwy"Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��Ig�"Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���Hw�+"Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��Gg�e"Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��Fw�K"Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��Ew�U"Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibs
��&�t�� ��Pw�K#Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��Ow�U#Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��Nw{#Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���Mw�"Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��LgS"Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��Kg�	"Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)
)�
��)���Ww�#Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��VgS#Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��Ug�	#Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��Twy#Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��Sg�#Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���Rw�+#Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��Qg�e#Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)
@��6L�@s��]g�$Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���\w�+$Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��[g�e$Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��Zw�K$Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��Yw�U$Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��Xw{$Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)
?��?�[��bq�G%Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081���aw�$Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��`gS$Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��_g�	$Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��^wy$Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)
�F9����ei�Q%Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.���di�)%Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5��cq�{%Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.
�,i����iu�=%Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1��hu�o%Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387���gi�)%Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O��fq�/%Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059
A��5��lq�{&Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.���k{�	%Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:��jk�%Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008
q�R~q���pi�)&Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O��oq�/&Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059���ni�Q&Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.���mi�)&Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
�J��h����us�&Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365���t{�	&Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:��sk�&Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008���ru�=&Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1��qu�o&Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387

e�r+��V��:��eD�3�
01fb0c20e028f3f34cb3fc42c0360980946fc9b2e0f4b1cfcbe93c2777912606D�2�
f83a9cc23d159877dba95b62d685edf3a6968d8d968732049c688fe7d49777d4D�1�
6f515d110cfd49f16feb45eb873662abd7d90f7d6a9521856506cb39bc3ec434D�0�
00f64801d8abc5d57fcf628994aeed0267baba42e5be15b3a5d445cd3a2f1226D�/�
f3cd69f130263e2bd4ccca5ef76054432d3c23432298df1d0aeed37eda7db3f4D�.�
0821b9fe0910e051ebf760e8df0198202117a973492dee2aca30504c0f8a5544D�-�
36101de00585de431de07579343b064018d049adcaa3bb90ae0c55e997d8e1a8D�,�
73ea554de089905aab93ded3a974f753899d2b8f0f3f3044d9f41d44a86324dbD�+�
6bc5d11d6925535123b8762c2ad80e64d81a9fc384b6def702e2585966637c24D�*�
d357914edfc5e38eb99a385b00d0fb43d1c581d9af1d12406c5dbae63542e08eD�)�
ddc9339c832234c2d2d9c946d96c23c6d1fe5ea3a34710694d2a8bd819d4b8f3D�(�
e90d3b7f1beb833473709255affdf6f47d5b2f24def150c5ba2db2d65edf7daeD�'�
d666c7aa2c9af7b68e1d9bb3646d95b078ea804f6833a701a44fd99fac4c9ae2
Y fY���xi�)'Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.�5��wq�{'Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.�[��vq�G'Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-15[(�@- move instaweb to separate git-instaweb subpackage.
	Resolves: #1213059
- move gnome-keyring to a separate git-gnome-keyring subpackage.
	Resolves: #1284081
+_�~�+���}u�='Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1��|u�o'Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387���{i�)'Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O��zq�/'Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059���yi�Q'Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.
A��5��q�{(Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-16[:�- Remove EL-5 settings and old Fedora conditionals.
  Taken from fedora commits 903d8f35ed8ae16bece8ae8033f3d3926cc97595 and
  2c6eff99d7b50b87e8a1fe2e4a0489dfd90659b8.
- Fix builds using '--without docs'
- Change git-instaweb default from lighttpd(not available in rhel7) to
  apache2.
- Add requires for git-{instaweb,gnome-keyring} to pull them, when
  installing git-all.���{�	'Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:��~k�'Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008
q�R~q���i�)(Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-20[��@- Fix CVE-2018-17456: arbitrary code execution via .gitmodules
  Thanks to Jonathan Nieder <jrnieder@gmail.com> for backporting to 2.1.x
  and to Steve Beattie <sbeattie@ubuntu.com> for backporting to 1.9.1�O��q�/(Sebastian Kisela <skisela@redhat.com> - 1.8.3.1-19[���- Fix httpd modules path to be independent from system architecture.
Upstream commit: 1976311aa285549599e5a451d7ad72b55a2b60e2
Resolves: #1213059���i�Q(Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-18[H�@- Use the correct apache module directory in instaweb.
- Apply the docs fixes to instaweb as well.���i�)(Pavel Cahyna <pcahyna@redhat.com> - 1.8.3.1-17[D��- Correctly return an error from fsck on encountering a .gitmodules symlink.
  This was broken in the debian 2.1.x backport and found by covscan.
  Fix the test to catch this.
- Correct a typo in changelog.
aJ��h�aw��
w{)Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���	s�(Masahiro Matsuya <mmatsuya@redhat.com> - 1.8.3.1-25df@- Fixes CVE-2023-25652 and CVE-2023-29007
- Resolves: #2188354, #2188365���{�	(Ondřej Pohořelský <opohorel@redhat.com> - 1.8.3.1-24c�@- Fixes CVE-2022-23521 and CVE-2022-41903
- Resolves: #2162067�:��k�(Vít Ondruch <vondruch@redhat.com> - 1.8.3.1-23^˳@- Prevent crafted URL containing new lines, empty host or lacks a scheme
  to cause credential leak.
  Resolves: CVE-2020-11008���u�=(Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-22^�@- Crafted URL containing new lines can cause credential leak  
- Resolves: CVE-2020-5260�1��u�o(Ondrej Pohorelsky <opohorel@redhat.com> - 1.8.3.1-21]��- Fix CVE-2019-1387: remote code execution in recursive clones with nested
  submodules
  Resolves: CVE-2019-1387
AV��2�Av��wy)Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��g�)Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���w�+)Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��
g�e)Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��w�K)Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��w�U)Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibs
��&�t�� ��w�K*Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��w�U*Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��w{*Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���w�)Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��gS)Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��g�	)Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)
)�
��)���w�*Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��gS*Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��g�	*Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��wy*Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��g�*Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���w�+*Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��g�e*Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)
@��6L�@s��#g�+Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���"w�++Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��!g�e+Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� �� w�K+Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��w�U+Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��w{+Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)
U����U� ��*w�K,Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��)w�U,Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��(w{,Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���'w�+Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��&gS+Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��%g�	+Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��$wy+Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)
)�
��)���1w�,Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��0gS,Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��/g�	,Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��.wy,Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��-g�,Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���,w�+,Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��+g�e,Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)
@��6L�@s��7g�-Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���6w�+-Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��5g�e-Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��4w�K-Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��3w�U-Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��2w{-Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)
����y��<c�.Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)���;w�-Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��:gS-Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��9g�	-Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��8wy-Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)
#�#�`��?c�_.Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���>c�U.Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��=c�E.Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��De�
.Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Cc�.Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Bc�	.Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Ac�%.Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��@c�.Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
Y.�Y�S��Gc�E/Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Fc�/Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ee�7.Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
|`{|���Kc�%/Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Jc�/Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Ic�_/Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���Hc�U/Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue
?F�?�M��Oe�7/Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Ne�
/Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Mc�/Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��Lc�	/Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)
��+����Rc�U0Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��Qc�E0Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)y��Pc�0Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)
b�b�5��Vc�	0Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���Uc�%0Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��Tc�0Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)�`��Sc�_0Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)
|G��|y��Zc�1Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�M��Ye�70Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)x��Xe�
0Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��Wc�0Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)
#�#�`��]c�_1Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���\c�U1Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��[c�E1Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��be�
1Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��ac�1Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��`c�	1Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���_c�%1Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��^c�1Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
z.�	dz�e��gg�e2Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��fw�K2Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��ew�U2Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��dw{2Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)�M��ce�71Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
�k�z���w��nw{3Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���mw�2Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��lgS2Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��kg�	2Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��jwy2Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��ig�2Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���hw�+2Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)
AV��2�Av��twy3Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��sg�3Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���rw�+3Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��qg�e3Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��pw�K3Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��ow�U3Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibs
��&�t�� ��zw�K4Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��yw�U4Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��xw{4Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���ww�3Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��vgS3Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��ug�	3Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)

e�r+��V��:��eD�@�
821164fdb3e807716631102ab1778e4736d70fc13bfc34bebdebe03bcfc8510fD�?�
74668b90f41c424000d241ad2f9a624d6386a447a8d58add20fd173375e09b32D�>�
c041cb0f7c5becd34a9fa8c2693fe7723c0e561a13cee7ae61287bfc4ff2eb4dD�=�
4a2de0d15d4fadd42283d48bfb0d4abea9092c5e82e168374e117d6b6d7b27d4D�<�
0ba33a407f36442d9f5f526712fe0c940b67897540b9e10a14271928cffed297D�;�
3a16156819b55d3d9e234fe19ee8f016b2394f4d77627ba4be2bfe06f19a148fD�:�
5ce2a0af968d496cf93f82d5106b30e2f55b8df48349636d27dfb49c14f8905bD�9�
eb68b066fac31ef1d13db384711879546250d149147a9bfbe0a62bd5f62d0bcaD�8�
9d883529a429fd5676d5deb1bcbc66ddd6a9aebebfe215ea0436c33ff0387b2fD�7�
ed34b500e7e1951b8208f45e26b323c12c4fe5f89a8823445ddeeb1f28d5e93eD�6�
840f1eeb8f5f65eb3e144edba32348ee678812d22065a6e75c237879369172b3D�5�
816ca6511f010052482e88ab2a3bafd3be37b7f6544e98aa51c2e521eea8ab26D�4�
16c4eac47cfb42c7b2453290f21172024727ffd7444425d48a2170493b43db78
)�
��)���w�4Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��gS4Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��g�	4Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��~wy4Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��}g�4Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���|w�+4Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��{g�e4Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)
@��6L�@s��g�5Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���w�+5Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��g�e5Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��w�K5Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��w�U5Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��w{5Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)
U����U� ��w�K6Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��
w�U6Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��w{6Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���w�5Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��
gS5Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��	g�	5Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��wy5Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)
)�
��)���w�6Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��gS6Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��g�	6Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��wy6Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��g�6Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���w�+6Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��g�e6Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)
@��6L�@s��g�7Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���w�+7Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��g�e7Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��w�K7Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��w�U7Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��w{7Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)
,���0�,n��#sm8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
��"s�)8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���!s�/8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056V�� s=8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544���w�7Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��gS7Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��g�	7Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��wy7Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)
y9��y���)u�;8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500���(u�8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��'s�8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o��&so8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��%s�W8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B��$s�8Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056
�k�g���o��/so9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��.s�W9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B��-s�9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n��,sm9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
��+s�)9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���*s�/9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056
���\�T��%��5w�U:Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��4w{:Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���3u�9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193���2u�;9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500���1u�9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��0s�9Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983
p[q�e�pw��;g�	:Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��:wy:Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��9g�:Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���8w�+:Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��7g�e:Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��6w�K:Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)bR4�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������4��b4��e4��i4��l4��p4��u4��x4��}4 ��4!��4"��
4#��4$��4%��4&��#4'��*4(��14)��74*��<4+��?4,��D4-��G4.��K4/��O40��R41��V42��Z43��]44��b45��g46��n47��t48��z4:��4;��4<��4=��4>��4?��#4@��)4A��/4B��54C��;4E��A4F��H4G��N4H��T4I��[4J��c4K��i4L��o4M��p4N��r4O��t4P��v4Q��z4W��|4X��~4Y��4^��4`��4a��4b��
4g��4i��4j��4k��4p��4r��4s��4t��4u��4z��4|��4}�� 4~��#4���%4���'4���(4���)4���,4���.4���04���14���24���44���54���74���94���:4���<4���=4���>4���?4���@4���A4���C4���D
`���J`�e��Ag�e;Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��@w�K;Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��?w�U;Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��>w{;Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���=w�:Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��<gS:Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)
�k�z���w��Hw{<Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���Gw�;Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��FgS;Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��Eg�	;Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��Dwy;Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��Cg�;Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���Bw�+;Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)
AV��2�Av��Nwy<Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��Mg�<Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���Lw�+<Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��Kg�e<Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)� ��Jw�K<Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��Iw�U<Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibs
��&�t�� ��Tw�K=Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-292X��- Removed perl-Perl4-CoreLibs because it was added as separate package to
  RHEL (bug #1366724)�%��Sw�U=Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-291W�Q�- Backported and sub-packaged libraries historically supplied with Perl 4
  into perl-Perl4-CoreLibsw��Rw{=Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-290W�@- Removed deprecated files from provides (bug #1365991)���Qw�<Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��PgS<Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��Og�	<Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)
)�
��)���[w�=Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-299_���- Fix CVE-2020-10543 (bug #1839272)
- Fix CVE-2020-10878 (bug #1839275)[��ZgS=Petr Pisar <ppisar@redhat.com> - 4:5.16.3-298_ܙ�- Fix CVE-2020-12723 (bug #1839278)w��Yg�	=Petr Pisar <ppisar@redhat.com> - 4:5.16.3-297^S��- Fix a file mode of a perl-example.stp example (bug #1806523)v��Xwy=Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-296^%�@- Fix day of year parsing (like "%y%j") (bug #1751381)s��Wg�=Petr Pisar <ppisar@redhat.com> - 4:5.16.3-295]8H@- Fix a spurious timeout in Net::FTP::close (bug #1626107)���Vw�+=Jitka Plesnikova <jplesnik@redhat.com> - 4:5.16.3-294\3?@- Fix CVE-2018-18311 Integer overflow leading to buffer overflow (bug #1653527)�e��Ug�e=Petr Pisar <ppisar@redhat.com> - 4:5.16.3-293Z�I@- Add SSL support to Net::SMTP (bug #1557574)
- Do not overload ".." in Math::BigInt (bug #1497734)
- Provide perl(:VERSION) and perl-interpreter RPM symbols (bug #1410347)
���(�V��b��c_i>Peter Jones <pjones@redhat.com> - 0.109-9T�A- Fix man page errors.
  Resolves: rhbz#948850k��b_{>Peter Jones <pjones@redhat.com> - 0.109-9T�@- Build as PIE+RELRO binaries.
  Resolves: rhbz#1092542o��a_�>Peter Jones <pjones@redhat.com> - 0.109-8S��A- Include aarch64 in the rpm macro
  Related: rhbz#1100042[��`_[>Peter Jones <pjones@redhat.com> - 0.109-7S��@- Add aarch64.
  Resolves: rhbz#1100042���__�K>Peter Jones <pjones@redhat.com> - 0.109-6S*�@- Make sure CFLAGS is inherited properly for -fstack-protector-strong.
  Resolves: rhbz#1070782L��^]?>Daniel Mach <dmach@redhat.com> - 0.109-5R�k�- Mass rebuild 2013-12-27v��]_�>Peter Jones <pjones@redhat.com> - 0.109-4Ro�@- Tweak the signing rules just a bit more.
  Related: rhbz1017857q��\_�>Peter Jones <pjones@redhat.com> - 0.109-3Rj]@- Update to fix a bug coverity found.
  Related: rhbz1017857
+p��T�+}��ic�?Remi Collet <rcollet@redhat.com> 1:1.9.4-17Qy�- improve post scriptlet to avoid updating pear.conf
  when not needed�#��h�I?Ralf Corsépius <corsepiu@fedoraproject.org> - 1:1.9.4-16Q?�- Remove %config from %{_sysconfdir}/rpm/macros.*
  (https://fedorahosted.org/fpc/ticket/259).~��gk�?Remi Collet <remi@fedoraproject.org> 1:1.9.4-15Q:@- update Archive_Tar to 1.3.11
- drop php 5.5 patch merged upstream���fk�3?Remi Collet <remi@fedoraproject.org> 1:1.9.4-14P� @- add explicit requires on all needed extensions (phpci)
- fix pecl launcher (need ini to be parsed for some
  extenstions going to be build as shared, mainly simplexml)
- add fix for new unpack format (php 5.5)���ek�>Robbie Harwood <rharwood@redhat.com> - 0.109-11c��@- Backport newer, deprecated pesign-authorize
- Resolves: CVE-2022-3560���de�3>Peter Jones <pjones@redhat.com> - - 0.109-10W9�@- Add support for /etc/pesign/users and /etc/pesign/groups
  Resolves: rhbz#1141263
~�5��~���oc�'?Remi Collet <rcollet@redhat.com> 1:1.9.4-23c,N@- update Archive_Tar to 1.4.14
  CVE-2020-36193 CVE-2020-28948 CVE-2020-28949|��nc�?Remi Collet <rcollet@redhat.com> 1:1.9.4-22^��@- fix fatal error: gnu/stubs-64.h: No such file or directory #1720375O��mc??Daniel Mach <dmach@redhat.com> - 1:1.9.4-21R�k�- Mass rebuild 2013-12-27W��lcO?Remi Collet <rcollet@redhat.com> 1:1.9.4-20Q�L�- add man page for pear.conf filei��kcs?Remi Collet <rcollet@redhat.com> 1:1.9.4-19Q�K�- add man pages for pear, peardev and pecl commandsZ��jcU?Remi Collet <rcollet@redhat.com> 1:1.9.4-18Q���- don't verify metadata file content
���y��pe�@Dogtag Team <pki-devel@redhat.com> 10.5.18-3^�=@- Updated jss dependencies
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
#�#���re�I@Dogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)�=��qe�@Dogtag Team <pki-devel@redhat.com> 10.5.18-4^�U@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE
  additional support and touch-up (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
�1��"��te�a@Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��se�1@Dogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��ve�#@Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��ue�@Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
��r����ze�IADogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)���yg�'@Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4T�e��xg�e@Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4R}��wg�@Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4Sug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4Uug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and

e�r+��V��:��eD�M�
e1dd38dc66a44126b420260a1c8cbd7fc5a5e66fca9097fbacb6645b53215ec9D�L�
ea213c63260f95219614321b7530531b4a081af5c6ae3749a8ed600ba0507ddbD�K�
b97ca8437ca8ddd548433b4e5244b6b95c3c06fabebee6a67b64e0183ff83641D�J�
401c21fed02d492f7c9f4ef47e8a82e8a7bfeb0a3e08789c00a7220db5e1fbd8D�I�
d3aeeaf9aaede46280cce061abf9bec44b4dbe1a3fa01fd5d3ec75cf1be3ff14D�H�
285022f2d97dce4f3ed1d27af515d776f7bf7d3331bcfaee0f0945955f738288D�G�
42bea60ba5a685f45ed8675f855c453f0cc42f054af12af28b5201bf1a660ffcD�F�
b09cfd3f84ca7ac6c285e49ce46e9ee51537af067b1965560dd41d5f82f50deeD�E�
0da377da9a9dc6f3210ae58f9365d1e379b41bfbc986639c5cb7df02de772356D�D�
45d71f9f39e70560b9d5baa82caf326bdbcb0b135c3f872940bebef466ce91c6D�C�
76cfa65febb7025f91800c11072204ec3748d9a68501cdf0cfde5a6c5404f0e4D�B�
36700e5bb7c0b78ab0e613260beefe4a8ca7dcad56b18461ccd56a4d671e6938D�A�
61ec99762a4cb0f13335876298ef0c38a6f690949282991213f5505233899d63
�1��"��|e�aADogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��{e�1ADogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��~e�#ADogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��}e�ADogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'ADogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4\�e��g�eADogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4Z}��g�ADogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4[ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4]ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!ADogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4_�J��g�/ADogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�1��"��e�aBDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��e�1BDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��e�#BDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e�BDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���
g�'BDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4e�e��	g�eBDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4c}��g�BDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4dug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4fug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!BDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4h�J��g�/BDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�`��"��e�aCDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)���
q�GBDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
??�C��e�#CDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e�CDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'CDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4n�e��g�eCDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4l}��g�CDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4mug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4oug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!CDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4q�J��g�/CDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���q�GCDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�OCDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
??�C��e�#DDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e�DDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'DDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4x�e��g�eDDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4v}��g�DDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4wug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4yug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!DDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4{�J��g�/DDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���q�GDDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
����� q�ODDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
X�}��#g�EDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�C��"e�#EDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�#��!q�WDDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����%g�'EDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4��e��$g�eEDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B44�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����'g�!EDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4��J��&g�/EDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���(q�GEDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����)q�OEDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
gX�g}��,g�FDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�h��+q�aEDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################4��#��*q�WEDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����.g�'FDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4��e��-g�eFDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����0g�!FDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4��J��/g�/FDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���1q�GFDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����2q�OFDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��4q�aFDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################4��#��3q�WFDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��5q�[FDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
��J��7g�/GDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)���6g�'GDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
������9q�GGDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)���8g�!GDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4�
�����:q�OGDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��<q�aGDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################4��#��;q�WGDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��=q�[GDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���>q�IGDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
""�Y��?q�CGDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
``���@q�GHDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Aq�OHDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��Cq�aHDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################4��#��Bq�WHDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Dq�[HDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Eq�IHDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����Gq�HDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################4��Y��Fq�CHDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��Iq�[HDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���Hq�HDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################4�
�����Jq�OIDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��Lq�aIDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################4��#��Kq�WIDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Mq�[IDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Nq�IIDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����Pq�IDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################4��Y��Oq�CIDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��Rq�[IDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���Qq�IDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################4�
�_��h��Tq�aJDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################4����Sq�IIDogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Uq�[JDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Vq�IJDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����Xq�JDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################4��Y��Wq�CJDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��Zq�[JDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���Yq�JDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################4�
__���[q�IJDogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���H��\q�!JDogtag Team <devel@lists.dogtagpki.org> 10.5.18-26d��- ##########################################################################
- # RHEL 7.9 (Batch Update 22):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 22):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���H��]q�!JDogtag Team <devel@lists.dogtagpki.org> 10.5.18-27dO��- ##########################################################################
- # RHEL 7.9 (Batch Update 23):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 23):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���y��^e�KDogtag Team <pki-devel@redhat.com> 10.5.18-3^�=@- Updated jss dependencies
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
#�#���`e�IKDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)�=��_e�KDogtag Team <pki-devel@redhat.com> 10.5.18-4^�U@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE
  additional support and touch-up (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
�1��"��be�aKDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��ae�1KDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��de�#KDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��ce�KDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
��r����he�ILDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)���gg�'KDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4Ƒe��fg�eKDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�}��eg�KDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1��"��je�aLDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��ie�1LDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��le�#LDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��ke�LDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���og�'LDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4͑e��ng�eLDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�}��mg�LDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����qg�!LDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4ЅJ��pg�/LDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�1��"��se�aMDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��re�1MDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��ue�#MDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��te�MDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���xg�'MDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4֑e��wg�eMDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�}��vg�MDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����zg�!MDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4مJ��yg�/MDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�`��"��|e�aNDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)���{q�GMDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)

e�r+��V��:��eD�Z�
b38d022364150a6b271f7303931e221b21fa89648ecf7b19689e3aff7f73b9dbD�Y�
f3aaf1422d162735cb3147c5876e2d569c5ab751c3e355d4f973d16250916a4cD�X�
c4776c0f7679c318248d6de58590eabf05cbf410c78eb952a8d259663745c806D�W�
e651cd64c12f15c06125f138481787d6ec5290b1c58e9c8b7898b52c10c8441aD�V�
c799c7a9b990e36dedf9785fd1b300a75ffe77c3f8e0e9074d4279a3d1d85cd7D�U�
757db012689225d59ae444ae9fe49b96ad20d6b478e9a2858bc9c4a3c2ce5b7cD�T�
9094f634e973446d22eec7485aece9a4f3294db660812abe442e6d174a51ee34D�S�
008b4a8cee71d4770d3f1c7d68b7c37fc61c86104417e049e1fd9eca1270711bD�R�
684af720a124815101b07a8a52109e6312fa2da52e6a2f276a425b50b688b7a4D�Q�
74b69c0cad0206438485f298e20a6d074c6e227e6785bba46afaca709e38ef8bD�P�
102ed9eedebeacd4ea5f6fc19a2a0cffb500ccb7516b4f616a67ee86654acde1D�O�
b57dcb1aa6d049c9f0206c226dae51fc7047a9bd3a94dd60673d7d58d3e0a2d2D�N�
769518511a9626c3f684d9b19a35320e0bf5eaad8dc6377c966be0005c590641
??�C��~e�#NDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��}e�NDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'NDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�e��g�eNDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�}��g�NDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!NDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4�J��g�/NDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���q�GNDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�ONDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
??�C��e�#ODogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e�ODogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���
g�'ODogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�e��	g�eODogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�}��g�ODogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!ODogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4�J��g�/ODogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���
q�GODogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�OODogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
X�}��g�PDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�C��e�#PDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�#��q�WODogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����g�'PDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�e��g�ePDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!PDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################4��J��g�/PDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)bR5WRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������4���G4���I4���J4���L4���M4���N4���P4���R4���T4���U4���V4���X4���Z4���[4���\4���]4���^4���`4���b4�d4Â�h4Ȃ�j4ɂ�l4ʂ�o4ς�q4т�s4҂�u4ӂ�x4؂�z4ڂ�|4܂�~4݂�4��4��4��4��4��
4��4��
4��4��4��4���4���4���4���4���5��5��5�� 5��"5��#5��%5
��'5��(5��*5��+5��,5��-5��.5��/5��15��25��35��55��75��85��:5!��;5"��<5#��>5&��@5'��B5)��C5*��D5+��F5.��H5/��I50��J51��K52��L53��N54��P55��R56��V5;��X5<��Z5=��]5B��_5D��a5E��c5F��f5K��h5M��j5N��l5O��o5T��q5V��r##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���q�GPDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�OPDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
gX�g}��g�QDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�h��q�aPDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################4��#��q�WPDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)4�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����g�'QDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�e��g�eQDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B4�5ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!QDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5�J��g�/QDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���q�GQDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
����� q�OQDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��"q�aQDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5�#��!q�WQDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��#q�[QDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)5
ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
��J��%g�/RDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)���$g�'RDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5	##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
������'q�GRDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)���&g�!RDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5
�����(q�ORDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��*q�aRDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5�#��)q�WRDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��+q�[RDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���,q�IRDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
""�Y��-q�CRDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
``���.q�GSDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����/q�OSDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��1q�aSDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5�#��0q�WSDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��2q�[SDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���3q�ISDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����5q�SDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################5�Y��4q�CSDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��7q�[SDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���6q�SDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################5
�����8q�OTDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��:q�aTDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5 �#��9q�WTDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��;q�[TDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���<q�ITDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����>q�TDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################5$�Y��=q�CTDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��@q�[TDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���?q�TDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################5%
�_��h��Bq�aUDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5(���Aq�ITDogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Cq�[UDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Dq�IUDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����Fq�UDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################5,�Y��Eq�CUDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��Hq�[UDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���Gq�UDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################5-
__���Iq�IUDogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���H��Jq�!UDogtag Team <devel@lists.dogtagpki.org> 10.5.18-26d��- ##########################################################################
- # RHEL 7.9 (Batch Update 22):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 22):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���H��Kq�!UDogtag Team <devel@lists.dogtagpki.org> 10.5.18-27dO��- ##########################################################################
- # RHEL 7.9 (Batch Update 23):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 23):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���y��Le�VDogtag Team <pki-devel@redhat.com> 10.5.18-3^�=@- Updated jss dependencies
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
#�#���Ne�IVDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)�=��Me�VDogtag Team <pki-devel@redhat.com> 10.5.18-4^�U@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE
  additional support and touch-up (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
�1��"��Pe�aVDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��Oe�1VDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��Re�#VDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��Qe�VDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
��r����Ve�IWDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)���Ug�'VDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B59�e��Tg�eVDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B57}��Sg�VDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)58ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5:ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1��"��Xe�aWDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��We�1WDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��Ze�#WDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��Ye�WDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���]g�'WDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5@�e��\g�eWDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5>}��[g�WDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5?ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5Aug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����_g�!WDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5C�J��^g�/WDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�1��"��ae�aXDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��`e�1XDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��ce�#XDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��be�XDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���fg�'XDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5I�e��eg�eXDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5G}��dg�XDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5Hug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5Jug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����hg�!XDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5L�J��gg�/XDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�`��"��je�aYDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)���iq�GXDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
??�C��le�#YDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��ke�YDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���og�'YDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5R�e��ng�eYDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5P}��mg�YDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5Qug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5Sug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����qg�!YDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5U�J��pg�/YDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���rq�GYDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����sq�OYDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
??�C��ue�#ZDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��te�ZDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���xg�'ZDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5\�e��wg�eZDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5Z}��vg�ZDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5[ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5]ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����zg�!ZDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5_�J��yg�/ZDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���{q�GZDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����|q�OZDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
X�}��g�[Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�C��~e�#[Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�#��}q�WZDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)

e�r+��V��:��eD�g�
78bf4a4e4e5885b5d88e541e46d3237eddae49bc51b74c8c40c52741b0ce4534D�f�
be04d6f2b74a87abab03f3e5db7bd69c9c3aba89bf5aeaf5464dfb3e90027fe0D�e�
240e9a52eaeceaf3760066a892aab0f7a74bac5492ba14ced65ddc253119eed6D�d�
a3ad033749fd54a7fd723f8b31abd4dea531eae66ff59e0f48a1e7412fd09051D�c�
0a5a7250aabe9649c502bfc98a71ff102a3a30a37575ea8c1c0ae22c267a6640D�b�
928ac4b150a768535d5d82dad1f8f4549ff8ef568798b62c65debe00f659767dD�a�
86754c49d208af8b291d53143af752244a68d88e0b4ccbd4efb6811386339d4cD�`�
83b8bc9adb407e5d032b0b7036ab81ae352bb583870b195e840ac2f094c2cde6D�_�
3a9368e803399e85ff27406fbdc5d6ffad6e000d636a8540ac83b236273b5d2aD�^�
5473bf46793bafa1cf84c7ae24ecb341d287d12494cbea04a1fd46c81fd5c2c8D�]�
83d61057ed2eda189f751ce319a8369da48465187416f37a4dbc5db0b9df35a8D�\�
f3d62a8cb0a97c76e6a8d6432f16d9b3f9040d5289f63d709f50a3776efaa8b4D�[�
48f161dd4b8ad99c1d1c53c15b3b1e64dea4116e9347fd9464c14ac1742ff5cd5eug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����g�'[Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5g�e��g�e[Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5d5hug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�![Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5j�J��g�/[Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���q�G[Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�O[Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
gX�g}��g�\Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�h��q�a[Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5n�#��q�W[Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)5pug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����
g�'\Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5r�e��	g�e\Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5o5sug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!\Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5u�J��g�/\Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���
q�G\Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�O\Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��q�a\Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5y�#��q�W\Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��q�[\Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)5|ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
��J��g�/]Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)���g�']Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5{##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
������q�G]Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)���g�!]Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5~
�����q�O]Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��q�a]Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5��#��q�W]Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��q�[]Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���q�I]Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
""�Y��q�C]Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
``���q�G^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�O^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��q�a^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5��#��q�W^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%�� q�[^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���!q�I^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����#q�^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################5��Y��"q�C^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��%q�[^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���$q�^Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################5�
�����&q�O_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��(q�a_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5��#��'q�W_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��)q�[_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���*q�I_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����,q�_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################5��Y��+q�C_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��.q�[_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���-q�_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################5�
�_��h��0q�a`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5����/q�I_Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��1q�[`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���2q�I`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����4q�`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################5��Y��3q�C`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��6q�[`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���5q�`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################5�
__���7q�I`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)bR6RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������5X��u5Y��x5^��z5`��{5a��|5b��5f��5i��5k��5l��5m��5q��
5t��5v��
5w��5x��5z��5}��5��5���5���5���5���5���5���5���5���5��� 5���!5���#5���%5���&5���(5���)5���*5���,5���.5���05���15���25���45���65���75���85���95���:5���<5���>5���@5���D5���F5���H5���K5���M5���O5���Q5���T5���V5���X5���Z5�]5ǂ�_5ɂ�`5ʂ�a5˂�c5̂�f5т�h5ӂ�i5Ԃ�j5Ղ�m5؂�o5ۂ�q5݂�r5ނ�s5߂�v5��x5��z5��{5��|5��~5��5��5��5��5��5���5���5���	5���
5���5���
5���5���5���6��6��6��6��
���H��8q�!`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-26d��- ##########################################################################
- # RHEL 7.9 (Batch Update 22):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 22):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���H��9q�!`Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-27dO��- ##########################################################################
- # RHEL 7.9 (Batch Update 23):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 23):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���y��:e�aDogtag Team <pki-devel@redhat.com> 10.5.18-3^�=@- Updated jss dependencies
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
#�#���<e�IaDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)�=��;e�aDogtag Team <pki-devel@redhat.com> 10.5.18-4^�U@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE
  additional support and touch-up (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
�1��"��>e�aaDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��=e�1aDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��@e�#aDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��?e�aDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
��r����De�IbDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)���Cg�'aDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5��e��Bg�eaDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�}��Ag�aDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1��"��Fe�abDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��Ee�1bDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��He�#bDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��Ge�bDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���Kg�'bDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5��e��Jg�ebDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�}��Ig�bDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Mg�!bDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5��J��Lg�/bDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�1��"��Oe�acDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��Ne�1cDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��Qe�#cDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��Pe�cDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���Tg�'cDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5��e��Sg�ecDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�}��Rg�cDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Vg�!cDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5��J��Ug�/cDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�`��"��Xe�adDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)���Wq�GcDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
??�C��Ze�#dDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��Ye�dDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���]g�'dDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5őe��\g�edDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�}��[g�dDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����_g�!dDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5ȅJ��^g�/dDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���`q�GdDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����aq�OdDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
??�C��ce�#eDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��be�eDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���fg�'eDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5ϑe��eg�eeDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�}��dg�eDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����hg�!eDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5҅J��gg�/eDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���iq�GeDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����jq�OeDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
X�}��mg�fDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�C��le�#fDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�#��kq�WeDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����og�'fDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5ّe��ng�efDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����qg�!fDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5܅J��pg�/fDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���rq�GfDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����sq�OfDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
gX�g}��vg�gDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�h��uq�afDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5�#��tq�WfDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����xg�'gDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�e��wg�egDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����zg�!gDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5�J��yg�/gDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���{q�GgDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����|q�OgDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��~q�agDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5�#��}q�WgDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��q�[gDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)

e�r+��V��:��eD�t�
d0f42f7832c466e0318f15b6905f47d9e8977a198c140303463e8baf861f9983D�s�
2a98b158e15d67666730cc76ed42eba2c909cbdb8c3d93ede1374768389a48b3D�r�
5fb4e74677604f4bdb11376b47ccc1642147df00b0cd8d54f349ffc0749a8bf7D�q�
c73585577567169544907d481ba9e354f44184d1e11e8bddbfc58e96334f4a21D�p�
c82b48182722e9c7204fcb4910d9aa25f350db17be47eea64e52281990462ea1D�o�
231c99ff7648c2fa512b52e36ee21cfb15033bb178cb5c38c37a3928feedec99D�n�
1e40420731f3976bda8671ed42244cc12837a19a812572d663d3731cfde54fc3D�m�
fa1ad496790644bccab3140b7f585dd72d55f3d0b242ec69cf7c2939b91b468bD�l�
f5ed6de364527262c7c94c0a93639ae14e4a1137b79f84385dfd331a2a78b7f4D�k�
6fa692d6d3de0571869dd57603761a3835f55a4a06091767d81757431cfffe68D�j�
d95a1b973a2d9ba1396f6af5f28e140022664ee433c6719ad7033c59b8007afcD�i�
bb4b4f96791149e67da2521bb1cfaefb082667ce11c33f3fb4daf083fc100c8dD�h�
014d6cdbaef0539c9b70adc727d4252d7aa3200cd7ca7a1afabf2ed85ad8feef5�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
��J��g�/hDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)���g�'hDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B5�##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
������q�GhDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)���g�!hDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################5�
�����q�OhDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��q�ahDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5��#��q�WhDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��q�[hDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���q�IhDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
""�Y��	q�ChDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
``���
q�GiDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�OiDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��
q�aiDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################5��#��q�WiDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��q�[iDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���q�IiDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����q�iDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6�Y��q�CiDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��q�[iDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���q�iDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6
�����q�OjDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��q�ajDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6�#��q�WjDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��q�[jDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���q�IjDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����q�jDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6	�Y��q�CjDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��q�[jDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���q�jDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6

�_��h��q�akDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6
���q�IjDogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��q�[kDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__��� q�IkDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����"q�kDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6�Y��!q�CkDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��$q�[kDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���#q�kDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6
__���%q�IkDogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���H��&q�!kDogtag Team <devel@lists.dogtagpki.org> 10.5.18-26d��- ##########################################################################
- # RHEL 7.9 (Batch Update 22):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 22):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���H��'q�!kDogtag Team <devel@lists.dogtagpki.org> 10.5.18-27dO��- ##########################################################################
- # RHEL 7.9 (Batch Update 23):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 23):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���y��(e�lDogtag Team <pki-devel@redhat.com> 10.5.18-3^�=@- Updated jss dependencies
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
#�#���*e�IlDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)�=��)e�lDogtag Team <pki-devel@redhat.com> 10.5.18-4^�U@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE
  additional support and touch-up (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
�1��"��,e�alDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��+e�1lDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��.e�#lDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��-e�lDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
��r����2e�ImDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)���1g�'lDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�e��0g�elDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6}��/g�lDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1��"��4e�amDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��3e�1mDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��6e�#mDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��5e�mDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���9g�'mDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6%�e��8g�emDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6#}��7g�mDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6$ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6&ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����;g�!mDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6(�J��:g�/mDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�1��"��=e�anDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��<e�1nDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��?e�#nDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��>e�nDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���Bg�'nDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6.�e��Ag�enDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6,}��@g�nDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6-ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6/ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Dg�!nDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################61�J��Cg�/nDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�`��"��Fe�aoDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)���Eq�GnDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
??�C��He�#oDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��Ge�oDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���Kg�'oDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B67�e��Jg�eoDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B65}��Ig�oDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)66ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and68ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Mg�!oDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6:�J��Lg�/oDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���Nq�GoDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Oq�OoDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
??�C��Qe�#pDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��Pe�pDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���Tg�'pDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6A�e��Sg�epDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6?}��Rg�pDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6@ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6Bug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Vg�!pDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6D�J��Ug�/pDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���Wq�GpDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Xq�OpDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
X�}��[g�qDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�C��Ze�#qDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�#��Yq�WpDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)6Iug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����]g�'qDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6K�e��\g�eqDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6H6Lug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����_g�!qDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6N�J��^g�/qDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���`q�GqDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����aq�OqDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
gX�g}��dg�rDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�h��cq�aqDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6R�#��bq�WqDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)6Tug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����fg�'rDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6V�e��eg�erDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6S6Wug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����hg�!rDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6Y�J��gg�/rDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���iq�GrDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)bR6�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������6��6��6��6��6�� 6��"6��$6��%6��&6��'6��(6��*6��,6��.6��26 ��46!��66"��96'��;6)��=6*��?6+��B60��D62��F63��H64��K69��M6;��N6<��O6=��Q6>��T6C��V6E��W6F��X6G��[6J��]6M��_6O��`6P��a6Q��d6U��f6X��h6Z��i6\��j6]��l6_��m6b��o6d��q6e��r6f��t6h��u6i��v6j��w6k��x6l��y6m��{6o��|6p��}6q��6t��6v��6w��6y��6z��6{��6~��
6��6���
6���6���6���6���6���6���6���6���6���6���6��� 6���"6���$6���'6���)6���+6���-6���06���26���46���66���96���;6���<6���=6���?6���B6���D6���E6���F
�����jq�OrDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��lq�arDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6^�#��kq�WrDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��mq�[rDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)6aug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
��J��og�/sDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)���ng�'sDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6`##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
������qq�GsDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)���pg�!sDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6c
�����rq�OsDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��tq�asDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6g�#��sq�WsDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��uq�[sDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���vq�IsDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
""�Y��wq�CsDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
``���xq�GtDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����yq�OtDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��{q�atDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6n�#��zq�WtDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��|q�[tDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���}q�ItDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����q�tDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6r�Y��~q�CtDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��q�[tDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���q�tDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6s

e�r+��V��:��eD��
92e24421bd43dc1bc206b56f3d63452a3bffc509e64e9b541086b542c48c40deD��
3cc29a69aafb39574532fe2809182aad0e720f88cccd15dc57272ac96c7b2417D��
cce50d5874faecf4616bbc5ef77e0672efaef940a90870c5d652dbb07846408cD�~�
f47163cfd1c460c07d781e489622d1befb7dde8116948f80289c8bc685eef102D�}�
3442dd9e3cb39ce1bccd183f239742f4ae9a9499d4772d140b7b2a2c451d5507D�|�
d8752f8190b36bb9dd01e3568f7822c9a11fbce472408c4206c1a371ea109c53D�{�
3b6744ba25565e7f93733bc406e01364aff0968d6eb153c58e942635400ed11cD�z�
49e9c90df2985998052c0402a2bc848b5090e19a31cd9259e1fd77529e6a3505D�y�
faacc67629472caf8377dc9a0bf33c24bb238dbcb391edf62435e70baf591d97D�x�
f807177c77f5b66e10ff872d87a5651796c519c8d3b788ad034ec80c6c71e89fD�w�
c2282a789d3df8501b91543727d2c0b76e144991275bca82e8c75c83afbe05d7D�v�
125ae22f4c9e8e637d89b849935d280420235c63f848bc2c66d739962c4cbf45D�u�
93ffdd88323d633406fd4f495ae9b81a2e9022740ce9b398b77bb2fad9f8c6ee
�����q�OuDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��q�auDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6x�#��q�WuDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��q�[uDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���q�IuDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����q�uDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6|�Y��q�CuDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��
q�[uDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���	q�uDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6}
�_��h��q�avDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6����q�IuDogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��
q�[vDogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���q�IvDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����q�vDogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6��Y��q�CvDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��q�[vDogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���q�vDogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6�
__���q�IvDogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���H��q�!vDogtag Team <devel@lists.dogtagpki.org> 10.5.18-26d��- ##########################################################################
- # RHEL 7.9 (Batch Update 22):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 22):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���H��q�!vDogtag Team <devel@lists.dogtagpki.org> 10.5.18-27dO��- ##########################################################################
- # RHEL 7.9 (Batch Update 23):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 23):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���y��e�wDogtag Team <pki-devel@redhat.com> 10.5.18-3^�=@- Updated jss dependencies
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
#�#���e�IwDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)�=��e�wDogtag Team <pki-devel@redhat.com> 10.5.18-4^�U@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE
  additional support and touch-up (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
�1��"��e�awDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��e�1wDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��e�#wDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e�wDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
��r���� e�IxDogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)���g�'wDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6��e��g�ewDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�}��g�wDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1��"��"e�axDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��!e�1xDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��$e�#xDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��#e�xDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���'g�'xDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6��e��&g�exDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�}��%g�xDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����)g�!xDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6��J��(g�/xDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�1��"��+e�ayDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��*e�1yDogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��-e�#yDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��,e�yDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���0g�'yDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6��e��/g�eyDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�}��.g�yDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����2g�!yDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6��J��1g�/yDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�`��"��4e�azDogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)���3q�GyDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
??�C��6e�#zDogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��5e�zDogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���9g�'zDogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6��e��8g�ezDogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�}��7g�zDogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����;g�!zDogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6��J��:g�/zDogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���<q�GzDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����=q�OzDogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
??�C��?e�#{Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��>e�{Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���Bg�'{Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6��e��Ag�e{Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�}��@g�{Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Dg�!{Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6��J��Cg�/{Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���Eq�G{Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Fq�O{Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
X�}��Ig�|Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�C��He�#|Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�#��Gq�W{Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����Kg�'|Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6��e��Jg�e|Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Mg�!|Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6��J��Lg�/|Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���Nq�G|Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Oq�O|Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
gX�g}��Rg�}Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�h��Qq�a|Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6Ņ#��Pq�W|Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����Tg�'}Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6ɑe��Sg�e}Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Vg�!}Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6̅J��Ug�/}Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���Wq�G}Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Xq�O}Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��Zq�a}Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6Ѕ#��Yq�W}Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��[q�[}Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)6�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
��J��]g�/~Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)���\g�'~Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B6�##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
������_q�G~Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)���^g�!~Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################6�
�����`q�O~Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��bq�a~Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6م#��aq�W~Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��cq�[~Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���dq�I~Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
""�Y��eq�C~Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
``���fq�GDogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����gq�ODogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��iq�aDogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6�#��hq�WDogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��jq�[Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���kq�IDogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����mq�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6�Y��lq�CDogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��oq�[Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���nq�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6�
�����pq�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��rq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6�#��qq�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��sq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���tq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����vq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6�Y��uq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��xq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���wq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6�
�_��h��zq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################6���yq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��{q�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���|q�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����~q��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################6��Y��}q�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��q�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���q��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################6�
__���q�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���H��q�!�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-26d��- ##########################################################################
- # RHEL 7.9 (Batch Update 22):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 22):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���H��q�!�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-27dO��- ##########################################################################
- # RHEL 7.9 (Batch Update 23):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 23):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)

e�r+��V��:��eD��
f6b64e5a20d4a11fbbe440a1ef9cc7566bba9bb10dcf6852b1d53148fdcf01b6D�
�
3518ffcaeb18d70ca1e7a98dfb39cdb789944a2791b29a154aa0a970188b0b33D��
68c5c1e442cb8c8c7a3e075f4f200477ce6b2f53023da840209a0d79dbb16cacD��
eecc80d13fe486baa625924789eb5a656a1d00ebf4d3802de276c8d8c56dcb47D�
�
ca59a355697c31c9ad51c2e64ca52833b18efc933c257e7d0dfe4f7509ec425bD�	�
d64ab36b01ec9723eaab8170d2287e1ce9a08cb7098b0c0912d596f03dfbcbbdD��
ab37b1d65a0c8a304dddc11c7c15156bfbf447331a7afdff3f2f1c4a7632a7ffD��
42cf93b353c32a2f1ee4496369b7f3181e00c033475ee1a6ada5dd1706c96a78D��
9b49885bec503dbc2bbb82461da78b854568129c5ea70410fc3d5ba68dd1e97dD��
76b9c89c43e25719214415b156394b6c8108b41639e8116895753032c1480241D��
072e6332387b7078fb53410078598cb6a9480bef04a1e72bcfd996503ff19d12D��
50d0381894cd1165df39084b17a13d53f360ad62fcfdcffb2c1b16a1684643acD��
d5f36384f01382169e35a68adc8feedd5a3f1bb1e38a45244efcf65320e8c633
���y��e��Dogtag Team <pki-devel@redhat.com> 10.5.18-3^�=@- Updated jss dependencies
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
#�#���e�I�Dogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)�=��e��Dogtag Team <pki-devel@redhat.com> 10.5.18-4^�U@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE
  additional support and touch-up (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
�1��"��e�a�Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��e�1�Dogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��
e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��	e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the userbR7iRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������6���K6���M6�N6Â�O6Ă�R6Ȃ�T6˂�V6͂�W6΂�X6ς�Z6т�[6Ԃ�]6ւ�_6ׂ�`6؂�b6ڂ�c6ۂ�d6܂�e6݂�f6ނ�g6߂�i6��j6��k6��m6��o6��p6��r6��s6��t6��v6��x6��z6��{6��|6��~6���6���6���6���6���6���6���6���
7��7��7	��7
��7��7��7��7��7�� 7��"7��$7��'7!��)7#��*7$��+7%��-7&��07+��27-��37.��47/��772��975��;77��<78��=79��@7=��B7@��D7B��E7C��F7D��H7F��I7I��K7K��M7L��N7M��P7O��Q7P��R7Q��S7R��T7S��U7T��W7V��X7W��Y7X��[7[��]7\��^7]��`7_��a7`��b7a��d7d��f7e��h7g��i7h��j;D���������������������	!'.5<CJQX_fmt{��������������������Y��#�4��!�b��7���\���JP�!Ŵ	;�F��X%�.���
��I	�L	y�-	��<
h�"
��RR�/�9>�B�M
c�R
���9���h���ab��wɁ�
6�������Bz��mしhO�����%��q���8���k��nׁ�DD�����j��7����ee��`܁���@���i���!��J���'��+Ɂ�ce=J�x������������������ '.5<CJQX_fmt{������������������qjc\UNG@92+$������������������|ung`YRKD=J&��!I���IT��?H��xH���~H��uG���wG��:F��� F!��:E���qET��9DwD���9D$��C���ACY��B�>B���B(��=AÃ�A\��,@���@���P@%��A?���6?U��>탍>l��=���G=���'=*��"<���6<S��~;؂�;R��>:��l:���$9���c9v��N9��18���681��
7���,7��l��Cb��o���#{��S�����7 -��f ���!H��H!́�"V��9"���^#(��[#���8$
��f$p��$ف�1%B��E%���Y&��m&}��V&䂁'L��N'���(��G(|��(ႈB)G��)���2*��f*w��"*݂�`+C��l+���,��?,v��i,݂�G-J��B-���.���2/��/���/0X��p0���1'��*1���y1���q2]��e2Ă�N38��n3���]4D��E4���s6[��I5���
��r����e�I�Dogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)���
g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�e��g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7}��g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1��"��e�a�Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��e�1�Dogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7
�e��g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7}��g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7�J��g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�1��"��e�a�Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��e�1�Dogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�e��g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7}��g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1���� g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7�J��g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�`��"��"e�a�Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)���!q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
??�C��$e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��#e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���'g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�e��&g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7}��%g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7 ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����)g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7"�J��(g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���*q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����+q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
??�C��-e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��,e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���0g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7)�e��/g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7'}��.g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7(ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7*ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����2g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7,�J��1g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���3q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����4q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
X�}��7g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�C��6e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�#��5q�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)71ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����9g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B73�e��8g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7074ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����;g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################76�J��:g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���<q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����=q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
gX�g}��@g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�h��?q�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7:�#��>q�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)7<ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����Bg�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7>�e��Ag�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7;7?ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����Dg�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7A�J��Cg�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���Eq�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Fq�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��Hq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7E�#��Gq�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Iq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)7Hug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
��J��Kg�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)���Jg�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7G##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
������Mq�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)���Lg�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7J
�����Nq�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��Pq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7N�#��Oq�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Qq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Rq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
""�Y��Sq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
``���Tq�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Uq�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��Wq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7U�#��Vq�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Xq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Yq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����[q��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################7Y�Y��Zq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��]q�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���\q��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################7Z
�����^q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��`q�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7^�#��_q�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��aq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���bq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����dq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################7b�Y��cq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��fq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���eq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################7c
�_��h��hq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7f���gq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��iq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���jq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����lq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################7j�Y��kq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��nq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���mq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################7k
__���oq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���H��pq�!�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-26d��- ##########################################################################
- # RHEL 7.9 (Batch Update 22):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 22):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���H��qq�!�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-27dO��- ##########################################################################
- # RHEL 7.9 (Batch Update 23):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 23):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
���y��re��Dogtag Team <pki-devel@redhat.com> 10.5.18-3^�=@- Updated jss dependencies
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
#�#���te�I�Dogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)�=��se��Dogtag Team <pki-devel@redhat.com> 10.5.18-4^�U@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE
  additional support and touch-up (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
�1��"��ve�a�Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��ue�1�Dogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��xe�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��we��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
��r����|e�I�Dogtag Team <pki-devel@redhat.com> 10.5.18-5^��@- Updated jss dependencies
- Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)���{g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7w�e��zg�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7u}��yg��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7vug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7xug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1��"��~e�a�Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��}e�1�Dogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7~�e��g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7|}��g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7}ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7��J��g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)

e�r+��V��:��eD��
6b85f79e92ef0c82246378fae50f149f91d8ee31ac8f97a53f0333aef59c5632D��
f74a68159214f1426d96de0733bdacb896eb4589d3e21a7f2e703f6256d709bcD��
b55dbe4208bb3c90683449a91d2a51f9e672cea8adfe70dae659fe5f39549d2fD��
2152a348fc6d94205b82143e948cc225b5abf2e72debfedc99a192d0540f8dd9D��
f6a7307b2019d7d0e915192006d8ef7f56bbd11efafed60f9a5cb5f67f74db72D��
e6e6ba69197bfc243b1960a9622d4e657bb927c0f6bd1e8cc8ee4f1cbc2162e3D��
83c818ad04bf6b2bffa2f694713b5cf4daf9cb03a8d10c5c5bf31c984bf9fd5bD��
2bb0b6d6fcc0774c8edfa188a222399464a6b216f7edf3776d72aba9dd432b37D��
7fad090d109f3a2e81094996192b76c6a9c2f3dc5bdf9730d806f26705d9ec47D��
b10e3c319490493ec81ce895694bf20ebddb48ec604b6a5d8d41cae60cbe4adaD��
f09a628b0ae728f1bafc53c158926f284c0273e95363412bc951888d30e73e36D��
c328c37ab19654e8c75410894318772e2ded988336a832db854b41d7fdb4f144D��
218cc9a564ccf2b06cc13a609ffdc007f0f4e45e935a32631db3d78e1c63ccb6
�1��"��e�a�Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)�J��e�1�Dogtag Team <pki-devel@redhat.com> 10.5.18-6^��@- Patch for CMC Credential Error, RSA PSS typo, and new profile
  for directory-authentication-based Server-Side keygen
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1710109 - add RSA PSS support (jmagne)
- Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
??�C��	e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7��e��g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�}��
g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7��J��
g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
�`��"��e�a�Dogtag Team <pki-devel@redhat.com> 10.5.18-7^�V@- Patch for CMCResponse tool
- Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)���q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
??�C��e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7��e��g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�}��g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7��J��g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
??�C��e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�t��e��Dogtag Team <pki-devel@redhat.com> 10.5.18-8_��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if
  - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client
  - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working
  - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
r�r���g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7��e��g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�}��g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1���� g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7��J��g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���!q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����"q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
X�}��%g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�C��$e�#�Dogtag Team <pki-devel@redhat.com> 10.5.18-9_��@- Bugzilla Bug #1883639 - additional support on upgrade for audit
  cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)�#��#q�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����'g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7��e��&g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����)g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7��J��(g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���*q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����+q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
gX�g}��.g��Dogtag Team <pki-devel@redhat.com> 10.5.18-10_�$�- Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)�h��-q�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7��#��,q�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�
����0g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7��e��/g�e�Dogtag Team <pki-devel@redhat.com> 10.5.18-11`%@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
�1����2g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7��J��1g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
``���3q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����4q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��6q�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7��#��5q�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��7q�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)7�ug 1883639 - Add KRA Transport and Storage Certificates
  profiles, audit for IPA (edewata)
- ##########################################################################
- # Backported CVEs (ascheel):
- ##########################################################################
- Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token
  parameters in TPS resulting in stored XSS [certificate_system_9-default]
  (edewata, ascheel)
- Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site
  scripting (XSS) in the pki-tps web Activity tab
  [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile
  creation [certificate_system_9-default] (edewata, ascheel)
- Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site
  Scripting in 'path length' constraint field in CA's Agent page
  [rhel-7.9.z] (dmoluguw, ascheel)
- Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site
  scripting in getcookies?url= endpoint in CA [rhel-7.9.z]
  (dmoluguw, ascheel)
- Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra:
  Reflected XSS in recoveryID search field at KRA's DRM agent page in
  authorize recovery tab [rhel-7.9.z] (ascheel)
- Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to
  reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne)
- ##########################################################################
- Update to jquery v3.4.1 (ascheel)
- Update to jquery-i18n-properties v1.2.7 (ascheel)
- Update to backbone v1.4.0 (ascheel)
- Upgrade to underscore v1.9.2 (ascheel)
- Update to patternfly v3.59.3 (ascheel)
- Update to jQuery v3.5.1 (ascheel)
- Upgrade to bootstrap v3.4.1 (ascheel)
- Link in new Bootstrap CSS file (ascheel)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
��J��9g�/�Dogtag Team <pki-devel@redhat.com> 10.5.18-13`�e@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base
  build (jmagne)
- Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot
  be processed (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)���8g�'�Dogtag Team <pki-devel@redhat.com> 10.5.18-12`6?�- Change variable 'TPS' to 'tps'
- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla B7�##############################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1911472 - Revoke via REST API not working when Agent
  certificate not issued by CA [rhel-7.9.z] (cfu)
- Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version
  String.java.io.FileNotFoundException (ckelley)
- Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching
  PIN_RESET=YES to NO [rhel-7.9.z] (jmagne)
- Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA
  fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
������;q�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)���:g�!�Dogtag Team <pki-devel@redhat.com> 10.5.18-14`��- ############################################7�
�����<q�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]bR8RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������7l��n7m��o7n��p7o��q7p��r7q��t7r��v7s��x7t��|7y��~7z��7{��7���7���7���	7���7���7���7���7���7���7���7���7���7���7��� 7���!7���"7���%7���'7���)7���*7���+7���.7���07���27���37���47���67���77���97���;7���<7���>7�?7Â�@7Ă�A7ł�B7Ƃ�C7ǂ�E7ɂ�F7ʂ�G7˂�I7΂�K7ς�L7Ђ�N7҂�O7ӂ�P7Ԃ�R7ׂ�T7؂�V7ڂ�W7ۂ�X7܂�Z7߂�\7��]7��^7��`7��e7��j7��o7��u7��|7��7��
7��7��7��7��&7��-7��47��;7��B7��H7��O7���V7���\7���c7���j7���p7���w7���~7���7���7���8��8��8��&
�X��h��>q�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7��#��=q�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��?q�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���@q�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
""�Y��Aq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
``���Bq�G�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-15`��@- ##########################################################################
- # RHEL 7.9:
- ##########################################################################
- Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission
  per LDAP group without immediate issuance [rhel-7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�����Cq�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��Eq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7ȅ#��Dq�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Fq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Gq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����Iq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################7̅Y��Hq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��Kq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���Jq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################7�
�����Lq�O�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-16a�- ##########################################################################
- # RHEL 7.9 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu]
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500:
  Non-2xx response from CA REST API: 500 [ftweedale, ckelley]
- ##########################################################################
- # RHCS 9.7 (Batch Update 8):
- ##########################################################################
- Bugzilla Bug 1959937 - TPS Allowing Token Transactions while
  the CA is Down [cfu]
- Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile
  Separation [cfu]
�X��h��Nq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7х#��Mq�W�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-17aA�@- ##########################################################################
- # RHEL 7.9 (Batch Update 9):
- ##########################################################################
- Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx
  response from CA REST API: 500 [ftweedal, ckelley]
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Oq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Pq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����Rq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################7ՅY��Qq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��Tq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���Sq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################7�
�_��h��Vq�a�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-18as�@- #######################################7م��Uq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)###################################
- # RHEL 7.9 (Batch Update 10):
- ##########################################################################
- Bugzillla Bug 1978345 - End Entity's List Certificates Page Back/Forward
  Buttons are Broken (ckelley, jonahon.d.parrish@mail.mil, mharmsen)
- Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could
  have been worked around after installation [RHEL 7.9.z] (cfu)
- Bugzilla Bug 2016773 - Directory authentication plugin requires directory
  admin password just for user authentication (rhel-7.9.z)
  (awnuk@purestorage.com, jmagne)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���%��Wq�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-19a�*@- ##########################################################################
- # RHEL 7.9 (Batch Update 11):
- ##########################################################################
- Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu)
- Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail
  in FIPS Mode (cfu)
- Bugzilla Bug 2018608 - Invalid certificates with creation of subCA
  (pkispawn single step) [rhel-7.9.0.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
__���Xq�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-20bf�@- ##########################################################################
- # RHEL 7.9 (Batch Update 14):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
�"����Zq��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-22co�- #####################################################################7݅Y��Yq�C�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-21b�@- ##########################################################################
- # RHEL 7.9 (Batch Update 15):
- ##########################################################################
- Bugzilla Bug #2074722 - user password and pkcs12 password exposure when
  debug level set to maximum [RHEL 7.9.z] (cfu)
- Bugzilla Bug #2082717 - SCEP manual approval failure (cfu)
- ##########################################################################
- # RHCS 9.7:
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)#####
- # RHEL 7.9 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 17):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)#####
- # RHEL 7.9 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- Bugzilla Bug #2111514 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhel-7.9] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 18):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)
- Bugzilla Bug #2111493 - CVE-2022-2393 pki-core: When using the
  caServerKeygen_DirUserCert profile, user can get certificates for other
  UIDs by entering name in Subject field [rhcs_9.7] (cfu, ckelley)
�r��e��\q�[�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-24cY!@- ##########################################################################
- # RHEL 7.9 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107329 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [rhel-7.9.z] (ckelley, mharmsen)
- ##########################################################################
- # RHCS 9.7 (Batch Update 19):
- ##########################################################################
- Bugzilla Bug #2107325 - CVE-2022-2414 pki-core: access to external
  entities when parsing XML can lead to XXE [certificate_system_9.7.z]
  (ckelley, mharmsen)���[q��Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-23cD	@- #####################################################################7�
__���]q�I�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-25c�1�- ##########################################################################
- # RHEL 7.9 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #2160355 - RA Separation by KeyType - Set Token Status
  [RHCS 9.7 bu 21] (cfu, ckelley)
- ##########################################################################
- # RHCS 9.7 (Batch Update 21):
- ##########################################################################
- Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
  pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
���H��^q�!�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-26d��- ##########################################################################
- # RHEL 7.9 (Batch Update 22):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 22):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
Q�Q^��`gY�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129�H��_q�!�Dogtag Team <devel@lists.dogtagpki.org> 10.5.18-27dO��- ##########################################################################
- # RHEL 7.9 (Batch Update 23):
- ##########################################################################
- ##########################################################################
- # RHCS 9.7 (Batch Update 23):
- ##########################################################################
- Bugzilla Bug #2179305 - Unable to use the TPS UI "Token Filter" to filter
  a list of tokens [RHCS 9.7] (ckelley)
- Bugzilla Bug #2092522 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False [RHCS 9.7.z] (cfu)
- Bugzilla Bug #2176233 - TPS Not allowing Token Status Change based on
  Revoke True/False and Hold till last True/False (part 2) [RHCS 9.7.z] (cfu)
� ��1����ei�O�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���di��Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��ci�/�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���bg�A�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��ag�Q�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
�NU�:�^��jgY�Jan Grulich <jgrulich@redhat.com> - 4.11-19-7U�|@- Requires: cpp
  Resolves: bz#1260129���ii��Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���hi�5�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��gi��Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��fi�s�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
� ��1����oi�O�Jan Grulich <jgrulich@redhat.com> - 4.11.19-12Y�@- Make sure that plasma screensaver is not used when previously configured
  Resolves: bz#1342560���ni��Jan Grulich <jgrulich@redhat.com> - 4.11.19-11Y�- Disable plasma screensaver for security reasons
  Resolves: bz#1342560�K��mi�/�Jan Grulich <jgrulich@redhat.com> - 4.11.19-10Y�A@- Fix grouping of tasks in taskmanager applet
  Resolves: bz#1348917
- Fix unlocking of kscreenlocker, unlock it just once
  Resolves: bz#1333441���lg�A�Jan Grulich <jgrulich@redhat.com> - 4.11.19-9Y�z�- Fix loading of get hot new stuff for KWin decorations and effects
  Resolves: bz#1422002�[��kg�Q�Jan Grulich <jgrulich@redhat.com> - 4.11.19-8V�3�- Powerdevil: do not notify about a non existent action
  Resolves: bz#1289149
- Plasma taskmanager: close context menu when task is closed
  Resolves: bz#1262603
'NU�:�'���u]�-�Jan Rybar <jrybar@redhat.com> - 0.112-19\	@- Fix of CVE-2018-19788, priv escalation with high UIDs
- Resolves: rhbz#1656377���t]�/�Jan Rybar <jrybar@redhat.com> - 0.112-18[a��- Error message about getting authority is too elaborate
- Resolves: rhbz#1342855���si��Jan Grulich <jgrulich@redhat.com> - 4.11.19-16_
�@- KSysguard: Increase cpu buffer size in ksysguard
  Resolves: bz#1856159���ri�5�Jan Grulich <jgrulich@redhat.com> - 4.11.19-15]�- Fix curly bracket in the patch for Plastik decoration theme
  Resolves: bz#1779401�t��qi��Jan Grulich <jgrulich@redhat.com> - 4.11.19-14]H@- Do not show disabled buttons in Plastik decoration theme
  Resolves: bz#1677641

- Taskmanager: dismiss group when application is closed and there is enough space
  Resolve: bz#1698048�-��pi�s�Jan Grulich <jgrulich@redhat.com> - 4.11.19-13\b�@- Sanitise notification HTML
  Resolves: bz#1568853

- Increase cpu buffer size in ksysguard
  Resolves: bz#1611762
L��^�?�L���|]�5�Jan Rybar <jrybar@redhat.com> - 0.112-26]�@�- Refined upstream fix of CVE-2018-1116 to avoid ABI changes
- Related: rhbz#1601411b��{]k�Jan Rybar <jrybar@redhat.com> - 0.112-25]���- fix of CVE-2018-1116
- Resolves: rhbz#1601411���z]�3�Jan Rybar <jrybar@redhat.com> - 0.112-24]���- pkttyagent: resetting terminal erases rest of input line
- Resolves: rhbz#1753037���y]�A�Jan Rybar <jrybar@redhat.com> - 0.112-23]'$�- pkttyagent: process stopped by SIGTTOU if run in background job
- Resolves: rhbz#1724444���x]�G�Jan Rybar <jrybar@redhat.com> - 0.112-22\�|�- pkttyagent: polkit-agent-helper-1 timeout leaves tty echo disabled
- Resolves: rhbz#1325512���w]�3�Jan Rybar <jrybar@redhat.com> - 0.112-21\Z�@- Mitigation of regression caused by fix of CVE-2018-19788
- Resolves: rhbz#1656377|��v]��Jan Rybar <jrybar@redhat.com> - 0.112-20\E�@- Fix of CVE-2019-6133, PID reuse via slow fork
- Resolves: rhbz#1667312
,t�a�U�,���]�A�Jan Rybar <jrybar@redhat.com> - 0.112-23]'$�- pkttyagent: process stopped by SIGTTOU if run in background job
- Resolves: rhbz#1724444���]�G�Jan Rybar <jrybar@redhat.com> - 0.112-22\�|�- pkttyagent: polkit-agent-helper-1 timeout leaves tty echo disabled
- Resolves: rhbz#1325512���]�3�Jan Rybar <jrybar@redhat.com> - 0.112-21\Z�@- Mitigation of regression caused by fix of CVE-2018-19788
- Resolves: rhbz#1656377|��]��Jan Rybar <jrybar@redhat.com> - 0.112-20\E�@- Fix of CVE-2019-6133, PID reuse via slow fork
- Resolves: rhbz#1667312���]�-�Jan Rybar <jrybar@redhat.com> - 0.112-19\	@- Fix of CVE-2018-19788, priv escalation with high UIDs
- Resolves: rhbz#1656377���~]�/�Jan Rybar <jrybar@redhat.com> - 0.112-18[a��- Error message about getting authority is too elaborate
- Resolves: rhbz#1342855���}a�/�Jan Rybar <jrybar@redhat.com> - 0.112-26.1a�{�- pkexec: argv overflow results in local privilege esc.
- Resolves: CVE-2021-4034
bt��k�b|��
]��Jan Rybar <jrybar@redhat.com> - 0.112-20\E�@- Fix of CVE-2019-6133, PID reuse via slow fork
- Resolves: rhbz#1667312���	]�-�Jan Rybar <jrybar@redhat.com> - 0.112-19\	@- Fix of CVE-2018-19788, priv escalation with high UIDs
- Resolves: rhbz#1656377���]�/�Jan Rybar <jrybar@redhat.com> - 0.112-18[a��- Error message about getting authority is too elaborate
- Resolves: rhbz#1342855���a�/�Jan Rybar <jrybar@redhat.com> - 0.112-26.1a�{�- pkexec: argv overflow results in local privilege esc.
- Resolves: CVE-2021-4034���]�5�Jan Rybar <jrybar@redhat.com> - 0.112-26]�@�- Refined upstream fix of CVE-2018-1116 to avoid ABI changes
- Related: rhbz#1601411b��]k�Jan Rybar <jrybar@redhat.com> - 0.112-25]���- fix of CVE-2018-1116
- Resolves: rhbz#1601411���]�3�Jan Rybar <jrybar@redhat.com> - 0.112-24]���- pkttyagent: resetting terminal erases rest of input line
- Resolves: rhbz#1753037

e�r+��V��:��eD�(�
3aff8eeef1e22685460bc0aabe262f29bc20ce164b68243c87e313c98c1e32e9D�'�
b20d6f1e46d161202c4ae45ba1ae9ed58e953a1d4ecbee1eb0acaf15da85fa78D�&�
66a4fd1fe3f059fdf718b2b6cfe2780550bd2ecc35fc7e05bfc971d08dda1d24D�%�
57cd2f70db38f1fa93cd1038f8b78c691635c9ffc591f01d4c77aef6482048e5D�$�
2ff70d59a80bb5a8d198a023ddeeddd3d158a43054e77660764247997d9d5529D�#�
a55f9423be083a88cde58065e6db2d37a2914f6a3c47d1e7691f1727476f4183D�"�
6afa61594c5b06f1ffc4710ba8533b869a889dfbfe0172d8e3cf6ea56d8269dfD�!�
189ac4f6255d2b5abc0708dbb15227064a2197770e4044055b575c335118f124D� �
a374981fe49487005f6b444803f5ee027e4f454271acd10934c5612a37320bf3D��
1a0a2c585f883eff1f329e4976169d243f39b899c3b430426cd6e1c996b89624D��
ac4c7414d6a7541a5319e863c261155019d2a35737e18e635bc5522b6971141aD��
22b030d124eaf33b5a95d386b50c0b6eb1b02dfa96a1333d4af435fedbe097b4D��
416d63eed80ece67c95210f8579b267e2d49d197964c16f46abc57e43e2e7cb4
@t�K�Y�@���a�/�Jan Rybar <jrybar@redhat.com> - 0.112-26.1a�{�- pkexec: argv overflow results in local privilege esc.
- Resolves: CVE-2021-4034���]�5�Jan Rybar <jrybar@redhat.com> - 0.112-26]�@�- Refined upstream fix of CVE-2018-1116 to avoid ABI changes
- Related: rhbz#1601411b��]k�Jan Rybar <jrybar@redhat.com> - 0.112-25]���- fix of CVE-2018-1116
- Resolves: rhbz#1601411���]�3�Jan Rybar <jrybar@redhat.com> - 0.112-24]���- pkttyagent: resetting terminal erases rest of input line
- Resolves: rhbz#1753037���
]�A�Jan Rybar <jrybar@redhat.com> - 0.112-23]'$�- pkttyagent: process stopped by SIGTTOU if run in background job
- Resolves: rhbz#1724444���]�G�Jan Rybar <jrybar@redhat.com> - 0.112-22\�|�- pkttyagent: polkit-agent-helper-1 timeout leaves tty echo disabled
- Resolves: rhbz#1325512���]�3�Jan Rybar <jrybar@redhat.com> - 0.112-21\Z�@- Mitigation of regression caused by fix of CVE-2018-19788
- Resolves: rhbz#1656377
,v�m�K�,���]�3�Jan Rybar <jrybar@redhat.com> - 0.112-24]���- pkttyagent: resetting terminal erases rest of input line
- Resolves: rhbz#1753037���]�A�Jan Rybar <jrybar@redhat.com> - 0.112-23]'$�- pkttyagent: process stopped by SIGTTOU if run in background job
- Resolves: rhbz#1724444���]�G�Jan Rybar <jrybar@redhat.com> - 0.112-22\�|�- pkttyagent: polkit-agent-helper-1 timeout leaves tty echo disabled
- Resolves: rhbz#1325512���]�3�Jan Rybar <jrybar@redhat.com> - 0.112-21\Z�@- Mitigation of regression caused by fix of CVE-2018-19788
- Resolves: rhbz#1656377|��]��Jan Rybar <jrybar@redhat.com> - 0.112-20\E�@- Fix of CVE-2019-6133, PID reuse via slow fork
- Resolves: rhbz#1667312���]�-�Jan Rybar <jrybar@redhat.com> - 0.112-19\	@- Fix of CVE-2018-19788, priv escalation with high UIDs
- Resolves: rhbz#1656377���]�/�Jan Rybar <jrybar@redhat.com> - 0.112-18[a��- Error message about getting authority is too elaborate
- Resolves: rhbz#1342855
b�
��n�b���]�3�Jan Rybar <jrybar@redhat.com> - 0.112-21\Z�@- Mitigation of regression caused by fix of CVE-2018-19788
- Resolves: rhbz#1656377|��]��Jan Rybar <jrybar@redhat.com> - 0.112-20\E�@- Fix of CVE-2019-6133, PID reuse via slow fork
- Resolves: rhbz#1667312���]�-�Jan Rybar <jrybar@redhat.com> - 0.112-19\	@- Fix of CVE-2018-19788, priv escalation with high UIDs
- Resolves: rhbz#1656377���]�/�Jan Rybar <jrybar@redhat.com> - 0.112-18[a��- Error message about getting authority is too elaborate
- Resolves: rhbz#1342855���a�/�Jan Rybar <jrybar@redhat.com> - 0.112-26.1a�{�- pkexec: argv overflow results in local privilege esc.
- Resolves: CVE-2021-4034���]�5�Jan Rybar <jrybar@redhat.com> - 0.112-26]�@�- Refined upstream fix of CVE-2018-1116 to avoid ABI changes
- Related: rhbz#1601411b��]k�Jan Rybar <jrybar@redhat.com> - 0.112-25]���- fix of CVE-2018-1116
- Resolves: rhbz#1601411
Dj�K�X�D���&c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���%a�/�Jan Rybar <jrybar@redhat.com> - 0.112-26.1a�{�- pkexec: argv overflow results in local privilege esc.
- Resolves: CVE-2021-4034���$]�5�Jan Rybar <jrybar@redhat.com> - 0.112-26]�@�- Refined upstream fix of CVE-2018-1116 to avoid ABI changes
- Related: rhbz#1601411b��#]k�Jan Rybar <jrybar@redhat.com> - 0.112-25]���- fix of CVE-2018-1116
- Resolves: rhbz#1601411���"]�3�Jan Rybar <jrybar@redhat.com> - 0.112-24]���- pkttyagent: resetting terminal erases rest of input line
- Resolves: rhbz#1753037���!]�A�Jan Rybar <jrybar@redhat.com> - 0.112-23]'$�- pkttyagent: process stopped by SIGTTOU if run in background job
- Resolves: rhbz#1724444��� ]�G�Jan Rybar <jrybar@redhat.com> - 0.112-22\�|�- pkttyagent: polkit-agent-helper-1 timeout leaves tty echo disabled
- Resolves: rhbz#1325512
~�L�����-c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��,c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���+c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��*c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��)c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��(c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��'c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304
+�m�i�+�	��4c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��3c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��2c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��1c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���0c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���/s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��.c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340
Ca�X�M�C~��;c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���:c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���9s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��8c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���7c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��6c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���5c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504
~�@�.�}��Bc��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���Ac�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��@c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���?c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��>c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��=c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��<c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961
�v�l�:��	��Hc�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��Gc�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��Fc��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��Ec��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���Dc�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���Cs��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678
Ca�X�M�C~��Oc��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���Nc�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���Ms��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��Lc��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���Kc�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��Jc�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���Ic�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504
~�@�.�}��Vc��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���Uc�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��Tc�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���Sc�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��Rc�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��Qc�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��Pc��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961
�v�l�:��	��\c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��[c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��Zc��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��Yc��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���Xc�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���Ws��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678
Ca�X�M�C~��cc��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���bc�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���as��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��`c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���_c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��^c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���]c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504
~�@�.�}��jc��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���ic�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��hc�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���gc�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��fc�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��ec�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��dc��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961
�v�l�:��	��pc�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��oc�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��nc��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��mc��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���lc�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���ks��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678
Ca�X�M�C~��wc��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���vc�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���us��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��tc��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���sc�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��rc�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���qc�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504
~�@�.�}��~c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���}c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��|c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���{c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��zc�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��yc�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��xc��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961
�v�l�:��	��c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678
Ca�X�M�C~��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���
c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���	s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504

e�r+��V��:��eD�5�
4979bbf79b86bc451b21e72cc74db0991153920063a30b01bef2f9334eed1607D�4�
7ab133f1d96805c9be74317d0b4bcea3e9eababb5fcc413f08dbe0176819a8c7D�3�
9a83d7998a3864c74ef1b2bf4f61a19da0f4c226c45f7a70d50c9c0f75da1207D�2�
1537999eab86e331b7616768bea67b873d68628c73c3287db0880ce0846cdbedD�1�
24699358bf47868256f0864e15068069f9dc2d6b473bfc07b8c40d1a5f0bf3edD�0�
c86aee9cf2e2da2f84035f7c561f1365eee34235321b9b4983b359b9f5cd8060D�/�
2f3a77bd6bf53c49e09304c30a934f3f38f8f85bb51455216f94ab7eeb5a0502D�.�
ea9dcf09763ae93b161230c20f7c1a05f3a8854c5c164594f7bcfbeefb4c4ffdD�-�
186d5436f6365f279482c72b48d2038d776476514615d06d9fbbf8a163f36dfbD�,�
00a2d48440baace65111ae56106256b8e047e95d4a9a467ebaed09dc73f03585D�+�
6f484446414072c482a1b896884d3548ebc69e39b5a32f1817778985ebfe7054D�*�
11c4d1e2b30e04a86c011ebc0edda9c30a6b0f8a2a4c493606247511a8a39184D�)�
36ff4ef5c9d824aa0dc623200d80aad9bf2bc1f5d992c7cfd42bd6eb14264c63
~�@�.�}��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��
c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961
�v�l�:��	��c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678
Ca�X�M�C~��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504
~�@�.�}��&c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���%c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��$c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���#c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��"c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��!c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~�� c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961
�v�l�:��	��,c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��+c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��*c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��)c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���(c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���'s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678
Ca�X�M�C~��3c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���2c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���1s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��0c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���/c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��.c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���-c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504
~�@�.�}��:c��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���9c�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��8c�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���7c�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��6c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��5c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��4c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961
�v�l�:��	��@c�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��?c�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��>c��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��=c��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���<c�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���;s��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678
Ca�X�M�C~��Gc��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���Fc�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���Es��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��Dc��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���Cc�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��Bc�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���Ac�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504
~�@�.�}��Nc��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���Mc�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��Lc�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���Kc�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504�	��Jc�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��Ic�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��Hc��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961
�v�l�:��	��Tc�1�Marek Kasik <mkasik@redhat.com> - 0.26.5-39]R�@- Check whether input is RGB in PSOutputDev::checkPageSlice()
- Resolves: #1697575�+��Sc�u�Marek Kasik <mkasik@redhat.com> - 0.26.5-38\��- Constrain number of cycles in rescale filter
- Compute correct coverage values for box filter
- Resolves: #1688417~��Rc��Marek Kasik <mkasik@redhat.com> - 0.26.5-37\�+@- Fix tiling patterns when pattern cell is too far
- Resolves: #1378961~��Qc��Marek Kasik <mkasik@redhat.com> - 0.26.5-36\��A- Fix version from which PrintScaling is available
- Resolves: #1658304���Pc�%�Marek Kasik <mkasik@redhat.com> - 0.26.5-35\��@- Export PrintScaling viewer preference in glib frontend
- Related: #1658304���Os��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678
/a�X�M/���Z_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.html���Ys��Marek Kasik <mkasik@redhat.com> - 0.26.5-43.el7_9.1_[f�- Handle bytestring representation of named dests
- Resolves: #1857678}��Xc��Marek Kasik <mkasik@redhat.com> - 0.26.5-43^��@- Fix crash on broken file in tilingPatternFill()
- Resolves: #1801340���Wc�A�Marek Kasik <mkasik@redhat.com> - 0.26.5-42]Γ@- Fix potential integer overflow and check length for negative values
- Resolves: #1757283o��Vc�Marek Kasik <mkasik@redhat.com> - 0.26.5-41]R�B- Ignore dict Length if it is broken
- Resolves: #1733026���Uc�S�Marek Kasik <mkasik@redhat.com> - 0.26.5-40]R�A- Fail gracefully if not all components of JPEG2000Stream
- have the same size
- Resolves: #1723504
�b�s�x	�z��am�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��`_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��_i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���^i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��]i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���\_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���[_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html
\n�K�\M��gi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���f_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���e_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���d_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlc��cm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��bm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
�y������n_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��mm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��lm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��km�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��j_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��ii{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���hi��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
0b��)�0c��vm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��um�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��tm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��s_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��ri{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���qi��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��pi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���o_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html
(��a��(z��~m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��}_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��|i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���{i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��zi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���y_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���x_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html_��wc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
Kn��.�Kk��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
���&������i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��
i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��
c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��	m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket write

e�r+��V��:��eD�B�
d0e13c7b2d8069a8e53ad1f052d37d201f037564f4a6b8c6165af57ea91234a3D�A�
4d378775c38c6fc1f731d1861a287e0d217101b8afe07f3c8b0d015fc2a45e89D�@�
602cbf2e2644ca8e5ce215838f087adf2ca12992b3040f73b33fa5d3c4c91610D�?�
e55fe3806bd7c427b2a99d06f4cd6144b05e9c389c33efc7071369f9a633b952D�>�
89fe97926c4d82b3dbe9d1b08249e01972849f4771aa0ffff539f310b5c68178D�=�
ecf6cae26af65369af3f9a5e154c7224e8c19a7f2b087e7e89cde5eec6f6000dD�<�
2f972c76855cb2639dc2a960dd3b2ab524ab364a74e37c8962ab8772b4e8115dD�;�
cbbbf0c961b09325211c498b9b16d75a582a8a2c062653a5a8965090c1ea66acD�:�
b8d2de93054764674ee23673c18575b0b841cfa8e724e00499ab00ed583c6621D�9�
28a4c9399dcb130222cfa30fabd302b361ec8967c075e982a44603e492358e57D�8�
381a42f9ec21ac9b849c1cdd79e2900f003e44319a05a25427dce938f720c548D�7�
1d9aa0d9b3f62047faad0dd116b485d64442f569bc592a53a88f39ac5ba871c7D�6�
ca4ba17177c7df277d3b1d022543b4bad6f9ceff842f9b3d18126d3f7bc73149
\��
�C�\M��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915
&y���&���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
u�V�[�n�uc��&m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��%m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��$m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��#_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��"i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���!i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM�� i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172U��aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869
T����T���,_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���+_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���*_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��)aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���(c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��'c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
0�(�E�5�0���4_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��3m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��2m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��1m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��0_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��/i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���.i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��-i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172
0b��)�0c��<m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��;m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��:m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��9_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��8i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���7i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��6i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���5_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html
4���'�D�4�
��Dm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��Cm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��B_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Ai{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���@i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��?i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���>_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��=c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
g�6�O�T�gz��Lm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��K_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Ji{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Ii��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Hi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���Gc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��Fc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��Em]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208
�n������R_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��QaM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���Pc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��Oc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��Nm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Mm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
�b�s�x	�z��Ym�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��X_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Wi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Vi��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Ui5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���T_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���S_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html
\n�K�\M��_i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���^_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���]_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���\_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlc��[m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Zm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
�y������f_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��em]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��dm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��cm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��b_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��ai{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���`i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
0b��)�0c��nm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��mm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��lm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��k_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��ji{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���ii��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��hi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���g_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html
(��a��(z��vm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��u_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��ti{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���si��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��ri5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���q_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���p_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html_��oc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
Kn��.�Kk��~_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��}i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���|i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��{i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���z_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��yc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��xm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��wm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
���&������i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket write
\��
�C�\M��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���
c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��
m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��	m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915

e�r+��V��:��eD�O�
a72dca1881f486beecebc91ccadda2fe934171b30a0aa1ecdeed9af74f7778d9D�N�
9b01dd0b8e02a853dbc19ea531e09d6c0d39b454023c90e0b36c94a8d8fdd356D�M�
a2218b6da0ff7fbf1477f94aececde3dbb0c8dae25eaea7857803f8041d6f171D�L�
d67f0639fb490343c9abcb00e2620e6b3adbccb1d2fe315924eefec088757c1dD�K�
0926abec8c375e818901656da36c33757d3a3e3bf4baf9195278ae3f048fd8e5D�J�
7ac006a9950b2c1cc710083732c5cc4a33e7c20c3699c50ad6f24318b5986edbD�I�
4085f09e7be4410758ded16aeb5fca59795cf4c2ad37a1afa78cddf45bef6806D�H�
dc486f913960456b5d2e5d97371e0ea044e845fd7daad4a9405caee17252a41aD�G�
118a4f0750f04814284ed67586a40ab0b954a4f4ab7d694596131eb54460a3e2D�F�
ab74d7b998e9fec54c2357c857d922e433b311d8164291884b6b827aa2d9a8efD�E�
088144b029dc1cc8f91996726bfc5e8a3ea03cb750f26a8038b554a33f1bc66dD�D�
b3eb25f000c6f150675f527c9303e23ee9dffdf1666a7746fa5d502bb01276e5D�C�
42bbeefe5d2da9855ecb5e645b7be4aacf43260cc22bd95b02da32fc849a989d
&y���&���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
u�V�[�n�uc��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172U��aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869
T����T���$_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���#_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���"_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��!aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869��� c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
0�(�E�5�0���,_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��+m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��*m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��)m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��(_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��'i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���&i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��%i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172
0b��)�0c��4m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��3m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��2m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��1_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��0i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���/i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��.i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���-_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html
4���'�D�4�
��<m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��;m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��:_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��9i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���8i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��7i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���6_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��5c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
g�6�O�T�gz��Dm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��C_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Bi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Ai��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��@i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���?c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��>c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��=m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208
$n��A�$���L���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 9.2.1002-2Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild{��KU�#�Tom Lane <tgl@redhat.com> 9.2.1002-1P���- Update to build 9.2-1002 (just to correct mispackaging of source tarball)p��JU�
�Tom Lane <tgl@redhat.com> 9.2.1001-1P�6@- Update to build 9.2-1001 for compatibility with PostgreSQL 9.2U��IaM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���Hc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��Gc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��Fm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Em�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
Lb�)�-�Lw��Sg�	�Ondrej Dubaj <odubaj@redhat.com> - 9.2.1002-8_ @- require explicitly jdk-1.7 due to ABI bytecode compatibilityb��Rga�Ondrej Dubaj <odubaj@redhat.com> - 9.2.1002-7_�@- fixed XXE vulnerability (CVE-2020-13692)�$��Qm�]�Pavel Raiskup <praiskup@redhat.com> - 9.2.1002-6Z��@- fix incompatibility with 9.6+ (rhbz#1547424)
- it's unnecessary to depend on whole java (rhbz#1406931)O��Pc?�Daniel Mach <dmach@redhat.com> - 9.2.1002-5R�k�- Mass rebuild 2013-12-27S��Om=�Pavel Raiskup <praiskup@redhat.com> - 9.2.1002-4R�A- add javadoc subpackage�]��Nm�O�Pavel Raiskup <praiskup@redhat.com> - 9.2.1002-4R�@- don't use removed macro %add_to_maven_depmap (#992816)
- lint: trim-lines, reuse %{name} macro, fedora-review fixes
- merge cleanup changes by Stano Ochotnicky���M���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 9.2.1002-3Q�B@- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
E�
o���EO��Zc?�Daniel Mach <dmach@redhat.com> - 9.2.1002-5R�k�- Mass rebuild 2013-12-27S��Ym=�Pavel Raiskup <praiskup@redhat.com> - 9.2.1002-4R�A- add javadoc subpackage�]��Xm�O�Pavel Raiskup <praiskup@redhat.com> - 9.2.1002-4R�@- don't use removed macro %add_to_maven_depmap (#992816)
- lint: trim-lines, reuse %{name} macro, fedora-review fixes
- merge cleanup changes by Stano Ochotnicky���W���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 9.2.1002-3Q�B@- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild���V���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 9.2.1002-2Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild{��UU�#�Tom Lane <tgl@redhat.com> 9.2.1002-1P���- Update to build 9.2-1002 (just to correct mispackaging of source tarball)p��TU�
�Tom Lane <tgl@redhat.com> 9.2.1001-1P�6@- Update to build 9.2-1001 for compatibility with PostgreSQL 9.2
W�vX����`_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���__�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���^_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlw��]g�	�Ondrej Dubaj <odubaj@redhat.com> - 9.2.1002-8_ @- require explicitly jdk-1.7 due to ABI bytecode compatibilityb��\ga�Ondrej Dubaj <odubaj@redhat.com> - 9.2.1002-7_�@- fixed XXE vulnerability (CVE-2020-13692)�$��[m�]�Pavel Raiskup <praiskup@redhat.com> - 9.2.1002-6Z��@- fix incompatibility with 9.6+ (rhbz#1547424)
- it's unnecessary to depend on whole java (rhbz#1406931)
��(�E�5�c��gm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��fm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��em�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��d_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��ci{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���bi��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��ai5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172bR8lRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������8��38��:8��@8��G8��N8	��T8
��Z8��a8��g8
��n8��v8��~8��8��8��8��8��&8��,8��48��<8��D8��L8��R8��Y8��_8��f8��n8 ��v8!��~8"��8#��8%��8&��8'��$8(��,8)��48*��<8+��D8,��L8-��S8.��Z8/��`80��g82��m83��t84��|85��86��87��89��8:��$8;��,8<��28=��:8>��B8?��J8@��R8A��X8B��`8C��h8D��p8E��x8F��~8G��8H��8I��8K��8L��$8M��*8N��28O��:8P��B8Q��J8R��P8S��W8T��]8U��d8V��l8W��t8X��|8Y��8Z��8[��8]��8^��"8_��*8`��28a��:8b��B8c��H8d��P8e��X8f��`8g��h8h��o8i��v8j��~8k��
Z�D�U�Zp��mi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���li��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��ki5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���j_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���i_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���h_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.html
���|��M��ti5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���s_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���r_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��qm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��pm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��om�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��n_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154
y������|_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html_��{c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��zm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��ym�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��xm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��w_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��vi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���ui��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
0b��)�0c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��~i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���}_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html
4���'�D�4�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��
_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��	i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
G�6��*�Gk��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��
m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208

e�r+��V��:��eD�\�
704e68779e898e44b1324e899262e104a830680049fc89a0fc633372c94879d0D�[�
b0526855331c1bb15a63cd3241270a0c0330c224d607dfbf6bc5f4b2bc92a167D�Z�
a0ea2fe57948c676dcf2c0fbdebfa53f6faf41c7af4de552c31411ddf372859dD�Y�
89663c4870645c61c09aa110191348cb2ce24502cea8c4fffd24cf917b5e31b9D�X�
5e632ae289a07749557d914455977eb18c0451d2f3b06c6f4482d91ce046ec68D�W�
ccca4bce0f9734afe3ffbbf8289dcde7d83df145008c78c72d9ab7affdddb8a3D�V�
a93a8dc3ff39c6f387f6ec4a439ce6ac3e94c0162375d5397c5b1d880d365031D�U�
af2767aa1b7983e412e5c57ff7c018c32283c328f7c297d91fde01ea5fc02e62D�T�
04b0f0e217513325d81caf263da9288d80eb720c931507ed120b0b99d52505adD�S�
f46d473dfbe5a0b5d02b3be921a86e5638354a09914341da2a7329751ea9632aD�R�
20df00700ce564462df55efddd738d3298f0144e75431e267025497928e55dd6D�Q�
cbb6af40c795f009b496be4951e5998ed66639496f46e7e7cff519014726e16cD�P�
0021c82540d24671074ea3ef5535b58a819c02dfddf7e05c15f9ae392ea8c199
D���&�?�Dp��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket write
w���!�wM��$i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172U��#aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���"c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��!c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c�� m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154
&y���&���,c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��+c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��*m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��)m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��(m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��'_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��&i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���%i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
u���M�u���2i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��1i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���0_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���/_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���._�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��-aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869
��
�jM��:i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���9_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���8_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��7m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��6m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��5m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��4_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��3i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915
y������B_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��Ac_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��@m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��?m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��>m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��=_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��<i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���;i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
k�(�E�5�k_��Jc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��Im]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Hm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��Gm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��F_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Ei{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Di��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Ci5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172
8j��1�8c��Rm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Qm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��Pm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��O_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Ni{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Mi��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Li5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���Kc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b
T����T���X_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���W_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���V_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��UaM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���Tc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��Sc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
0�(�E�5�0���`_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��_m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��^m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��]m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��\_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��[i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Zi��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Yi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172
0b��)�0c��hm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��gm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��fm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��e_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��di{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���ci��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��bi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���a_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html
4���'�D�4�
��pm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��om�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��n_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��mi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���li��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��ki5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���j_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��ic_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
g�6�O�T�gz��xm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��w_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��vi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���ui��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��ti5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���sc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��rc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��qm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208
�n������~_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��}aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���|c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��{c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��zm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��ym�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
�b�s�x	�z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html
ni�z�p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��
i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���	_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
A����A���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��
_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154

e�r+��V��:��eD�i�
b3dcd6321521c266fd3fc743152c2fb5145426a5861f180609a075c9b1356d64D�h�
8edd67ec853916a9acaf2fddad8db6c86590d7e4c9f7039a7a22270cf6eba4a4D�g�
2df02b3bb45254d1541c757afacad26d93c7abaeb07503b155a89e9094ee1e18D�f�
0a621e3a587fb00080786a7b80616e9ce0fe3cfbf0131712ea44c6dee612c0a3D�e�
842133034fea3edd8842d20f2ab2a87bc76f467525d1a38c9db15fab32ad4a5aD�d�
209916882b3c80523545c0e55445deecfae6f7a37cc100b47fc3ef29971078e6D�c�
d4d33673f61182e94386c936d90db76b50dd75d08ee12591565c25dfe73cc1f7D�b�
dbab6f5f1c1f7222d48fde249b8f8b6ab3e0899028dd22c3a51b9c38eea6a20aD�a�
ff7e64392cb0525eb93067fe372af5efaf9fe58c81b8b7441f540801c817f214D�`�
faa6d60940c2b7406116f4f0516e03526f4e692a662e39080ecd2196b0b55f9bD�_�
f9d23d9aa39fc06d77ca52634c5687043798a77e8d556e2e1acc0ec503af693dD�^�
7d51d69ba5aa33fd5b306518dd99095ba3f2ff1d6747f56936b992042029875aD�]�
eaa6538f84c57debe1e4e618a3bc6f27c19d7cf0cec59ad717f487b978c10409
\��
�C�\M��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915
&y���&���$c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��#c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��"m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��!m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z�� m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
u���M�u���*i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��)i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���(_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���'_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���&_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��%aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869
��
�jM��2i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���1_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���0_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��/m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��.m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��-m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��,_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��+i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915
y������:_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��9c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��8m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��7m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��6m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��5_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��4i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���3i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
k�(�E�5�k_��Bc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��Am]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��@m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��?m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��>_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��=i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���<i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��;i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172
8j��1�8c��Jm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Im�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��Hm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��G_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Fi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Ei��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Di5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���Cc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b
T����T���P_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���O_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���N_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��MaM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���Lc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��Kc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
��(�E�5�c��Wm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Vm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��Um�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��T_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Si{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Ri��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Qi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172
Z�D�U�Zp��]i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���\i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��[i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���Z_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���Y_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���X_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.html
���|��M��di5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���c_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���b_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��am]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��`m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��_m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��^_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154
y������l_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html_��kc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��jm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��im�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��hm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��g_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��fi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���ei��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
0b��)�0c��tm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��sm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��rm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��q_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��pi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���oi��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��ni5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���m_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html
4���'�D�4�
��|m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��{m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��z_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��yi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���xi��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��wi5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���v_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��uc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
G�6��*�Gk��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��~c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��}m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208
D���&�?�Dp��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��
i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���	c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket write
w���!�wM��i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172U��aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��
_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154

e�r+��V��:��eD�v�
f87dbce0436b2de45c2927d892e89fb44340ab9ee675d27c648fbe5c6ae4fdebD�u�
4a28543a74238167f9429cc3669d937bcf9dd1f1fbbac1543897abe810b13539D�t�
fd8b80ddbac39b51ec642889d4f7007835aa7e1d353569778d00ad7dfdb85326D�s�
e32d8d85dca546b68def9a0c2f007a2e17b1c0a6759ec1917fbd3848b1afdaf0D�r�
2070f81e2419a997f63d16358fa5bce8d6ec0e00e5999fb5444e8c6f5fed72c7D�q�
11eb54ccf2baedf7ad57449921954e6b13044b7677f41af6fba598987dda022fD�p�
2660a3b1922f5ae40d7ad5ae794ca536eef7602567dd9c6fdb63dc9e6eba432fD�o�
191e06199dad5d65a5b31df32a668436cf290b67dd7cdebea120791a8af5661aD�n�
02df0d560a1cd7208b8336532084570d73cca1c40562c74bcccd6e5aef84f343D�m�
82a28484b658942b7c372b985b9758e0960b5693341a8ede58595d4285be2863D�l�
08824226d21e7afa5b192b8623609503e7928c2f070b02660b7372a5fd8999b0D�k�
f7adf614ea3e894e205363b2127216f22ee9c39ca71d8e74850d8e335e75be47D�j�
8b9983515bad07afac7d8a923e4244430a10f0e33fb043f5940c02b4b63188b7
&y���&���c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
u���M�u���"i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��!i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172��� _�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��aM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869
��
�jM��*i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���)_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���(_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��'m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��&m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��%m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��$_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��#i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915
y������2_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��1c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��0m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��/m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��.m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��-_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��,i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���+i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged user
k�(�E�5�k_��:c_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��9m]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��8m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��7m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��6_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��5i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���4i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��3i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172
8j��1�8c��Bm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Am�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��@m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��?_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��>i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���=i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��<i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���;c�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b
T����T���H_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html���G_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.html���F_�U�Petr Kubat <pkubat@redhat.com> - 9.2.21-1YR@- update to 9.2.21 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-21.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-20.html
  http://www.postgresql.org/docs/9.2/static/release-9-2-19.htmlU��EaM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���Dc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��Cc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
0�(�E�5�0���P_�U�Petr Kubat <pkubat@redhat.com> - 9.2.22-1Y���- update to 9.2.22 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-22.htmlc��Om]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Nm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��Mm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��L_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Ki{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Ji��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Ii5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172
0b��)�0c��Xm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��Wm�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��Vm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��U_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��Ti{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���Si��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��Ri5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���Q_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html
4���'�D�4�
��`m�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895z��_m�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��^_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��]i{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���\i��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��[i5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���Z_�U�Petr Kubat <pkubat@redhat.com> - 9.2.23-1Y�W@- update to 9.2.23 per release notes
  http://www.postgresql.org/docs/9.2/static/release-9-2-23.html_��Yc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507
g�6�O�T�gz��hm�	�Patrik Novotný <panovotn@redhat.com> - 9.2.24-4^*�@- Patch fixing BZ#1754816: handle EAGAIN error on socket writek��g_{�Filip Januš <fjanus@redhat.com> 9.2.24-2]�d@- Check if callback is already set
  Resolves: #1755154p��fi{�Pavel Raiskup <praiskup@redhat.com> - 9.2.24-1[r�@- update to the latest 9.2 release
- fix CVE-2018-10915���ei��Pavel Raiskup <praiskup@redhat.com> - 9.2.23-3ZN�- setup: keep PGSETUP_* variables after switching to not-privileged userM��di5�Pavel Raiskup <praiskup@redhat.com> - 9.2.23-2Y��- fix CVE-2017-12172���cc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��bc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��am]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208
�n��&�x��o_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��n_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548U��maM�Filip Janus <fjanus@redhat.com> - 9.2.24-9eV@- Backport fix for CVE-2023-5869���lc�A�Filip Januš <fjanus@redhat.com> - 9.2.24-8b�T�- Resolves: CVE-2022-1552
- Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b_��kc_�Filip Januš <fjanus@redhat.com> - 9.2.24-7`��- Fix CVE-2021-32027
- Resolves: #1964507c��jm]�Patrik Novotný <panovotn@redhat.com> - 9.2.24-6`v�@- Patch fixing BZ#1741488 CVE-2019-10208�
��im�/�Patrik Novotný <panovotn@redhat.com> - 9.2.24-5_���- Patch fixing CVE-2020-25694 BZ#1907894
- Patch fixing CVE-2020-25695 BZ#1907895
s:�z��sx��va��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��ua�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���ta�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��saU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��raW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��q_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��pi��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104
���]�����~a�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��}aU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��|aW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��{_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��zi��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��y_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��x_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��wa{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308
9X�l�a�9^��_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��i��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��a{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��a��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��a�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385
 �E��+� x��
_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��a{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��
a��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��	a�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���a�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��aU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��aW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036
s:�z��sx��a��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��a�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���a�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��aU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��aW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��i��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104
���]�����a�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��aU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��aW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��i��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��a{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308

e�r+��V��:��eD��
8043266fac97f3c92dfeaa8fad590469ad37ab990d86e9ece87829bdd9e0c8aeD��
29124a79cce7024da4f024131a66f80d78a70d73c5fafe6456617633e5b83560D��
192e0475321fe56db4e9593f45ee8e350eefc332f30d7e62d1412741c38ef09bD��
cd47da0bf7624d9af2d98aa4723dcdf7e0ce48932c9a21df223ff98c038a0e30D��
11d2a53897da8b2f56ff7a088f863588c6608a98701a107ae5cbb6d5b7b2e588D�~�
4ec201776d93e717d898e90c7576b88da99dbbcc0c2c4e7a0088d155ac4678dbD�}�
438402ee92c25f036bd2deaa1cdeb1a00f4983754853d65bac78fd9adc101eabD�|�
f10fadd67898b87e6a2cff2133bfc00f51855894a26aec2b6bbd530aec018cc2D�{�
6f2e6d0fece31e7231bbaae7370f0f0edc484ea6e4bb69ce105819e1f85a83e5D�z�
99f0c52a65a75ef09c13260211d703963aba5c4870dc9b32bbda82b9a3a9fe18D�y�
1ba4f8757a2691d9efa669857ab5fb078e658b82755130941f6240d178c6b8eeD�x�
7feb97ca5ba81f62121c4d6fe734440acedc56ff87444880b72d989261a4148eD�w�
491db6a3e909d355ebf2f70d1e83753a0ca5ce5a0a294d1a7903cb2e82a228c8
9X�l�a�9^��#_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��"i��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��!_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
�� _�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��a{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��a��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��a�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385
 �E��+� x��+_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��*_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��)a{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��(a��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��'a�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���&a�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��%aU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��$aW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036
s:�z��sx��2a��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��1a�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���0a�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��/aU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��.aW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��-_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��,i��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104
���]�����:a�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��9aU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��8aW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��7_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��6i��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��5_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��4_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��3a{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308
9X�l�a�9^��A_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��@i��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��?_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��>_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��=a{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��<a��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��;a�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385
 �E��+� x��I_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��H_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��Ga{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��Fa��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��Ea�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���Da�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��CaU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��BaW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036
s:�z��sx��Pa��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��Oa�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���Na�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��MaU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��LaW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��K_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��Ji��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104
���]�����Xa�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��WaU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��VaW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��U_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��Ti��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��S_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��R_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��Qa{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308
9X�l�a�9^��__a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��^i��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��]_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��\_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��[a{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��Za��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��Ya�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385
 �E��+� x��g_��Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��f_�7�Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��ea{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��da��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��ca�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���ba�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��aaU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��`aW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036
s:�z��sx��na��Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��ma�g�Wim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���la�#�Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��kaU�Wim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��jaW�Kalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��i_a�Wim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��hi��Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104
���]�����va�#Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��uaUWim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��taWKalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036^��s_aWim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��ri�Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��q_�Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��p_�7Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��oa{�Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308
9X�l�a�9^��}_aWim Taymans <wtaymans@redhat.com> - 6.0-8Wq@- update translations
- Resolves: #1272897�A��|i�Rex Dieter <rdieter@fedoraproject.org> - 6.0-7U���- better autostart.patch, handle case were autospawn is disabled
  (or otherwise doesn't work, like for root user)
- Resolves: #1269104x��{_�Wim Taymans <wtaymans@redhat.com> - 6.0-6UL�A- build against bluez5
- disable ofono backend
- Resolves: #1174548�
��z_�7Wim Taymans <wtaymans@redhat.com> - 6.0-5UL�@- Add more Requires to avoid testing multiple versions for qpaeq
- Resolves: #1174548l��ya{Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��xa�Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��wa�gWim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385
+�E��+�+r��e�Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���e�'Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691l��a{Wim Taymans <wtaymans@redhat.com> - 10.0-6_?�@- Allow root owned home directory.
- Resolves: #1856308x��a�Wim Taymans <wtaymans@redhat.com> - 10.0-5Z]�@- Dist the new config file for Dell dock TB16
- Resolves: #1457385�#��a�gWim Taymans <wtaymans@redhat.com> - 10.0-4Y��@- Add support for usb audio in the Dell dock TB16
- Add patches to improve default sinks
- Resolves: #1457385���a�#Wim Taymans <wtaymans@redhat.com> - 10.0-3X�C�- Add more Requires to avoid testing multiple versions
- Resolves: #1387036Y��aUWim Taymans <wtaymans@redhat.com> - 10.0-2X�Y�- enable webrtc
- Resolves: #1387036Z��~aWKalev Lember <klember@redhat.com> - 10.0-1X��@- Update to 10.0
- Resolves: #1387036
GX�7�C�Gz��c�Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��c�Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Sambav��
c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��	c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��c�cJakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x�#��e�cJakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.x
Y���M�Yv��c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��c�cJakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x�#��e�cJakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.xr��e�Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���e�'Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691`��
e_Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277
~��&�&~�#��e�cJakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.xr��e�Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���e�'Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691`��e_Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277z��c�Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��c�Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Sambav��c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase

e�r+��V��:��eD��
697fc862a611518e9a75fc2d3bd296143b53d97834fbcd415d05c6cf3c77c118D��
2c05f80ee0d06dcbfa8d83439b41cacb2acbe096d4994aed2e9a4b88d43c309cD��
70e1c9c7b7313acc1ccb883850558645a0cb1025e1b3d02d84b62ac7a8bef574D�
�
eacae6ba8f4fa9d2b666e28bad819c383c5eb197aa1aa5f5979c415530cf3376D��
097333804cdbb8a534dabe56aeb0d3b2dbc4a9c4796ca5102c74fa94f597ff42D��
f34c8bb09dee906565117017407530b10c48ef7eb3ccb89860689de03b8e4118D�
�
ae536957e133aeb89aaad21eb5caebf2070b33547c21e967a1d51cc8ab213be4D�	�
a9b4ea25e0a41a0300195b07a478887cdc00b3c879db84a0cf5c31832d626194D��
0c3ad35e059126bc405bb6ab3f4ae6d37fcb202c2192112ede3ec719d4c45554D��
708ae9f5c9f58b7f03e17c41afccd5768e49cb8d182d52db3c83077d9a7294c8D��
cf8845ef810f6cf39ce19f2a986496e8ae2fed2fe5d711309d0e91b72b693e29D��
8f596e23215f48c31a9bb115c327431b21431ac93d7279b39dc998ca0bdfc6b8D��
b3dbb953a4dc9b8b5ee95024d51d922488db5a0f0ec2ece9bf47d8d5cbbf24fa
�Y�e�m��`��!e_Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277z�� c�Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��c�Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Sambav��c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��c�cJakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x
CvX�7�Cv��(c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.4-1[3|@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��'c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.3-1Z�- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebasev��&c�Jakub Hrozek <jhrozek@redhat.com> - 1.3.2-1Z̧@- Resolves: rhbz#1558497 - Rebase libldb to enable samba rebase�"��%c�cJakub Hrozek <jhrozek@redhat.com> - 1.2.2-1Y�M�- Resolves: rhbz#1470056 - Rebase libldb to enable samba rebase to
                           version 4.7.x�#��$e�cJakub Hrozek <jhrozek@redhat.com> - 1.1.29-1X��@- Resolves: rhbz#1393810 - Rebase libldb to enable samba rebase to
                           version 4.6.xr��#e�Jakub Hrozek <jhrozek@redhat.com> - 1.1.26-1WYZ@- Resolves: rhbz#1320253 - Rebase libldb to version 1.1.26���"e�'Jakub Hrozek <jhrozek@redhat.com> - 1.1.25-1V�b�- Rebase libldb to 1.1.25
- Remove upstreamed patches
- Related: rhbz#1322691
s��$�/s�7��/y�wCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��.ywCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600w��-yyCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-82\�-@- Updated fix for CVE-2019-9636
Resolves: rhbz#1689317x��,y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-81\�@- Security fix for CVE-2019-9636
Resolves: rhbz#1689317`��+e_Andreas Schneider <asn@redhat.com> - 1.5.4-2`Y�@- resolves: #1941511 - Fix CVE-2021-20277z��*c�Jakub Hrozek <jhrozek@redhat.com> - 1.5.4-1]B�@- Resolves: rhbz#1736013 - Rebase libldb to version 1.5.4 for Sambaz��)c�Jakub Hrozek <jhrozek@redhat.com> - 1.4.2-1\?�- Resolves: rhbz#1658758 - Rebase libldb to version 1.4.2 for Samba
v����vv��6ywCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600�(��5y�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��4y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��3y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��2ycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��1y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��0y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174
4D�K�^�4�(��=y�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��<y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��;y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��:ycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��9y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��8y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��7y�wCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530
*�O��*l��CycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��By}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��Ay{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��@y�wCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530x��?y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��>y�iCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494
=�Y$�=g��IgkLumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��Hy{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��Gy�iCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��Fy�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��Ey}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��Dy}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773
������(��Oy�Y	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��Ny}	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��My}	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��Lyc	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��Ky}	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��Jy{	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174
j�O�jv��Syw	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-94e@- Security fix for CVE-2023-40217
Resolves: RHEL-9615g��Rgk	Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��Qy{	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��Py�i	Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494
f��ft��Vm
David Lehman <dlehman@redhat.com> - 0.61.15.69-1Z�_@- Fix accounting for metadata when growing lvm. (dlehman)�-��Um�o
David Lehman <dlehman@redhat.com> - 0.61.15.68-1Z}�@- Catch lvm metadata lookup failure in md post create. (dlehman)
  Related: rhbz#1223564
  Resolves: rhbz#1543579�k��Tm�k
David Lehman <dlehman@redhat.com> - 0.61.15.67-1Zz�@- fcoe: remove /etc/fcoe dir if it exists before copying configuration
  (rvykydal)
  Resolves: rhbz#1482512
- Find and remove stale LVM metadata immediately after creating md array.
  (dlehman)
  Resolves: rhbz#1223564
- Add ability to specify vg by uuid for vgremove. (dlehman)
  Related: rhbz#1223564
kk���Wm�5
David Lehman <dlehman@redhat.com> - 0.61.15.70-1[,�- Deactivate incomplete VGs along with everything else. (dlehman)
  Resolves: rhbz#1554224
- Work around udev timing issues. (dlehman)
  Resolves: rhbz#1592253
  Resolves: rhbz#1592191
- nvdimm: don't crash on non-block devices (rvykydal)
  Related: rhbz#1280500
- Add NVDIMM detection to "addUdevDiskDevice" (vtrefny)
  Related: rhbz#1558942
- Add 'NVDIMMNamespaceDevice' device representing NVDIMM namespaces (vtrefny)
  Related: rhbz#1558942
- Add a function for identifying NVDIMM namespaces (vtrefny)
  Related: rhbz#1558942
- Add a singleton for NVDIMM namespaces management (vtrefny)
  Resolves: rhbz#1558942
- Backport DependencyGuard from master (vtrefny)
  Related: rhbz#1558942
- Ignore nvdimm devices unless configured in kickstart (rvykydal)
  Related: rhbz#1280500
- Do not ignore nvdimm (pmemX) devices (rvykydal)
  Related: rhbz#1280500
����M��Yq�+
Vojtech Trefny <vtrefny@redhat.com> - 0.61.15.72-1[�"@- Install ndctl when NVDIMMs are used. (dlehman)
  Related: rhbz#1600496
- Escape dots in lvm filter devices (vtrefny)
  Resolves: rhbz#1614039�-��Xm�o
David Lehman <dlehman@redhat.com> - 0.61.15.71-1[Y��- Remove dependency on libblockdev-nvdimm (vtrefny)
  Resolves: rhbz#1601557
- Do not try to load NVDIMM plugin on non-x86_64 architectures (vtrefny)
  Related: rhbz#1601557
- Add version to the LUKS format (vtrefny)
  Resolves: rhbz#1607830
""�Y��Zq�C
Vojtech Trefny <vtrefny@redhat.com> - 0.61.15.73-1\�@- Use --yes when calling pvresize (vtrefny)
  Related: rhbz#1657000
- Fix typo in partitioning test cleanup. (dlehman)
  Related: rhbz#1657000
- Remove selinux test that doesn't do anything meaningful. (dlehman)
  Related: rhbz#1657000
- Improve parsing of mdadm detail output. (dlehman)
  Related: rhbz#1657000
- Update btrfs tests to use sufficiently large loop devices. (dlehman)
  Related: rhbz#1657000
- vfat labels apparently cannot contain lower case characters. (dlehman)
  Related: rhbz#1657000
- Check label format regardless of mechanism used to set it. (dlehman)
  Related: rhbz#1657000
- Adapt to presence or absence of python-mock. (dlehman)
  Related: rhbz#1657000
- Fixed KS forcing zerombr onto RO disk (japokorn)
  Resolves: rhbz#1544425
- Tell LVM to wipe cachepool metadata when attaching the cachepool (vtrefny)
  Resolves: rhbz#1643531
- Add dependency on python-six (vtrefny)
  Resolves: rhbz#1647173
r^i�rw��_yyCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-82\�-@- Updated fix for CVE-2019-9636
Resolves: rhbz#1689317x��^y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-81\�@- Security fix for CVE-2019-9636
Resolves: rhbz#1689317�p��]q�q
Vojtech Trefny <vtrefny@redhat.com> - 0.61.15.76-1_{
�- edd: Fix UnboundLocalError when trying to close fd in collect_mbrs (vtrefny)
  Related: rhbz#1879920
- Close fd if it fails to read the device (nashok)
  Resolves: rhbz#1879920�$��\q�Y
Vojtech Trefny <vtrefny@redhat.com> - 0.61.15.75-1]R�@- Always set default key size to 512 bits for ciphers with XTS mode (vtrefny)
  Resolves: rhbz#1716674�t��[m�}
David Lehman <dlehman@redhat.com> - 0.61.15.74-1]�@- Handle exceptions raised from parted.Disk ctor. (dlehman)
  Related: rhbz#1677383
- Recommend DASD disk label for disks with an existing DASD label (vtrefny)
  Resolves: rhbz#1677383
g��N�a�gy��fy}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��ey}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��dycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��cy}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��by{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��ay�wCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��`ywCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600
7S��$�7y��my}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��lycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��ky}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��jy{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��iy�wCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��hywCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600�(��gy�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
i���%i�7��ry�w
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530x��qy{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��py�iCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��oy�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��ny}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998
������(��xy�Y
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��wy}
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��vy}
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��uyc
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��ty}
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��sy{
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174
{�O�h�{l��~ycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��}y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��|y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174g��{gk
Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��zy{
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��yy�i
Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494
=�Y$�=g��gkLumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��y�iCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��y�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773
`�
�Y�`y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��
y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��	y�wCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��ywCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600w��yyCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-82\�-@- Updated fix for CVE-2019-9636
Resolves: rhbz#1689317x��y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-81\�@- Security fix for CVE-2019-9636
Resolves: rhbz#1689317v��ywCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-94e@- Security fix for CVE-2023-40217
Resolves: RHEL-9615
7���o�7x��y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��y�wCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��ywCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600�(��y�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��
y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��ycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551
7��l7�0��y�iCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��y�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��ycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388
e��L�_�ey��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��ycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��y�wCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530x��y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168bR8�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������8m��8n��8p��#8q��+8r��28s��:8t��A8u��I8v��P8w��X8x��_8y��g8z��n8{��v8|��}8}��8~��8��8���8���!8���(8���/8���68���=8���C8���I8���O8���S8���V8���W8���Y8���Z8���_8���f8���m8���r8���x8���~8���8���8���8���8���8���%8���+8���28���:8���B8���H8���N8���T8���W8���Z8���[8���\8���]8���`8���c8���d8���e8���f8���i8���l8���m8���n8���o8���r8���u8���v8���w8���x8���{8���~8���8���8���8���8���8���8���	8���
8�
8Â�8Ă�8ł�8Ƃ�8ǂ�8Ȃ�8ʂ�8˂�!8̂�$8͂�'8΂�*8ς�-8Ђ�.8т�/8҂�18ӂ�3

e�r+��V��:��eD��
ba60b418779a0e59ca05c44a8a4e59cf92572aec1f631f59c0e2f6cdc8e7d1faD��
c105b1034aff6f1bd9548d1cbb3a57a4f09c0231af2d0d033fcce3129be8f9beD��
d2ad19a42ac73b25413d43fb03cf20d85cde9e294f4a5948192ea0c673669777D��
4b286d1b4cb3c5b51e8b4cc94f6e08beb1728d48f042e99fb51808ba50156970D��
0fb81dae84cc52ddf4eb6a080d15e4a750ae48a9057d60e0322152493282eab8D��
a7053f493f8ef154d0522e27764a50fa296c0f260992b84a51066efb0c8e8138D��
9988a58fd1793b7bc5fef2c748a853a2c83650e825e9d524d12cccb139f1068cD��
0eaade45e4faa7e8e8b18e0ab2d01b531ee0b40d37435cff287a385b544dea75D��
49fd4de23b8c381fa2c7fade2fcd21a022bd86e95b20a8657eacf9b0f27664d1D��
3d130588e8e704895aa41cc1d3a57139effbcdabe57ea04b561e8d3b1d252e41D��
237bcee37560d0ebf83c164ac3467d48d1c0e37558d2608e16c324a417061e16D��
d26cb8a2b0d5538a5634e8042449259bf4e95598e113a4edfad93ec1ac17e831D��
179d2c236a9c0fd2a6c44145f3d47c793b7450b2e9967fb4caa8fb636c2090f7
>S�7�>y��%y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��$y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174g��#gkLumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��"y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��!y�iCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(�� y�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
8����8x��+y{Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��*y�iCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��)y�YCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��(y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��'y}Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��&ycCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551
��d��l��2a{Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"r��1a�Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind��0akEric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-configr��/a�Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name�<��.a�Eric Garver <egarver@redhat.com> - 0.6.3-3]>�- backport recent upstream stable fixes
- backport fix --remove-rules deleting all direct rules
- backport fix unable to delete rich rule forward-port
- backport fix forward-port for external zone hijacking internal zone
- backport fix testsuite iptables lockingv��-ywCharalampos Stratakis <cstratak@redhat.com> - 2.7.5-94e@- Security fix for CVE-2023-40217
Resolves: RHEL-9615g��,gkLumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917
��-�9�_��r��:a�Eric Garver <egarver@redhat.com> - 0.6.3-6]nU�- fix: direct: removeRules() not removing all rules in chaind��9akEric Garver <egarver@redhat.com> - 0.6.3-5]QT�- doc: add --default-config and --system-configr��8a�Eric Garver <egarver@redhat.com> - 0.6.3-4]QT�- fix: guarantee zone source dispatch is sorted by zone name`��7caEric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa��6ccEric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
��5c�3Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square bracketsh��4asEric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zonec��3aiEric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatal
��)�.�e��V��Bs=Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544n��Ac}Eric Garver <egarver@redhat.com> - 0.6.3-13`x*�- doc: clarify --set-target values "default" vs "reject"`��@caEric Garver <egarver@redhat.com> - 0.6.3-12_Wr@- fix(zone): cache rule_str for rich rulesa��?ccEric Garver <egarver@redhat.com> - 0.6.3-11^��@- feat(service): add RH-Satellite-6-Capsule�
��>c�3Eric Garver <egarver@redhat.com> - 0.6.3-10^��- fix: add logrotate policy
- fix: checkIP6: strip leading/trailing square bracketsh��=asEric Garver <egarver@redhat.com> - 0.6.3-9^9\�- fix: firewalld not falling back to interface zonec��<aiEric Garver <egarver@redhat.com> - 0.6.3-8]�X�- fix: failure to load modules no longer fatall��;a{Eric Garver <egarver@redhat.com> - 0.6.3-7]���- fix: Revert "ebtables: drop support for broute table"
�k�g���o��HsoRichard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��Gs�WRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B��Fs�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n��EsmRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
��Ds�)Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���Cs�/Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056
���\�5�n��NsmRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
��Ms�)Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���Ls�/Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056���Ku�;Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500���Ju�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��Is�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983
y9��y���Tu�;Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500���Su�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��Rs�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o��QsoRichard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��Ps�WRichard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B��Os�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056
�s��
��Wo�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��Vo�;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���Uu�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193
���2��Zo�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Yo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Xo�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��[o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��\o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��]o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��`o�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���_q�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���^o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��co�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��bo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��ao�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��do�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��eo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��fo�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���iq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���hq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���go�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��lo�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��ko�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��jo�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��mo�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��no�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��oo�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���rq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���qq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���po�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��uo�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��to�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��sq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��vo�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��wo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��xo�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���{q�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���zq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���yo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��~o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��}q�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��|q�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��	o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��
o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���
q�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��a�}Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��}�
Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD�*�
c8476e1d935321320f812a72c05a7442201d6f34050996100637f18917d65923D�)�
a46868c4f685242ca769589626c8729cd89edd8240128f8b329e42dbf0398598D�(�
24a92c5b29a507c8439dd16dba779ab76d6b93fb7f92021e42f3de1dcdde9308D�'�
00c48e4de2e435d25917e5b12f697e6b79435fb251862569482e3c31793da0f8D�&�
d06a6708c5a849908340ed5c521556ec87aa647c040dfcefe01d9e5ef19ddcbaD�%�
06925f8c06ddc4e973f5d0c4eb2ea60c2c099d9608f354cf74311a817b75e734D�$�
714b86985ff8c757c1d759dc240539eb7226c4445ee4b6ed010da90d5449c6a6D�#�
82386943e7fd9af89f6c5d8dcb1845c1484cf6a8e11a055c062e3c11deb5110cD�"�
9db782d6307662cc280b48dbb9d5908c853c6f93c0175937ebbebb1942d0dbf1D�!�
ca696a4355291a8491772d196b5e4adac8a368af8fdbace8e9c9f75724d2e4b4D� �
9750748b6d2332b552e8a31ec27de32bd9783d10d32bb22d09b4a112c4f25e2cD��
bfa63f078bde4ea375db5cc30abe54fca1f2adb2bd5da3b8160c848844e31770D��
d13e07cfe07df702ed4d93300184aab0f5cef8ffabf3d2182655dfd182050683
�T�t��a�	Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��a�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��!g�;Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_�� c�]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��$g�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��#g�{Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���"g�'Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��'i�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��&i�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��%g�wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��*o�;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��)k�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��(i�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��-o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��,o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��+o�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��.o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��/o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��1i�	 Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��0i�s Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��3o�; Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��2k�] Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��6o� Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��5o�{ Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��4o�' Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��7o�w Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��8o�E Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��:i�	!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��9o� Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��<o�;!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��;k�]!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��?o�!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��>o�{!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��=o�'!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��@o�w!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Ao�E!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Bo�!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�T��DkA"Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.11-2T��- Make tests port agnostic�-��Co�m!Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��Fk�"Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.13-1T�7�- Fix ABI compatibility (RhBug: 1185180)
- fastestmirror: Add LRO_FASTESTMIRRORTIMEOUT option
- downloader: Move broken mirror at the end of the list of mirrors (RhBug: 1183998)
- Make building tests and docs optional
- librepo: Don't download remote mirrorlist/metalink when LRO_LOCAL is specified (Resolves #41)�i��Ek�i"Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.12-1T��@- downloader: Allow max one resume + nicer message if xattr cannot be set (RhBug: 1130685)
- downloader: Resume only files that were originaly downloaded by Librepo (RhBug: 1130685)
- downloader: Show also calculated checksums in error message about bad checksum
- Python: Return all strings in unicode
a�aj��Hkm"Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-2T�A- compat: fix ck_assert_msg() segfault in rhel-7�,��Gk�o"Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-1T�@- tests: Use g_assert_cmpuint instead of ck_assert_uint_eq (Pullrequest #43)
- Add LRO_OFFLINE
- Python: Handle: Raise ValueError instead of TypeError when an unknown option is specified
- Python: Result: Use ValueError instead of TypeError when an unknown option value is specified
- Add LR_VERSION constant with version string
- python: Import contants from C librepo module in a loop
- repoconf: Add support for failover and skip_if_unavailable options
- handle: Change of LRO_LOCAL causes invalidation of internal mirrorlist (related to RhBug: 1188600)
- Load local mirrorlists when LRO_LOCAL is on (related to RhBug: 1188600)
- util: Add lr_is_local_path()
- New module repoconf for reading *.repo files
- Add LRO_HTTPHEADER option (RhBug: 1181123)
������Jg�C"Colin Walters <walters@redhat.com> - 1.7.15-2UQ�@- Disable tests and drop python-flask build dependency on RHEL7, as
  it is not in the core�s��Ik�}"Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.15-1U-@- Do not inlude header in the body output (RhBug: 1207685)
- metalink: Proper error handling
- New LRR_RPMMD_* contants
- Support for client certificates
- Use 'metadata in the rpm-md format' instead of 'yum metadata' (Issue #51)
- CMakeLists.txt: do not check for CXX
- build: Use solely pkg-config to find glib
..�M��Kg�5"Colin Walters <tmlcoch@redhat.com> - 1.7.16-1UhT�- Add LRI_LOWSPEEDTIME and LRI_LOWSPEEDLIMIT
- downloader: Don't consider CURLE_RECV_ERROR and CURLE_SEND_ERROR as fatal errors (RhBug: 1219817)
- test_repoconf: Fix SIGSEGV in repoconf_assert_na (RhBug: 1222471)
- repoconf: Proper handling of gint64 and guint64 types
- build: Be compatible with cmake 2.8
- handle: Do not free temporary error msg if there is no one (RhBug: 1219822)
- utils/make_rpm.sh: Accept rpmbuild options as second argument (Issue #49)
- Python: call lr_global_init() during module initialization
- Add global function log_set_file that allow user to set a file where logs will be written (Issue #53)
- util: Honor RFC 3986 (Issue #55)
J�Ji��M]y"Ales Matej <amatej@redhat.com> - 1.8.1-8_5+@- Validate paths read from repomd.xml (RhBug: 1866500)�D��L_�+"Marek Blaha <mblaha@redhat.com> - 1.8.1-1[o�- Add yumrecord substitution mechanism (mluscon)
- Fix a memory leak in signature verification (cwalters)
- Add new option LRO_FTPUSEEPSV
- downloader prepare_next_transfer(): simplify long line
- downloader prepare_next_transfer(): add missing error check
- downloader prepare_next_transfer(): cleanup error path
- downloader prepare_next_transfer() - fix memory leak on error path (Alan Jenkins)
- handle: Don't use proxy cache for downloads of metalink/mirrorlist
- handle: Don't set CURLOPT_HTTPHEADER into curl handle immediately when specified
- downloader: Implement logic for no_cache param in LrDownloadTarget (RhBug: 1297762)
- Add no_cache param to LrDownloadTarget and lr_downloadtarget_new()
- New test: always try to download from the fastest mirror (Alexander Todorov)
j�	��W�jl��Tyc#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��Sy}#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��Ry{#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��Qy�w#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��Pyw#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600w��Oyy#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-82\�-@- Updated fix for CVE-2019-9636
Resolves: rhbz#1689317x��Ny{#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-81\�@- Security fix for CVE-2019-9636
Resolves: rhbz#1689317
,�Y�b�,�7��[y�w$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��Zyw$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600w��Yyy$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-82\�-@- Updated fix for CVE-2019-9636
Resolves: rhbz#1689317x��Xy{$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-81\�@- Security fix for CVE-2019-9636
Resolves: rhbz#1689317�(��Wy�Y#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��Vy}#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��Uy}#Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773
v����vv��byw%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600�(��ay�Y$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��`y}$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��_y}$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��^yc$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��]y}$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��\y{$Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174
4D�K�^�4�(��iy�Y%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��hy}%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��gy}%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��fyc%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��ey}%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��dy{%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��cy�w%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530
 �O�� y��oy}&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��ny{&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��my�w&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��lyw&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600x��ky{%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��jy�i%Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494
8����8x��uy{&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��ty�i&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��sy�Y&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��ry}&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��qy}&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��pyc&Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551
4D�K�^�4�(��|y�Y'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��{y}'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��zy}'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��yyc'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��xy}'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��wy{'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��vy�w'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530
/�O�(�/y��y}(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��y{(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��y�w(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530g��gk'Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��~y{'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��}y�i'Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494
8����8x��y{(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��y�i(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��y�Y(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��y}(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��y}(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��yc(Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551
���,�2��(��y�Y)Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��y})Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��
y})Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��yc)Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��y})Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��
y{)Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174g��	gk(Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917
q�O�j�qy��y}*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��y{*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174v��yw)Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-94e@- Security fix for CVE-2023-40217
Resolves: RHEL-9615g��gk)Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��y{)Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��y�i)Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494
8����8x��y{*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��y�i*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��y�Y*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��y}*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��y}*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��yc*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551
3��3�
��o�'+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��o�;+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]v��yw*Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-94e@- Security fix for CVE-2023-40217
Resolves: RHEL-9615g��gk*Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917

e�r+��V��:��eD�7�
ba0ec772d06061df246b8969b37e4815a06dc47d41fc74a28df3a929e7acfd68D�6�
e4d97a37a80e7bde04e338c95d54a5872ecd63949d6cf626c567ad3c7a83b5b6D�5�
fd7b7df51401985176a27907f57d0a616ead620f53c6855fee58b0ca86fe8394D�4�
1211808e31a2f8b4a08003a44553ed8f98d1397772009e18d3edb51ea7c89fefD�3�
e0907ae58b30e07ab32bd9786cb264f46806e15e1e41ca13375f1a8601a9e283D�2�
fd61faa3534a72b2293194c7decb752ff356a8de561e126459a7e8d55d0c96ebD�1�
511bc16b7002a23d4c2365e7a369074e23ce6ac569f14b967ca4c8b20d29400aD�0�
5f884150b5350047089be49bfa331fcf0d8fbd783b21c01062b4f7a03626fecaD�/�
0050786ebb1c2b37bb1a4450e340b50786707ce8f2f8f01b356ea66cd305165bD�.�
161f535137bc7817d8e0950475afcc618e67819ad26590c829257f75ab51211cD�-�
08d77e2a53f45806fd7b82661a7ef4d17bedadab7f9241768695eafd2d8f6cf0D�,�
ae963ab8fb2fa512c2b276337b4855a49a8b73abd938e0edfcda3ef8eea4db57D�+�
a4b2a180e6418f7810ccfa0cbf722ce37a6133dc60adeb0ef64356a61444a32b
���2��"o�w+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��!o�+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t�� o�{+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��#o�E+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��$o�+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��%o�m+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��(o�',Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���'q�O+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���&o�+Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��+o�w,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��*o�,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��)o�{,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��,o�E,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��-o�,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��.o�m,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���1q�9,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���0q�O,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���/o�,Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��4o�w-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��3o�-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��2o�{-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��5o�E-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��6o�-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��7o�m-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���:q�9-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���9q�O-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���8o�-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��=o�w.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��<o�.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��;q�a-Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest updatebR9>RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������8Ղ�78ւ�88ׂ�:8؂�<8ق�?8ڂ�@8ۂ�A8܂�B8݂�D8ނ�F8߂�H8��J8��K8��M8��T8��[8��b8��i8��o8��u8��|8��8��8��8��8��8��8��"8��#8��$8��%8���(8���+8���,8���-8���.8���18���48���58���68���78���:9��=9��>9��?9��@9��C9��F9��G9��H9	��I9
��L9��O9��P9
��Q9��R9��U9��X9��Z9��[9��^9��a9��d9��g9��i9��l9��o9��r9��u9��v9��w9��y9��{9 ��~9!��9"��9#��9$��9%��9&��9'��	9(��
9)��9*��9+��9,��9-��9/��90��91�� 94��"95��$96��&97��(99��*9:��,9;��/9=��0
""�Y��>o�E.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��?o�.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��@o�m.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Cq�9.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Bq�O.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ao�.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Fo�w/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Eq�	.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Dq�a.Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Go�E/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ho�/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Io�m/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Lq�9/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Kq�O/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Jo�/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Oq�Q/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Nq�	/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Mq�a/Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Po�E0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Qo�0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Ro�m0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Uq�90Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Tq�O0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���So�0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Xq�Q0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Wq�	0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Vq�a0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��Zo�1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��Yq�0Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��[o�m1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���^q�91Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���]q�O1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���\o�1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��aq�Q1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��`q�	1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��_q�a1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��da�}2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��c}�
1Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��bq�1Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��ga�	2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��fa�s2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��ea�2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��ig�;2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��hc�]2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��lg�2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��kg�{2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���jg�'2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��oi�s3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��ni�3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��mg�w2Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��ro�;3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��qk�]3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��pi�	3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��uo�3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��to�{3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��so�'3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��vo�w3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��wo�E3Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��yi�	4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��xi�s4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��{o�;4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��zk�]4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��~o�4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��}o�{4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��|o�'4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��i�	5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o�4Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��o�;5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��	o�E5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��
o�5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�y��c�6Nathan Scott <nathans@redhat.com> - 4.1.0-5[��@- Missing values from short /proc/*/status file reads (BZ 1600262)�-��o�m5Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
#�#�`��c�_6Nathan Scott <nathans@redhat.com> - 4.3.2-4]M`@- Fix a pmdaproc memory leak (BZ 1721107)
- Rebuild with selinux runtime dependency update (BZ 1714101)
- Update selinux-policy to latest upstream (BZs 1699830, 1700989)���c�U6Nathan Scott <nathans@redhat.com> - 4.3.2-2\�!�- Rework the pcp-libs ldconfig post-op (BZ 1705362)
- Resolve a QA file permissions diagnostic issue�S��
c�E6Nathan Scott <nathans@redhat.com> - 4.3.2-1\��- Numerous fixes in pmlogger daily scripts (BZs 1677848, 1697182, 1579881, 1603143)
- Update PCP selinux policy rules (BZs 1692305, 1695066)
- Adjust spec file /var/run/pcp settings (BZ 1533154)
- Fix pmdaproc kernel process misreporting (BZ 1673250)
- Fix pmdalinux SYSV IPC metric scalability (BZ 1699232)
- Ensure pmdaroot reaps all of its children (BZ 1698517)
- Corrections to python version dependencies (BZ 1676867)
- Fix pcp-atopsar(1) -A (all) option handling (BZ 1673996)
- Update to a more recent PCP bug fix release (BZ 1647308)
�G�x��e�
6Nathan Scott <nathans@redhat.com> - 4.3.2-12^��@- Fix pcp-atop dynamic memory initialization issues (BZ 1818710)�4��c�6Nathan Scott <nathans@redhat.com> - 4.3.2-8^��@- Fix rpm %post privilege escalation CVEs (BZs 1815249, 1815528)
- Resolve an selinux policy issue with pmlogger (BZ 1792859)�5��c�	6Nathan Scott <nathans@redhat.com> - 4.3.2-7^J�@- Fix hugepage metrics in pmdalinux (BZ 1730107)
- Fix NUMA nodes instance domain in pmdalinux (BZ 1730492)
- Several selinux policy fixes (BZs 1749870, 1756252, 1760750)
- Fix pcp-atopsar sample count command line argument (BZ 1764748)
- Fix pcp-atop sigsegv with certain process state changes (BZ 1765641)
- Add pcp-zeroconf pmieconf rule to enable per-thread logging (BZ 1775373)���c�%6Nathan Scott <nathans@redhat.com> - 4.3.2-6]fl�- Improve libpcp corrupt archive handling in multi-archive mode (BZ 1673053)s��c�6Nathan Scott <nathans@redhat.com> - 4.3.2-5]^��- Override tracefs_t presence in selinux-policy (BZ 1714856)
a."a�<����w7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}�����
7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]�M��e�76Nathan Scott <nathans@redhat.com> - 4.3.2-13_���- Fix pcp-atopsar memory allocation problem with some options (BZ 1857580)
- Fix __pmGetArchiveEnd_ctx sigsegv with corrupt PCP archives (BZ 1878754)
�H��K��}�7Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3����e7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t����g7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i����Q7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]9.
����-����W7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M����7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
<��<�K�� }�8Jan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�����97Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L����7Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}

e�r+��V��:��eD�D�
f01aa14c280b18ae6d80cc559938fa75c648eb1537499db7841129684e2be5d9D�C�
6e01c854832108abd04704caf65fe4bafc23e70ae26e9cf272872718eee16d87D�B�
2308127baa502197469a17cef0a36622ccd5c528247af648e424284943e73572D�A�
9308a731a1aba4b9209f5cc4ee3e7f8bd57be5fa213ed219fd59941fb9b092cbD�@�
4f2b4a6fe32be5906b5f4c7f75b71adcae776bcea3e6698d3694791b316cf542D�?�
9937fd1ce7c6e05f160cf8f1d278aaa79cfe89f767f8122c9d3a05bf197f736fD�>�
b8f6f54bce094feadbc5ae893e955b1ec40d9dc16c1497c780f7215a7643291bD�=�
de3b8490416a13143355e8684c271fdc9f605d2dbf6ff8553f500f049a96f027D�<�
643e8a5dafaf596ced8be2e0be3e3edb692c0c81871c46db2a2541ee4de4aca2D�;�
850766245b53884b841d001909aa89898b167cf79a244d26c44c42dd775019c3D�:�
5c6e935d06978bc962ba371367424881edecc7735e2833f96a64554589179077D�9�
10d9cd406a9424d6ffedd18a738deca45a4e4eb8b3d7040d57bae575915dce5eD�8�
ef0aa34944c10f3dbe1446cc6ead8acf304187b1c4cc41baa0b1780ae5441018
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��"��g8Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��!��Q8Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]93
����-��$��W8Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]�M��#��8Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
������&��98Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]�L��%��8Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}
�1����(��18Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f98�J��'��8Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
�<��M��*��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}�?��)��{8Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
�N��L��,��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.101.1.el7]d��@- cifs: fix a buffer leak in smb2_query_symlink (Jay Shin) [2166706]
- kernfs: Improve kernfs_notify() poll notification latency (Ian Kent) [1703180]
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Florian Westphal) [2221720] {CVE-2023-35001}�-��+��W9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.100.1.el7]d��- bnxt: count Tx drops (Jamie Bainbridge) [2175062]
- bnxt: make sure xmit_more + errors does not miss doorbells (Jamie Bainbridge) [2175062]
- netfilter: nf_tables: skip deactivated anonymous sets during lookups (Florian Westphal) [2196159] {CVE-2023-32233}
- netfilter: nf_tables: do not allow SET_ID to refer to another table (Florian Westphal) [2196159]
������/��19Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.104.1.el7]e2k�- CI: Remove unused kpet_tree_f9<�J��.��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.103.1.el7]e#�@- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)���-��99Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.102.1.el7]ev@- net/sched: cls_u32: Fix reference counter leak leading to overflow (Davide Caratti) [2225486] {CVE-2023-3609}
- NFSv4.1: fix handling of backchannel binding in BIND_CONN_TO_SESSION (Benjamin Coddington) [2219604]amily (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for "mitigations=" param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
<<�?��0��{9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.105.1.el7]eH�@- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
���d��1��E9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
p,p�7��3��k9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��2��9Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
���P��5��:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol9A�^��4��9:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��7��o:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow9D�t��6��e:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command9Berpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
y�y���9��7:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han9F�X��8��-:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}dle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�f��:��I:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���;��:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��<��Y:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��=��]:Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
���d��>��E;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.106.1.el7]ee�@- gfs2: Fix quota=quiet oversight (Bob Peterson) [2196280]
- gfs2: Free quota data objects synchronously (Andreas Gruenbacher) [2196280]
- gfs2: Fix initial quota data refcount (Andreas Gruenbacher) [2196280]
- gfs2: Factor out duplicate quota data disposal code (Andreas Gruenbacher) [2196280]
- gfs2: Use gfs2_qd_dispose in gfs2_quota_cleanup (Andreas Gruenbacher) [2196280]
- gfs2: Fix wrong quota shrinker return value (Andreas Gruenbacher) [2196280]
- gfs2: ignore negated quota changes (Bob Peterson) [2196280]
- gfs2: Introduce new quota=quiet mount option (Bob Peterson) [2196280]
- gfs2: Add quota_change type (Bob Peterson) [2196280]
- gfs2: Rename sd_{ glock => kill }_wait (Andreas Gruenbacher) [2196280]
- gfs2: Wake up when sd_glock_disposal becomes zero (Alexander Aring) [2196280]
o,po�|��A��u;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]�7��@��k;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.108.1.el7]e���- net: usb: ax88179_178a: fix failed operations during ax88179_reset (Jose Ignacio Tornos Martinez) [RHEL-6302]�O��?��;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.107.1.el7]ez�@- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Phil Sutter) [RHEL-8433] {CVE-2023-42753}
Y�}��D��w;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��C��;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��B��A;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]
 �� �?��G��{;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.2.el7]e�f@- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}�4��F��e;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��E��9;Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
�X�B��J��<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}�"��I��A<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]�|��H��u<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.109.1.el7]e��@- x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (Waiman Long) [RHEL-17703]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko) [2224973]
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko) [2224973]
���}��K��w<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]
����4��M��e<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��L��9<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��O��A<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��N��y<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
%n�%�"��R��A=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.110.1.el7]e��- gfs2: Fix glock recursion on withdraw during recovery (Andreas Gruenbacher) [RHEL-17223]���Q��7<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���P��<Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens9S
����}��T��w=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.112.1.el7]e��@- net: sched: sch_qfq: Use non-work-conserving warning handler (Davide Caratti) [RHEL-14397]
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (Davide Caratti) [RHEL-14397] {CVE-2023-4921}
- cpufreq: Initialize policy->kobj while allocating policy (Waiman Long) [2161654]
- net: bonding: fix possible NULL deref in rlb code (Hangbin Liu) [RHEL-17227]
- net: bonding: fix use-after-free after 802.3ad slave unbind (Hangbin Liu) [RHEL-17227]�B��S��=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.111.1.el7]e�M@- redhat: rewrite genlog and support Y- tags (Jan Stancek)
- scsi: zfcp: Fix double free of FSF request when qdio send fails (Tobias Huschle) [RHEL-16335]
- fbcon: set_con2fb_map needs to set con2fb_map! (Jocelyn Falempe) [RHEL-1204] {CVE-2023-38409}
����4��V��e=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.114.1.el7]e��- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [RHEL-23500] {CVE-2024-1086}�^��U��9=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.113.1.el7]e�@- igb: set max size RX buffer when store bad packet is enabled (Wander Lairson Costa) [RHEL-15181] {CVE-2023-45871}
- Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: Use separate L2CAP LE credit based connection result values (David Marlin) [RHEL-2742] {CVE-2022-42896}
- Bluetooth: L2CAP: Fix L2CAP_CR_SCID_IN_USE value (David Marlin) [RHEL-2742] {CVE-2022-42896}
����b��X��A=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.116.1.el7]e�q�- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]�~��W��y=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.115.1.el7]e�7@- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]ure inner classes have fsc curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- gfs2: Fix invalid metadata access in punch_hole (Andrew Price) [RHEL-28785]
- vt: vt_ioctl: fix race in VT_RESIZEX (Jay Shin) [RHEL-28639] {CVE-2020-36558}
- selinux: cleanup and consolidate the XFRM alloc/clone/delete/free code (Ondrej Mosnacek) [RHEL-27751]
- bluetooth: Add cmd validity checks at the start of hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- bluetooth: Perform careful capability checks in hci_sock_ioctl() (David Marlin) [RHEL-3682] {CVE-2023-2002}
- cifs: fix panic in smb2_reconnect (Jay Shin) [RHEL-26301]
- af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (Guillaume Nault) [RHEL-16144] {CVE-2023-4622}
- NFS: Set the stable writes BDI capability (Benjamin Coddington) [RHEL-22193]
- RDMA/i40iw: Prevent zero-length STAG registration (Kamal Heib) [RHEL-6299] {CVE-2023-25775}
- sched/membarrier: reduce the ability to hammer on sys_membarrier (Wander Lairson Costa) [RHEL-26402] {CVE-2024-26602}
n��+��[�	�M=Radomir Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.119.1.el7]f<��- PCI: hv: Reinstate wrongfully dropped hv_pcibus_removing state (Vitaly Kuznetsov) [RHEL-22919]���Z��7=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.118.1.el7]f�@- iommu/amd: Fix NULL dereference bug in match_hid_uid (Jerry Snitselaar) [RHEL-8721]���Y��=Rado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.117.1.el7]f
��- tracing/perf: Fix double put of trace event when init fails (Michael Petlan) [RHEL-18052]
- tracing: Fix race in perf_trace_buf initialization (Michael Petlan) [RHEL-18052]
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Davide Caratti) [RHEL-16458] {CVE-2023-4623}
- net/sched: sch_hfsc: Ens9Xdle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/dump: Fix race while processing OPAL dump (Gustavo Duarte) [1873189]
- [powerpc] powernv: opal-dump: Use IRQ_HANDLED instead of numbers in interrupt handler (Gustavo Duarte) [1873189]
- [powerpc] opal_elog: Handle multiple writes to ack attribute (Gustavo Duarte) [1873189]
- [powerpc] powernv/elog: Fix race while processing OPAL error log event (Gustavo Duarte) [1873189]
- [powerpc] powernv Adapt opal-elog and opal-dump to new sysfs_remove_file_self (Gustavo Duarte) [1873189]
- [powerpc] powernv: Fix opal-elog interrupt handler (Gustavo Duarte) [1873189]
- [net] flow_dissector: switch to siphash (Davide Caratti) [1835614] {CVE-2019-18282}
- [fs] xfs: fix boundary test in xfs_attr_shortform_verify (Eric Sandeen) [1875317] {CVE-2020-14385}
- [fs] cifs: make 'nodfs' mount opt a superblock flag (Leif Sahlberg) [1873033]
- [crypto] crypto: authenc - fix parsing key with misaligned rta_len (Herbert Xu) [1846355] {CVE-2020-10769}
�����\��7>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.7.1.el7]_���- [fs] xfs: fix off-by-one in inode alloc block reservation calculation (Brian Foster) [1857203]
- [fs] xfs: fix inode allocation block res calculation precedence (Brian Foster) [1857203]
- [powerpc] powernv/dump: Han9Z
�f��]��I>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.8.1.el7]_��- [kernel] sched/fair: Fix RCU stall upon -ENOMEM in sched_create_group() (Kenneth Yin) [1878000]
- [security] selinux: do not report error on connect(AF_UNSPEC) (Paolo Abeni) [1886305]
- [kernel] timer: Fix lockup in __run_timers() caused by large jiffies/timer_jiffies delta (Waiman Long) [1849716]
- [mm] revert "mm/page_alloc: fix memmap_init_zone pageblock alignment" (Artem Savkov) [1878732]
- [mm] page_alloc: Make paranoid check in move_freepages a VM_BUG_ON (Artem Savkov) [1878732]
- [nvme] rdma: Avoid double freeing of async event data (Gopal Tiwari) [1878950]
- [pci] hv: Fix a timing issue which causes kdump to fail occasionally (Mohammed Gamal) [1846667]
oo���^��>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.9.1.el7]_�i�- [hv] hv: vmbus: Only notify Hyper-V for die events that are oops (Vitaly Kuznetsov) [1868130]
- [uapi] include: do not export changes made to struct ip_ct_sctp (Florian Westphal) [1887975]
- [net] openvswitch: free vport unless register_netdevice() succeeds (Timothy Redaelli) [1869190]
- [net] openvswitch: do not free vport if register_netdevice() is failed (Timothy Redaelli) [1869190]
- [kernel] signals: avoid random wakeups in sigsuspend() (Oleg Nesterov) [1704650]
- [fs] nfs: Fix getxattr kernel panic and memory overflow (Benjamin Coddington) [1880893] {CVE-2020-25212}
�o��_��Y>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.10.1.el7]_���- [md] dm-mirror: provide the merge method (Mikulas Patocka) [1890059]
- [nvme] nvme-rdma: cancel async events before freeing event struct (David Milburn) [1857397]
- [s390] dasd: Use struct_size() helper (Sterling Alexander) [1886477]
- [s390] dasd: fix inability to use DASD with DIAG driver (Sterling Alexander) [1886477]
- [hv] hv_utils: drain the timesync packets on onchannelcallback (Vitaly Kuznetsov) [1884735]
- [hv] hv_utils: return error if host timesysnc update is stale (Vitaly Kuznetsov) [1884735]
- [x86] cpu: Re-apply forced caps every time CPU caps are re-read (Herbert Xu) [1886792]
- [x86] cpu: Factor out application of forced CPU caps (Herbert Xu) [1886792]


�q��`��]>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.11.1.el7]_��- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
-�-�R��b��>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE9a�^��a��7>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
,,�O��c��>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]
�'����e��1>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.2.el7]`	l�- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]�T��d��#>Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]
A�A���gs�?Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check 9e�J��fs�#?Jan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��is�?Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��hs�m?Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��ls�c?Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���ks�1?Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���js�7?Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���n��+?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��ms�?Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�����ps�@Jan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check 9j�^��o��9?Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��rs�@Jan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��qs�m@Jan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��us�c@Jan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���ts�1@Jan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���ss�7@Jan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
5���w��+@Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]�F��vs�@Jan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
�^��x��9@Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]
w�w�^��z��7AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.12.1.el7]_�@- [mm] mmap: relax file size limit for regular files (Rafael Aquini) [1855985]
- [mm] mmap: introduce sane default mmap limits (Rafael Aquini) [1855985]
- [of] Move dynamic node fixups out of powerpc and into common code (Laurent Vivier) [1866138]
- [fs] nfs: Fix double-free in filelayout_alloc_commit_info/filelayout_free_lseg (Benjamin Coddington) [1679980]
- [hid] HID: hid-plantronics: Re-resend Update to map button for PTT products (Torez Smith) [1769502]
- [fs] dlm: make posix locks interruptible (Alexander Aring) [1826858]�!��y��?@Augusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.2.el7]_��- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}RDEV_REQCNT ioctl (Philipp Rudo) [1896826]
- [block] block/diskstats: more accurate approximation of io_ticks for slow disks (Ming Lei) [1859364]
- [block] block: delete part_round_stats and switch to less precise counting (Ming Lei) [1859364]
- [md] dm: simplify start of block stats accounting for bio-based (Ming Lei) [1859364]
- [block] block/rsxx: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [block] drbd: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [md] md: use generic io stats accounting functions to simplify io stat accounting (Ming Lei) [1859364]
- [nvme] limit number of IO queues on Dell/Kioxia config (Gopal Tiwari) [1883403]
- [netdrv] hv_netvsc: make recording RSS hash depend on feature flag (Mohammed Gamal) [1898280]
- [netdrv] hv_netvsc: record hardware hash in skb (Mohammed Gamal) [1898280]
- [fs] block: Fix use-after-free in blkdev_get() (Ming Lei) [1902414] {CVE-2020-15436}
����O��|��AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.14.1.el7]_�@- [fs] nfsd: fix incorrect umasks ("J. Bruce Fields") [1905208]
- [hv] vmbus: Add timeout to vmbus_wait_for_unload (Mohammed Gamal) [1888979]
- [scsi] qla2xxx: Fix device loss on 4G and older HBAs (Nilesh Javali) [1889311]
- [s390] dasd: Fix zero write for FBA devices (Philipp Rudo) [1896839]
- [net] ipv6: use in6_dev_put in dad timer handler instead of __in6_dev_put (Xin Long) [1809519]�R��{��AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.13.1.el7]_�S�- [s390] zcrypt: Fix ZCRYPT_PE9p
?'?�[��~��1AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [19017979s�T��}��#AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����cAAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}bR9�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������9?��39@��59C��79E��99G��:9H��;9I��<9J��=9K��>9L��A9M��D9N��G9O��J9P��K9Q��M9R��O9T��R9U��T9V��V9W��X9Y��[9[��\9\��]9]��^9^��_9_��`9`��b9b��c9c��e9d��g9f��i9g��l9h��n9i��p9k��r9l��u9m��w9n��x9o��z9q��|9r��~9t��9u��9w��9x��9z��9{��9}��9~��9��9���	9���
9���9���9���9���9���9���9���9���9���9���9���9���9���9���9���9��� 9���!9���"9���#9���$9���%9���'9���)9���+9���-9���/9���09���19���29���49���69���79���89���99���:9���<9���?9���@9���A9���C9���F9���G9���H9���J9���L9���M
11�J����AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J����AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�������AAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend9y
?'?�[����1BAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [19017979|�T����#BAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.15.1.el7]_�=�- [fs] ceph: quota: fix null pointer dereference in quota check (Jeff Layton) [1890386]
- [netdrv] revert "mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query" (Alaa Hleihel) [1896756]
- [kernel] timekeeping_Force_unsigned_clocksource_to_nanoseconds_conversion (Waiman Long) [1890911]
- [kernel] exit: Optimize forget_original_parent() for large thread group exiting (Waiman Long) [1872110]
- [kernel] exit: reparent: call forget_original_parent() under tasklist_lock (Waiman Long) [1872110]
- [kernel] Disable tasklist_waiters when qrwlock is enabled (Waiman Long) [1872110]
- [fs] cifs: handle ERRBaduid for SMB1 (Leif Sahlberg) [1847041]]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?BAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����cBAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����BAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J��	��BAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�����
��BAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend9�
KK�/����YBAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|����sBAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
`H`�[����1CAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.16.1.el7]`�- [tty] Fix ->pgrp locking in tiocspgrp() (Chris von Recklinghausen) [1908193] {CVE-2020-29661}
- [net] fix struct pid memory leak (Jay Shin) [19017979��3��
��aBAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)]
- [hid] Fix assumption that devices have inputs (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: the driver now neeed MEMLESS_FF infrastructure (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Add rumble support for Xbox One S controller (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] microsoft: Convert private data to be a proper struct (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] revert "hid: microsoft: fix invalid rdesc for 3k kbd" (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] input: ignore System Control application usages if not System Controls (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [hid] hid-microsoft: Do the check for the ms usage page per device (Chris von Recklinghausen) [1821870] {CVE-2019-19532}
- [net] net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc (Antoine Tenart) [1903819]
- [net] net-sysfs: take the rtnl lock when storing xps_cpus (Antoine Tenart) [1903819]
�b����?CAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.17.1.el7]`��- [x86] kvm: svm: Initialize prev_ga_tag before use ("Dr. David Alan Gilbert") [1909036]
- [scsi] scsi_dh: fix scheduling while atomic and also missing unlock in error path (Mike Snitzer) [1619147]
- [video] hyperv_fb: Fix the cache type when mapping the VRAM (Mohammed Gamal) [1908896]
- [video] hyperv: hyperv_fb: Support deferred IO for Hyper-V frame buffer driver (Mohammed Gamal) [1908896]
- [scsi] target: iscsi: Fix cmd abort fabric stop race (Maurizio Lombardi) [1784540]
- [scsi] target/iscsi: Avoid iscsit_release_commands_from_conn() deadlock (Maurizio Lombardi) [1784540]
- [s390] kernel/uv: handle length extension properly (Claudio Imbrenda) [1899172]
���4����cCAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.18.1.el7]`��- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
- [target] scsi: Fix XCOPY NAA identifier lookup (Maurizio Lombardi) [1900469] {CVE-2020-28374}
- [ipc] sem.c: fully initialize sem_array before making it visible (Vladis Dronov) [1877264]
- [netdrv] geneve: add transport ports in route lookup for geneve (Sabrina Dubroca) [1885144] {CVE-2020-25645}
- [kernel] perf/core: Fix race in the perf_mmap_close() function (Michael Petlan) [1869936] {CVE-2020-14351}
11�J����CAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.19.1.el7]`"y@- [kernel] watchdog: use nmi registers snapshot in hardlockup handler (Prarit Bhargava) [1916589]
- [nvme] nvmet: allow Keep Alive for Discovery controller (Gopal Tiwari) [1910817]
- [net] netfilter: ctnetlink: add a range check for l3/l4 protonum (Florian Westphal) [1888296] {CVE-2020-25211}
- [net] icmp: randomize the global rate limiter (Antoine Tenart) [1896515] {CVE-2020-25705}
11�J����CAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.20.1.el7]`.V�- [md] Set prev_flush_start and flush_bio in an atomic way (Xiao Ni) [1889372]
- [md] improve variable names in md_flush_request() (Xiao Ni) [1889372]
- [kernel] timer: Fix potential bug in requeue_timers() (Waiman Long) [1914011]
- [x86] kvm: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits (Vitaly Kuznetsov) [1890669]
- [x86] kvm: avoid incorrect writes to host MSR_IA32_SPEC_CTRL (Vitaly Kuznetsov) [1890669]
- [md] dm-mirror: fix a crash if the underlying block device doesn't have merge_bvec_fn (Mikulas Patocka) [1916407]
- [gpu] drm/i915: Fix use-after-free when destroying GEM context (Dave Airlie) [1814731] {CVE-2020-7053} func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
�������CAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.21.1.el7]`3��- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend9�
KK�/����YCAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|����sCAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3����aCAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
AA�:����oCAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
KK�/����YDAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.23.1.el7]`S@�- tcm_loop: add WQ_MEM_RECLAIM and flush_work (Maurizio Lombardi) [1925652]
- net/mlx4_en: Handle TX error CQE (Alaa Hleihel) [1925691]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Alaa Hleihel) [1925691]�|����sDAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.22.1.el7]`KW�- mm: do not stall register_shrinker() (Rafael Aquini) [1926043]
- sched/rt: Fix PI handling vs. sched_setscheduler() (Phil Auld) [1928082]
- sched/rt: Simplify pull_rt_task() logic and remove .leaf_rt_rq_list (Phil Auld) [1928082]
- sched: Queue RT tasks to head when prio drops (Phil Auld) [1928082]
- sched/core: Use READ_ONCE()/WRITE_ONCE() in move_queued_task()/task_rq_lock() (Phil Auld) [1928082]
- mmc: block: handle complete_work on separate workqueue (Ming Lei) [1918916]
- tcp: fix to update snd_wl1 in bulk receiver fast path (Vladis Dronov) [1929804]
HH�3����aDAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.24.1.el7]`\{@- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
4A4�����DAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.26.1.el7]`~�@- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)�:����oDAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.25.1.el7]`u��- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
/�/�����	DAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]�@����{DAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.27.1.el7]`�N@- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)
==�>����wDAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
����� ��#DAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��!��DAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]

e�r+��V��:��eD�Q�
f86fdc6c605d339bf653d5faa2de82748934dd460074eeb49f6832f2870c1190D�P�
10c12fcdffb2b2b7e1abf077db33b288fdffac49a4e0acff89864f7742b7dd65D�O�
15929d57409b9d810314750e5974d9d4d764c8cb7d06c8a05aa72c3a1e815adeD�N�
b1723c845eb0bd0f6313d26f5ab756da789229567920d005fec0525735b110a0D�M�
0709174e0519ec2d79dc3e1545a937fdee842ce5f5048538521cbcf27426440dD�L�
96fa85d78505fae4e97f91bb1f42605707a0acaa501c968c075924348581046fD�K�
1bc4e395f855f18adf61d113affcda6539558d534fd9b3ed379bfa03301bb5ddD�J�
3a576a2d4c9d495a81817e62770bc36d792d089f36be65e81f5449f4f304415eD�I�
e0016f8f138d66a274153a7698e46c96dcb464b183d398ffed1911d528dbf7bdD�H�
d0654dfa758aa2f563a1f6f4f32f87d271d5f810da3218400fc7edc14c9af188D�G�
1a19777f00999ca9d5a879d29fb67c078a61e7584353514d1ff9875c172b83beD�F�
b5008882f07f8c6c00a0b544313ead5522d4d71ffce67d2a4c5c59a41e89e091D�E�
d1779b88b2029c7b3cd102334127e7013a0a71479581fd2f04f0d23bbc8a0463
tt���"��	EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.28.1.el7]`�7@- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]
==�>��#��wEAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.29.1.el7]`��@- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]
�����$��#EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.30.1.el7]`���- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}
..�M��%��EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.31.1.el7]`�8@- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���'��'EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��&��EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP 9�
SzS�"��)��?EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���(��}EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
,�,���+��-EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.2.el7]`�A- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]�1��*��]EAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)messages with link address (Hangbin Liu) [1958339]
- hv_netvsc: remove ndo_poll_controller (Mohammed Gamal) [1953075]
- Fix double free in nvme_trans_log_temperature (Gopal Tiwari) [1946793]
- rcu: Call touch_nmi_watchdog() while printing stall warnings (Artem Savkov) [1924688]
- sched/fair: Use RCU accessors consistently for ->numa_group (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/fair: Don't free p->numa_faults with concurrent readers (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Simplify task_numa_compare() (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Fix task_numa_free() lockdep splat (Rafael Aquini) [1915635] {CVE-2019-20934}
- sched/numa: Move task_numa_free() to __put_task_struct() (Rafael Aquini) [1915635] {CVE-2019-20934}
- [s390] s390/dasd: fix diag 0x250 inline assembly (Philipp Rudo) [1910395]
- vsock/vmci: log once the failed queue pair allocation (Stefano Garzarella) [1892237]
- VMCI: Stop log spew when qp allocation isn't possible (Stefano Garzarella) [1892237]
+���-��'FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.33.1.el7]`�9@- CI: Disable result checking for realtime check (Veronika Kabatova)
- CI: Explicitly disable result checking for private CI (Veronika Kabatova)
- CI: Rename variable (Veronika Kabatova)
- mm: memcontrol: switch to rcu protection in drain_all_stock() (Waiman Long) [1957719]
- sctp: Don't add the shutdown timer if its already been added (Xin Long) [1953052]
- media: xirlink_cit: add missing descriptor sanity checks (Mark Langsdorf) [1826877] {CVE-2020-11668}�H��,��FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.32.1.el7]`��@- Bluetooth: verify AMP hci_chan before amp_destroy (Gopal Tiwari) [1962532] {CVE-2021-33034}
- net: ipv4: route: Fix sending IGMP 9�
SzS�"��/��?FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]���.��}FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]
���1��0��]FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����1��FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����2��FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��4��_FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���3��'FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
�\����6��}GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.34.1.el7]`��- futex: remove lockdep_assert_held() in pi_state_update_owner() (Donghai Qiao) [1965495]
- video: hyperv_fb: Add ratelimit on error message (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Increase wait time for VMbus unload (Mohammed Gamal) [1957803]
- Drivers: hv: vmbus: Initialize unload_event statically (Mohammed Gamal) [1957803]
- blk-mq: always allow reserved allocation in hctx_may_queue (Ming Lei) [1926825]
- s390/pci: fix out of bounds access during irq setup (Philipp Rudo) [1917943]
- s390/pci: improve irq number check for msix (Philipp Rudo) [1917943]���5��9FAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
���"��7��?GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.35.1.el7]`�@- CI: Merge configuration (Veronika Kabatova)
- [pci/aer] Work around use-after-free in pcie_do_fatal_recovery() (Al Stone) [1933663]
- [pci/aer] do not invoke error recovery with non-fatal errors (Al Stone) [1933663]
���1��8��]GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.36.1.el7]`�@- cipso,calipso: resolve a number of problems with the DOI refcounts (Antoine Tenart) [1967720]
- net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() (Alaa Hleihel) [1962406]
- sched/debug: Fix cgroup_path[] serialization (Waiman Long) [1912221]
- sched/debug: Reset watchdog on all CPUs while processing sysrq-t (Waiman Long) [1912221]
- vt: vt_ioctl: fix use-after-free in vt_in_use() (Vladis Dronov) [1872778]
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Vladis Dronov) [1872778]
- vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines (Vladis Dronov) [1872778]
- vt: selection, introduce vc_is_sel (Vladis Dronov) [1872778]
- redhat: genspec: generate changelog entries since last release (Augusto Caringi)
�����9��GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����:��GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��<��_GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���;��'GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����?��9GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��>��?GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���=��9GAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
�����@��HAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.37.1.el7]`��- bluetooth: eliminate the potential race condition when removing the HCI controller (Gopal Tiwari) [1971457]
- net: Update window_clamp if SOCK_RCVBUF is set (Balazs Nemeth) [1962196]
- bpf, x86: Validate computation of branch displacements for x86-64 (Jiri Olsa) [1947249] {CVE-2021-29154}
- mm: vmalloc: add cond_resched() in __vunmap() (Rafael Aquini) [1896794]
- mm/vmalloc: __vmalloc_area_node(): avoid 32-bit overflow (Rafael Aquini) [1896794]
�����A��HAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.38.1.el7]`�]�- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
- memcg, slab: Fix incorrect placement of rcu_head in struct memcg_cache_params (Waiman Long) [1951810]
- netfilter: x_tables: Use correct memory barriers. (Phil Sutter) [1949087] {CVE-2021-29650}
- netfilter: nf_nat: don't bug when mapping already exists (Florian Westphal) [1972970]
- netfilter: don't setup nat info for confirmed ct (Florian Westphal) [1972970]
.�.�2��C��_HAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.40.1.el7]a�- redhat: ppc64: CONFIG_RTAS_FILTER (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Fix typo of ibm,open-errinjct in RTAS filter (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- powerpc/rtas: Restrict RTAS requests from userspace (Aristeu Rozanski) [1906443] {CVE-2020-27777}
- IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) [1962499]���B��'HAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.39.1.el7]aF�- netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal) [1980489] {CVE-2021-22555}
- Revert "be2net: disable bh with spin_lock in be_process_mcc" (Petr Oros) [1971744]
- futex: futex_requeue can potentially free the pi_state structure twice (Donghai Qiao) [1966856]
- xfs: sync lazy sb accounting on quiesce of read-only mounts (Carlos Maiolino) [1921551]
- scsi: lpfc: Fix crash caused by switch reboot (Dick Kennedy) [1897576]
\����F��9HAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��E��?HAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]���D��9HAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
22�I��G��
HAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���H��HRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [183489�
nn���J��9IAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.41.1.el7]aS@- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]�i��I��QHRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
�Y����L��9IAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.2.el7]a.�- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]�"��K��?IAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.42.1.el7]a'�@- [s390] s390/dasd: fix list corruption of lcu list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix list corruption of pavgroup group list (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: prevent inconsistent LCU device data (Claudio Imbrenda) [1889418]
- [s390] s390/dasd: fix hanging device offline processing (Claudio Imbrenda) [1889418]
22�I��M��
IAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.43.1.el7]a;H�- PCI: hv: Add support for protocol 1.3 and support PCI_BUS_RELATIONS2 (Mohammed Gamal) [1984128]
- PCI: hv: Decouple the func definition in hv_dr_state from VSP message (Mohammed Gamal) [1984128]
- PCI: hv: Only queue new work items in hv_pci_devices_present() if necessary (Mohammed Gamal) [1984128]
- i40e: improve locking of mac_filter_hash (Stefan Assmann) [1993850]
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann) [1993850]
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann) [1993850]
- i40e: Remove scheduling while atomic possibility (Stefan Assmann) [1993850]
- scsi: lpfc: Fix pt2pt discovery on SLI3 HBAs (Dick Kennedy) [1922479]
- qed: Disable "MFW indication via attention" SPAM every 5 minutes (Manish Chopra) [1854544]
- NFS: Fix a performance regression caused by buffered IO locking (Benjamin Coddington) [1995649]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���N��IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [183489�
�i��O��QIRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��P��=IRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��Q��mIRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��S��AIRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��R��mIRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]78]
- DLM: fix conversion deadlock when DLM_LKF_NODLCKWT flag is set (Bob Peterson) [1834878]
- DLM: use CF_CLOSE flag to stop dlm_send correctly (Bob Peterson) [1834878]
- DLM: Reanimate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_recoverd_stop and dlm_recoverd (Bob Peterson) [1834878]
- DLM: close othercon at send/receive error (Bob Peterson) [1834878]
- DLM: retry rcom when dlm_wait_function is timed out. (Bob Peterson) [1834878]
- DLM: fix to use sock_mutex correctly in xxx_accept_from_sock (Bob Peterson) [1834878]
- DLM: fix race condition between dlm_send and dlm_recv (Bob Peterson) [1834878]
- DLM: fix double list_del() (Bob Peterson) [1834878]
- DLM: Eliminate CF_WRITE_PENDING flag (Bob Peterson) [1834878]
- KVM: do not allow mapping valid but non-reference-counted pages (Jon Maloy) [1975511]
- vxlan: check return value of gro_cells_init() (Aristeu Rozanski) [1970618]
- KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (Jon Maloy) [1988218] {CVE-2021-37576}
mm���T��JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.44.1.el7]aHw�- fs: dlm: change handling of reconnects (Bob Peterson) [1834878]
- DLM: fix NULL pointer dereference in send_to_sock() (Bob Peterson) [1834878]
- DLM: fix to reschedule rwork (Bob Peterson) [1834878]
- DLM: fix to use sk_callback_lock correctly (Bob Peterson) [1834878]
- DLM: fix overflow dlm_cb_seq (Bob Peterson) [183489�
�i��U��QJRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.45.1.el7]aM��- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
���_��V��=JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.46.1.el7]a^�@- RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix locking for ctx->events_reported (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Fix the locking of ctx->file (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/cma: Add missing locking to rdma_accept() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Add missing locking around rdma_leave_multicast() (Kamal Heib) [1978075] {CVE-2020-36385}
- RDMA/ucma: Put a lock around every call to the rdma_cm layer (Kamal Heib) [1978075] {CVE-2020-36385}
- nvme-pci: Unblock reset_work on IO failure (Gopal Tiwari) [1981610]
- nvme-pci: Don't disable on timeout in reset state (Gopal Tiwari) [1981610]
- nvme-pci: shutdown on timeout during deletion (Gopal Tiwari) [1981610]
DD�7��W��mJRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.47.1.el7]ay?@- PCI: hv: Fix sleep while in non-sleep context when removing child devices from the bus (Mohammed Gamal) [1948961]
- PCI: hv: Remove bus device removal unused refcount/functions (Mohammed Gamal) [1948961]
- PCI: hv: Fix a race condition when removing the device (Mohammed Gamal) [1948961]
- scsi: qla2xxx: Fix use after free in eh_abort path (Nilesh Javali) [1899599]
��!��Y��AJRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.49.1.el7]a�b�- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]�7��X��mJRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.48.1.el7]a�y�- scsi: qedf: Add check to synchronize abort and flush (Nilesh Javali) [1941766]
- scsi: ibmvfc: Reinit target retries (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid move login if fast fail is enabled (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Handle move login failure (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Avoid link down on FS9100 canister reboot (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: don't check for failure from mempool_alloc() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: Use compiler attribute defines instead of __attribute__() (Desnes A. Nunes do Rosario) [1882627]
- scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info (Desnes A. Nunes do Rosario) [1882627]
pep�p��[��_JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]���Z��+JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}
!����^��+KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.50.1.el7]a�@@- tcp: grow window for OOO packets only for SACK flows (Guillaume Nault) [1990665]
- scsi: mpt3sas: Fix unlock imbalance (Tomas Henzl) [2006536]
- pci-hyperv: Fix setting CPU affinity on Azure (Vitaly Kuznetsov) [2019272]
- media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt() (Lucas Zampieri) [1956471] {CVE-2021-42739}�n��]��[JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig9ŃZ��\��3JRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]9�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush 9�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r9�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
�,��n��a��[KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig9ʃZ��`��3KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.52.1.el7]a��@- acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (David Arcari) [2019588]
- x86/cpu/amd: Call init_amd_zn() om Family 19h processors too (David Arcari) [2019218]
- x86/cpu/AMD: Fix erratum 1076 (CPB bit) (David Arcari) [2019218]
- i40e: Fix the conditional for i40e_vc_validate_vqs_bitmaps (Stefan Assmann) [1977246]
- i40e: Fix virtchnl_queue_select bitmap validation (Stefan Assmann) [1977246]�p��_��_KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.51.1.el7]a�)@- mm, fs: Fix do_generic_file_read() error return (Carlos Maiolino) [2020857]
- perf/core: Fix a memory leak in perf_event_parse_addr_filter() (Michael Petlan) [1901932]9�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush 9�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r9�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��c��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609ς��b��}KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����e��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��d��wKRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
"�Q�"���is�1LJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���hs�7LJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]�%��g��IKRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���f��KRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}
����F��ks�LJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]�j��js�cLJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]
�����l��+LAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.1.1.el7]_R,@- [net] netfilter: conntrack: allow sctp hearbeat after connection re-use (Florian Westphal) [1869751]
- [scsi] scsi: ses: don't ask for diagnostic pages repeatedly during probe (Maurizio Lombardi) [1855324]
���P��n��LAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.3.1.el7]_p~�- [net] net-sysfs: Call dev_hol9Յ^��m��9LAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.2.1.el7]_h��- [edac] EDAC/i10nm: Update driver to support different bus number config register offsets (Aristeu Rozanski) [1840276]
- [edac] EDAC, {skx, i10nm}: Make some configurations CPU model specific (Aristeu Rozanski) [1840276]
- [net] test nouarg before dereferencing zerocopy pointers (Patrick Talbert) [1862273]
- [net] packet: copy user buffers before orphan or clone (Patrick Talbert) [1862273]
- [netdrv] net/mlx5e: Fix deallocation of non-fully init encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Allow concurrent creation of encap entries (Alaa Hleihel) [1874101]
- [netdrv] net/mlx5e: Protect encap hash table with mutex (Alaa Hleihel) [1874101]d always in rx_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: Call dev_hold always in netdev_queue_add_kobject (Hangbin Liu) [1846454] {CVE-2019-20811}
- [net] net-sysfs: call dev_hold if kobject_init_and_add success (Hangbin Liu) [1846454] {CVE-2019-20811}
- [netdrv] macvlan: Change status when lower device goes down (Hangbin Liu) [1848950]
- [netdrv] macvlan: make operstate and carrier more accurate (Hangbin Liu) [1848950]
- [infiniband] RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() (Kamal Heib) [1858707]
- [infiniband] RDMA/ipoib: Return void from ipoib_ib_dev_stop() (Kamal Heib) [1858707]
- [net] tcp: limit sk_write_qlen based on sndbuf size (Florian Westphal) [1847765]
- [netdrv] net/mlx5e: Modify uplink state on interface up/down (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Disable esw manager vport correctly (Alaa Hleihel) [1733181]
- [netdrv] net/mlx5: E-Switch, Properly refer to host PF vport as other vport (Alaa Hleihel) [1733181]" (Nilesh Javali) [1826127]
- [scsi] scsi: qla2xxx: Fix stale mem access on driver unload (Nilesh Javali) [1826127]
- [scsi] scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Keep track of num of pending flogi (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix race betwen fipvlan request and response path (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Decrease the LL2 MTU size to 2500 (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Check for module unloading bit before processing link update AEN (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Initiator fails to re-login to switch after link down (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Fix crash during sg_reset (Nilesh Javali) [1836443]
- [scsi] scsi: qedf: Stop sending fipvlan request on unload (Nilesh Javali) [1836443]
- [message] scsi: mptscsih: Fix read sense data size (Tomas Henzl) [1829803]
- [scsi] scsi: megaraid_sas: Clear affinity hint (Tomas Henzl) [1828312]
9�9�9��p��oLAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.5.1.el7]_�9�- [x86] x86/PCI: Mark Intel C620 MROMs as having non-compliant BARs (Myron Stowe) [1849223]
- [kernel] uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression (Oleg Nesterov) [1861396]
- [video] vgacon: Fix for missing check in scrollback handling (Lyude Paul) [1859468] {CVE-2020-14331}
- [pci] hv: Retry PCI bus D0 entry on invalid device state (Mohammed Gamal) [1846667]
- [pci] hv: Fix the PCI HyperV probe failure path to release resource properly (Mohammed Gamal) [1846667]
- [x86] xen: Add call of speculative_store_bypass_ht_init() to PV paths (Vladis Dronov) [1882468]
- [powerpc] pow9؉t��o��eLAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.4.1.el7]_{
�- [block] virtio-blk: handle block_device_operations callbacks after hot unplug (Stefan Hajnoczi) [1811893]
- [scsi] Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command9�erpc/smp: Use nid as fallback for package_id (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add Power9 scheduler topology (Desnes Augusto Nunes do Rosario) [1826306]
- [kernel] sched: Add a new SD_SHARE_POWERDOMAIN for sched_domain (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] sched, powerpc: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] sched, s390: Create a dedicated topology table (Desnes Augusto Nunes do Rosario) [1826306]
- [s390] s390/topology: Remove call to update_cpu_masks() (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Add cpu_l2_cache_map (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Rework CPU topology construction (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc/smp: Use cpu_to_chip_id() to find core siblings (Desnes Augusto Nunes do Rosario) [1826306]
- [powerpc] powerpc, hotplug: Avoid to touch non-existent cpumasks (Desnes Augusto Nunes do Rosario) [1826306]
3�3�n��r��[MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.53.1.el7]a�*@- fuse: fix live lock in fuse_ig9ڄX��q��-LAugusto Caringi <acaringi@redhat.com> [3.10.0-1160.6.1.el7]_�"�- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}9�et() (Miklos Szeredi) [1952046]
- fuse: fix bad inode (Miklos Szeredi) [1952046]
- GFS2: Truncate address space mapping when deleting an inode (Bob Peterson) [1364234]
- gfs2: Fix gfs2_testbit to use clone bitmaps (Bob Peterson) [1364234]
- gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps (Bob Peterson) [1364234]
- gfs2: Fix oversight in gfs2_ail1_flush (Bob Peterson) [1364234]
- gfs2: Additional information when gfs2_ail1_flush withdraws (Bob Peterson) [1364234]
- gfs2: leaf_dealloc needs to allocate one more revoke (Bob Peterson) [1364234]
- gfs2: allow journal replay to hold sd_log_flush_lock (Bob Peterson) [1364234]
- gfs2: don't allow releasepage to free bd still used for revokes (Bob Peterson) [1364234]
- gfs2: flesh out delayed withdraw for gfs2_log_flush (Bob Peterson) [1364234]
- gfs2: Do proper error checking for go_sync family of glops functions (Bob Peterson) [1364234]
- gfs2: drain the ail2 list after io errors (Bob Peterson) [1364234]
- gfs2: Withdraw in gfs2_ail1_flush 9�if write_cache_pages fails (Bob Peterson) [1364234]
- gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty (Bob Peterson) [1364234]
- gfs2: Check for log write errors before telling dlm to unlock (Bob Peterson) [1364234]
- gfs2: Prepare to withdraw as soon as an IO error occurs in log write (Bob Peterson) [1364234]
- gfs2: Issue revokes more intelligently (Bob Peterson) [1364234]
- gfs2: Add verbose option to check_journal_clean (Bob Peterson) [1364234]
- gfs2: fix infinite loop when checking ail item count before go_inval (Bob Peterson) [1364234]
- gfs2: Force withdraw to replay journals and wait for it to finish (Bob Peterson) [1364234]
- gfs2: Allow some glocks to be used during withdraw (Bob Peterson) [1364234]
- gfs2: move check_journal_clean to util.c for future use (Bob Peterson) [1364234]
- gfs2: Ignore dlm recovery requests if gfs2 is withdrawn (Bob Peterson) [1364234]
- gfs2: Only complain the first time an io error occurs in quota or log (Bob Peterson) [1364234]
- gfs2: log error r9�eform (Bob Peterson) [1364234]
- gfs2: Rework how rgrp buffer_heads are managed (Bob Peterson) [1364234]
- gfs2: clear ail1 list when gfs2 withdraws (Bob Peterson) [1364234]
- gfs2: Introduce concept of a pending withdraw (Bob Peterson) [1364234]
- gfs2: Return bool from gfs2_assert functions (Bob Peterson) [1364234]
- gfs2: Turn gfs2_consist into void functions (Bob Peterson) [1364234]
- gfs2: Remove usused cluster_wide arguments of gfs2_consist functions (Bob Peterson) [1364234]
- gfs2: Report errors before withdraw (Bob Peterson) [1364234]
- gfs2: Split gfs2_lm_withdraw into two functions (Bob Peterson) [1364234]
- gfs2: Fix incorrect variable name (Bob Peterson) [1364234]
- gfs2: Don't write log headers after file system withdraw (Bob Peterson) [1364234]
- gfs2: clean up iopen glock mess in gfs2_create_inode (Bob Peterson) [1364234]
- gfs2: Close timing window with GLF_INVALIDATE_IN_PROGRESS (Bob Peterson) [1364234]
- gfs2: fix infinite loop in gfs2_ail1_flush on io error (Bob Peterson) [1364234]
- gfs2: Introduce function gfs2_withdrawn (Bob Peterson) [1364234]
- gfs2: replace more printk with calls to fs_info and friends (Bob Peterson) [1364234]
- gfs2: dump fsid when dumping glock problems (Bob Peterson) [1364234]
- gfs2: simplify gfs2_freeze by removing case (Bob Peterson) [1364234]
- gfs2: Rename SDF_SHUTDOWN to SDF_WITHDRAWN (Bob Peterson) [1364234]
- gfs2: Warn when a journal replay overwrites a rgrp with buffers (Bob Peterson) [1364234]
- gfs2: log which portion of the journal is replayed (Bob Peterson) [1364234]
- gfs2: slow the deluge of io error messages (Bob Peterson) [1364234]
- gfs2: Don't withdraw under a spin lock (Bob Peterson) [1364234]
- GFS2: Clear gl_object when deleting an inode in gfs2_delete_inode (Bob Peterson) [1364234]
- gfs2: Use fs_* functions instead of pr_* function where we can (Bob Peterson) [1364234]
- GFS2: Use pr_<level> more consistently (Bob Peterson) [1364234]
b|b�
��t��MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.55.1.el7]a�- SUNRPC: Fix null rpc_clnt dereference in rpc_task_queued tracepoint (Benjamin Coddington) [2039508]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609߂��s��}MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.54.1.el7]a��- block: queue lock must be acquired when iterating over rls (Ming Lei) [2029574]
- Bluetooth: use correct lock to prevent UAF of hdev object (Chris von Recklinghausen) [1968211] {CVE-2021-3573}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Carlos Maiolino) [2034857] {CVE-2021-4155}9]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- net: add READ_ONCE() annotation in __skb_wait_for_more_packets() (Sabrina Dubroca) [2033561]
- efi: Decode IA32/X64 Context Info structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 MS Check structure (Aristeu Rozanski) [1950302]
- efi: Decode additional IA32/X64 Bus Check fields (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Cache, TLB, and Bus Check structures (Aristeu Rozanski) [1950302]
- efi: Decode UEFI-defined IA32/X64 Error Structure GUIDs (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Info Structure (Aristeu Rozanski) [1950302]
- efi: Decode IA32/X64 Processor Error Section (Aristeu Rozanski) [1950302]
- efi: Fix IA32/X64 Processor Error Record definition (Aristeu Rozanski) [1950302]
- HID: core: Sanitize event code and type when mapping input (Aristeu Rozanski) [1920848] {CVE-2020-0465}
�?����v��MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330}�<��u��wMRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.56.1.el7]a��- RDMA/mlx5: Fix access to wrong pointer while performing flush due to error (Kamal Heib) [1984070]
- af_unix: fix garbage collect vs MSG_PEEK (William Zhao) [2031970] {CVE-2021-0920}
- selinux: fix race condition when computing ocontext SIDs (Ondrej Mosnacek) [2040196]
- Bluetooth: fix the erroneous flush_work() order (Chris von Recklinghausen) [1964556] {CVE-2021-3564}
Q�Q�%��x��IMRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���w��MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\��y��7MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT9�
PP�+��z��UMRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S��{��%MRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
�up��%��~��INRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.59.1.el7]b�@- Revert "Merge: Fix tasks stuck in IO waiting for buffer_head lock" (Rado Vrbovsky) [2030609]���}��NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.58.1.el7]b[@- Bluetooth: fix use-after-free error in lock_sock_nested() (Gopal Tiwari) [2005687]
- drm/vmwgfx: Fix stale file descriptors on failed usercopy (Dave Airlie) [2047597] {CVE-2022-22942}���|��NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.57.1.el7]a�r@- fix regression in "epoll: Keep a reference on files added to the check list" (Carlos Maiolino) [2042760] {CVE-2020-0466}
- epoll: Keep a reference on files added to the check list (Carlos Maiolino) [2042760] {CVE-2020-0466}
- drm/i915: Flush TLBs before releasing backing store (Dave Airlie) [2044319] {CVE-2022-0330} is set (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs, fdtable: Add fget_task helper (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: add fget_many() and fput_many() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs/file.c: __fget() and dup2() atomicity rules (Miklos Szeredi) [2032478] {CVE-2021-4083}
- vfs: Don't let __fdget_pos() get FMODE_PATH files (Miklos Szeredi) [2032478] {CVE-2021-4083}
- get rid of fget_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- sockfd_lookup_light(): switch to fdget^W^Waway from fget_light (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: __fget_light() can use __fget() in slow path (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget_light() and fget_raw_light() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fs: factor out common code in fget() and fget_raw() (Miklos Szeredi) [2032478] {CVE-2021-4083}
- introduce __fcheck_files() to fix rcu_dereference_check_fdtable(), kill rcu_my_thread_group_empty() (Miklos Szeredi) [2032478] {CVE-2021-4083}
���\����7NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.60.1.el7]b!�- svcrdma: Fix leak of svc_rdma_recv_ctxt objects (Benjamin Coddington) [2028740]
- sunrpc: Remove unneeded pointer dereference (Benjamin Coddington) [2028740]
- x86/platform/uv: Add more to secondary CPU kdump info (Frank Ramsay) [2042462]
- [s390] s390/AP: support new dynamic AP bus size limit (Claudio Imbrenda) [1997156]
- CI: Enable baseline realtime checks (Veronika Kabatova)
- CI: Rename pipelines to include release names (Veronika Kabatova)
- RDMA/cma: Do not change route.addr.src_addr.ss_family (Kamal Heib) [2032075] {CVE-2021-4028}
- fget: clarify and improve __fget_files() implementation (Miklos Szeredi) [2032478] {CVE-2021-4083}
- fget: check that the fd still exists after getting a ref to it (Miklos Szeredi) [2032478] {CVE-2021-4083}
- net: Set fput_needed iff FDPUT_FPUT9�
PP�+����UNRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.61.1.el7]b%�- x86/efi: reset the correct tlb_state when returning from efi_switch_mm() (Rafael Aquini) [2055587]
((�S����%NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M����NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%����INRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}�����NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D����NRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
((�S����%ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.62.1.el7]b;�- cifs: fix handling of DFS links where we can not access all components (Ronnie Sahlberg) [1937304]
- redhat: kernel.spec: install new kernel boot entry in posttrans, not post (Denys Vlasenko) [1893756]
- [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7 (Mete Durlu) [2048920]
- dm table: fix iterate_devices based device capability checks (Mike Snitzer) [2054743]
- buffer: eliminate the need to call free_more_memory() in __getblk_slow() (Carlos Maiolino) [2030609]
- buffer: grow_dev_page() should use __GFP_NOFAIL for all cases (Carlos Maiolino) [2030609]
- buffer: have alloc_page_buffers() use __GFP_NOFAIL (Carlos Maiolino) [2030609]
- mm: memcg: do not fail __GFP_NOFAIL charges (Rafael Aquini) [2054345]
- mm: filemap: do not drop action modifier flags from the gfp_mask passed to __add_to_page_cache_locked() (Rafael Aquini) [2054345]
- Added ZSTREAM=yes to makefile (Lucas Zampieri)
p�Bp�M��	��ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.65.1.el7]bV�@- CI: Remove deprecated option (Veronika Kabatova)
- RDMA/core: Fix panic when port_pkey_list isn't initialized (Kamal Heib) [2046571]�%����IORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.64.1.el7]bM��- cgroup-v1: Require capabilities to set release_agent (Waiman Long) [2052162] {CVE-2022-0492}�����ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.63.1.el7]bDF@- NFSv4: Set the connection timeout to match the lease period (Benjamin Coddington) [2066699]
- SUNRPC: Allow changing of the TCP timeout parameters on the fly (Benjamin Coddington) [2066699]
- SUNRPC: Refactor TCP socket timeout code into a helper function (Benjamin Coddington) [2066699]
- SUNRPC: Remove unused function rpc_get_timeout() (Benjamin Coddington) [2066699]
- kernel/timer: Fix incorrect assertion in requeue_timers() (Waiman Long) [2048502]
77�D��
��ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.66.1.el7]bi0@- net-sysfs: add check for netdevice being present to speed_show (William Zhao) [2055457]
- CI: Drop baseline runs (Veronika Kabatova)
- perf/x86/intel: Add more Icelake CPUIDs (Michael Petlan) [2072317]
- perf vendor events intel: Add Icelake V1.00 event file (Michael Petlan) [2072317]
- perf vendor events intel: Add core event list for Icelake Server (Michael Petlan) [2072317]
%v%�L����ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]�����	ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d���
����ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]�����)ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]���
��-ORado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
%v%�L����PRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.68.1.el7]b�k�- libceph: fix potential use-after-free on linger ping and resends (Ilya Dryomov) [2088025]
- xfs: use length to balance duplicate bno buffers in perag rb_tree (Brian Foster) [2050464]
- sock: sock_dequeue_err_skb() needs hard irq safety (Kenneth Yin) [2070408]�����	PRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.67.1.el7]b��@- mm/rmap.c: explicitly reset vma->anon_vma in unlink_anon_vmas() (Rafael Aquini) [1824109 2069962]
- mm/rmap.c: don't reuse anon_vma if we just want a copy (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: rb_parent is not necessary in __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: extract __vma_unlink_list() as counterpart for __vma_link_list() (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: __vma_unlink_prev() is not necessary now (Rafael Aquini) [1824109 2069962]
- mm/mmap.c: prev could be retrieved from vma->vm_prev (Rafael Aquini) [1824109 2069962]
�d����&����KPRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
����PRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]�����)PRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.70.1.el7]b�x@- perf: Fix sys_perf_event_open() race against self (Michael Petlan) [2087954]�����-PRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.69.1.el7]b��@- mm: memcg: charge memsw as well in __GFP_NOFAIL case (Rafael Aquini) [2082564]
xx�����#PRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l����WPRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'PRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 9�
3^O$3�l����WQRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&����KQRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]�
����QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.71.1.el7]b��- netfilter: nf_tables: disallow non-stateful expression in sets earlier (Phil Sutter) [2093000] {CVE-2022-1966}
- netfilter: nf_tables: fix memory leak if expr init fails (Phil Sutter) [2093000]�����9PRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
ii�����#QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]bR:SRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������9���O9���P9���Q9���S9���T9���U9���V9���W9�Y9Â�[9Ă�^9ɂ�a9΂�c9Ђ�e9т�i9҂�k9ӂ�l9Ԃ�n9ׂ�p9ق�r9ނ�t9��v9��x9��y9��z9��{9��~9��9��9��9��9��9��9��	9��
9��9��9��9��9��9���9���9���9���9��� 9���#:��&:��':��):��,:��.:��/:��1:��4:��5:��6:��8: ��::!��;:"��=:#��>:$��@:&��B:'��C:(��E:)��F:*��H:,��K:-��M:.��N:/��P:1��T:2��V:4��Z:5��^:6��a:7��d:8��f::��h:;��k:?��m:A��o:B��r:C��w:D��~:E��:F��
:G��:H��:I��":J��):L��0:M��8:N��?:O��F:P��M:Q��U:R��\cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T����'QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for 9�
G^G��� ��#QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]�����9QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��#��QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���"��QRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-238259��+��!��UQRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}9� CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV:E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 :CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227:] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}

e�r+��V��:��eD�^�
e04dc4c0f21261a4b8f79045ccd056e8127d18e5487b1cb244df94daebd947efD�]�
6ead86e81280d56c02e90e7af54080a1b332b55814bf405227418471a84c582dD�\�
248b2b0bfb0de8b031b61088bfef62e0c0553e6fbfbf409774f977e6aa73b58eD�[�
e3787987f77c2d6216bcd7f8b59f521fa32928443f39660b17f98be3f0a684a0D�Z�
04aafce3a01a8ef79a286f4b1e46007f4ff2310784c8df59fa21c4b9ef862b84D�Y�
d512375bde1aef7ba436074db5e9c21e9baa01feef514ddc544ada6efd20aa7eD�X�
ec5c24d5377fe314137f22aa6ce809acee1e0231e7772cd10fcb69dfd3c4bb00D�W�
0a7bd3f0caab514c1555ed06bde5524b4655f5fdc8b646492ded15867ea9f447D�V�
b89dfe0d8f7dd4115a1057dd176a0db69c4c6c947cd62369e8f6701a52c637ffD�U�
b87fbc79faea13909a981784d127aa69be3a440f342f46eb2f0ac3baa4c8fb1aD�T�
0ebed7ba324c9dd19b4c287a0d21bb0ff3631197a4d341dfff3705451356c18eD�S�
d81ef905a985548d803b0e6d1f1537c299d7d342e862ba4651ee9ccacb8b23eaD�R�
9f57641987fd36be4cd3915ab21939f74a4d1c79b1812b0469560179b445fb74
M��M���&��#RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�l��%��WRRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.73.1.el7]b��- qede: Reduce verbosity of ptp tx timestamp (Manish Chopra) [2080646]
- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (Kamal Heib) [2085425]�&��$��KRRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.72.1.el7]b��@- sched,perf: Fix periodic timers (Valentin Schneider) [2077346]
- sched: debug: Remove the cfs bandwidth timer_active printout (Valentin Schneider) [2077346]
- sched: Cleanup bandwidth timers (Valentin Schneider) [2077346]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��'��'RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for :
G^G���)��#RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���(��9RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��,��RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���+��RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825:	�+��*��URRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}:
 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV:E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 :CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227:
] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
����.��#SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.74.1.el7]bγ�- tracing: Fix bad use of igrab in trace_uprobe.c (Oleg Nesterov) [2096884]�L��-��RRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]cpu_show_srbds() (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- [s390] s390/zcrypt: use kvmalloc instead of kmalloc for 256k alloc (Mete Durlu) [2072970]
���T��/��'SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.75.1.el7]b֜�- xfs: fix up non-directory creation in SGID directories (Andrey Albershteyn) [2089360]
- x86/speculation/mmio: Print SMT warning (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Rafael Aquini) [2090249] {CVE-2022-21123 CVE-2022-21125 CVE-2022-21166}
- cpu/speculation: Add prototype for :
G^G���1��#SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.77.1.el7]c�@- net/mlx5: Add Fast teardown support (Jay Shin) [2077711]
- net/mlx5: Free IRQs in shutdown path (Jay Shin) [2077711]
- net/mlx5: Change teardown with force mode failure message to warning (Jay Shin) [2077711]
- net/mlx5: Cancel health poll before sending panic teardown command (Jay Shin) [2077711]
- net/mlx5: Add fast unload support in shutdown flow (Jay Shin) [2077711]
- net/mlx5: Expose command polling interface (Jay Shin) [2077711]
- posix-timers: Remove remaining uses of tasklist_lock (Oleg Nesterov) [2115147]
- posix-timers: Use sighand lock instead of tasklist_lock on timer deletion (Oleg Nesterov) [2115147]
- posix-cpu-timers: remove tasklist_lock in posix_cpu_clock_get() (Oleg Nesterov) [2115147]���0��9SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.76.1.el7]b��@- sfc: complete the next packet when we receive a timestamp (Íñigo Huguet) [1793280]
�P(��B��4��SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]���3��SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825:�+��2��USRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.78.1.el7]c#�- net_sched: cls_route: remove from list when handle is 0 (Davide Caratti) [2121809] {CVE-2022-2588}: CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV:E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 :CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227:] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
���L��5��SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]
&&�U��6��)SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
������8��TRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.79.1.el7]c,N@- x86/speculation: Add LFENCE to RSB fill sequence (Rafael Aquini) [2115073] {CVE-2022-26373}
- x86/speculation: Protect against userspace-userspace spectreRSB (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825:���7��SRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}: CVE-2022-29900 CVE-2022-29901}
- x86/speculation: cope with spectre_v2=retpoline cmdline on retbleed-affected Intel CPUs (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- KVM: emulate: do not adjust size of fastop and setcc subroutines (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/speculation: Disable RRSBA behavior (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kexec: Disable RET on kexec (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Rafael Aquini) [2090227] {CVE-2022-23816 CV:E-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Enumerate BTC_NO (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/common: Stamp out the stepping madness (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu/amd: Add Spectral Chicken (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Do IBPB fallback check only once (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add retbleed=ibpb (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report Intel retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Enable STIBP for JMP2RET (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Add AMD retbleed= boot parameter (Rafael Aquini) [2090227] {CVE-2022-23816 :CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/bugs: Report AMD retbleed vulnerability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Add magic AMD return-thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Use return-thunk in asm code (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/sev: Avoid using __x86_return_thunk (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix SETcc emulation for return thunks (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86,objtool: Create .return_sites (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Undo return-thunk damage (Rafael Aquini) [2090227:] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/retpoline: Use -mfunction-return (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Move RETPOLINE flags to word 11 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- objtool: Add ELF writing capability (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare asm files for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86: Prepare inline-asm for straight-line-speculation (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Fix fastop function ELF metadata (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/kvm: Move kvm_fastop_exception to .fixup section (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/vdso: Fix vDSO build if a retpoline is emitted (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Carve out CQM features retrieval (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpufeature: Move processor tracing out of scattered features (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/cpu: Probe CPUID leaf 6 even when cpuid_level == 6 (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
- x86/alternatives: Cleanup DPRINTK macro (Rafael Aquini) [2090227] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901}
h�h�L��:��TRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�B��9��TRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.80.1.el7]cAf@- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (Dick Kennedy) [1969988]
- scsi: lpfc: Fix illegal memory access on Abort IOCBs (Dick Kennedy) [1969988]
- NFS: Fix extra call to dput() in nfs_prime_dcache (Benjamin Coddington) [2117856]
&&�U��;��)TRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��=��QTRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���<��TRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��>��TRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��@��mTRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc:%���?��1TRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
w�w�L��B��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.81.1.el7]c\�- [netdrv] bnxt: don't lock the tx queue from napi poll (Jamie Bainbridge) [2110869]
- [netdrv] bnxt_en: reverse order of TX disable and carrier off (Jamie Bainbridge) [2110869]
- [netdrv] qede: confirm skb is allocated before using (Jamie Bainbridge) [2131145]�3��A��eTRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
&&�U��C��)URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.82.1.el7]c��- net: usb: ax88179_178a: Fix packet receiving (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- net: usb: ax88179_178a: fix packet alignment padding (Jose Ignacio Tornos Martinez) [2120504] {CVE-2022-2964}
- mm: swap: disable swap_vma_readahead for PPC64 (Rafael Aquini) [2142455]
����i��E��QURado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���D��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��F��URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��H��mURado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc:+���G��1URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
E�)E�_��K��=URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���J��3URado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��I��eURado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
����i��M��QVRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.84.1.el7]c��@- blk-mq: fix flush-rq race (Ming Lei) [2088029]
- scsi: target: iscsi: Fix a race condition between login_work and the login thread (Maurizio Lombardi) [2154243]���L��VRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.83.1.el7]c�R@- x86/sme: avoid using __x86_return_thunk (Rafael Aquini) [2122158]
- scsi: core: Simplify control flow in scmd_eh_abort_handler() (Ewan D. Milne) [2128337]
- scsi: core: Avoid leaving shost->last_reset with stale value if EH does not run (Ewan D. Milne) [2128337]
- [netdrv] i40e: Fix freeing of uninitialized misc IRQ vector (Jamie Bainbridge) [2129248]
- x86/speculation: Use generic retpoline by default on AMD (Rafael Aquini) [2062165] {CVE-2021-26401}
;;�@��N��VRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.85.1.el7]c�0�- sctp: do asoc update earlier in sctp_sf_do_dupcook_b (Xin Long) [2054037]
- sctp: do asoc update earlier in sctp_sf_do_dupcook_a (Xin Long) [2054037]
- sctp: handle errors when updating asoc (Xin Long) [2054037]
- sctp: no need to check assoc id before calling sctp_assoc_set_id (Xin Long) [2054037]
- s390/topology: fix warning when disabling cpus (Tobias Huschle) [2071980]
�b��7��P��mVRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc:0���O��1VRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
��)E����T��7VRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��S��=VRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���R��3VRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��Q��eVRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]
W�W���V��1WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.86.1.el7]cۥ�- openvswitch: fix OOB access in reserve_sfa_size() (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- gitlab-ci: use CI templates from production branch (Michael Hofmann)
- mm: prevent page_frag_alloc() from corrupting the memory (Rafael Aquini) [2141062]
- mm: Use fixed constant in page_frag_alloc instead of size + 1 (Rafael Aquini) [2141062]
- mm: page_alloc: fix ref bias in page_frag_alloc() for 1-byte allocs (Rafael Aquini) [2141062]
- x86/pat: Pass valid address to sanitize_phys() (Jeff Moyer) [1974485]���U��VRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]h: fix OOB access in reserve_sfa_size()" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- kvm/emulate: Fix SETcc emulation function offsets with SLS (Vitaly Kuznetsov) [2143438]
- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (Rafael Aquini) [2138620] {CVE-2022-42703}
- mm, rmap: handle anon_vma_prepare() common case inline (Rafael Aquini) [2138620] {CVE-2022-42703}
- proc: proc_skip_spaces() shouldn't think it is working on C strings (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- proc: avoid integer type confusion in get_proc_long (Wander Lairson Costa) [2152565] {CVE-2022-4378}
- scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (Nilesh Javali) [2092105]
- fs: move S_ISGID stripping into the vfs_*() helpers (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: Add missing umask strip in vfs_tmpfile (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
- fs: add mode_strip_sgid() helper (Andrey Albershteyn) [2159946] {CVE-2018-13405 CVE-2021-4037}
�<e��_��Z��=WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]���Y��3WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.89.1.el7]c�U@- usb: mon: make mmapped memory read only (Desnes Nunes) [2161212] {CVE-2022-43750}�3��X��eWRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.88.1.el7]c�- KVM: x86: add bit to indicate correct tsc_shift (Marcelo Tosatti) [2152838]
- KVM: x86: rewrite handling of scaled TSC for kvmclock (Marcelo Tosatti) [2152838]
- KVM: x86: rename argument to kvm_set_tsc_khz (Marcelo Tosatti) [2152838]�7��W��mWRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.87.1.el7]c�1�- Revert "openvswitch: fix flow actions reallocation" (Rado Vrbovsky) [2141780] {CVE-2022-2639}
- Revert "openvswitc:3
�_TH��<��^��wWRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���]��
WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���\��WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]���[��7WRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]
�Hd����a��7XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.91.1.el7]dBz�- target: iscsi: use GFP_NOIO with loopback connections (Maurizio Lombardi) [2181931]�_��`��=XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.90.1.el7]dV@- NFSv4.1: Fix open stateid recovery (Benjamin Coddington) [2156890]
- NFS: Don't open code clearing of delegation state (Benjamin Coddington) [2156890]�3��_��eWRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
(��(�<��d��wXRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.94.1.el7]d�@- netfilter: nf_tables: deactivate anonymous set from preparation phase (Florian Westphal) [2196159] {CVE-2023-32233}���c��
XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.93.1.el7]d}�@- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (Wander Lairson Costa) [2152941] {CVE-2022-3564}
- proc/pagemap: walk page tables under pte lock (Rafael Aquini) [2190338]���b��XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.92.1.el7]df@- packet: fix use-after-free in prb_retire_rx_blk_timer_expired() (Florian Westphal) [2182642]
- x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware (Waiman Long) [2189556]
�H��K��f}�XJan Stancek <jstancek@redhat.com> [3.10.0-1160.96.1.el7]d��@- sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don't assign runtime for throttled cfs_rq (Phil Auld) [2180681]�3��e��eXRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.95.1.el7]d��@- perf/s390x: Align the register list to what we support (Michael Petlan) [2207745]
- Revert "[tools] s390/perf: add perf register support for floating-point registers" (Michael Petlan) [2207745]
- s390/perf: add perf_regs support and user stack dump (Michael Petlan) [2207745]
- s390/zcrypt: handle new reply code FILTERED_BY_HYPERVISOR (Tobias Huschle) [2212672]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading 'invalid' in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]

�t��h��gXRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.98.1.el7]d˖�- GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here... (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]�i��g��QXRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.97.1.el7]d�g�- net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]:9
�����ks�YJan Stancek <jstancek@redhat.com> [3.10.0-1152.el7]^�- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Drono:=�	��js�!YJan Stancek <jstancek@redhat.com> [3.10.0-1151.el7]^�W@- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]
- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]
- [hid] HID: hiddev: do clean:<�M��i��XRado Vrbovsky <rvrbovsk@redhat.com> [3.10.0-1160.99.1.el7]d��@- x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD's DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}up in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}
- [x86] x86: make mul_u64_u64_div_u64() "static inline" (Oleg Nesterov) [1845864]
- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]
- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]
- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]
- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]
- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]
- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]
- [scsi] scsi: sg: add sg_remove_request in sg_write ("Ewan D. Milne") [1840699] {CVE-2020-12770}
- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}:>v) [1844409]
- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]
- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]
- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]
- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]
- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]
- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]
- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]
- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]
- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]
- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]
- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]
- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]
A�A���ms�YJan Stancek <jstancek@redhat.com> [3.10.0-1154.el7]^��@- [fs] gfs2: move privileged user check :@�J��ls�#YJan Stancek <jstancek@redhat.com> [3.10.0-1153.el7]^�4�- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}
- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]to gfs2_quota_lock_check (Robert S Peterson) [1798713]
- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]
- [fs] gfs2: don't call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]
- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]
- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]
- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]
- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]
- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]
- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]
- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]
- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]
CC�D��os�YJan Stancek <jstancek@redhat.com> [3.10.0-1156.el7]_X@- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]
- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]
- [fs] signal: Don't take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}�o��ns�mYJan Stancek <jstancek@redhat.com> [3.10.0-1155.el7]_�- [x86] Revert "x86: respect memory size limiting via mem= parameter" (Joel Savitz) [1851576]
- [mm] Revert "mm/memory_hotplug.c: only respect mem= parameter during boot stage" (Joel Savitz) [1851576]
- [fs] nfsd: only WARN once on unmapped errors ("J. Bruce Fields") [1850430]
- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]
- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]
bg�b�j��rs�cYJan Stancek <jstancek@redhat.com> [3.10.0-1159.el7]_+�- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]���qs�1YJan Stancek <jstancek@redhat.com> [3.10.0-1158.el7]_A@- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []���ps�7YJan Stancek <jstancek@redhat.com> [3.10.0-1157.el7]_�- [fs] signal: Don't send signals to tasks that don't exist (Vladis Dronov) [1856166]
�5�c�]��wuIZMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��vu?ZDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��uusZMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122X��tu?ZDaniel Mach <dmach@redhat.com> - 2.0.0-13.gitd1c6db8R�k�- Mass rebuild 2013-12-27�F��ss�YJan Stancek <jstancek@redhat.com> [3.10.0-1160.el7]_;�- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]
- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]
- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]
- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]
Im�O�\�IX��~u?[Daniel Mach <dmach@redhat.com> - 2.0.0-13.gitd1c6db8R�k�- Mass rebuild 2013-12-27�2��}�
�WZCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��|�
kZCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��{{iZLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��z{�SZLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��yumZMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���xu�)ZMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
)�.�:��){���
k[Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��{i[Lumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��{�S[Lumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��um[Michal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���u�)[Michal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��uI[Michal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��u?[Daniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��us[Michal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122
eI�w�e�&��
{�S\Lumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��um\Michal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���u�)\Michal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��
uI\Michal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��	u?\Daniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��us\Michal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122�2���
�W[Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522
��
V�d�]��uI]Michal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��u?]Daniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��us]Michal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122x��{y\Lumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2���
�W\Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{���
k\Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��{i\Lumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532
)m�O�\�)x��{y]Lumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2���
�W]Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{���
k]Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��{i]Lumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��{�S]Lumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��um]Michal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���u�)]Michal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
��C�=��{��"�
k^Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��!{i^Lumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&�� {�S^Lumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��um^Michal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���u�)^Michal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��uI^Michal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��u?^Daniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24
�I�Q���o��)um_Michal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���(u�)_Michal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��'uI_Michal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��&u?_Daniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24x��%{y^Lumír Balhar <lbalhar@redhat.com> - 2.0.0-25gitd1c6db8e��@- Security fix for CVE-2023-50447
Resolves: RHEL-22239x��${y^Lumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��#�
�W^Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522

e�r+��V��:��eD�k�
d815a590697b3df0167d56b28753612896111d06c6e033a0694f444261d23d09D�j�
b5816382d23e2c39a1010248b904a92618f9140583546a2750585d023b31a97fD�i�
ec825c7e726b4f918e38b5d16c4713c4f73534bac35c94b116810482f92134c3D�h�
137fd6acb013717c21df14d056e3aec78767919094b31181c949789add37ed5cD�g�
4ebc55a9954ac2afcab8fb9d5afd7de1ac28a66e18e635767c73d22ff0bb53eaD�f�
ddd375eab5397ba731106d9d1a805e9a2c6aa4e504e7487eea4ff54190770885D�e�
647a613d1c2a1a76e224f9b2858aada971c346c973f46566c503a58ea2958063D�d�
b2c1cdb60ecdd165581074138534e1d9c89d29286cfae22235a53418e6994f26D�c�
375c6aec9492dfeb3bf49e8ed7cde201a8d10e0a725c713f6131c221f187519aD�b�
11baa7d4bdd8079b0a48c38698900636641b8648bcc0beed5948a501e512c0a8D�a�
d14497105b68ae6076141f696ba00d9f42a831aa982b7bbacae503f429464e72D�`�
4c0b51e89a2551de7942fb433c79d0f9aa1a872daee24a3859ba5e6e51888012D�_�
f6c5c1dd3e31927fa431f3f886053e4f234ec506a168fc28c7d537f9e6f5e4c9
WU�b�/�WX��0u?`Daniel Mach <dmach@redhat.com> - 2.0.0-13.gitd1c6db8R�k�- Mass rebuild 2013-12-27x��/{y_Lumír Balhar <lbalhar@redhat.com> - 2.0.0-25gitd1c6db8e��@- Security fix for CVE-2023-50447
Resolves: RHEL-22239x��.{y_Lumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��-�
�W_Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��,�
k_Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��+{i_Lumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��*{�S_Lumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066
)�.�:��){��8�
k`Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��7{i`Lumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��6{�S`Lumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��5um`Michal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���4u�)`Michal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��3uI`Michal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��2u?`Daniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��1us`Michal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122
�I�w�'�o��?umaMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���>u�)aMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��=uIaMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��<u?aDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��;usaMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122X��:u?aDaniel Mach <dmach@redhat.com> - 2.0.0-13.gitd1c6db8R�k�- Mass rebuild 2013-12-27�2��9�
�W`Charalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522
xU�b�5�x]��FuIbMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��Eu?bDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��DusbMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122�2��C�
�WaCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��B�
kaCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��A{iaLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��@{�SaLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066
)m�O�\�)x��M{ybLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��L�
�WbCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��K�
kbCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��J{ibLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��I{�SbLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��HumbMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���Gu�)bMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
)�.�:��){��U�
kcCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��T{icLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��S{�ScLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��RumcMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���Qu�)cMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��PuIcMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��Ou?cDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��NuscMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122
_I�q}
_�&��\{�SdLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��[umdMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���Zu�)dMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��YuIdMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��Xu?dDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24x��W{ycLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��V�
�WcCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522
��
V�^�]��cuIeMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��bu?eDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24x��a{ydLumír Balhar <lbalhar@redhat.com> - 2.0.0-25gitd1c6db8e��@- Security fix for CVE-2023-50447
Resolves: RHEL-22239x��`{ydLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��_�
�WdCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��^�
kdCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��]{idLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532
)m�O�\�)x��j{yeLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��i�
�WeCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��h�
keCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��g{ieLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��f{�SeLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��eumeMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���du�)eMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
D�(�V�b�D�&��r{�SfLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��qumfMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���pu�)fMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��ouIfMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��nu?fDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��musfMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122X��lu?fDaniel Mach <dmach@redhat.com> - 2.0.0-13.gitd1c6db8R�k�- Mass rebuild 2013-12-27x��k{yeLumír Balhar <lbalhar@redhat.com> - 2.0.0-25gitd1c6db8e��@- Security fix for CVE-2023-50447
Resolves: RHEL-22239
�
V��#�o��zumgMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���yu�)gMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��xuIgMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��wu?gDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��vusgMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122�2��u�
�WfCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��t�
kfCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��s{ifLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532
rU�b�/�r]��uIhMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��u?hDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24x��{ygLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��~�
�WgCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��}�
kgCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��|{igLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��{{�SgLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066
)m�O�\�)x��{yhLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2���
�WhCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{���
khCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��{ihLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��{�ShLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��umhMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���u�)hMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
D�(�V�b�D�&��{�SiLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��umiMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���u�)iMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��
uIiMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��u?iDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��usiMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122X��
u?iDaniel Mach <dmach@redhat.com> - 2.0.0-13.gitd1c6db8R�k�- Mass rebuild 2013-12-27x��	{yhLumír Balhar <lbalhar@redhat.com> - 2.0.0-25gitd1c6db8e��@- Security fix for CVE-2023-50447
Resolves: RHEL-22239
�
V��#�o��umjMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���u�)jMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��uIjMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��u?jDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��usjMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122�2���
�WiCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{���
kiCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��{iiLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532
rU�b�/�r]��uIkMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��u?kDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24x��{yjLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2���
�WjCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{���
kjCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��{ijLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��{�SjLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066
)m�O�\�)x��&{ykLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��%�
�WkCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��$�
kkCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��#{ikLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��"{�SkLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��!umkMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.��� u�)kMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
D�(�V�b�D�&��.{�SlLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��-umlMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���,u�)lMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��+uIlMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��*u?lDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��)uslMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122X��(u?lDaniel Mach <dmach@redhat.com> - 2.0.0-13.gitd1c6db8R�k�- Mass rebuild 2013-12-27x��'{ykLumír Balhar <lbalhar@redhat.com> - 2.0.0-25gitd1c6db8e��@- Security fix for CVE-2023-50447
Resolves: RHEL-22239

e�r+��V��:��eD�x�
5c48f63f55884ffae342bab8da56b7300ef3a1c678ca2fd3ed60b450b739c9d0D�w�
64577751243751eedbe850fc528ea04d250e8a953a86f23a1a44bf84dfdd8e77D�v�
ea62e68511b809f9becc99bd815384ecd8f52c7abded5c1a0a143ce0c6f07f1eD�u�
e2a10703222e1811d5a65784d7297dc8909810f2a89b78d6c78a402ba28e7a22D�t�
48122d3d4653fe0fc63133e91c130b529db55e9ff1940bca669fbe8d0e04f223D�s�
24c85de4433c7d3441a0b4765cbe8e897ea5e9178eca2d1f545940ae96e7f940D�r�
22c712c0742c37d17a067192cfa1bcc35a1d96fc1200fdddc0f752ba8df52d72D�q�
4808002a70058c1d3b9c495b731f8403aaf27010bc15e1e5a808639ca82489a6D�p�
9359973256508b24175ed9887851616fac8f922f2e55231ced8c44ff757ef828D�o�
f0b50f270ec1c14903fbb91ed28d0134d984399e67c5cab7709b5de27479c361D�n�
6388020c7ae6967173c10e44d5542309498d0c339891675e68467cdd71ec93bfD�m�
587d17ef9061cf41b72bf1d3a0c8b1ef5bd5fd3f8fcb45fcc0b4af9023587f45D�l�
f204489e33ce1fbb9eeba9986ed191914338380781d4fef1e6cb0b7256570389
�
V��#�o��6ummMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���5u�)mMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��4uImMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��3u?mDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��2usmMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122�2��1�
�WlCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��0�
klCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��/{ilLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532
rU�b�/�r]��=uInMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��<u?nDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24x��;{ymLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��:�
�WmCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��9�
kmCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��8{imLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��7{�SmLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066
)m�O�\�)x��D{ynLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��C�
�WnCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��B�
knCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��A{inLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��@{�SnLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��?umnMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���>u�)nMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
D�(�V�b�D�&��L{�SoLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��KumoMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���Ju�)oMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��IuIoMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��Hu?oDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��GusoMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122X��Fu?oDaniel Mach <dmach@redhat.com> - 2.0.0-13.gitd1c6db8R�k�- Mass rebuild 2013-12-27x��E{ynLumír Balhar <lbalhar@redhat.com> - 2.0.0-25gitd1c6db8e��@- Security fix for CVE-2023-50447
Resolves: RHEL-22239
�
V��#�o��TumpMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���Su�)pMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.]��RuIpMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��Qu?pDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24r��PuspMichal Minar <miminar@redhat.com> 2.0.0-14gitd1c6db8R�&�- Fixed memory corruption.
- Resolves: rhbz#1001122�2��O�
�WoCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��N�
koCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��M{ioLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532
rU�b�/�r]��[uIqMichal Minar <miminar@redhat.com> 2.0.0-17gitd1c6db8S?�- Wiped out some memory leaks.X��Zu?qDaniel Mach <dmach@redhat.com> - 2.0.0-15.gitd1c6db8R�U�- Mass rebuild 2014-01-24x��Y{ypLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��X�
�WpCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��W�
kpCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��V{ipLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��U{�SpLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066
)m�O�\�)x��b{yqLumír Balhar <lbalhar@redhat.com> - 2.0.0-24gitd1c6db8eR�- Security fix for CVE-2023-44271
Resolves: RHEL-15459�2��a�
�WqCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-23gitd1c6db8bO�- Fixup for CVE-2022-22817
- Security fixes for CVE-2022-22815, CVE-2022-22816
Resolves: rhbz#2042522{��`�
kqCharalampos Stratakis <cstratak@redhat.com> - 2.0.0-22gitd1c6db8a�@- Fix for CVE-2022-22817
Resolves: rhbz#2042527p��_{iqLumír Balhar <lbalhar@redhat.com> - 2.0.0-21gitd1c6db8^_�@- Fix for CVE-2020-5313
Resolves: rhbz#1789532�&��^{�SqLumír Balhar <lbalhar@redhat.com> - 2.0.0-20gitd1c6db8^C�- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066o��]umqMichal Minar <miminar@redhat.com> 2.0.0-19gitd1c6db8T2�@- Reenabled webp support on little endian archs.���\u�)qMichal Minar <miminar@redhat.com> 2.0.0-18gitd1c6db8S��- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
*��e�3�*���i��rFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5-7Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildl��hqkrToshio Kuratomi <toshio@fedoraproject.org> - 2.5-6P��@- Add a dep on python-imaging to process images���g��rFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5-5P
��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���f��rFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5-4On@- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild���e��rFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5-3MR��- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild���dw�
rKonstantin Ryabitsev <icon@fedoraproject.org> - 2.5-2M%��- Update to version 2.5 of reportlab.
- Remove tabs in specfile.x��c{yqLumír Balhar <lbalhar@redhat.com> - 2.0.0-25gitd1c6db8e��@- Security fix for CVE-2023-50447
Resolves: RHEL-22239
1�d���c�1���q��sFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5-5P
��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���p��sFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5-4On@- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild���o��sFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5-3MR��- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild���nw�
sKonstantin Ryabitsev <icon@fedoraproject.org> - 2.5-2M%��- Update to version 2.5 of reportlab.
- Remove tabs in specfile.j��m]{rMarek Kasik <mkasik@redhat.com> - 2.5-11ev@- Do not evaluate unichar element
- Resolves: RHEL-7011p��l]�rMarek Kasik <mkasik@redhat.com> - 2.5-10^�@- Do not eval strings passed to toColor
- Resolves: #1788553J��kY?rDaniel Mach <dmach@redhat.com> - 2.5-9R�U�- Mass rebuild 2014-01-24J��jY?rDaniel Mach <dmach@redhat.com> - 2.5-8R�k�- Mass rebuild 2013-12-27
Z���[�y�Zw��yw{tMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-10Z؄�- Add missing patch "tcmu: add control constructor arg"���xu�KtMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-9ZЛ�- Support tcmu hw max sectors
- saveconfig: dump control string containing control=value tuplesj��w]{sMarek Kasik <mkasik@redhat.com> - 2.5-11ev@- Do not evaluate unichar element
- Resolves: RHEL-7011p��v]�sMarek Kasik <mkasik@redhat.com> - 2.5-10^�@- Do not eval strings passed to toColor
- Resolves: #1788553J��uY?sDaniel Mach <dmach@redhat.com> - 2.5-9R�U�- Mass rebuild 2014-01-24J��tY?sDaniel Mach <dmach@redhat.com> - 2.5-8R�k�- Mass rebuild 2013-12-27���s��sFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5-7Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildl��rqksToshio Kuratomi <toshio@fedoraproject.org> - 2.5-6P��@- Add a dep on python-imaging to process images
f��.�6�fd��q[tMaurizio Lombardi <mlombard@redhat.com> - 2.1.74-1_�P�- Rebase to the latest upstream versiond��q[tMaurizio Lombardi <mlombard@redhat.com> - 2.1.72-1^�%@- Update to the latest upstream version���u�tMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb69-3\ڭ�- save_to_file() function breaks symbolic link when saving configurationg��~u]tMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb69-2\eX@- report the correct size for partitionsk��}uetMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb69-1\P@@- Rebase rtslib to upstream version 2.1.fb69w��|w{tMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-13[j�@- respin a new release to avoid problems with TPS testsy��{wtMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-12[)�- saveconfig: way to block-level save with delete commandg��zw[tMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-11Z�@- Fix a failure in absence of save file
�\�v�~�g��u]uMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb69-2\eX@- report the correct size for partitionsk��ueuMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb69-1\P@@- Rebase rtslib to upstream version 2.1.fb69w��w{uMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-13[j�@- respin a new release to avoid problems with TPS testsy��wuMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-12[)�- saveconfig: way to block-level save with delete commandg��w[uMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-11Z�@- Fix a failure in absence of save filew��w{uMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-10Z؄�- Add missing patch "tcmu: add control constructor arg"���u�KuMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb63-9ZЛ�- Support tcmu hw max sectors
- saveconfig: dump control string containing control=value tuples
	Ls�H��>�L����
�vFedora Release Engineering <releng@fedoraproject.org> - 0.1.10-2X���- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_RebuildY���1vFabio Alessandro Locati <fale@fedoraproject.org> - 0.1.10-1Xc�@- Update to 0.1.10P��g=vMiro Hrončok <mhroncok@redhat.com> - 0.1.9-2XW�- Rebuild for Python 3.6W���/vFabio Alessandro Locati <fale@fedoraproject.org> - 0.1.9-1X�@- Update to 0.1.9W��
�/vFabio Alessandro Locati <fale@fedoraproject.org> - 0.1.7-1W���- Uodate to 0.1.7W���/vFabio Alessandro Locati <fale@fedoraproject.org> - 0.1.5-1W�- Update to 0.1.5d��q[uMaurizio Lombardi <mlombard@redhat.com> - 2.1.74-1_�P�- Rebase to the latest upstream versiond��
q[uMaurizio Lombardi <mlombard@redhat.com> - 2.1.72-1^�%@- Update to the latest upstream version���	u�uMaurizio Lombardi <mlombard@redhat.com> - 2.1.fb69-3\ڭ�- save_to_file() function breaks symbolic link when saving configuration
Qk��Q�	��u�vOyvind Albrigtsen <oalbrigt@redhat.com> - 0.1.13-1.2b�@- Upgrade python-botocore to fix IMDSv2 support

  Resolves: rhbz#2050751�n��q�mvOyvind Albrigtsen <oalbrigt@redhat.com> - 0.1.13-1[�@- Fix "python2-s3transfer" from EPEL issue by adding it to Obsoletes
- Rebase to v0.1.13 to fix missing "max_bandwidth" issue

  Resolves: rhbz#1576985
  Resolves: rhbz#1578083���q�9vOyvind Albrigtsen <oalbrigt@redhat.com> - 0.1.10-8Z���- Bundle python-futures, python-botocore and python-jmespath

  Resolves: rhbz#1509441����
�vFedora Release Engineering <releng@fedoraproject.org> - 0.1.10-3Yy�- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
��t��o�{wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��o�;wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��o�wwAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��o�EwAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mwAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
�� o�'xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���q�OwAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��#o�wxAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��"o�xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��!o�{xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��$o�ExAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��%o�xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��&o�mxAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���)q�9xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���(q�OxAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���'o�xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]

e�r+��V��:��eD��
cfdd7dc1c23cdb3468016785f9f50105c16d23f98222683011322bc94d444700D��
463481903ff9ac36f08f2d63e5bce0da7c84afc7274e5f35ea4d39f73cc6873eD��
6d31c249f4ea5cbb99f5d7d01050aeaa157ab3eb14d78071165578cf70934576D��
88ab2f3a84ae0b670762548a3b07213bc1a96a8249ebb3ac49b9d659b4187823D��
32da1842a79bb4ed02be3e6979ea97d79701733a3dadad668bf35bf4bc617e34D��
ce32f7bf96aa04670b34d8d775667ca1ef2afcc5c614f240767eb7ef1968722aD��
17a03afe739f681263e0d7a0e0adc83bc4c4a647094714cc9176e4e82ca51df0D�~�
edf5824c7caaf50e97ae8b83f252bc9a7263368eef75626da3749913eb217edaD�}�
0d7905c384f2eb08286c9eaf8161f50db1d1312363a1fe8b484962d4ed6e149bD�|�
d16c70a8d4f77c28cd4ccea87c2c453deab255c95d8267f88c3be5f925f8defbD�{�
14d9d53643fea7cc10917023b99621119465b51a9152b40c8803e3794b562f00D�z�
a94dd20cc4d6f36d4c0e6369c1184936c60dfd226e51525275cc137526e1f229D�y�
e5bbff1b2c6d054cc79f530eb0647fb1a04ec02c79c456548c0d9082b4d41037
���2��,o�wyAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��+o�yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��*o�{yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��-o�EyAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��.o�yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��/o�myAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���2q�9yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���1q�OyAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���0o�yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��5o�wzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��4o�zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��3q�ayAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��6o�EzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��7o�zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]bR:�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������:T��j:U��r:V��z:W��:X��:Y��:Z��:[��:\��&:]��.:_��6:`��=:a��D:b��L:c��T:d��[:e��b:f��i:g��q:h��y:i��:j��:k��:l��:m��:n��:o��:p��:q��:r�� :s��#:t��$:u��%:v��&:w��):y��,:z��-:{��.:|��/:}��2:~��5:��6:���7:���8:���;:���>:���?:���@:���A:���D:���G:���H:���I:���J:���M:���P:���R:���S:���V:���Y:���\:���_:���a:���d:���g:���j:���m:���n:���o:���q:���s:���v:���w:���x:���z:���|:���:���:���:���:���:���:���:���	:���
:���:���:���:���:���:���:���:���:���:���:���:��� :���#
NN�-��8o�mzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���;q�9zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���:q�OzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���9o�zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��>o�w{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��=q�	zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��<q�azAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��?o�E{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��@o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Ao�m{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Dq�9{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Cq�O{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Bo�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Gq�Q{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Fq�	{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Eq�a{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Ho�E|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Io�|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Jo�m|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Mq�9|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Lq�O|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ko�|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Pq�Q|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Oq�	|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Nq�a|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��Ro�}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��Qq�|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��So�m}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Vq�9}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Uq�O}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���To�}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Yq�Q}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Xq�	}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Wq�a}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��\a�}~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��[}�
}Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��Zq�}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��_a�	~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��^a�s~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��]a�~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��ag�;~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��`c�]~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��dg�~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��cg�{~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���bg�'~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��gi�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��fi�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��eg�w~Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��jo�;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��ik�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��hi�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��mo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��lo�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��ko�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��no�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��oo�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��qi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��pi�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��so�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��rk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��vo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��uo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��to�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��wo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��xo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��zi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��|o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��{k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��~o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��}o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��	o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��
o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���
q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?��� q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��#o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��"o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��!q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��$o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��%o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��&o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���)q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���(q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���'o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��,o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��+q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��*q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update

e�r+��V��:��eD��
1177f8d43f71a392da046005c8e1d337cda1f625f0dd12ae28400acc668f6b53D��
d65c68263d6673f69842bd0f97718ea1b27b0cfdef0dd093bccb847c4a9bdc14D��
a43b680de14ef93acee1419d61cdc454bcfc9439bdacd573060f26937b5e2164D��
e29dd1c6d36379f2cd4d51b34af58306f6334f7eef664b48361f0e5833bb90a7D��
989f890ca6fa4ad9fb01ed7adf6b4b450bbb4b99745d1462d7fbb610298b96bbD�
�
1006f493d08b88033474d82a195562d019c3fcf80328843dd0d8bb351e49ab25D��
c83b382761599c654c4924c45b614f3f44705f0072d35ce4e89a498f643de93cD��
45190bf945897c615199c3c6632ae316c3c9299a53118705ae10de934f61741fD�
�
84eacac2027d38ab8ac05edb1c4325c192f14bb386175f2256239f2d4d9d32b8D�	�
fbdc480b9ba57d0d9e0972e4e60bb2e1de36296f91b120ddcc7d7abcbd955f94D��
dd6b1ad5b433b7d1f74b7dd91b9b5cb0f241de67b3ac6e130a4577c5fcbfb7dbD��
8f6430d25a368ef161d771713f41a8108fe1562d0f2f53e1a94254edcc76e656D��
e8468f3515b06d1ca7bf5b19ef2db35762b8397bb1d841f2a9e8409ad97af8fa
""�Y��-o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��.o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��/o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���2q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���1q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���0o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��5q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��4q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��3q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��6o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��7o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��8o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���;q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���:q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���9o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��>q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��=q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��<q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��@o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��?q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��Ao�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Dq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Cq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Bo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Gq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Fq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Eq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��Ja�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��I}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��Hq��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��Ma�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��La�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��Ka��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��Og�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��Nc�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��Rg��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��Qg�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���Pg�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��Ui�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��Ti��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��Sg�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��Xo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Wk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Vi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��[o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Zo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Yo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��\o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��]o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��_i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��^i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��ao�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��`k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��do��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��co�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��bo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��eo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��fo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��hi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��go��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��jo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��ik�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��mo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��lo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��ko�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��no�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��oo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��qo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��to�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��so�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��ro�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��vo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��wo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��xo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]bR;RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������:���%:���&:���):���,:���-:���.:���/:�2:Â�5:Ă�6:ł�7:Ƃ�8:ǂ�;:Ȃ�>:ɂ�@:ʂ�A:˂�D:̂�G:͂�J:΂�M:ς�O:Ђ�R:т�U:҂�X:ӂ�[:Ԃ�\:Ղ�]:ւ�_:ׂ�a:؂�d:ق�e:ڂ�f:ۂ�h:܂�j:݂�m:ނ�n:߂�o:��p:��q:��t:��v:��w:��x:��y:��|:��:��:��:��:��:��:��	:��
:��:��:��:��:���:���:���:���:���:���:���:��� :���#:���$:���%;��&;��);��,;��.;��/;��2;��5;��8;	��;;
��=;��@;��C;
��F;��I;��J;��K;��M;��O;��R;��S;��T;��V;��X;��[;��\;��];��^;��`;��c;��g
NN�-��yo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��|o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���{q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���zo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��~o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��}o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��	o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��
o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���
q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?��� q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��#q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��"q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��!q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��$o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��%o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��&o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���)q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���(q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���'o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��,q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��+q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��*q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��.o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��-q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD��
493b003d3ae9b9c7add7127460997cc5a69ceef2b8884c9efa668bd7c7cda3a8D��
a01c3e5e0175a052f36e32e6cf907b5d7095df8c8df47790e64f8dd8c741aff0D��
5a07e58d6cda56dbd47d3a94fc14aba56df74cd39ba554ead4b6dee97ef05e5bD��
946bfad55d48fe614e3519a074265c4e7c6b21d160e933e697f3ed783a7214c0D��
9acf4764f875271e9b8edf93cb0f5241361a82fe81d1381df235edd88ffa4981D��
e7c1b560ac8edc237347234d58d014ac60737500c37066f24b7f254871ccb2cdD��
f465238db8cffd5b22112d022c74977b69d65ca1b414ece5ec29ff7b1f1c209aD��
de7cfbe962bd72bff05eb5b687355c2d1b4e53a0affdf86ce99149c64c2d5d6bD��
82fcde3856cc70e10a4bd10d93452cca394045a7afa452b0880881752f2c6b56D��
e8c8f15154fb4dc69d8a6ed87e54bf5e6b084aa0153827e82cd2471889908402D��
667a197939b4f8fb8e33219958fabfaa7eccce599d0e0a365514b76cb20d2a60D��
c2b42f750a619815728e53e19957decfbf5dc33eb529eebf3fb6b9ecf562e320D��
f5d06a0438f7a24578bc611af20cbc9e52844b6cfbb52579826da412b7050eaf
NN�-��/o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���2q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���1q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���0o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��5q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��4q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��3q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��8a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��7}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��6q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��;a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��:a�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��9a��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��=g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��<c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��@g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��?g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���>g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��Ci�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��Bi��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��Ag�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��Fo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Ek�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Di�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Io��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Ho�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Go�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Jo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Ko�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Mi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Li�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Oo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Nk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Ro��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Qo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Po�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��So�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��To�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��Vi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��Uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��Xo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Wk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��[o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Zo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Yo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��\o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��]o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��^o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
N�J��`g�/�William Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�-��_o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
V��V�@��co��Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�n��bg�w�William Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��ag�u�William Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)
������C��go��Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��fo��Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��eg�K�William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��do��Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
,h��	,�X��lg�K�William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��ko��Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��jo��Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���ig�K�William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���hg�A�William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�B�b����pg�K�William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���og�A�William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��no��Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��mo��Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�A��9��uo��Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��tg�K�William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)}��so�
�Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���ro�!�Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��qo�3�Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
"� ��"���zo�!�Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��yo�3�Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���xg�K�William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���wg�A�William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��vo��Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
Y�Y�9��~o��Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���}o�C�Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��|o��Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��{o�
�Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���o�!�Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3�Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K�William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A�William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o��Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��o��Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���o�C�Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o��Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
�Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���o�!�Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3�Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���
g�K�William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���	g�A�William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o��Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��o��Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���o�C�Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o��Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��
o�
�Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����g�K�William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A�William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��e�k�Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidek;(
�+�S����o�C�Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o��Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
�Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!�Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3�Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��o��Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���g�A�William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��am�Jiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��e�k�Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidek;,
c������"o�C�Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��!o��Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}�� o�
�Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!�Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3�Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K�William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��#o��Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��$e�k�Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidek;0
�������(o�!�Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��'o�3�Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���&g�K�William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��%e�}�Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��,o��Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���+o�C�Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��*o��Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��)o�
�Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��-e�k�Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidek;4
L�C�Lw��1yy�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-82\�-@- Updated fix for CVE-2019-9636
Resolves: rhbz#1689317x��0y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-81\�@- Security fix for CVE-2019-9636
Resolves: rhbz#1689317�C��/Q�7�Pino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��.e�}�Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)

e�r+��V��:��eD�,�
31a17cc7c43aa0aefd3039a43028118f0ea8b11195c232e1310e14547c07b77dD�+�
13620c99b0846a322488107d5cc07d2d64ddc79b24d8cd7eb307378a759389deD�*�
93a29cb8a20d95092bbb437ad52a8901fb2b1e4d84591469dd4975622609cbeeD�)�
594dfccfe823bf2e7b0b092a49e9599e40606708a101de2e67c467258d6fd21eD�(�
29cf78c6548f65bd34d75b05924b962409425d231430172907211eab40e38cceD�'�
a9d0459586a325bd96baabc21fddbd37a71d0834a5f892c8ae85e543558e77f3D�&�
376c090acbd7598c0ec397a027eaa7db2374a09ecf6b7d78663cb04b5f928d57D�%�
c7da8cb6d16db2f0182ecd0e22414d98692b3d8ff0b8cdf1e790afd09f8825b3D�$�
0b1af8e104a87dcac9e19a39e5868fef98096447b8a8eafc1e3fe57711fabf57D�#�
9880e1f05df5dfa26e6a6348cf66b755758a4196fc03d93df208e7b2351e07d9D�"�
b6db83391c36a0ea8bba99215ea32a1b0cbff013b8b497b6fbef6ecfd3e1d880D�!�
2c11742cf173f5b0b9c866fa8aad7037f8fdb604c6cbbc7c9e373118871941dfD� �
32249537b076dbba37c943b1b65d1fff2e87bb54365e3b33c003135dd728a178
g��N�a�gy��8y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��7y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��6yc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��5y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��4y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��3y�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��2yw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600
7S��$�7y��?y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��>yc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��=y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��<y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��;y�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��:yw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600�(��9y�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
i���%i�7��Dy�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530x��Cy{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��By�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��Ay�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��@y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998
������(��Jy�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��Iy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��Hy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��Gyc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��Fy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��Ey{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174
{�O�h�{l��Pyc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��Oy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��Ny{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174g��Mgk�Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��Ly{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��Ky�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494
=�Y$�=g��Vgk�Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��Uy{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��Ty�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��Sy�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��Ry}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��Qy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773
`�
�Y�`y��]y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��\y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��[y�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��Zyw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600w��Yyy�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-82\�-@- Updated fix for CVE-2019-9636
Resolves: rhbz#1689317x��Xy{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-81\�@- Security fix for CVE-2019-9636
Resolves: rhbz#1689317v��Wyw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-94e@- Security fix for CVE-2023-40217
Resolves: RHEL-9615
7���o�7x��dy{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��cy�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��byw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600�(��ay�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��`y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��_y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��^yc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551
7��l7�0��jy�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��iy�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��hy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��gy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��fyc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��ey}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388
e��L�_�ey��qy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��py}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��oyc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��ny}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��my{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��ly�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530x��ky{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168
>S�7�>y��wy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��vy{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174g��ugk�Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��ty{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��sy�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��ry�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
8����8x��}y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��|y�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��{y�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��zy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��yy}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��xyc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551
	V��gr!�Vv��yw�Charalampos Stratakis <cstratak@redhat.com> - 12.1.0-5W��@- Fix HTTPoxy CVE-2016-1000111
Resolves: rhbz#1358792M��_?�Daniel Mach <dmach@redhat.com> - 12.1.0-4R�U�- Mass rebuild 2014-01-24M��_?�Daniel Mach <dmach@redhat.com> - 12.1.0-3R�k�- Mass rebuild 2013-12-27������Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 12.1.0-2P
��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildU��{3�Julian Sikorski <belegdol@fedoraproject.org> - 12.1.0-1O��- Updated to 12.1.0U��{3�Julian Sikorski <belegdol@fedoraproject.org> - 12.0.0-1O7��- Updated to 12.0.0W��{7�Julian Sikorski <belegdol@fedoraproject.org> - 11.1.0-2O3�- Rebuilt for gcc-4.7v��yw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-94e@- Security fix for CVE-2023-40217
Resolves: RHEL-9615g��~gk�Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917
�v����M��_?�Daniel Mach <dmach@redhat.com> - 1.10.1-2R�k�- Mass rebuild 2013-12-27���c�-�Robert Kuska <rkuska@redhat.com> - 1.10.1-1RZ@- Update to v1.10.1 to deal with different securiy issue
Resolves: CVE-2013-1633e��
am�Robert Kuska <rkuska@redhat.com> - 1.9.1-2Q�@- Delete bundled libraries of pip and setuptools���	y�?�Charalampos Stratakis <cstratak@redhat.com> - 12.1.0-8b�1@- Security fix for CVE-2022-24801: Possible http request smuggling
Resolves: rhbz#2073114�Y��g�M�Lumír Balhar <lbalhar@redhat.com> - 12.1.0-7^�k@- Fix CVE-2020-10108 and CVE-2020-10109 multiple HTTP request smuggling vulnderabilities
Resolves: rhbz#1813439 rhbz#1813447
- Remove useless macros definitions���y��Charalampos Stratakis <cstratak@redhat.com> - 12.1.0-6]D%�- Fix CVE-2019-12387 (HTTP Header Injection)
Resolves: rhbz#1721518
o��ao�m��g�u�Lumír Balhar <lbalhar@redhat.com> - 15.1.0-3^�@- Add three new patches for CVEs in bundled urllib3 and requests
CVE-2018-20060, CVE-2019-11236, CVE-2018-18074
Resolves: rhbz#1649153
Resolves: rhbz#1700824
Resolves: rhbz#1643829���y��Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-2Y��- Add back the versioned virtualenv script
Resolves: rhbz#1461154�0��y�i�Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-1Y��- Rebase to version 15.1.0
- Disable automatic downloads from pypi on new venv creation
Resolves: rhbz#1461154v��yw�Charalampos Stratakis <cstratak@redhat.com> - 1.10.1-4X�@- Fix Python 3.4 compatibility
Resolves: rhbz#1411685�c��
e�c�Tomas Orsava <torsava@redhat.com> - 1.10.1-3W0{�- Added a patch that shows a custom error message when a FILE passed to
  virtualenv to be used as 'home dir' already exists and is NOT a directory.
Resolves: rhbz#1306513
�w�c*�v��yw�Charalampos Stratakis <cstratak@redhat.com> - 1.10.1-4X�@- Fix Python 3.4 compatibility
Resolves: rhbz#1411685�c��e�c�Tomas Orsava <torsava@redhat.com> - 1.10.1-3W0{�- Added a patch that shows a custom error message when a FILE passed to
  virtualenv to be used as 'home dir' already exists and is NOT a directory.
Resolves: rhbz#1306513M��_?�Daniel Mach <dmach@redhat.com> - 1.10.1-2R�k�- Mass rebuild 2013-12-27���c�-�Robert Kuska <rkuska@redhat.com> - 1.10.1-1RZ@- Update to v1.10.1 to deal with different securiy issue
Resolves: CVE-2013-1633���y��Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-5a��@- Use the system certs for the bundled pip
Resolves: rhbz#2015326���g�#�Lumír Balhar <lbalhar@redhat.com> - 15.1.0-4^E:@- Bump
Resolves: rhbz#1649153
Resolves: rhbz#1700824
Resolves: rhbz#1643829
#K��H�#���y�9�Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-6b!�- Require again python-setuptools instead of python2-setuptools
Resolves: rhbz#2054827���y��Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-5a��@- Use the system certs for the bundled pip
Resolves: rhbz#2015326���g�#�Lumír Balhar <lbalhar@redhat.com> - 15.1.0-4^E:@- Bump
Resolves: rhbz#1649153
Resolves: rhbz#1700824
Resolves: rhbz#1643829�m��g�u�Lumír Balhar <lbalhar@redhat.com> - 15.1.0-3^�@- Add three new patches for CVEs in bundled urllib3 and requests
CVE-2018-20060, CVE-2019-11236, CVE-2018-18074
Resolves: rhbz#1649153
Resolves: rhbz#1700824
Resolves: rhbz#1643829���y��Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-2Y��- Add back the versioned virtualenv script
Resolves: rhbz#1461154�0��y�i�Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-1Y��- Rebase to version 15.1.0
- Disable automatic downloads from pypi on new venv creation
Resolves: rhbz#1461154
��M��m��#g�u�Lumír Balhar <lbalhar@redhat.com> - 15.1.0-3^�@- Add three new patches for CVEs in bundled urllib3 and requests
CVE-2018-20060, CVE-2019-11236, CVE-2018-18074
Resolves: rhbz#1649153
Resolves: rhbz#1700824
Resolves: rhbz#1643829���"y��Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-2Y��- Add back the versioned virtualenv script
Resolves: rhbz#1461154�0��!y�i�Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-1Y��- Rebase to version 15.1.0
- Disable automatic downloads from pypi on new venv creation
Resolves: rhbz#1461154v�� yw�Charalampos Stratakis <cstratak@redhat.com> - 1.10.1-4X�@- Fix Python 3.4 compatibility
Resolves: rhbz#1411685�c��e�c�Tomas Orsava <torsava@redhat.com> - 1.10.1-3W0{�- Added a patch that shows a custom error message when a FILE passed to
  virtualenv to be used as 'home dir' already exists and is NOT a directory.
Resolves: rhbz#1306513M��_?�Daniel Mach <dmach@redhat.com> - 1.10.1-2R�k�- Mass rebuild 2013-12-27
Zw�R�h�ZV��+u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-45_X�- fixes bugs bz#1785714V��*u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-44_P�- fixes bugs bz#1460657V��)u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-43_P�- fixes bugs bz#1460657V��(u;�Deepshikha Khandelwal <dkhandel@redhat.com> - 6.0-42_O�@- fixes bugs bz#1785714���'g�1�Lumír Balhar <lbalhar@redhat.com> - 15.1.0-7b��@- Security fix for CVE-2019-20916 for the bundled pip wheel
Resolves: rhbz#1868135���&y�9�Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-6b!�- Require again python-setuptools instead of python2-setuptools
Resolves: rhbz#2054827���%y��Charalampos Stratakis <cstratak@redhat.com> - 15.1.0-5a��@- Use the system certs for the bundled pip
Resolves: rhbz#2015326���$g�#�Lumír Balhar <lbalhar@redhat.com> - 15.1.0-4^E:@- Bump
Resolves: rhbz#1649153
Resolves: rhbz#1700824
Resolves: rhbz#1643829
	Q��O��Qb��4�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.1`�e@- fixes bugs bz#1927235`��3�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56`v�@- fixes bugs bz#1948547`��2�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-55`T�@- fixes bugs bz#1939372f��1yW�CentOS Sources <bugs@centos.org> - 6.0-49.1.el7.centos`P��- remove vendor and/or packager linesb��0�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49.1`/�@- fixes bugs bz#1930561`��/�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-49_�G@- fixes bugs bz#1286171`��.�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-48_���- fixes bugs bz#1895301v��-�g�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-47_��@- fixes bugs bz#1286171 bz#1821743 bz#1837926k��,�Q�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-46_�"�- fixes bugs bz#1873469 bz#1881823

e�r+��V��:��eD�9�
d7e9e8eaabb6fc8e9c18b08b483a4a81d3edc3a4d0156c915353f0e5778870bcD�8�
6032cf77d642b54e8e24ecb96c2f6ffad12f9b165c3bfdeefdcdb469f79f5f25D�7�
0cd7aee9f2db00d6755f43fa30faafe7382aa8e438f5c11a40c90c0e5e8352d2D�6�
d2be459c9fddcb43bea87bad5b80c2656b90fede44f30c5bef1510d68feaef5bD�5�
557caeee2f6ed8008504fde4f489a621524ac25488986c4d163e7ea8b153e0c3D�4�
cef38591d6d987235d823aca0105ccdf5c702a3c16a3ad8301d64d8cc9b6ef5dD�3�
ab9cdb97c8451a96a6548a863ba8dbcf60034e7bf1ea6853b42a0451863a5ffdD�2�
51fbcbb6ee3318561a41b9335488c8645ebf76f62edb08fa951189b31ce14afdD�1�
458a2e4662739309c98eb0b79c83a8348f583ceb85c8d0889d5b32448cdf18bfD�0�
afbd81a2f863df61c3490f215bc72bad2c81fb0e7772ce5f4bc736703c22f6ddD�/�
6725bd1e0d020512b60182f153b95d2f6eebfc10cd5929625a7498254bd56f56D�.�
341b7f6c5352eee2a98665ce78feaf6c4a52626e0322ce9b65c82f9e08190f7eD�-�
8aac2519f49dcdc64ce5554ba02dde6b31912d07ee75f879d789a0439eeb22ec
6�9�q�6`��:�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-61a���- fixes bugs bz#1973566�R��9���Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-60ad'@- fixes bugs bz#1668303 bz#1853631 bz#1901468 bz#1904137 bz#1911665 
  bz#1962972 bz#1973566 bz#1994593 bz#1995029 bz#1997447 bz#2006205`��8�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-59`�E�- fixes bugs bz#1689375`��7�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-58`��- fixes bugs bz#1945143�\��6��1�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-57`�[�- fixes bugs bz#1600379 bz#1689375 bz#1782428 bz#1798897 bz#1815462 
  bz#1889966 bz#1891403 bz#1901468 bz#1903911 bz#1908635 bz#1917488 bz#1918018 
  bz#1919132 bz#1925425 bz#1927411 bz#1927640 bz#1928676 bz#1942816 bz#1943467 
  bz#1945143 bz#1946171 bz#1957191 bz#1957641b��5�;�Gluster Jenkins <dkhandel+glusterjenkins@redhat.com> - 6.0-56.2`��@- fixes bugs bz#1953901
����<}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1d��;uW�CentOS Sources <bugs@centos.org> - 6.0-61.el7.centosbL/@- remove vendor and/or packager lines
V��V� ��?��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;P�}��>}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��=}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��A�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��@��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.bR;�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������; ��p;!��u;"��z;#��~;$��;%��;&��;'��;)��;*��;+��;-��;.��";/��#;1��$;2��(;3��,;5��-;6��1;8��8;9��?;:��D;;��J;<��P;=��V;>��];?��d;@��j;A��q;B��w;C��};D��;E��;F��;G��;H��;I��#;J��+;K��4;M��:;N��<;O��?;Q��A;S��C;T��F;U��H;W��J;X��L;Y��P;[��S;\��U;]��W;^��Z;`��\;a��^;b��`;c��b;d��e;e��g;f��i;g��k;h��o;i��q;j��s;k��x;l��z;m��|;n��;o��;s��;t��;u��;v��
;x��
;|��;}��;~��;��;���;���;���;���;���;���;��� ;���!;���";���%;���';���*;���+;���.;���0;���3;���4;���7;���9;���;
�k��\��C��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���B���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��"��v��F}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\��E}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Branding�y��D��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
���� ��H��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;V�}��G}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offsetther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��J�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��I��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��L��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���K���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
"��$"�}��P}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\��O}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y��N��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��M��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller rolether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
a��a|��S�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��R��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ��Q��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;Z
�k��\��U��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���T���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��W��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��V��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
r��r� ��Z��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;_\��Y}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|��X��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync pluginther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��\�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��[��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��^��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���]���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��`��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��_��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��b��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��a��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�(�|��e�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��d��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�a��c��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
�k��\��g��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���f���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��i��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��h��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��k��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��j��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
���\��o��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���n���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server���m���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��l��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��q��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��p��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��s��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��r��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�����\��x��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ\��w}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|��v�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���u���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��t��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��z��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��y��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��|��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��{��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��S�\��}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8��w�{�Julien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|���s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���~���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��}��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
U��U�����Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa;p�P���#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a���E�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag;q-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss;rd when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��
��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;w�}��	}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
\��\���
��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa;y�P���#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[��{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding;z-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss;{d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;��}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
?�?�����Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa;�[��{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.;�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss;�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;��}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
/�/[��{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�o�� }�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��!}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���"}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��%��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;��}��$}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��#}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��'�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��&��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��!��*}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[��){?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding���(���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
||���+}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��.��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;��}��-}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��,}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��0�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��/��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
+k�+[��3{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\��2��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���1���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server

e�r+��V��:��eD�F�
e568d73cd1ea3df0a67fb17bceeae36b33a91af90d651ab33c4ae492f208ff32D�E�
d48a4b2fd37317e4545a3515a2c3d39cc3c64505924570c14b14d2c06007e7a6D�D�
e5f5632841ed822338ddb9d3ea6e1bf7785e6b1ba1d354993db1a5a47209507eD�C�
9b04004d36145ad375dfe9de28a7d55007514df412aad6adb55517e39c5d5a94D�B�
4efa7633b62075aef43851141d38c2ac3929b35c36aac708e648998975d72298D�A�
295c3de68a936013058598624efdd7c0f37f4f950b68746738fee46aab824fcfD�@�
9a67185543ce85b81ea0ba5ae659db50e1022125ba9f4e1bebe34933d399141bD�?�
7e3441543e04cea1f513eee2573e964910463f84549bdf1a6c50721b6528186aD�>�
7cf7e3e4798fd8a46b48e37fc7adc314491a938ee17b815dd3f5c0887cfb2f42D�=�
a5200800917686a6972452c153a94ec608f7f8111e13fd0ed1403eed10246930D�<�
c99acfec136e15a54620f53419e266691c0a771c09aa286798ab5aa047dfc846D�;�
d55b375f8c5f1486c544d95e93bbe9054f39c43705b029fc26b80f33c96e703bD�:�
55921bf220651db8e53c670393336486760efc2eb102ac7de7bc83f6731698f6
||���4}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��7��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;��}��6}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��5}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��9�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��8��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��;��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���:���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��"��v��>}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\��=}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Branding�y��<��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
���� ��@��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;��}��?}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offsetther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��B�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��A��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��D��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���C���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
"��$"�}��H}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\��G}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y��F��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��E��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller rolether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
a��a|��K�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��J��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ��I��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;�
�k��\��M��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���L���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��O��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��N��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
r��r� ��R��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;�\��Q}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|��P��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync pluginther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��T�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��S��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��V��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���U���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��X��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��W��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��Z��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��Y��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�(�|��]�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��\��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�a��[��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
�k��\��_��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���^���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��a��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��`��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��c��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��b��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
���\��g��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���f���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server���e���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��d��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��i��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��h��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��k��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��j��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�����\��p��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ\��o}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|��n�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���m���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��l��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��r��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��q��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��t��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��s��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��S�\��y}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8��xw�{�Julien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|��w�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���v���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��u��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
U��U���|��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa;��P��{�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a��z�E�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag;�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss;�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��}}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��~}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;��}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
\��\�����Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa;P���#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[��{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding;�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss;�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;Ɂ}��
}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��	}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
?�?�����Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa;�[��
{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.;�-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss;�d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;ҁ}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
/�/[��{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�o��}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;ف}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuebR<$RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������;���@;���B;���D;���H;���K;���M;���O;���R;���T;���V;���X;���Z;���];���_;���a;���c;���g;���i;���k;���p;���r;���t;���y;���|;���};���~;���;���;���;ł�;Ƃ�;ǂ�;Ȃ�;ʂ�;΂�;ς�;Ђ�;т�;ӂ�;Ԃ�;Ղ�;ւ�;ׂ�;ڂ�;ۂ�";܂�#;݂�&;߂�(;��+;��,;��/;��1;��3;��6;��8;��:;��<;��@;��C;��E;��G;��J;��L;��N;���P;���R;���U;���W;���Y;���[;���_;���a;���c;���h;���j<��l<��q<��t<��u<��v<��w<	��z<��}<��~<��<��<��<��<��<��<��	<��<��<��<��< ��<!��<#��ther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��!��"}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[��!{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding��� ���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
||���#}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��&��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;ށ}��%}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��$}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��(�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��'��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
+k�+[��+{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\��*��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���)���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
||���,}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��/��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;�}��.}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��-}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��1�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��0��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��3��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���2���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
��"��v��6}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issue\��5}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.10a�*@- Roll in CentOS Branding�y��4��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role

e�r+��V��:��eD�S�
1bdade2f19c49a1f75262e570473159eba076e5147708897ef26211f4c3e6253D�R�
69b52b527f2581aac941a0d4fa71d1bce28da1b79f2f313b12818e1090892dfbD�Q�
461a3ca0afeaa8e8ae87e2d1547a6874187f8e530bf5dbfc39b6c0c22d899d43D�P�
1d31499d687de8d016bd60a5b2fbacf8065dd426d5a48f4060f427cccd242680D�O�
89a42b57b8107e340a51b81c28d25743fa831b6a86f64bbbe3b811eba4226e53D�N�
0cdb951d2a540947e97b85a4754dcc8bbf1cb878e5dbd0f1bdad2a6a4626f694D�M�
99b96b570fc91fa44db61365343ee81cb62330dcb8c0e0c74bc140c218e7c02aD�L�
e3969bb97655724f00a321057ffa1c3761259a7544eb9024a813c22c09309f89D�K�
76c5012bb1a4018438b2d42ef73cd3f71d74224ce2b5eaba5a63f6a8e7daa068D�J�
2e5a211202f039bf2713d7e2e1bc0fe2c8e9ca6d3e7ad3b3283b64df474b99e1D�I�
b0579fbf5f02ea45b706f77b73c1a248973966d8d1c97d2b3a5b63af1076dc30D�H�
dea5908065b3f9a0fbb1fdc5cae84e7dd1e61e274eb25e8a1c1bf2881f5cecf1D�G�
f23cd99f65fe05afff0761b481a6ae707428f006a7f8e5dc7c8c2f1c8a92a6e7
���� ��8��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;�}��7}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offsetther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��:�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��9��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��<��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���;���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
"��$"�}��@}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset\��?}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.11b��@- Roll in CentOS Branding�y��>��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��=��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller rolether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
a��a|��C�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��B��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.� ��A��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;�
�k��\��E��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���D���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��G��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��F��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
r��r� ��J��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o;�\��I}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.12cb[�- Roll in CentOS Branding�|��H��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync pluginther means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|��L�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��K��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��\��N��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���M���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��P��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��O��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��R��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��Q��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�(�|��U�u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��T��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.�a��S��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
�k��\��W��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���V���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
����y��Y��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��X��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��[��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��Z��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
���\��_��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���^���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server���]���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��\��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��a��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��`��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��c��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��b��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
�����\��h��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ\��g}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.16e���- Roll in CentOS Branding|��f�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���e���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��d��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
����y��j��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.11bzS�- Resolves: 2082272 - [RFE] Require confirmation to change "Default host group" in IdM automember rules
  - WebUI: Add confirmation dialog for changing default user/host group�y��i��k�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.10a��@- Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server 
  - Fix cert_request for KDC cert
- Resolves: 2021444 - CVE-2020-25719 ipa: samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets
  - SMB: switch IPA domain controller role
����V��l��%�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.13dJ�- Resolves: 2148249 - ipa-client-install does not maintain server affinity during installation
  - Defer creating the final krb5.conf on clients
  - Move client certificate request after krb5.conf is created
  - server install: remove error log about missing bkup file�|��k��q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.12c=q�- Resolves: 2084223 - 'ipa idview-show idviewname' & IPA WebUI takes longer time to return the results
  - idviews: use cached ipaOriginalUid value when resolving ID override
- Resolves: 2124369 - OTP token sync always returns OK even with random numbers
  - ipa otptoken-sync: return error when sync fails
  - ipatests: add negative test for otptoken-sync
  - ipatests: python2 does not support f-strings
  - Fix otptoken_sync plugin
��S�\��q}?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.17ff�- Roll in CentOS Branding�8��pw�{�Julien Rische <jrische@redhat.com> - 4.6.8-5.el7_9.17f_�- Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force|��o�s�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.16e\��- Resolves: RHEL-12570 ipa: Invalid CSRF protection���n���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.15d˖�- Resolves: 2209636 libipa_otp_lasttoken plugin memory leak�a��m��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.14d?@- Resolves: 2180919 [rhel-7] Sequence processing failures for group_add using server context
  - ipaserver: deepcopy objectclasses list from IPA config
U��U���t��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa<�P��s�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents�a��r�E�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-10.el7]��- Resolves: #1728123 - EMBARGOED CVE-2019-10195 ipa: FreeIPA: batch API logging user passwords to /var/log/httpd/error_log [rhel-7]
  - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773550 - IPA upgrade fails for latest ipa package when adtrust is installed
  - Do not run trust upgrade code if master lacks Samba bindings
- Resolves: #1767302 - EMBARGOED CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf() [rhel-7.8]
  - Make sure to have storage space for tag<-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss<d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��u}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��v}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���w}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ��z��;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o<
�}��y}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��x}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
\��\���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa<�P��|�#�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-11.el7]�- Resolves: #1778777 - After upgrade AD Trust Agents were removed from LDAP
  - trust upgrade: ensure that host is member of adtrust agents[��{{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.4`P��- Roll in CentOS Branding<
-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss<d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��~}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o<�}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
?�?�����Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.6-12.el7^y�@- Resolves: #1754902 - Running ipa<[��{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.5`���- Roll in CentOS Branding�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.<-server-install fails when RHEL 7.7 packages are installed on RHEL 7.6
- Resolves: #1404770 - ID Views: do not allow custom Views for the masters
  - idviews: prevent applying to a master
- Resolves: #1801791 - Compatibility Schema difference in functionality for systems following RHEL 7.5 -> 7.6 upgrade path as opposed to new RHEL 7.6 systems
  - install/updates: move external members past schema compat update
- Resolves: #1795890 - ipa-pkinit-manage enable fails on replica if it doesn't host the CA
  - pkinit setup: fix regression on master install
  - pkinit enable: use local dogtag only if host has CA
- Resolves: #1788907 - Renewed certs are not picked up by IPA CAs
  - Allow an empty cookie in dogtag-ipa-ca-renew-agent-submit
- Resolves: #1780548 - Man page ipa-cacert-manage does not display correctly on RHEL
  - ipa-cacert-manage man page: fix indentation
- Resolves: #1782587 - add "systemctl restart sssd" to warning message when adding trust agents to replicas
  - adtrust.py: mention restarting sss<d when adding trust agents
- Resolves: #1771356 - Default client configuration breaks ssh in FIPS mode
  - Use default ssh host key algorithms
- Resolves: #1755535 - ipa-advise on a RHEL7 IdM server is not able to generate a configuration script for a RHEL8 IdM client
  - smartcard: make the ipa-advise script compatible with authselect/authconfig
- Resolves: #1758406 - KRA authentication fails when IPA CA has custom Subject DN
  - upgrade: fix ipakra people entry 'description' attribute
  - krainstance: set correct issuer DN in uid=ipakra entry
- Resolves: #1756568 - ipa-server-certinstall man page does not match built-in help
  - ipa-server-certinstall manpage: add missing options
- Resolves: #1206690 - UPG not being enforced properly
  - ipa user_add: do not check group if UPG is disabled
- Resolves: #1811982 - CVE-2018-14042 ipa: bootstrap: Cross-site Scripting (XSS) in the data-container property of tooltip.
- Resolves: #1811978 - CVE-2018-14040 ipa: bootstrap: Cross-site Scripting (XSS) in the collapse data-parent attribute
- Resolves: #1811972 - CVE-2016-10735 ipa: bootstrap: XSS in the data-target attribute
- Resolves: #1811969 -CVE-2018-20676 ipa: bootstrap: XSS in the tooltip data-viewport attribute
- Resolves: #1811966 - CVE-2018-20677 ipa: bootstrap: XSS in the affix configuration target property
- Resolves: #1811962 - CVE-2019-8331 ipa: bootstrap: XSS in the tooltip or popover data-template attribute
  - Web UI: Upgrade Bootstrap version 3.3.7 -> 3.4.1
- Resolves: #1769791 - Invisible part of notification area in Web UI intercepts clicks of some page elements
  - WebUI: Fix notification area layout
- Resolves: #1545755 - ipa-replica-prepare should not update pki admin password
  - Fix indentation levels
  - ipa-pwd-extop: use SLAPI_BIND_TARGET_SDN
  - ipa-pwd-extop: don't check password policy for non-Kerberos account set by DM or a passsync manager
  - Don't save password history on non-Kerberos accounts
�o��}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���	}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o<�}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��
}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
/�/[��{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.6`�[�- Roll in CentOS Branding|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m��
��U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�o��}�c�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-1.el7^��- Resolves: #1819725 - Rebase IPA to latest 4.6.x version
- Resolves: #1817927 - host-add --password logs cleartext userpassword to Apache error log
- Resolves: #1817923 - IPA upgrade is failing with error "Failed to get request: bus, object_path and dbus_interface must not be None."
- Resolves: #1817922 - covscan memory leaks report
- Resolves: #1817919 - Enable compat tree to provide information about AD users and groups on trust agents
- Resolves: #1817918 - Secure tomcat AJP connector
- Resolves: #1817886 - ipa group-add-member: prevent adding IPA objects as external members
- Resolves: #1788718 - ipa-server-install incorrectly setting slew mode (-x) when setting up ntpd
���!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o<"�}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|���u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
�k��!��}�G�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-2.el7^��@- Resolves: #1802408 CVE-2020-1722 ipa: No password length restriction leads to denial of service
  - Add interactive prompt for the LDAP bind password to ipa-getkeytab
  - CVE-2020-1722: prevent use of too long passwords[��{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.7`���- Roll in CentOS Branding������Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
||���}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-3.el7^���- Resolves: #1834385 Man page syntax issue detected by rpminspect
  - Man pages: fix syntax issues
- Resolves: #1829787 ipa service-del deletes the required principal when specified in lower/upper case
  - Make check_required_principal() case-insensitive
- Resolves: #1825829 ipa-advise on a RHEL7 IdM server generate a configuration script for client having hardcoded python3
  - ipa-advise: fallback to /usr/libexec/platform-python if python3 not found
- Resolves: #1812020 CVE-2015-9251 ipa: js-jquery: Cross-site scripting via cross-domain ajax requests
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
- Resolves: #1713487 CVE-2019-11358 ipa: js-jquery: prototype pollution in object's prototype leading to denial of service or remote code execution or property injection
  - Web UI: Upgrade jQuery version 2.0.3 -> 3.4.1
V��V� ����;�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.4`��- Resolves: #1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing
  - wgi/plugins.py: ignore empty plugin directories
- Resolves: #1895197 improve IPA PKI susbsystem detection by o<'�}��}��Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7^�W@- Resolves: #1826659 IPA: Ldap authentication failure due to Kerberos principal expiration UTC timestamp
  -  ipa-pwd-extop: use timegm() instead of mktime() to preserve timezone offset�v��}�q�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-4.el7^�3�- Resolves: #1842950 ipa-adtrust-install fails when replica is offline
  - ipa-adtrust-install: avoid failure when replica is offline
- Resolves: #1831856 CVE-2020-11022 ipa: jquery: Cross-site scripting due to improper injQuery.htmlPrefilter method
  - WebUI: Apply jQuery patch to fix htmlPrefilter issuether means than a directory presence, use pki-server subsystem-find
  - Improve PKI subsystem detection
  - ipatests: add test for PKI subsystem detection
  - ipatest: fix test_upgrade.py::TestUpgrade::()::test_kra_detection
- Resolves: #1892793 Authentication and login times are over several seconds due to unindexed ipaExternalMember
  - Add more indices
- Resolves: #1884819 IdM Web UI shows users as disabled
  - fix cert-find errors in CA-less deployment
- Resolves: #1863619 CA-less install does not set required permissions on KDC certificate
  - CAless installation: set the perms on KDC cert file
  - ipatests: check KDC cert permissions in CA less install
- Resolves: #1859248 CVE-2020-11023 ipa: jquery: Passing HTML containing <option> elements to manipulation methods could result in untrusted code execution
  - WebUI: Fix jQuery DOM manipulation issues
- Resolves: #1846349 cannot issue certs with multiple IP addresses corresponding to different hosts
  - fix iPAddress cert issuance for >1 host/service
��|�� �u�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.6`�q�- Resolves: #1959349 - Need to bump pki + ds version�m����U�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.5`lM@- Resolves: #1931405 krb5kdc crash - Segmentation fault in ldap_first_entry().
  - ipa-kdb: fix compiler warnings
  - ipa-kdb: add missing prototypes
  - ipa-kdb: reformat ipa_kdb_certauth
  - ipa-kdb: mark test functions as static
  - ipa-kdb: do not use OpenLDAP functions with NULL LDAP context
- Resolves: #1835741 krb5kdc crashing on ipa server
- Resolves: #1929372 krb5kdc is crashing intermittently on IPA server.
3k�+�3y��%y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��$w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642[��#{?�CentOS Sources <bugs@centos.org> - 4.6.8-5.el7.centos.9aex�- Roll in CentOS Branding�\��"��3�Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.9a8��- Resolves: #2000261 - extdom: LDAP_INVALID_SYNTAX returned instead of LDAP_NO_SUCH_OBJECT
  - extdom: return LDAP_NO_SUCH_OBJECT if domains differ���!���Florence Blanc-Renaud <frenaud@redhat.com> - 4.6.8-5.el7_9.7`��- Resolves: #1956550 - IPA server installation fails when cert contains non-ASCII character
  - CA less installation: non ASCII chars in CA subject
  - ipatests: use non-ascii chars in CA-less install
- Resolves: #1974328 - Revise PKINIT upgrade code
  - Allow PKINIT to be enabled when updating from a pre-PKINIT IPA CA server
C��g�A�C~��,y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��+y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��*y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��)y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��(y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���'y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��&y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552
]�s�y�]y��2y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���1y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��0y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��/y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��.w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642�
��-y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
MW�^��My��8y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�
��7y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��6y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��5y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��4y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��3y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730

e�r+��V��:��eD�`�
0d3c2c589c5e9e3f8ffbf1a3ecab65c4237f0445ab4f8f1840daac3a9bde8e16D�_�
01da9776dbd5c2c0b5ee6d9e9020302a9007e6bf195079f25e6cf699c93e1decD�^�
0bfce88e921ad0a5fd946306ecf24c9d04e2662eaeaf728d05dbcdc32010c8eaD�]�
4e92d3195efccd7f140506a0902f4b658d5fed14a465e7c9aa46b8ecca2996acD�\�
1dcdc8db1818ed7523d6f6801be8434b3245034ec83d045632e076c4f10742c0D�[�
9006d58c6ebd992f1413230a4531d1584921f01326a875a717363abde71d6b03D�Z�
25afe9864fffab25d5ffab54abb193c47e76f577fe26ccdeeff50269d7b964ccD�Y�
849380b5dd59adac484f86c0be1242d6fe1a44e5e1ad0f83c18bf6a82a4f531fD�X�
e47652fa5e7642d21ed5f8769fe5f4fa1d3e7f416afe2b8f600aaf2ad97b5e27D�W�
40e97878099ade8002e5833f16600e777791b1a319a702abc746d9b4194aa4daD�V�
4054f1d88ab29666683f77b8b9040e7fe11145c8e91bccaa37e202661206d524D�U�
a5d07ef113639a1ab8da7c6d2429a8232e1a1dd44504eef67d44e146ca863729D�T�
577ce44c27214c84f76d58a38be32a4a5f165af65c0e77afa334270e98b8008d
C��g�A�C~��?y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��>y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��=y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��<y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��;y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���:y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��9y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552
)�?�E�)y��Ey}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���Dy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��Cy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��By}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�*��Ay�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��@y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
W�^���*��Ky�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��Jy�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��Iy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��Hy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��Gy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��Fy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
�a�;�B�~��Qy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��Py{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��Oy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��Ny�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��My}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���Ly�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908
0�?�L�0y��Wy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���Vy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908u��Uyu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��Tyw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��Sy�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��Ry�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
W�^���*��]y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��\y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��[y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��Zy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��Yy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��Xy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
|�
���|y��dy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���cy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��by}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��ay}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��`w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642u��_yu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��^yw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139
OW�^��Ow��jw{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642�
��iy�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��hy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��gy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��fy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��ey�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
H�g�A�Hx��qy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��py}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��oy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��ny}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���my�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��ly}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��ky}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403
V~l�r�Vy��wy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���vy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��uy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��ty}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�
��sy�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��ry��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459
W�^���*��}y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��|y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��{y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��zy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��yy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��xy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
H�g�A�Hx��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��~y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403
�~l��y��	y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908�*��y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459
W�^���*��y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��
y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��
y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
O�
n�H�Ox��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908u��yu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��yw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139
O~l�C�Ow��w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642u��yu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��yw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459
H�g�A�Hx��#y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��"y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��!y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y�� y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403
X~l�t�X���)y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��(y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��'y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��&w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642�
��%y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��$y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459
M��]�_M�
��/y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��.y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��-y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��,y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��+y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��*y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774
H�g�A�Hx��6y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��5y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��4y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��3y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���2y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��1y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��0y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403
$~l�@�$���<y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��;y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��:y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�*��9y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��8y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��7y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459

e�r+��V��:��eD�m�
92d8d566c14d02ab87f59d48e5f011678c4d1ad1effce954445cfff6e2186ac9D�l�
5562431c48cab67aa1da614c3d19c3f6becfbc386d29c7133f40bcd4ec21c3dcD�k�
f9e0e769bfa29d7f3fba358e5524c7245c425336886a47e1697aaa57c199fd16D�j�
9640c5a912cb29c8938076ba00b4a29313f55ccd7e684dbbc133c330b71ec3aaD�i�
d6778189c30093bfbf953888db850ae1d4f311e8b24b88bced9f2ec61bc84479D�h�
0321354f5886437064ddff4080e65e1ed1d6f5a4d8f78872893181b71f450938D�g�
f53d0c4b2718fb2cccc1cce0666cef6323bd6fdb7b789f34a3fa3a744c3892ecD�f�
c0ba90dceb83ffcdd8192f4e130a324c73ac021f2a9b2ccdc98d58cdf26f727bD�e�
577c5f15aa7fe917fc8073ef1e9b96c46ff667b05714023b580aa56ba79395cbD�d�
8f060c38fbe87356d18b29d60da5dae1ab1bb783fbe9d75c1738ca0ab27b8ec6D�c�
67ce50ba914619acce9365d0d7d6b3868526ac655a064b3e74819bd54992e79eD�b�
43ae4b92ba776ff7c0a7d9e6c5837380d87b103b8cafa435c922bb2e68bce68fD�a�
e14abc4dfd161e931b9099dce439db26a29175c166b124a14167a664a0d5a600
M��]�_M�
��By�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��Ay��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��@y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��?y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��>y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��=y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774
�Q�5��x��Hy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��Gy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��Fy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��Ey}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���Dy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908�*��Cy�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917
+~l�C�+���Ny�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908u��Myu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��Lyw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��Ky�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��Jy�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��Iy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459
M��]�_M�
��Ty�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��Sy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��Ry{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��Qy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��Py�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��Oy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774
JQ�^�f�J���[y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��Zy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��Yy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��Xw{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642u��Wyu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��Vyw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��Uy�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917
M��]�_M�
��ay�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��`y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��_y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��^y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��]y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��\y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774
I���o�Iy��hy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��gy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��fy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���ey�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��dy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��cy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��bw{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642
W��s�W���ny�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��my}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��ly}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�
��ky�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��jy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��iy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616
M��]�_M�
��ty�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��sy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��ry{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��qy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��py�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��oy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774
�Q�W�;��$��zy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��yy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���xy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��wy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��vy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�*��uy�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917
%��s�%���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908�*��y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��~y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��}y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��|y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��{y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999
M��]�_M�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774
Q�^�B�y��
y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���
y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908u��	yu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��yw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917
N��A�Nu��yu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��yw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616
I���o�Iy��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642bR<�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������<%��<&��<(�� <)��%<*��,<+��2<,��8<.��?</��E<0��K<1��Q<2��W<3��]<4��d<5��j<6��q<7��w<8��}<9��<:��	<;��<<��<=��<>��#<?��)<@��/<A��6<B��<<D��B<E��H<F��N<G��T<H��[<I��a<J��h<K��n<L��t<M��z<N��<O��<P��
<Q��<R��<T�� <U��&<V��,<W��2<X��9<Y��><[��D<\��K<]��Q<^��X<_��^<`��d<a��k<b��q<c��w<d��}<e��<f��	<g��<h��<i��<j��#<k��)<l��0<m��5<n��;<o��B<q��G<r��H<s��J<u��L<v��M<w��N<x��Q<z��S<{��U<|��V<}��Y<~��[<��]<���^<���_<���b<���e<���g<���h<���k<���n<���p<���q<���t<���w<���y<���z<���|
{��u�{y�� y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616
�a�;�B�~��&y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��%y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��$y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��#y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��"y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���!y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908
/�q�U�/�$��,y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��+y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���*y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��)y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��(y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�
��'y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
G��s�Gy��2y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�*��1y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��0y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��/y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��.y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��-y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999
C��g�A�C~��9y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��8y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��7y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��6y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��5y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���4y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��3y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552
z�?�#z�$��>y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��=y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���<y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908�*��;y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��:y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926

e�r+��V��:��eD�z�
d7798262e71fd5dd605dc0caee6bd51e2af8c6e1d8c23080eb215303d42d2c4fD�y�
5ca0ccb7e4af7c807c1f99c10409892524195addd4cfc1d830e5cc351643409fD�x�
e6273ad14c1f319502c24fe2004a6765421589ad83742d12e87a81b3c84c6d08D�w�
4ad165c06922e2252a43f8ea8424a0e1ad01faa0b3cc0656d5e88a5bb3bc053fD�v�
49fee1d14c58251ceaf27e463d004b657ab809c483a44ab5c2bc0bf22a098086D�u�
ee179dac3f97636a2f35955ae764b090dd0723607221b2ff12cbd42907440344D�t�
fc45ecc53eafb78138b2291907fb4463e871868f19476b0d29e6c42b9e2f42a3D�s�
c9e8e27be0763433d2342ad0573164a56176f17826d8830f39d0e08518d54127D�r�
44eb1405754fcd4ae144cb5025d91b3ac8759293ff1a0f187ca3a1e153137223D�q�
c837dad26046c4672910508d3f90d5dca273c22c3503ded2f75eed49602908afD�p�
f5e54963c8d3735251b4501639c3af99731c36ad7de1884a62f8086d7546d5b1D�o�
c0f34781687d2456cffd35d278bdf12469af28f83cafc51ead4a756ded452bddD�n�
5ced3b05c339804924a538a2b874f1a95cbe14eb2973fd4bdd808a14f095fb07
J��s�Jv��Dyw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��Cy�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��By�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��Ay��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��@y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��?y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999
G��k�E�G~��Ky��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��Jy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��Iy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��Hy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��Gy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���Fy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908u��Eyu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139
T�?�L�Ty��Qy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��Pw{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642u��Oyu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��Nyw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��My�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��Ly�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
C��g�A�C~��Xy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��Wy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��Vy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��Uy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��Ty}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���Sy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��Ry}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552
]�s�y�]y��^y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���]y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��\y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��[y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��Zw{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642�
��Yy�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
MW�^��My��dy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�
��cy�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��by��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��ay{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��`y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��_y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
C��g�A�C~��ky��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��jy{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��iy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��hy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��gy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���fy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��ey}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552
)�?�E�)y��qy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���py�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��oy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��ny}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�*��my�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��ly�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
W�^���*��wy�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��vy�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��uy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��ty{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��sy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��ry�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
�a�;�B�~��}y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��|y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��{y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��zy�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��yy}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���xy�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908
0�?�L�0y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908u��yu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��yw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��~y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926
W�^���*��	y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
|�
���|y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��
y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403w��w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642u��yu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��
yw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139
OW�^��Ow��w{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-9\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1714642�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
H�g�A�Hx��y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403
V~l�r�Vy��#y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���"y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��!y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y�� y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403�
��y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459
W�^���*��)y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��(y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��'y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��&y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��%y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��$y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
H�g�A�Hx��0y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��/y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��.y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��-y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���,y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908y��+y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-11]e@- Security fix for CVE-2018-20852
Resolves: rhbz#1741552y��*y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-10\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718403
�~l��y��5y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���4y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908�*��3y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��2y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��1y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459
W�^���*��;y�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��:y�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��9y��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459x��8y{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��7y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��6y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730
O�
n�H�Ox��By{�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-16^�%@- Security fix for CVE-2020-8492
Resolves: rhbz#1810616y��Ay}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-15^ku�- Security fix for CVE-2019-16935
Resolves: rhbz#1797999�$��@y�Q�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-14^g�@- Provide and obsolete the python36-tools subpackage for EPEL compatibility
Resolves: rhbz#1763730y��?y}�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-13]��@- Security fix for CVE-2019-16056
Resolves: rhbz#1750774���>y�=�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-12]�V�- Add support for OpenSSL FIPS mode
- Fix faulthandler stack size
Resolves: rhbz#1732908u��=yu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��<yw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139

e�r+��V��:��eD��
ab886e520cf674bfa8b5efe8355f7150140a6f67d313e60090bd36049cdc6983D��
59a052cd2596a592fc02e8e794d976aa238ae34da00d247445d0f51bb9e87bccD��
9b43305f54731049c328c1576f320912a045534f33373113f5ec315e63e8f094D��
4c928cbb9b34a074f2c249f56cfc152f8e285cd974e184b9f5ee05214cbecd42D��
3805c7e453631cda2c446cb60a6ea941975f89b2d544824c96b37f874f6e5bacD��
73ef9f5aba212c3f0d0e055cd597dbddc8d7752ec301de688be47c0a416b5a6dD��
ae43349e074e7aa2c0178a464cfe5b1989f31fa0e61c787de99ec01e156ca556D��
7f71841bd15ea189a3946e054f1c018051ce33de76170da0fa7a4ec172429517D��
a56bfb4be6763b8f94a45cd667d3d9e26cc48d8d10f46fa025a15f345484167bD�~�
511a7fcece3cd644106c80e487095e7d8ab9fa20dc09168c489f175eb63f9636D�}�
deff998718fe21f42d80a710db70d787a484e432b9c7bd0e6a27a4751d9bd70bD�|�
3c93170cfdb435ab3bb64346b420376ebaa38ff8f2252277971e3b6117422fe5D�{�
a9bf1a1e052ad0142193049e1f988dbdbc601a8d37337ee06021e30f7eee7baf
�~l�C�u��Gyu�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-21e7��- Test fixups for CVE-2023-40217
Resolves: RHEL-3139v��Fyw�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-20e@- Security fix for CVE-2023-40217
Resolves: RHEL-3139�*��Ey�]�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-19dt��- Security fix for CVE-2023-24329
- Fix the test suite support for Expat >= 2.4.5
Resolves: rhbz#2173917�
��Dy�#�Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-18_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
- Resolve hash collisions for Pv4Interface and IPv6Interface (CVE-2020-14422)
Resolves: rhbz#1854926~��Cy��Charalampos Stratakis <cstratak@redhat.com> - 3.6.8-17^���- Overhaul python's FIPS mode support
Resolves: rhbz#1788459
SS�(��H{�W�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-168.el7][�- kvm-qxl-check-release-info-object.patch [bz#1712703]
- kvm-bswap.h-Remove-cpu_to_be16wu.patch [bz#1270166]
- kvm-net-Transmit-zero-UDP-checksum-as-0xFFFF.patch [bz#1270166]
- kvm-Fix-heap-overflow-in-ip_reass-on-big-packet-input.patch [bz#1734749]
- Resolves: bz#1270166
  (UDP packet checksum is not converted from 0x0000 to 0xffff with Qemu e1000 emulation.)
- Resolves: bz#1712703
  (CVE-2019-12155 qemu-kvm: QEMU: qxl: null pointer dereference while releasing spice resources [rhel-7])
- Resolves: bz#1734749
  (CVE-2019-14378 qemu-kvm: QEMU: slirp: heap buffer overflow during packet reassembly [rhel-7.8])
�r��J{�k�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-170.el7]��@- kvm-Using-ip_deq-after-m_free-might-read-pointers-from-a.patch [bz#1749735]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1709971]
- kvm-target-i386-Isola<t�c��I{�M�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-169.el7]o�@- kvm-target-i386-Support-invariant-tsc-flag.patch [bz#1626871]
- kvm-target-i386-block-migration-and-savevm-if-invariant-.patch [bz#1626871]
- kvm-i386-Don-t-copy-host-virtual-address-limit.patch [bz#1706658]
- Resolves: bz#1626871
  ([RFE] request for using TscInvariant feature with qemu-kvm.)
- Resolves: bz#1706658
  ([Intel 7.8 Bug] qemu-kvm fail with "err:kvm_init_vcpu() invalidate argumant" on ICX platform)te-KVM-specific-code-on-CPU-feature.patch [bz#1709971]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1709971]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1709971]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1709971]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1709971]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1709971]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1709971]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1709971]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1709971]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1714791]
- Resolves: bz#1709971
  ([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm)
- Resolves: bz#1714791
  ([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm)
- Resolves: bz#1749735
  (CVE-2019-15890 qemu-kvm: QEMU: Slirp: use-after-free during packet reassembly [rhel-7])
����6��L{�s�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])���K{�;�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)
kk���M{�'�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])
���F��N{��Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��QoU�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��Pg�
�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��Og�[�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])te-KVM-specific-code-on-CPU-feature.patch [bz#1709971]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1709971]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1709971]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1709971]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1709971]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1709971]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1709971]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1709971]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1709971]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1714791]
- Resolves: bz#1709971
  ([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm)
- Resolves: bz#1714791
  ([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm)
- Resolves: bz#1749735
  (CVE-2019-15890 qemu-kvm: QEMU: Slirp: use-after-free during packet reassembly [rhel-7])
�����S{�;�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)�r��R{�k�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-170.el7]��@- kvm-Using-ip_deq-after-m_free-might-read-pointers-from-a.patch [bz#1749735]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1709971]
- kvm-target-i386-Isola<y
0�0���U{�'�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�6��T{�s�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])
���F��V{��Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��YoU�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��Xg�
�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��Wg�[�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
C�C�5��[o�}�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��Zo��Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
����6��]{�s�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])���\{�;�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)
kk���^{�'�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])
���F��_{��Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��boU�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��ag�
�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��`g�[�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���eo�!�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��do�}�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��co��Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
0�0���g{�'�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�6��f{�s�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])
���F��h{��Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��koU�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��jg�
�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��ig�[�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���no�!�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��mo�}�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��lo��Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
�%����p{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�V��oo�?�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.5a�W@- kvm-dma-helpers-Initialize-DMAAIOCB-in_cancel-flag.patch [bz#2007036]
- Resolves: bz#2007036
  (Memory leak when using dma_read/write with virtio-scsi)
���F��q{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��toUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��sg�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��rg�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���wo�!Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��vo�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��uo�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
a%a�?��yo�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.6b�- kvm-rbd-avoid-qemu_rbd_snap_list-memory-leaks.patch [bz#2056725]
- Resolves: bz#2056725
  (qemu-kvm leaks on qemu_rbd_snap_list)�V��xo�?Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.5a�W@- kvm-dma-helpers-Initialize-DMAAIOCB-in_cancel-flag.patch [bz#2007036]
- Resolves: bz#2007036
  (Memory leak when using dma_read/write with virtio-scsi)
SS�(��z{�WMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-168.el7][�- kvm-qxl-check-release-info-object.patch [bz#1712703]
- kvm-bswap.h-Remove-cpu_to_be16wu.patch [bz#1270166]
- kvm-net-Transmit-zero-UDP-checksum-as-0xFFFF.patch [bz#1270166]
- kvm-Fix-heap-overflow-in-ip_reass-on-big-packet-input.patch [bz#1734749]
- Resolves: bz#1270166
  (UDP packet checksum is not converted from 0x0000 to 0xffff with Qemu e1000 emulation.)
- Resolves: bz#1712703
  (CVE-2019-12155 qemu-kvm: QEMU: qxl: null pointer dereference while releasing spice resources [rhel-7])
- Resolves: bz#1734749
  (CVE-2019-14378 qemu-kvm: QEMU: slirp: heap buffer overflow during packet reassembly [rhel-7.8])
�r��|{�kMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-170.el7]��@- kvm-Using-ip_deq-after-m_free-might-read-pointers-from-a.patch [bz#1749735]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1709971]
- kvm-target-i386-Isola<��c��{{�MMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-169.el7]o�@- kvm-target-i386-Support-invariant-tsc-flag.patch [bz#1626871]
- kvm-target-i386-block-migration-and-savevm-if-invariant-.patch [bz#1626871]
- kvm-i386-Don-t-copy-host-virtual-address-limit.patch [bz#1706658]
- Resolves: bz#1626871
  ([RFE] request for using TscInvariant feature with qemu-kvm.)
- Resolves: bz#1706658
  ([Intel 7.8 Bug] qemu-kvm fail with "err:kvm_init_vcpu() invalidate argumant" on ICX platform)te-KVM-specific-code-on-CPU-feature.patch [bz#1709971]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1709971]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1709971]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1709971]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1709971]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1709971]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1709971]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1709971]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1709971]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1714791]
- Resolves: bz#1709971
  ([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm)
- Resolves: bz#1714791
  ([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm)
- Resolves: bz#1749735
  (CVE-2019-15890 qemu-kvm: QEMU: Slirp: use-after-free during packet reassembly [rhel-7])
����6��~{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])���}{�;Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)
kk���{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])
���F��{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])te-KVM-specific-code-on-CPU-feature.patch [bz#1709971]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1709971]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1709971]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1709971]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1709971]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1709971]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1709971]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1709971]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1709971]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1714791]
- Resolves: bz#1709971
  ([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm)
- Resolves: bz#1714791
  ([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm)
- Resolves: bz#1749735
  (CVE-2019-15890 qemu-kvm: QEMU: Slirp: use-after-free during packet reassembly [rhel-7])
�����{�;Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)�r��{�kMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-170.el7]��@- kvm-Using-ip_deq-after-m_free-might-read-pointers-from-a.patch [bz#1749735]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1709971]
- kvm-target-i386-Isola<�
0�0���{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�6��{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])
���F��{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��
g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��	g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
C�C�5��
o�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
����6��{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])���{�;Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)
kk���{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])
���F��{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���o�!Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��o�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
0�0���{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�6��{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])
���F��{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7��� o�!Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��o�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
�%����"{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�V��!o�?Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.5a�W@- kvm-dma-helpers-Initialize-DMAAIOCB-in_cancel-flag.patch [bz#2007036]
- Resolves: bz#2007036
  (Memory leak when using dma_read/write with virtio-scsi)
���F��#{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��&oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��%g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��$g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���)o�!Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��(o�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��'o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
a%a�?��+o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.6b�- kvm-rbd-avoid-qemu_rbd_snap_list-memory-leaks.patch [bz#2056725]
- Resolves: bz#2056725
  (qemu-kvm leaks on qemu_rbd_snap_list)�V��*o�?Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.5a�W@- kvm-dma-helpers-Initialize-DMAAIOCB-in_cancel-flag.patch [bz#2007036]
- Resolves: bz#2007036
  (Memory leak when using dma_read/write with virtio-scsi)
SS�(��,{�WMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-168.el7][�- kvm-qxl-check-release-info-object.patch [bz#1712703]
- kvm-bswap.h-Remove-cpu_to_be16wu.patch [bz#1270166]
- kvm-net-Transmit-zero-UDP-checksum-as-0xFFFF.patch [bz#1270166]
- kvm-Fix-heap-overflow-in-ip_reass-on-big-packet-input.patch [bz#1734749]
- Resolves: bz#1270166
  (UDP packet checksum is not converted from 0x0000 to 0xffff with Qemu e1000 emulation.)
- Resolves: bz#1712703
  (CVE-2019-12155 qemu-kvm: QEMU: qxl: null pointer dereference while releasing spice resources [rhel-7])
- Resolves: bz#1734749
  (CVE-2019-14378 qemu-kvm: QEMU: slirp: heap buffer overflow during packet reassembly [rhel-7.8])
�r��.{�kMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-170.el7]��@- kvm-Using-ip_deq-after-m_free-might-read-pointers-from-a.patch [bz#1749735]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1709971]
- kvm-target-i386-Isola<��c��-{�MMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-169.el7]o�@- kvm-target-i386-Support-invariant-tsc-flag.patch [bz#1626871]
- kvm-target-i386-block-migration-and-savevm-if-invariant-.patch [bz#1626871]
- kvm-i386-Don-t-copy-host-virtual-address-limit.patch [bz#1706658]
- Resolves: bz#1626871
  ([RFE] request for using TscInvariant feature with qemu-kvm.)
- Resolves: bz#1706658
  ([Intel 7.8 Bug] qemu-kvm fail with "err:kvm_init_vcpu() invalidate argumant" on ICX platform)te-KVM-specific-code-on-CPU-feature.patch [bz#1709971]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1709971]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1709971]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1709971]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1709971]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1709971]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1709971]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1709971]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1709971]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1714791]
- Resolves: bz#1709971
  ([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm)
- Resolves: bz#1714791
  ([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm)
- Resolves: bz#1749735
  (CVE-2019-15890 qemu-kvm: QEMU: Slirp: use-after-free during packet reassembly [rhel-7])
����6��0{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])���/{�;Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)
kk���1{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])
���F��2{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��5oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��4g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��3g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])te-KVM-specific-code-on-CPU-feature.patch [bz#1709971]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1709971]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1709971]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1709971]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1709971]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1709971]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1709971]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1709971]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1709971]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1714791]
- Resolves: bz#1709971
  ([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm)
- Resolves: bz#1714791
  ([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm)
- Resolves: bz#1749735
  (CVE-2019-15890 qemu-kvm: QEMU: Slirp: use-after-free during packet reassembly [rhel-7])
�����7{�;Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)�r��6{�kMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-170.el7]��@- kvm-Using-ip_deq-after-m_free-might-read-pointers-from-a.patch [bz#1749735]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1709971]
- kvm-target-i386-Isola<�
0�0���9{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�6��8{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])
���F��:{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��=oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��<g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��;g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
C�C�5��?o�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��>o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])

e�r+��V��:��eD��
a890176b2aa7995cdcca42b0e17be87bb8aae92260d663aa371f764d1a042638D��
d5efe4a3fd7895b05dc1b8b045dc980999601e654844bd49e0d6400295ab6e81D��
6d003f6bec920c3f0353f927a0e4ce5191ad4e906e1f42da6845c022fe42c6c5D��
9cbd6eff83677c01360b1fef5a8c341cd87c5de0ad0732e7ac0d66ae86c24ef7D��
ef450f18a4cbb4b3e2590e06da308d71a68963d41ea453f5a033f04eeb3d6af2D��
0449fb732714886324a83ab5585589c4bff8fd81cfd32d8cc00260106295b33bD��
7b7ec44f73e60f1826d6c1d04e2dd0dcdf55c7db06718558d74313208c397656D�
�
5ea661034ba07766b55a6d64aeefb1af0d3e0e6608e4f50fca341a03abf1f701D��
4602b5323f417a87240cc0e7d73bd59b5353a8e84649b1ddda629f812a651716D��
63a41ccee737a4e9e6d6fb1b86ec39bafd39ebc8819e7fc387fbba943d9840f4D�
�
0b35b40bf56766439cd4f160aa0bb3028afd3654b4df1a07cbe49d5a0c3642fbD�	�
8a1a847b55b0f0c7eb4ee01caaddbacba34459dac20fbc69bf3e33941d234f40D��
b1195f160b7732b069a76d55a22f0c4f5d8a7a92506dd8ec030b713507963ae7
����6��A{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])���@{�;Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)
kk���B{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])
���F��C{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��FoUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��Eg�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��Dg�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���Io�!Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��Ho�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��Go�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
0�0���K{�'	Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�6��J{�s	Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])
���F��L{�	Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��OoU	Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��Ng�
	Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��Mg�[	Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���Ro�!	Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��Qo�}	Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��Po�	Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
�%����T{�'
Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�V��So�?	Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.5a�W@- kvm-dma-helpers-Initialize-DMAAIOCB-in_cancel-flag.patch [bz#2007036]
- Resolves: bz#2007036
  (Memory leak when using dma_read/write with virtio-scsi)bR<�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������<���<���<���<���<���<���<���<���
<���<���<���<���<���<���<���<���<��� <���"<���#<���&<���)<���+<���,<���.<���0<���1<���2<���5<���7<���9<���:<���=<���?<���A<���B<���C<���F<���I<���K<���L<���O<���R<���T<���U<�X<Â�[<Ă�]<ł�^<Ƃ�`<Ȃ�b<ɂ�c<ʂ�d<˂�g<͂�i<΂�k<ς�l<Ђ�o<т�q<҂�s<ӂ�t<Ԃ�u<Ղ�x<ւ�{<ׂ�}<؂�~<ق�<ڂ�<ۂ�<܂�<݂�
<ނ�
<߂�<�<�<�<�!<�%<�)<�-<�1<�5<�<<�C<�J<�R<�Y<�`<�g<�o<�v<�|<���<���<���<���<���!<���(<���.
���F��U{�
Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��XoU
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��Wg�

Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��Vg�[
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���[o�!
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��Zo�}
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��Yo�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
a%a�?��]o�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.6b�- kvm-rbd-avoid-qemu_rbd_snap_list-memory-leaks.patch [bz#2056725]
- Resolves: bz#2056725
  (qemu-kvm leaks on qemu_rbd_snap_list)�V��\o�?
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.5a�W@- kvm-dma-helpers-Initialize-DMAAIOCB-in_cancel-flag.patch [bz#2007036]
- Resolves: bz#2007036
  (Memory leak when using dma_read/write with virtio-scsi)
SS�(��^{�WMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-168.el7][�- kvm-qxl-check-release-info-object.patch [bz#1712703]
- kvm-bswap.h-Remove-cpu_to_be16wu.patch [bz#1270166]
- kvm-net-Transmit-zero-UDP-checksum-as-0xFFFF.patch [bz#1270166]
- kvm-Fix-heap-overflow-in-ip_reass-on-big-packet-input.patch [bz#1734749]
- Resolves: bz#1270166
  (UDP packet checksum is not converted from 0x0000 to 0xffff with Qemu e1000 emulation.)
- Resolves: bz#1712703
  (CVE-2019-12155 qemu-kvm: QEMU: qxl: null pointer dereference while releasing spice resources [rhel-7])
- Resolves: bz#1734749
  (CVE-2019-14378 qemu-kvm: QEMU: slirp: heap buffer overflow during packet reassembly [rhel-7.8])
�r��`{�kMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-170.el7]��@- kvm-Using-ip_deq-after-m_free-might-read-pointers-from-a.patch [bz#1749735]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1709971]
- kvm-target-i386-Isola<ǃc��_{�MMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-169.el7]o�@- kvm-target-i386-Support-invariant-tsc-flag.patch [bz#1626871]
- kvm-target-i386-block-migration-and-savevm-if-invariant-.patch [bz#1626871]
- kvm-i386-Don-t-copy-host-virtual-address-limit.patch [bz#1706658]
- Resolves: bz#1626871
  ([RFE] request for using TscInvariant feature with qemu-kvm.)
- Resolves: bz#1706658
  ([Intel 7.8 Bug] qemu-kvm fail with "err:kvm_init_vcpu() invalidate argumant" on ICX platform)te-KVM-specific-code-on-CPU-feature.patch [bz#1709971]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1709971]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1709971]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1709971]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1709971]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1709971]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1709971]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1709971]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1709971]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1714791]
- Resolves: bz#1709971
  ([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm)
- Resolves: bz#1714791
  ([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm)
- Resolves: bz#1749735
  (CVE-2019-15890 qemu-kvm: QEMU: Slirp: use-after-free during packet reassembly [rhel-7])
����6��b{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])���a{�;Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)
kk���c{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])
���F��d{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��goUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��fg�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��eg�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])te-KVM-specific-code-on-CPU-feature.patch [bz#1709971]
- kvm-i386-Add-new-MSR-indices-for-IA32_PRED_CMD-and-IA32_.patch [bz#1709971]
- kvm-i386-Add-CPUID-bit-and-feature-words-for-IA32_ARCH_C.patch [bz#1709971]
- kvm-Add-support-to-KVM_GET_MSR_FEATURE_INDEX_LIST-an.patch [bz#1709971]
- kvm-x86-Data-structure-changes-to-support-MSR-based-feat.patch [bz#1709971]
- kvm-x86-define-a-new-MSR-based-feature-word-FEATURE_WORD.patch [bz#1709971]
- kvm-Use-KVM_GET_MSR_INDEX_LIST-for-MSR_IA32_ARCH_CAP.patch [bz#1709971]
- kvm-i386-kvm-Disable-arch_capabilities-if-MSR-can-t-be-s.patch [bz#1709971]
- kvm-Remove-arch-capabilities-deprecation.patch [bz#1709971]
- kvm-target-i386-add-MDS-NO-feature.patch [bz#1714791]
- Resolves: bz#1709971
  ([Intel 7.8 Bug] [KVM][CLX] CPUID_7_0_EDX_ARCH_CAPABILITIES is not enabled in VM qemu-kvm)
- Resolves: bz#1714791
  ([Intel 7.8 FEAT] MDS_NO exposure to guest - qemu-kvm)
- Resolves: bz#1749735
  (CVE-2019-15890 qemu-kvm: QEMU: Slirp: use-after-free during packet reassembly [rhel-7])
�����i{�;Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)�r��h{�kMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-170.el7]��@- kvm-Using-ip_deq-after-m_free-might-read-pointers-from-a.patch [bz#1749735]
- kvm-target-i386-Merge-feature-filtering-checking-functio.patch [bz#1709971]
- kvm-target-i386-Isola<�
0�0���k{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�6��j{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])
���F��l{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��ooUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��ng�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��mg�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
C�C�5��qo�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��po�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
����6��s{�s
Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])���r{�;
Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-171.el7]���- kvm-i386-Add-new-model-of-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-Disable-OSPKE-on-Cascadelake-Server.patch [bz#1638471]
- kvm-i386-remove-the-INTEL_PT-CPUID-bit-from-Cascadelake-.patch [bz#1638471]
- kvm-Add-missing-brackets-to-CPUID-0x80000008-code.patch [bz#1760607]
- Resolves: bz#1638471
  ([Intel 7.8 Feat] qemu-kvm Introduce Cascade Lake (CLX) cpu model)
- Resolves: bz#1760607
  (Corrupted EAX values due to missing brackets at CPUID[0x800000008] code)
kk���t{�'
Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])
���F��u{�
Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��xoU
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��wg�

Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��vg�[
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���{o�!
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��zo�}
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��yo�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
0�0���}{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�6��|{�sMiroslav Rezanina <mrezanin@redhat.com> - 1.5.3-172.el7]��@- kvm-target-i386-Export-TAA_NO-bit-to-guests.patch [bz#1771961]
- kvm-target-i386-add-support-for-MSR_IA32_TSX_CTRL.patch [bz#1771961]
- Resolves: bz#1771961
  (CVE-2019-11135 qemu-kvm: hw: TSX Transaction Asynchronous Abort (TAA) [rhel-7.8])
���F��~{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���o�!Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��o�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
�%����{�'Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-173.el7^)��- kvm-tcp_emu-Fix-oob-access.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch [bz#1791560]
- kvm-slirp-use-correct-size-while-emulating-commands.patch [bz#1791560]
- Resolves: bz#1791560
  (CVE-2020-7039 qemu-kvm: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-7.8])�V��o�?Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.5a�W@- kvm-dma-helpers-Initialize-DMAAIOCB-in_cancel-flag.patch [bz#2007036]
- Resolves: bz#2007036
  (Memory leak when using dma_read/write with virtio-scsi)
���F��{�Miroslav Rezanina <mrezanin@redhat.com> - 1.5.3-174.el7^s^�- kvm-util-add-slirp_fmt-helpers2.patch [bz#1800515]
- kvm-tcp_emu-fix-unsafe-snprintf-usages2.patch [bz#1800515]
- kvm-slirp-disable-tcp_emu.patch [bz#1791679]
- kvm-gluster-Handle-changed-glfs_ftruncate-signature.patch [bz#1802215]
- kvm-gluster-the-glfs_io_cbk-callback-function-pointer-ad.patch [bz#1802215]
- kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch [bz#1618503]
- Resolves: bz#1618503
  (qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads [rhel-7])
- Resolves: bz#1791679
  (QEMU: Slirp: disable emulation of tcp programs like ftp IRC etc. [rhel-7])
- Resolves: bz#1800515
  (CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf() usages [rhel-7.9])
- Resolves: bz#1802215
  (Add support for newer glusterfs)
��`��
oUJon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.1_WrA- Fixing release number for z-stream�y��	g�
Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_Wr@- kvm-Fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch [bz#1837565]
- kvm-usb-check-RNDIS-message-length.patch [bz#1869693]
- kvm-usb-fix-setup_len-init-CVE-2020-14364.patch [bz#1869693]
- Resolves: bz#1837565
  (CVE-2020-1983 qemu-kvm: QEMU: slirp: use-after-free in ip_reass() function in ip_input.c [rhel-7])
- Resolves: bz#1869693
  (CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets [rhel-7.9.z])�`��g�[Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7^��- kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch [bz#1810408]
- Resolves: bz#1810408
  (CVE-2019-20382 qemu-kvm: QEMU: vnc: memory leakage upon disconnect [rhel-7])
7�C7���
o�!Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.4`�+�- kvm-ide-atapi-check-logical-block-address-and-read-size-.patch [bz#1917449]
- Resolves: bz#1917449
  (CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands [rhel-7.9.z])�5��o�}Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.3_�T�- kvm-Suppress-prototype-warning-for-nss-headers.patch [bz#1884997]
- Resolves: bz#1884997
  (qemu-kvm FTBFS on rhel7.9)�~��o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.2_��@- kvm-hw-net-vmxnet_tx_pkt-fix-assertion-failure-in-vmxnet.patch [bz#1860960]
- kvm-hw-core-loader-Fix-possible-crash-in-rom_copy.patch [bz#1842923]
- Resolves: bz#1842923
  (CVE-2020-13765 qemu-kvm: QEMU: loader: OOB access while loading registered ROM may lead to code execution [rhel-7.9.z])
- Resolves: bz#1860960
  (CVE-2020-16092 qemu-kvm: QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c [rhel-7.9.z])
�%aU�s��g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862�?��o�Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.6b�- kvm-rbd-avoid-qemu_rbd_snap_list-memory-leaks.patch [bz#2056725]
- Resolves: bz#2056725
  (qemu-kvm leaks on qemu_rbd_snap_list)�V��o�?Jon Maloy <jmaloy@redhat.com> - 1.5.3-175.el7_9.5a�W@- kvm-dma-helpers-Initialize-DMAAIOCB-in_cancel-flag.patch [bz#2007036]
- Resolves: bz#2007036
  (Memory leak when using dma_read/write with virtio-scsi)
��}q�s��g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862
��}q�s��g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862

e�r+��V��:��eD�!�
101d4c439d586a23bd095ccd9577412c6ab04356eb16a1563922718a2e88282fD� �
66ff6d3d39c89b89cff9ea3640241dc426267d705caad62f73e5fb5ec36489daD��
1006b3d0a088752eeb2598abc422708ea48c9813a37b05520a479db06e8b6d2cD��
cf9c2b5f9dfcab24dece292fa32fbddfd9d7101708606617b5bc07bcc4a15756D��
da19c51c2a6a05fd9cbc856b73aab1fda9c5974c9fd026652be8e555e60410ceD��
ed85063f79df4dd6522878618ebc5308ad2d764ce401220c527ff0cca6d5f7d0D��
a58d0d4575abce242db65f08764359915f175bed5665391d68c8b0848ca043e5D��
d2e121f5577f678e6c3a8c113a90dec22cf3020128b6c0a00148ff5490889516D��
075e649f6da15e063d52ce4d0d3ba406ef07fe22522b3b701f9577056c5cf18aD��
4afd47d6a1f2abe50950226f0ebe58f8973c16a4aa727eadd72419fda729468fD��
5d7e06887d90404f63aebfadc1d4b6b84280cfe7082d40d0288f3d973a586453D��
06e5fb6ecf1b329364a643c5ede73c7f38229a9b7aee51b73806126d416f71e8D��
b880a0b670e4d960e2f45b887ba9131d3fde1d7bb679f52407002490f974445b
��}q�s��g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862
��}q�s��!g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297��� g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862
��}q�s��%g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���$g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��#g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���"g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862
��}q�s��)g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���(g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��'g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���&g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862
��}q�s��-g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���,g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��+g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���*g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862
��}q�s��1g� Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���0g�) Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��/g�Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���.g�)Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862
��}q�s��5g�"Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���4g�)"Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862s��3g�!Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���2g�)!Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862

e�r+��V��:��eD�.�
51a53d551be2e1872620790737f76e64debc40419b8fd39d769e922deee5e6cfD�-�
e0a86a5b4129921e13dc76157dee997faa829d4d9a825ace7a0a53f87b4846d9D�,�
e5a0b645a5f31d68cab7845d9767b0fa6efa5b4d5b70698b58c9ce1f62421820D�+�
f583bf56ffb7c05d556141a0b44a90d47787543323e3780b29177cbad9e84c99D�*�
0e0057ab9e8cb8424689c8f6e05bb121fb1bd2f7a3e0fbec225b582428df0176D�)�
d63cfee88470e6abc2c1c016bfb5ec0aa462545cf7fb74bd3fb6432fde840057D�(�
14eeefbe453cdf299889c12f5ada3a9024e4bfa0a7a528348d4799660822a0d7D�'�
5640bc5d7f5bdc1cba31958835239b6e304ee9faabd531c630f74e9e6867e32bD�&�
6940a7ecc43ade6a78b801d66f177ded5fb4e3631de7f454dfee50cfca1694c4D�%�
dac3bbae30e7a82b68413ff66cde2cd6f8ebd5f1c4af294556c60e63c0e4246eD�$�
05b12f50d113b0a0d5208b907519a36a79df62b2d79ddbb1d4019332f3d7ff39D�#�
051767c8b8b2c33280f93fb2f1f60e7d9bdd8f44678ca6c68f5e2e59986a7ef8D�"�
9311ccab42970f1272cfc018419932b0fb8fe37ba50649863fba7a09fcb64c4b
S�}�N�S���<c�$Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��;c�$Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��:c]$Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��9ce$Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��8cg$Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097s��7g�#Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-9_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870297���6g�)#Jan Grulich <jgrulich@redhat.com> - 1:4.8.7-8]�B�- Fix QImage allocation failure in qgifhandler
  Resolves: bz#1667863

- Fix QTgaFile CPU exhaustion
  Resolves: bz#1667879

- Fix QBmpHandler segmentation fault on malformed BMP file
  Resolves: bz#1667862
>�2R��>b��Cce%Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��Bcg%Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��Ac�$Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��@c�9$Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��?c�U$Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��>cq$Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��=c]$Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000
#�(�A��#�M��Jc�9%Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��Ic�U%Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��Hcq%Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��Gc]%Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���Fc�%Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��Ec�%Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��Dc]%Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097
��$�\�a��h��Rcq&Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��Qc]&Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���Pc�&Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��Oc�&Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��Nc]&Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��Mce&Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��Lcg&Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��Kc�%Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365
4 N�r�4r��Yc�'Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��Xc]'Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��Wce'Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��Vcg'Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��Uc�&Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��Tc�9&Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��Sc�U&Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680
{����c��`cg(Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��_c�'Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��^c�9'Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��]c�U'Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��\cq'Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��[c]'Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���Zc�'Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987
��8�=�o��[��gc�U(Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��fcq(Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��ec](Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���dc�(Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��cc�(Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��bc](Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��ace(Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097
-.�R���-^��oc])Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���nc�)Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��mc�)Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��lc])Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��kce)Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��jcg)Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��ic�(Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��hc�9(Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685
>���m�>^��vc]*Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��uce*Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��tcg*Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��sc�)Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��rc�9)Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��qc�U)Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��pcq)Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000
���7W��M��|c�9*Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��{c�U*Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��zcq*Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��yc]*Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���xc�*Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��wc�*Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040
��$�\�a��h��cq+Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��c]+Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���c�+Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��c�+Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��c]+Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��ce+Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��~cg+Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��}c�*Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365
4 N�r�4r��c�,Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��
c],Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��	ce,Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��cg,Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��c�+Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��c�9+Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��c�U+Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680
{����c��cg-Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��c�,Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��c�9,Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��c�U,Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��cq,Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��
c],Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���c�,Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987
��8�=�o��[��c�U-Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��cq-Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��c]-Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���c�-Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��c�-Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��c]-Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��ce-Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097
-.�R���-^��!c].Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000��� c�.Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��c�.Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��c].Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��ce.Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��cg.Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��c�-Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��c�9-Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685
>���m�>^��(c]/Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��'ce/Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��&cg/Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��%c�.Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��$c�9.Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��#c�U.Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��"cq.Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000

e�r+��V��:��eD�;�
8670eed5135654aa066965442ce0915cbf933f4742d0a6dab8b6dfc7ecc2f773D�:�
e653897f2dd6f84ab92a95f869a1a8b62ee9ab93e65633bab0f315f3b744c72aD�9�
24d9b1ac9ee09da7c86076a3d26116d0eff8b39fbd7ce382098d1fb81ce2481bD�8�
3358f19c8ca9746105376676f9d44c518ec567358ba86b5a92b874dbdb9c8a44D�7�
df7a357bd7450087019d5bb9f1bb2a2fb80ae9a9ee7a1a2a6117f7d9bbf995e7D�6�
f7db225b7e95f311ff6f6b1334882841ae105198666b212f6c134f496b5c2ea7D�5�
9e5e0690a1ca23a083173192c311f06da00d80fa4bc1fb9971a527571077eb0cD�4�
7a94ec0c411357ec66396223ab1a2614a6df7dcab88aacd0aeabf389ad033540D�3�
06dc7124955549934298d13f36f05d5c055ad9f2dc7291af7ea111042dff38c0D�2�
0d3a93f5635729a3341a43ad550bf5e1a022c431b725a9126b80bbb5bce8cdc2D�1�
2f3ecc42146a179224d79240ca93c8847a1d18a128540feb63355af3b7ac4a67D�0�
ca6596355a07541ba770e0a63ceee3a9117eed3bfcecff0d30b56b32bc0d6016D�/�
dd911d44d893c09a124700634046d5e3c9936eb30f6d85537e2f2aca791b4349
���7W��M��.c�9/Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��-c�U/Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��,cq/Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��+c]/Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���*c�/Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��)c�/Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040
��$�\�a��h��6cq0Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��5c]0Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���4c�0Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��3c�0Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��2c]0Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��1ce0Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��0cg0Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��/c�/Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365
4 N�r�4r��=c�1Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��<c]1Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��;ce1Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��:cg1Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��9c�0Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��8c�90Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��7c�U0Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680
{����c��Dcg2Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��Cc�1Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��Bc�91Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��Ac�U1Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��@cq1Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��?c]1Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���>c�1Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987
��8�=�o��[��Kc�U2Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��Jcq2Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��Ic]2Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���Hc�2Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��Gc�2Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��Fc]2Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��Ece2Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097
-.�R���-^��Sc]3Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���Rc�3Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��Qc�3Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��Pc]3Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��Oce3Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��Ncg3Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��Mc�2Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��Lc�92Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685
>���m�>^��Zc]4Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��Yce4Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��Xcg4Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097q��Wc�3Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��Vc�93Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��Uc�U3Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��Tcq3Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000
���7W��M��`c�94Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��_c�U4Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��^cq4Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��]c]4Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���\c�4Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987r��[c�4Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040
	Z�C�q��Z^��ic]5Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1482782^��hc]5Jan Grulich <jgrulich@redhat.com> - 5.9.1-1Y��- Update to 5.9.1
  Resolves: bz#1482782^��gc]5Jan Grulich <jgrulich@redhat.com> - 5.6.2-1Xv@- Update to 5.6.2
  Resolves: bz#1384821�
��fe�15Jan Grulich <jgrulich@redhat.com> - 5.6.1-10W�u@- Increase build version to have newer version than in EPEL
  Resolves: bz#1317404^��ec]5Jan Grulich <jgrulich@redhat.com> - 5.6.1-1WX�- Update to 5.6.1
  Resolves: bz#1317404c��dcg5Jan Grulich <jgrulich@redhat.com> - 5.6.0-5W4�- Enable documentation
  Resolves: bz#1317404g��cco5Jan Grulich <jgrulich@redhat.com> - 5.6.0-4WK�- Initial version for RHEL
  Resolves: bz#1317404D��bm5Rex Dieter <rdieter@fedoraproject.org> - 5.6.0-3V�- rebuildq��ac�4Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365
	���:�q��^��rc]6Jan Grulich <jgrulich@redhat.com> - 5.9.1-1Y��- Update to 5.9.1
  Resolves: bz#1482782^��qc]6Jan Grulich <jgrulich@redhat.com> - 5.6.2-1Xv@- Update to 5.6.2
  Resolves: bz#1384821�
��pe�16Jan Grulich <jgrulich@redhat.com> - 5.6.1-10W�u@- Increase build version to have newer version than in EPEL
  Resolves: bz#1317404^��oc]6Jan Grulich <jgrulich@redhat.com> - 5.6.1-1WX�- Update to 5.6.1
  Resolves: bz#1317404c��ncg6Jan Grulich <jgrulich@redhat.com> - 5.6.0-5W4�- Enable documentation
  Resolves: bz#1317404g��mco6Jan Grulich <jgrulich@redhat.com> - 5.6.0-4WK�- Initial version for RHEL
  Resolves: bz#1317404D��lm6Rex Dieter <rdieter@fedoraproject.org> - 5.6.0-3V�- rebuild�,��kc�w5Jan Grulich <jgrulich@redhat.com> - 5.9.7-2`��- libwebp security fixes:
  Resolves: bz#1961742
  Resolves: bz#1961743
  Resolves: bz#1961744
  Resolves: bz#1961745^��jc]5Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Update to 5.9.7
  Resolves: bz#1564007
	�<�C�q�^��{c]7Jan Grulich <jgrulich@redhat.com> - 5.6.2-1Xv@- Update to 5.6.2
  Resolves: bz#1384821�
��ze�17Jan Grulich <jgrulich@redhat.com> - 5.6.1-10W�u@- Increase build version to have newer version than in EPEL
  Resolves: bz#1317404^��yc]7Jan Grulich <jgrulich@redhat.com> - 5.6.1-1WX�- Update to 5.6.1
  Resolves: bz#1317404c��xcg7Jan Grulich <jgrulich@redhat.com> - 5.6.0-5W4�- Enable documentation
  Resolves: bz#1317404g��wco7Jan Grulich <jgrulich@redhat.com> - 5.6.0-4WK�- Initial version for RHEL
  Resolves: bz#1317404D��vm7Rex Dieter <rdieter@fedoraproject.org> - 5.6.0-3V�- rebuild�,��uc�w6Jan Grulich <jgrulich@redhat.com> - 5.9.7-2`��- libwebp security fixes:
  Resolves: bz#1961742
  Resolves: bz#1961743
  Resolves: bz#1961744
  Resolves: bz#1961745^��tc]6Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Update to 5.9.7
  Resolves: bz#1564007^��sc]6Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1482782
��<�)�\��r��c�8Jan Grulich <jgrulich@redhat.com> - 5.9.2-2ZWQ�- Avoid error about unbound variable
  Resolves: bz#1533040^��c]8Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1479097b��ce8Jan Grulich <jgrulich@redhat.com> - 5.9.1-3Y�@A- Add more rpm macros
  Resolves: bz#1479097c��cg8Jan Grulich <jgrulich@redhat.com> - 5.9.1-2Y�@@- Enable documentation
  Resolves: bz#1479097�,��c�w7Jan Grulich <jgrulich@redhat.com> - 5.9.7-2`��- libwebp security fixes:
  Resolves: bz#1961742
  Resolves: bz#1961743
  Resolves: bz#1961744
  Resolves: bz#1961745^��~c]7Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Update to 5.9.7
  Resolves: bz#1564007^��}c]7Jan Grulich <jgrulich@redhat.com> - 5.9.2-1Y�p@- Update to 5.9.2
  Resolves: bz#1482782^��|c]7Jan Grulich <jgrulich@redhat.com> - 5.9.1-1Y��- Update to 5.9.1
  Resolves: bz#1482782
�{����q��	c�8Jan Grulich <jgrulich@redhat.com> - 5.9.7-5_l�@- Fix buffer overflow in XBM parser
  Resolves: bz#1870365�M��c�98Jan Grulich <jgrulich@redhat.com> - 5.9.7-4^��@- Fix: Files placed by attacker can influence the working directory and lead to malicious code execution
  Resolves: bz#1814740
  Resolves: bz#1814685�[��c�U8Jan Grulich <jgrulich@redhat.com> - 5.9.7-3^M#@- Fix multilib issue with qtcore-config.h header file
  Resolves: bz#1534528

- Move libQt5EglFSDeviceIntegration lib into correct subpackage
  Resolves: bz#1792680h��cq8Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\\�- Enable -doc subpkg on PPC
  Resolves: bz#1564000^��c]8Jan Grulich <jgrulich@redhat.com> - 5.9.7-1\Yz�- Update to 5.9.7
  Resolves: bz#1564000���c�8Jan Grulich <jgrulich@redhat.com> - 5.9.2-3Z]�@- Rebuild due to missing RELRO (fixed in binutils)
  Resolves: bz#1534987
HC�7��H�
��[�;9Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��Y�U9Jarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���
Y�)9Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��Y�9Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���Y�?9Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��
Y�9Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274
�x�"�x��Y�:Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���Y�?:Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��Y�:Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���[�O9Honggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���[�C9Honggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��[�;9Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��[m9Honggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412
�{������[�C:Honggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��[�;:Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��[m:Honggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��[�;:Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��Y�U:Jarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���Y�):Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541
>g��>�V��"Y�U;Jarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���!Y�);Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x�� Y�;Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���Y�?;Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��Y�;Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���[�O:Honggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699
�q|�P��8��(Y�<Jarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���'[�O;Honggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���&[�C;Honggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��%[�;;Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��$[m;Honggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��#[�;;Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585

e�r+��V��:��eD�H�
cd0ee0b99212979ff9dd5d920ddf6f8d82ee56bbc646f1e3c3b7e62a102b1186D�G�
daae913efb6e4874bfa75dfcd0e5d7e7a5608566622349ab0a84cb1fb2583e70D�F�
afe9a7933f4656cf6daa79231cf44e96244592acfd586b9fbefcbbd00dbfa129D�E�
096e36a0f28a54f5ad7c593b2efd58ee933bf7f9c314927179a6d0244e0a596aD�D�
6800883f09c022594a86d5e180d107e71cc758c3f5f307af8b151a36b1f98818D�C�
623f1a82453fc1bd44617826a88974cd43fbbb30a2d72e47bd706b0deb895254D�B�
3b04769f0fca70f22717ac8026b0938bb9fbc4229eece6d24f30b72db5e9276dD�A�
2841663b99276082da78eea8a950fce8e865e7bca51a7bb46703fc30d76d9768D�@�
d94b31603d9a0603f9b8587d472ecc87593a0be74e3c99c956b06ed7a156102bD�?�
3aa4e1ccd9fd1a78767f931c25659037fc4cc3726f2bf2f979ed6ea52afe1815D�>�
08b1fcdb6cdc4ebc6e4b8009023baa7759c113cc1d67ef555df1cef33880d688D�=�
96ad2d995fd1cb55307d12d5cba4b02f11fe423d353b3a4e1479ccc4a628163dD�<�
351bd76d723a1fb9939e1e952f343ba53068b239d463ccd75fc7b724ffd4735b
�p�o��b��.[m<Honggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��-[�;<Honggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��,Y�U<Jarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296���+Y�)<Jarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��*Y�<Jarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���)Y�?<Jarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426
Tq�E�;T�b��4]�i=Sumit Bose <sbose@redhat.com> - 0.16.1-6Wrf�- Resolves: rhbz#1258745
- Resolves: rhbz#1258488
- Resolves: rhbz#1267563
- Resolves: rhbz#1293390
- Resolves: rhbz#1273924
- Resolves: rhbz#1274368
- Resolves: rhbz#1291924v��3_�=Stef Walter <stefw@redhat.com> - 0.16.1-5V �- Revert 0.16.1-4
- Use samba by default
- Resolves: rhbz#1271618���2_�9=Stef Walter <stefw@redhat.com> - 0.16.1-4U��@- Fix regressions in 0.16.x releases
- Resolves: rhbz#1258745
- Resolves: rhbz#1258488���1[�O<Honggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���0[�C<Honggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��/[�;<Honggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482
 �	��n� ���;c�=Sumit Bose <sbose@redhat.com> - 0.16.1-12.1_�G@use 'additional dns hostnames' with net ads join
- Resolves: rhbz#1849696�D��:_�+=Sumit Bose <sbose@redhat.com> - 0.16.1-12^�I�Fixes for RHEL-7.9
- Resolves: rhbz#1625001
- Resolves: rhbz#1625005
- Resolves: rhbz#1638396
- Resolves: rhbz#1714223
- Resolves: rhbz#1832134���9_�'=Sumit Bose <sbose@redhat.com> - 0.16.1-11[{��Improve fix for rhbz#1370457 and fix Coverity issues
- Resolves: rhbz#1370457�"��8_�g=Sumit Bose <sbose@redhat.com> - 0.16.1-10["X�Use current Samba options and read NetBIOS name from keytab
- Resolves: rhbz#1484072
- Resolves: rhbz#1370457i��7]y=Sumit Bose <sbose@redhat.com> - 0.16.1-9W�@Rebuild to fix wrong doc path
- Resolves: rhbz#1360702{��6]�=Sumit Bose <sbose@redhat.com> - 0.16.1-8W��@Fix man page reference in systemd service file
- Resolves: rhbz#1360702t��5]�
=Sumit Bose <sbose@redhat.com> - 0.16.1-7W��@doc: add computer-name to realm man page
- Related: rhbz#1293390
�p���i��A]y>Sumit Bose <sbose@redhat.com> - 0.16.1-9W�@Rebuild to fix wrong doc path
- Resolves: rhbz#1360702{��@]�>Sumit Bose <sbose@redhat.com> - 0.16.1-8W��@Fix man page reference in systemd service file
- Resolves: rhbz#1360702t��?]�
>Sumit Bose <sbose@redhat.com> - 0.16.1-7W��@doc: add computer-name to realm man page
- Related: rhbz#1293390�b��>]�i>Sumit Bose <sbose@redhat.com> - 0.16.1-6Wrf�- Resolves: rhbz#1258745
- Resolves: rhbz#1258488
- Resolves: rhbz#1267563
- Resolves: rhbz#1293390
- Resolves: rhbz#1273924
- Resolves: rhbz#1274368
- Resolves: rhbz#1291924v��=_�>Stef Walter <stefw@redhat.com> - 0.16.1-5V �- Revert 0.16.1-4
- Use samba by default
- Resolves: rhbz#1271618���<_�9>Stef Walter <stefw@redhat.com> - 0.16.1-4U��@- Fix regressions in 0.16.x releases
- Resolves: rhbz#1258745
- Resolves: rhbz#1258488
@Y�	�@�?��F_�!?Pavel Cahyna <pcahyna@redhat.com> - 2.4-3\-�@- Backport fixes for upstream bugs 1974 and 1975
- Apply upstream PR1954 (record permanent MAC address for bond members)
- Apply upstream PR2004 (support for custom network interface naming)
- Backport fix for upstream bug 1926 (support for LACP bonding and teaming)���Ec�>Sumit Bose <sbose@redhat.com> - 0.16.1-12.1_�G@use 'additional dns hostnames' with net ads join
- Resolves: rhbz#1849696�D��D_�+>Sumit Bose <sbose@redhat.com> - 0.16.1-12^�I�Fixes for RHEL-7.9
- Resolves: rhbz#1625001
- Resolves: rhbz#1625005
- Resolves: rhbz#1638396
- Resolves: rhbz#1714223
- Resolves: rhbz#1832134���C_�'>Sumit Bose <sbose@redhat.com> - 0.16.1-11[{��Improve fix for rhbz#1370457 and fix Coverity issues
- Resolves: rhbz#1370457�"��B_�g>Sumit Bose <sbose@redhat.com> - 0.16.1-10["X�Use current Samba options and read NetBIOS name from keytab
- Resolves: rhbz#1484072
- Resolves: rhbz#1370457
T��T���I_�C?Pavel Cahyna <pcahyna@redhat.com> - 2.4-7\�@- Backport fix for upstream bug 1913 (backup succeeds in case of tar error)
  Resolves: rhbz1631183
- Apply upstream patch PR1885
  Partition information recorded is unexpected when disk has 4K block size
  Resolves: rhbz1610638
- Apply upstream patch PR1887
  LPAR/PPC64 bootlist is incorrectly set when having multiple 'prep' partitions
  Resolves: rhbz1610647
- Apply upstream patch PR1993
  Automatically exclude $BUILD_DIR from the backup
  Resolves: rhbz1655956
- Require xorriso instead of genisoimage, it is now the preferred method
  and supports files over 4GB in size.
  Resolves: rhbz1462189���H_�K?Pavel Cahyna <pcahyna@redhat.com> - 2.4-5\��- Apply upstream PR2065 (record permanent MAC address for team members)
  Resolves: rhbz1685166z��G_�?Pavel Cahyna <pcahyna@redhat.com> - 2.4-4\u*@- Apply upstream PR2034 (multipath optimizations for lots of devices)
KK�4��K_�?Pavel Cahyna <pcahyna@redhat.com> - 2.4-9]A��- Apply upstream PR2173 - Cannot restore using Bacula method
  due to "bconsole" not showing its prompt
  Resolves: rhbz1726982�w��J_�?Pavel Cahyna <pcahyna@redhat.com> - 2.4-8]@1@- Backport fix for upstream issue 2187 (disklayout.conf file contains
  duplicate lines, breaking recovery in migration mode or when
  thin pools are used). PR2194, 2196.
  Resolves: rhbz1732328
++�P��La�A?Pavel Cahyna <pcahyna@redhat.com> - 2.4-11]e@- Apply upstream PR2122: add additional NBU library path to fix support for
  NetBackup 8.
  Resolves: rhbz1700807
- Apply upstream PR212: Be safe against empty docker_root_dir (issue 1989)
  Resolves: rhbz1711123, where ReaR can not create a backup in rescue mode,
  because it thinks that the Docker daemon is running and hits the problem
  with empty docker_root_dir.
- Apply upstream PR2223 and commit 36cf20e to avoid an empty string in the
  list of users to clone, which can lead to bash overflow with lots of users
  and groups per user and to wrong passwd/group files in the rescue system.
  Resolves: rhbz1692575
- Backport of Upstream fix for issue 2035: /run is not mounted in the rescue
  chroot, which causes LVM to hang, especially if rebuilding initramfs.
  Resolves: rhbz1697815
- Backport upstream PR 2218: avoid keeping build dir on errors
  by default when used noninteractively
  Resolves: rhbz1693608
�d����Nk�7?Václav Doležal <vdolezal@redhat.com> - 2.4-13^��@- Apply upstream PR2373: Skip Longhorn Engine replica devices
  Resolves: rhbz1842984���Mk�E?Václav Doležal <vdolezal@redhat.com> - 2.4-12^���- Apply upstream PR2346: Have '-iso-level 3' option also for ppc64le
  Resolves: rhbz1726043
�z��P_�@Pavel Cahyna <pcahyna@redhat.com> - 2.4-4\u*@- Apply upstream PR2034 (multipath optimizations for lots of devices)�e��Oa�k?Pavel Cahyna <pcahyna@redhat.com> - 2.4-15a�*@- Backport PR2608:
  Fix setting boot path in case of UEFI partition (ESP) on MD RAID
  Resolves: rhbz1945869
- Backport PR2625 & 2675
  Prevents accidental backup removal in case of errors
  Resolves: rhbz1843585
- Fix rsync error and option handling
  Fixes metadata storage when rsync user is not root
  Resolves: rhbz1947064
- Changes for NetBackup (NBU) support, upstream PR2544
  Resolves: rhbz2031833
- On POWER add bootlist & ofpathname to the list of required programs
  conditionally (bootlist only if running under PowerVM, ofpathname
  always except on PowerNV) - upstream PR2665, add them to package
  dependencies
  Resolves: rhbz1983008
- On POWER mount /sys in the chroot, otherwise ofpathname does not work
  and we risk ending up with not instlaling the bootloader properly
  Resolves: rhbz1983000
�g����R_�C@Pavel Cahyna <pcahyna@redhat.com> - 2.4-7\�@- Backport fix for upstream bug 1913 (backup succeeds in case of tar error)
  Resolves: rhbz1631183
- Apply upstream patch PR1885
  Partition information recorded is unexpected when disk has 4K block size
  Resolves: rhbz1610638
- Apply upstream patch PR1887
  LPAR/PPC64 bootlist is incorrectly set when having multiple 'prep' partitions
  Resolves: rhbz1610647
- Apply upstream patch PR1993
  Automatically exclude $BUILD_DIR from the backup
  Resolves: rhbz1655956
- Require xorriso instead of genisoimage, it is now the preferred method
  and supports files over 4GB in size.
  Resolves: rhbz1462189���Q_�K@Pavel Cahyna <pcahyna@redhat.com> - 2.4-5\��- Apply upstream PR2065 (record permanent MAC address for team members)
  Resolves: rhbz1685166
KK�4��T_�@Pavel Cahyna <pcahyna@redhat.com> - 2.4-9]A��- Apply upstream PR2173 - Cannot restore using Bacula method
  due to "bconsole" not showing its prompt
  Resolves: rhbz1726982�w��S_�@Pavel Cahyna <pcahyna@redhat.com> - 2.4-8]@1@- Backport fix for upstream issue 2187 (disklayout.conf file contains
  duplicate lines, breaking recovery in migration mode or when
  thin pools are used). PR2194, 2196.
  Resolves: rhbz1732328
++�P��Ua�A@Pavel Cahyna <pcahyna@redhat.com> - 2.4-11]e@- Apply upstream PR2122: add additional NBU library path to fix support for
  NetBackup 8.
  Resolves: rhbz1700807
- Apply upstream PR212: Be safe against empty docker_root_dir (issue 1989)
  Resolves: rhbz1711123, where ReaR can not create a backup in rescue mode,
  because it thinks that the Docker daemon is running and hits the problem
  with empty docker_root_dir.
- Apply upstream PR2223 and commit 36cf20e to avoid an empty string in the
  list of users to clone, which can lead to bash overflow with lots of users
  and groups per user and to wrong passwd/group files in the rescue system.
  Resolves: rhbz1692575
- Backport of Upstream fix for issue 2035: /run is not mounted in the rescue
  chroot, which causes LVM to hang, especially if rebuilding initramfs.
  Resolves: rhbz1697815
- Backport upstream PR 2218: avoid keeping build dir on errors
  by default when used noninteractively
  Resolves: rhbz1693608
�d����Wk�7@Václav Doležal <vdolezal@redhat.com> - 2.4-13^��@- Apply upstream PR2373: Skip Longhorn Engine replica devices
  Resolves: rhbz1842984���Vk�E@Václav Doležal <vdolezal@redhat.com> - 2.4-12^���- Apply upstream PR2346: Have '-iso-level 3' option also for ppc64le
  Resolves: rhbz1726043
 � r��Ya�@Pavel Cahyna <pcahyna@redhat.com> - 2.4-16bg�- Apply upstream PR2237 to include multipath disks in backup�e��Xa�k@Pavel Cahyna <pcahyna@redhat.com> - 2.4-15a�*@- Backport PR2608:
  Fix setting boot path in case of UEFI partition (ESP) on MD RAID
  Resolves: rhbz1945869
- Backport PR2625 & 2675
  Prevents accidental backup removal in case of errors
  Resolves: rhbz1843585
- Fix rsync error and option handling
  Fixes metadata storage when rsync user is not root
  Resolves: rhbz1947064
- Changes for NetBackup (NBU) support, upstream PR2544
  Resolves: rhbz2031833
- On POWER add bootlist & ofpathname to the list of required programs
  conditionally (bootlist only if running under PowerVM, ofpathname
  always except on PowerNV) - upstream PR2665, add them to package
  dependencies
  Resolves: rhbz1983008
- On POWER mount /sys in the chroot, otherwise ofpathname does not work
  and we risk ending up with not instlaling the bootloader properly
  Resolves: rhbz1983000
�g����[_�CAPavel Cahyna <pcahyna@redhat.com> - 2.4-7\�@- Backport fix for upstream bug 1913 (backup succeeds in case of tar error)
  Resolves: rhbz1631183
- Apply upstream patch PR1885
  Partition information recorded is unexpected when disk has 4K block size
  Resolves: rhbz1610638
- Apply upstream patch PR1887
  LPAR/PPC64 bootlist is incorrectly set when having multiple 'prep' partitions
  Resolves: rhbz1610647
- Apply upstream patch PR1993
  Automatically exclude $BUILD_DIR from the backup
  Resolves: rhbz1655956
- Require xorriso instead of genisoimage, it is now the preferred method
  and supports files over 4GB in size.
  Resolves: rhbz1462189���Z_�KAPavel Cahyna <pcahyna@redhat.com> - 2.4-5\��- Apply upstream PR2065 (record permanent MAC address for team members)
  Resolves: rhbz1685166
KK�4��]_�APavel Cahyna <pcahyna@redhat.com> - 2.4-9]A��- Apply upstream PR2173 - Cannot restore using Bacula method
  due to "bconsole" not showing its prompt
  Resolves: rhbz1726982�w��\_�APavel Cahyna <pcahyna@redhat.com> - 2.4-8]@1@- Backport fix for upstream issue 2187 (disklayout.conf file contains
  duplicate lines, breaking recovery in migration mode or when
  thin pools are used). PR2194, 2196.
  Resolves: rhbz1732328
++�P��^a�AAPavel Cahyna <pcahyna@redhat.com> - 2.4-11]e@- Apply upstream PR2122: add additional NBU library path to fix support for
  NetBackup 8.
  Resolves: rhbz1700807
- Apply upstream PR212: Be safe against empty docker_root_dir (issue 1989)
  Resolves: rhbz1711123, where ReaR can not create a backup in rescue mode,
  because it thinks that the Docker daemon is running and hits the problem
  with empty docker_root_dir.
- Apply upstream PR2223 and commit 36cf20e to avoid an empty string in the
  list of users to clone, which can lead to bash overflow with lots of users
  and groups per user and to wrong passwd/group files in the rescue system.
  Resolves: rhbz1692575
- Backport of Upstream fix for issue 2035: /run is not mounted in the rescue
  chroot, which causes LVM to hang, especially if rebuilding initramfs.
  Resolves: rhbz1697815
- Backport upstream PR 2218: avoid keeping build dir on errors
  by default when used noninteractively
  Resolves: rhbz1693608
�d����`k�7AVáclav Doležal <vdolezal@redhat.com> - 2.4-13^��@- Apply upstream PR2373: Skip Longhorn Engine replica devices
  Resolves: rhbz1842984���_k�EAVáclav Doležal <vdolezal@redhat.com> - 2.4-12^���- Apply upstream PR2346: Have '-iso-level 3' option also for ppc64le
  Resolves: rhbz1726043
 � r��ba�APavel Cahyna <pcahyna@redhat.com> - 2.4-16bg�- Apply upstream PR2237 to include multipath disks in backup�e��aa�kAPavel Cahyna <pcahyna@redhat.com> - 2.4-15a�*@- Backport PR2608:
  Fix setting boot path in case of UEFI partition (ESP) on MD RAID
  Resolves: rhbz1945869
- Backport PR2625 & 2675
  Prevents accidental backup removal in case of errors
  Resolves: rhbz1843585
- Fix rsync error and option handling
  Fixes metadata storage when rsync user is not root
  Resolves: rhbz1947064
- Changes for NetBackup (NBU) support, upstream PR2544
  Resolves: rhbz2031833
- On POWER add bootlist & ofpathname to the list of required programs
  conditionally (bootlist only if running under PowerVM, ofpathname
  always except on PowerNV) - upstream PR2665, add them to package
  dependencies
  Resolves: rhbz1983008
- On POWER mount /sys in the chroot, otherwise ofpathname does not work
  and we risk ending up with not instlaling the bootloader properly
  Resolves: rhbz1983000
Ld�Z���L�-��jY�BMark Huth <mhuth@redhat.com> - 0.9.7-6W{�@- Resolves: rhbz#1314606 - show progress with addattachment
- Resolves: rhbz#1314607 - problem with addattachment -s switch���iY�5BMark Huth <mhuth@redhat.com> - 0.9.7-3T��- Resolves: rhbz#1176473 - FTP upload via proxy
- Small changes to download progressr��hk}BKeith Robertson <kroberts@redhat.com> - 0.9.7-0TD�@- Proxy fix for file uploads
- Get a specific case groupW��gkGBKeith Robertson <kroberts@redhat.com> - 0.9.6-3T	��- Fix proxy upload attachmentd��fkaBKeith Robertson <kroberts@redhat.com> - 0.9.6-1S��- Display download progess for attachmentsI��ek+BKeith Robertson <kroberts@redhat.com> - 0.9.6-0S
�@- Various fixesQ��dk;BKeith Robertson <kroberts@redhat.com> - 0.9.5-8R|�- Resolves: rhbz#987168���ca�OAPavel Cahyna <pcahyna@redhat.com> - 2.4-17d�C@- Apply PR2431 to migrate XFS configuration files
- Fix typo in default.conf
  Resolves: #1882060
k�%��<�kr��qk}CKeith Robertson <kroberts@redhat.com> - 0.9.7-0TD�@- Proxy fix for file uploads
- Get a specific case groupW��pkGCKeith Robertson <kroberts@redhat.com> - 0.9.6-3T	��- Fix proxy upload attachmentd��okaCKeith Robertson <kroberts@redhat.com> - 0.9.6-1S��- Display download progess for attachmentsI��nk+CKeith Robertson <kroberts@redhat.com> - 0.9.6-0S
�@- Various fixes�/��me�{BPranita Ghole <pghole@redhat.com> - 0.13.0-0a�@- Resolves: rhbz#1653574- Add support for handling JSON response from API's
- Resolves: rhbz#1765391- Add support to upload to and download from S3
- Resolves: rhbz#2030066- RHST should use new Red Hat Secure FTP instead of dropbox for attachments���le�)BPranita Ghole <pghole@redhat.com> - 0.12.1-1]c�- Resolves: rhbz#1669454 - connection.py uses incorrect base64 encoding methodL��kc9BVikas Rathee <vrathee@redhat.com> - 0.9.8-1Y&�@- Correcting changelog
&u�s��&�	��wc�1CSwaraj Pande <spande@redhat.com> - 0.14.0-1e��@- Resolves: RHEL-22245 - Deprecate the Basic Authentication in redhat-support-tool�/��ve�{CPranita Ghole <pghole@redhat.com> - 0.13.0-0a�@- Resolves: rhbz#1653574- Add support for handling JSON response from API's
- Resolves: rhbz#1765391- Add support to upload to and download from S3
- Resolves: rhbz#2030066- RHST should use new Red Hat Secure FTP instead of dropbox for attachments���ue�)CPranita Ghole <pghole@redhat.com> - 0.12.1-1]c�- Resolves: rhbz#1669454 - connection.py uses incorrect base64 encoding methodL��tc9CVikas Rathee <vrathee@redhat.com> - 0.9.8-1Y&�@- Correcting changelog�-��sY�CMark Huth <mhuth@redhat.com> - 0.9.7-6W{�@- Resolves: rhbz#1314606 - show progress with addattachment
- Resolves: rhbz#1314607 - problem with addattachment -s switch���rY�5CMark Huth <mhuth@redhat.com> - 0.9.7-3T��- Resolves: rhbz#1176473 - FTP upload via proxy
- Small changes to download progress
!��!�@��zY�)DMark Huth <mhuth@redhat.com> - 0.9.8-6W{�@- Resolves: rhbz#1104344 - add soscleaner
- Resolves: rhbz#1273976 - caches bad password
- Resolves: rhbz#1284306 - improve ? help
- Resolves: rhbz#1284308 - show attachment sizes
- Resolves: rhbz#1284309 - show attachment full path
- Resolves: rhbz#1284314 - differentiate diagnose and analyze
- Resolves: rhbz#1290909 - change case internal status
- Resolves: rhbz#1351141 - reverse severity list���yY�)DMark Huth <mhuth@redhat.com> - 0.9.7-4T��- Resolves: rhbz#1196297 - typos in opencase
- Resolves: rhbz#1196316 - change menus when closing a case
- Fallback to ownerSSOName if associateSSOName filter gets 404 error in listcases
- Other small fixes���xY�IDMark Huth <mhuth@redhat.com> - 0.9.7-3T��- Resolves: rhbz#1168414 - rhel7 vmcore offset
- Resolves: rhbz#1174461 - skip already downloaded attachments
- Resolves: rhbz#1176473 - fix addattachment via FTP and proxy
- Make debug_repos configurable via config option
�����7��~e�DVikas Rathee <vrathee@redhat.com> - 0.9.10-1Y��- Resolves: rhbz#1342627 - List cases by group.
- Resolves: rhbz#1379619 - Inform when http_proxy environment variable is used.���}c�7DVikas Rathee <vrathee@redhat.com> - 0.9.9-3Y.�@- Resolves: rhbz#1380109 - Correcting spacing in non-interactive mode search results.���|c�QDVikas Rathee <vrathee@redhat.com> - 0.9.9-2Y&�@- Resolves: rhbz#1380109 - Include last modified date for solutions in non-interactive mode search�L��{c�7DVikas Rathee <vrathee@redhat.com> - 0.9.9-1Y�@- Resolves: rhbz#1380109 - Include creation date and last modified date in Solution title details.
- Resolves: rhbz#1342628 - When opening a new case, offer a default product.
- Resolves: rhbz#1342632 - When opening a new case, offer to use the default case group of that user.
O�0��e�}DPranita Ghole <pghole@redhat.com> - 0.13.0-0a�- Resolves: rhbz#2030063- Add support for handling JSON response from API's 
- Resolves: rhbz#1765392- Add support to upload to and download from S3
- Resolves: rhbz#2030065- RHST should use new Red Hat Secure FTP instead of dropbox for attachments�.��e�yDPranita Ghole <pghole@redhat.com> - 0.12.2-1]e@- Resolves: rhbz#1547763 - redhat-support-tool: UnboundLocalError: local variable 'timer' referenced before assignment�y��e�DPranita Ghole <pghole@redhat.com> - 0.9.11-1\��- Resolves: rhbz#1418701 - [RFE] Add functionality to generate and send sosreport after selecting the case
- Resolves: rhbz#1592850 - [RFE] Generate and upload sosreport to case from cli
- Resolves: rhbz#1678347 - Update redhat-support-tool to use latest soscleaner
- Resolves: rhbz#1670033 - redhat-support-tool env var http_proxy does not work with user and password
- Resolves: rhbz#1457436 -  [RFE][RHEL7] Include Reason in cases of failed proxy
6�6�@��Y�)EMark Huth <mhuth@redhat.com> - 0.9.8-6W{�@- Resolves: rhbz#1104344 - add soscleaner
- Resolves: rhbz#1273976 - caches bad password
- Resolves: rhbz#1284306 - improve ? help
- Resolves: rhbz#1284308 - show attachment sizes
- Resolves: rhbz#1284309 - show attachment full path
- Resolves: rhbz#1284314 - differentiate diagnose and analyze
- Resolves: rhbz#1290909 - change case internal status
- Resolves: rhbz#1351141 - reverse severity list���Y�)EMark Huth <mhuth@redhat.com> - 0.9.7-4T��- Resolves: rhbz#1196297 - typos in opencase
- Resolves: rhbz#1196316 - change menus when closing a case
- Fallback to ownerSSOName if associateSSOName filter gets 404 error in listcases
- Other small fixesbR=dRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������<���=<���D=��K=��S=��Z=��`=��i=��r=��{=��=��	=	��=
��=��=��"=
��(=��.=��4=��;=��A=��F=��I=��K=��L=��N=��P=��R=��T=��U=��W=��Y=��[=��]= ��^=!��`="��b=#��j=$��q=%��w=&��z='��~=(��=)��=+��=,��
=-��=.��=/��=0�� =1��&=2��+=4��0=5��5=6��;=7��@=8��F=9��L=:��Q=;��V=<��[==��a=>��f=?��k=@��p=A��v=B��{=C��=D��=E��=F��=G��=H��=I��!=J��&=K��+=M��1=N��6=O��;=P��@=Q��F=R��K=S��P=T��U=U��[=V��`=W��f=X��l=Y��q=Z��v=[��{=\��~=]��=^��=_��
=`��=a��=b��=c��
�����7��e�EVikas Rathee <vrathee@redhat.com> - 0.9.10-1Y��- Resolves: rhbz#1342627 - List cases by group.
- Resolves: rhbz#1379619 - Inform when http_proxy environment variable is used.���c�7EVikas Rathee <vrathee@redhat.com> - 0.9.9-3Y.�@- Resolves: rhbz#1380109 - Correcting spacing in non-interactive mode search results.���c�QEVikas Rathee <vrathee@redhat.com> - 0.9.9-2Y&�@- Resolves: rhbz#1380109 - Include last modified date for solutions in non-interactive mode search�L��c�7EVikas Rathee <vrathee@redhat.com> - 0.9.9-1Y�@- Resolves: rhbz#1380109 - Include creation date and last modified date in Solution title details.
- Resolves: rhbz#1342628 - When opening a new case, offer a default product.
- Resolves: rhbz#1342632 - When opening a new case, offer to use the default case group of that user.
O�0��
e�}EPranita Ghole <pghole@redhat.com> - 0.13.0-0a�- Resolves: rhbz#2030063- Add support for handling JSON response from API's 
- Resolves: rhbz#1765392- Add support to upload to and download from S3
- Resolves: rhbz#2030065- RHST should use new Red Hat Secure FTP instead of dropbox for attachments�.��	e�yEPranita Ghole <pghole@redhat.com> - 0.12.2-1]e@- Resolves: rhbz#1547763 - redhat-support-tool: UnboundLocalError: local variable 'timer' referenced before assignment�y��e�EPranita Ghole <pghole@redhat.com> - 0.9.11-1\��- Resolves: rhbz#1418701 - [RFE] Add functionality to generate and send sosreport after selecting the case
- Resolves: rhbz#1592850 - [RFE] Generate and upload sosreport to case from cli
- Resolves: rhbz#1678347 - Update redhat-support-tool to use latest soscleaner
- Resolves: rhbz#1670033 - redhat-support-tool env var http_proxy does not work with user and password
- Resolves: rhbz#1457436 -  [RFE][RHEL7] Include Reason in cases of failed proxy
<r�yM�<���u�/FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��u}FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��u�[FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��
qFOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��q�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�	��c�1ESwaraj Pande <spande@redhat.com> - 0.14.0-1e��@- Resolves: RHEL-22246 - Deprecate the Basic Authentication in redhat-support-tool
�~�"��v��qGOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950���w�-FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��w�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���u�/FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��u�FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��u�	FOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737
{�Y�A{�A��u�GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��u�	GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���u�/GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��u}GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��u�[GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121
uj�T�u�'�� u�[HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121�.��w�gGOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���w�-GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��w�GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���u�/GOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151
���m��|��&w�HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���%u�/HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��$u�HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��#u�	HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���"u�/HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��!u}HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779
�j��K�~��+u�	IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���*u�/IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992�Q��)w�-HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070�.��(w�gHOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���'w�-HOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798

e�r+��V��:��eD�U�
980d1c1b856c308eb7fb1dc1f32d4d5d9828a5ac152037e4fcb99050874e9506D�T�
3252927809ad349b76f38136eaa163f3abd94c46df6a5933f90e8bb2f0d633e3D�S�
3ef3e8c076f637b1c91f85480d4df87d7fe63a0aee8b42f8fc774dd84b683aa2D�R�
6d0aee209b29a68899270b50fbdb5657444b46017f3f4b39ff4652e77f30292cD�Q�
37e88e4bf1d956c4200c41a6b0592a43ed17ce9e8ba6f60c8856ef69516f2d52D�P�
d2d500ea0189e3f9d7f6ce3102af96d24e0a9a06f89ce42f89346c33e7d48100D�O�
69e3af51dee6dd3aca7ef07201a7beeaa6d764016a11afffdabce904928aee48D�N�
fd2db008a8253afbc54436a251251bbe5b6346f3c7a12892e6fe0b2aeb947358D�M�
b471f99ddcb78e386e77a4c7bf4a814b35fce51259b2f34d2daa9be4e09d6e98D�L�
9183798963f96d58d5fcaf70beb6047196f8bc9b1b7767de2b59e133fe27c94bD�K�
898a07f35eaa8781f7f96ee6666297c5864472115945d11efcee3bfabc801e33D�J�
1f633f20c7b2aa6eafb4ac8894d9cd73727c40432189eee52f62aee11daf62e9D�I�
da05fbb9b8450a92e98610e675aa2f6b8d363493edbf91cc645a281adce116ff
�:�$���.��0w�gIOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���/w�-IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��.w�IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���-u�/IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��,u�IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936
�*��]��A��5u�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��4u�	JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737�&��3w�WIOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.18cQ8@- db2: add PRIMARY/REMOTE_CATCHUP_PENDING/CONNECTED status to promote-check

  Resolves: rhbz#2127477���2w�AIOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.17c@�- awsvip: dont partially match similar IPs during monitor-action

  Resolves: rhbz#1940097�Q��1w�-IOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070
+j�T��+���;w�AJOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.17c@�- awsvip: dont partially match similar IPs during monitor-action

  Resolves: rhbz#1940097�Q��:w�-JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070�.��9w�gJOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���8w�-JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��7w�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���6u�/JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151
TU��T�5��@q�{KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081���?q�=KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-55^���- sap-cluster-connector: allow dashes/underscores in nodenames

  Resolves: rhbz#1829085���>q�OKOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-54^��- aws-vpc-route53: new resource agent for AWS
- aws-vpc-move-ip: add "routing_table_role" parameter
- aws-vpc-move-ip: delete remaining route entries

  Resolves: rhbz#1759113
  Resolves: rhbz#1810466
  Resolves: rhbz#1828895���=w�JOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.20e�M@- bundled pycryptodome: fix CVE-2023-52323

  Resolves: RHEL-20914�&��<w�WJOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.18cQ8@- db2: add PRIMARY/REMOTE_CATCHUP_PENDING/CONNECTED status to promote-check

  Resolves: rhbz#2127477
6e�W��6w��Fu}KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��Eu�[KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��DqKOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��Cq�KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��Bq�%KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���Aq�=KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283
lj�z�l{��Lq�LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��Kq�%LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���Jq�=LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283�5��Iq�{LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081���Hq�=LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-55^���- sap-cluster-connector: allow dashes/underscores in nodenames

  Resolves: rhbz#1829085���Gu�/KOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992
��Z�I�~��Qu�	LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���Pu�/LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��Ou}LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��Nu�[LOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��MqLOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950
#F��#v��VqMOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��Uq�MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��Tq�%MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���Sq�=MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283�5��Rq�{MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081
{�Y�A{�A��[u�MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��Zu�	MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���Yu�/MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��Xu}MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��Wu�[MOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121
H��`�H~��au�	NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���`u�/NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��_u}NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��^u�[NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��]qNOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��\q�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750
:�$�v��fqOOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950���ew�-NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��dw�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���cu�/NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��bu�NOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936
{�Y�A{�A��ku�OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��ju�	OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���iu�/OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��hu}OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��gu�[OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121
uj�T�u�'��pu�[POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121�.��ow�gOOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���nw�-OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��mw�OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���lu�/OOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151
���m��|��vw�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���uu�/POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��tu�POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��su�	POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���ru�/POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��qu}POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779
�j��K�~��{u�	QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���zu�/QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992�Q��yw�-POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070�.��xw�gPOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���ww�-POyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798
�:�$���.��w�gQOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���w�-QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��~w�QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���}u�/QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��|u�QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936
�*��]��A��u�ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��u�	ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737�&��w�WQOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.18cQ8@- db2: add PRIMARY/REMOTE_CATCHUP_PENDING/CONNECTED status to promote-check

  Resolves: rhbz#2127477���w�AQOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.17c@�- awsvip: dont partially match similar IPs during monitor-action

  Resolves: rhbz#1940097�Q��w�-QOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070
+j�T��+���w�AROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.17c@�- awsvip: dont partially match similar IPs during monitor-action

  Resolves: rhbz#1940097�Q��
w�-ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070�.��	w�gROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���w�-ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��w�ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���u�/ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151
TU��T�5��q�{SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081���q�=SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-55^���- sap-cluster-connector: allow dashes/underscores in nodenames

  Resolves: rhbz#1829085���q�OSOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-54^��- aws-vpc-route53: new resource agent for AWS
- aws-vpc-move-ip: add "routing_table_role" parameter
- aws-vpc-move-ip: delete remaining route entries

  Resolves: rhbz#1759113
  Resolves: rhbz#1810466
  Resolves: rhbz#1828895���
w�ROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.20e�M@- bundled pycryptodome: fix CVE-2023-52323

  Resolves: RHEL-20914�&��w�WROyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.18cQ8@- db2: add PRIMARY/REMOTE_CATCHUP_PENDING/CONNECTED status to promote-check

  Resolves: rhbz#2127477
6e�W��6w��u}SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��u�[SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��qSOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��q�SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��q�%SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���q�=SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283
lj�z�l{��q�TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��q�%TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���q�=TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283�5��q�{TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081���q�=TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-55^���- sap-cluster-connector: allow dashes/underscores in nodenames

  Resolves: rhbz#1829085���u�/SOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992
��Z�I�~��!u�	TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737��� u�/TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��u}TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��u�[TOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��qTOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950
#F��#v��&qUOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��%q�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��$q�%UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���#q�=UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283�5��"q�{UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081
{�Y�A{�A��+u�UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��*u�	UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���)u�/UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��(u}UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��'u�[UOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121

e�r+��V��:��eD�b�
573a2c4f5486b06a893fb7f1e7a97a45c7fe7c28b4314f367ca8116a785809baD�a�
e8d290b951820742ddb84f040482ef781da092f44db1523ea7d4b25d3674bd2bD�`�
98f3b8342ce89b923c57a4b705d3efa4f050f19a729aee47d0a57f765db515e0D�_�
c5f0f07eae306ab7f2f7b4798fc0f577aa6584d592fcf290ae03ea28e66a9ebaD�^�
cc89949280e927133ec7bcd3f3d4e2b299ae223f458650d04bc324a015418f95D�]�
259d7d947d78e3105849ae7a9929d030e772e103b7c652d987701a6a7d08f78dD�\�
7a120b5dad1d3423bed8b8972e2921ed34ecc22037b1ceae0e2a44fd7079bfe1D�[�
d03be814a86828be3841393ebfa51e9a8c3907a53dbae5960d470f20fd79d04cD�Z�
639a97b21ae7b51141fd76f2777d2f3ea1bd758549e53130764657fafe2daf7aD�Y�
5950600c8fad63a2225e6de0a7ee94e2ae7e8d5131aa6b799923c80580f5f7d5D�X�
ce2b479d726968ea27bfbfd9dc3bf20a2ef62e6ab1f4d3b4a0e6d4230a9ef0ecD�W�
7f1d9434068b1dab6eb2d4673f1f11fee7c197500b464616bdb606f4cb097f8eD�V�
61c74a7c104da9dbf65e04e0cc9a97adda225fc72f10000914e503e0bae407ab
H��`�H~��1u�	VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���0u�/VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��/u}VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��.u�[VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��-qVOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��,q�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750
:�$�v��6qWOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950���5w�-VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��4w�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���3u�/VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��2u�VOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936
{�Y�A{�A��;u�WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��:u�	WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���9u�/WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��8u}WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��7u�[WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121
uj�T�u�'��@u�[XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121�.��?w�gWOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���>w�-WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��=w�WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���<u�/WOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151
���m��|��Fw�XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���Eu�/XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��Du�XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��Cu�	XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���Bu�/XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��Au}XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779
�j��K�~��Ku�	YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���Ju�/YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992�Q��Iw�-XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070�.��Hw�gXOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���Gw�-XOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798
�:�$���.��Pw�gYOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���Ow�-YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��Nw�YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���Mu�/YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151�A��Lu�YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936
�*��]��A��Uu�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��Tu�	ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737�&��Sw�WYOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.18cQ8@- db2: add PRIMARY/REMOTE_CATCHUP_PENDING/CONNECTED status to promote-check

  Resolves: rhbz#2127477���Rw�AYOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.17c@�- awsvip: dont partially match similar IPs during monitor-action

  Resolves: rhbz#1940097�Q��Qw�-YOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070
+j�T��+���[w�AZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.17c@�- awsvip: dont partially match similar IPs during monitor-action

  Resolves: rhbz#1940097�Q��Zw�-ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.15a��@- gcp-pd-move/gcp-vpc-move-route/gcp-vpc-move-vip: dont fail with
  configuration rc when it might be a network hickup

  Resolves: rhbz#2042070�.��Yw�gZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.13`�]�- SAPHana: use actual_mode from global.ini and fallback to mode when
  it's not set

  Resolves: rhbz#1855888���Xw�-ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.11`��- gcp-pd-move: dont stop partially matched "disk_name"

  Resolves: rhbz#1935798|��Ww�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.10`\{@- aws-vpc-move-ip: add ENI lookup

  Resolves: rhbz#1939282���Vu�/ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.9`J@- azure-lb: redirect to avoid nc dying with EPIPE error

  Resolves: rhbz#1937151
TU��T�5��`q�{[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081���_q�=[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-55^���- sap-cluster-connector: allow dashes/underscores in nodenames

  Resolves: rhbz#1829085���^q�O[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-54^��- aws-vpc-route53: new resource agent for AWS
- aws-vpc-move-ip: add "routing_table_role" parameter
- aws-vpc-move-ip: delete remaining route entries

  Resolves: rhbz#1759113
  Resolves: rhbz#1810466
  Resolves: rhbz#1828895���]w�ZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.20e�M@- bundled pycryptodome: fix CVE-2023-52323

  Resolves: RHEL-20914�&��\w�WZOyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.18cQ8@- db2: add PRIMARY/REMOTE_CATCHUP_PENDING/CONNECTED status to promote-check

  Resolves: rhbz#2127477
6e�W��6w��fu}[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��eu�[[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��dq[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��cq�[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��bq�%[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���aq�=[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283
lj�z�l{��lq�\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��kq�%\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���jq�=\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283�5��iq�{\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081���hq�=\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-55^���- sap-cluster-connector: allow dashes/underscores in nodenames

  Resolves: rhbz#1829085���gu�/[Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992
��Z�I�~��qu�	\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���pu�/\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��ou}\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��nu�[\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121v��mq\Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950
#F��#v��vq]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61^�y�- exportfs: add symlink support

  Resolves: rhbz#1601950{��uq�]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-60^�@- nfsserver: fix NFSv4-only support

  Resolves: rhbz#1840750�
��tq�%]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-59^ϧ�- gcp-pd-move: new resource agent for Google Cloud

  Resolves: rhbz#1633249���sq�=]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-58^��@- db2 (HADR): promote standby node when master node disappears

  Resolves: rhbz#1720283�5��rq�{]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-56^���- sap-hana-scaleout: set default timeouts based on recommendations
  and a couple of bugfixes

  Resolves: rhbz#1829081
{�Y�A{�A��{u�]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.8`<�@- gcp-vpc-move-route, gcp-vpc-move-vip: add project parameter and
  make vpc_network parameter optional

  Resolves: rhbz#1913936~��zu�	]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.5_�@- AWS agents: add support for IMDSv2

  Resolves: rhbz#1905737���yu�/]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.4_w@- Upgrade bundled python-httplib2 to fix CVE-2020-11078

  Resolves: rhbz#1850992w��xu}]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.2_FN�- azure-lb: fix redirect issue

  Resolves: rhbz#1850779�'��wu�[]Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.1.1-61.1_'�@- gcp-vpc-move-vip: add support for multiple alias IPs
- sybaseASE: run verify action during start action only
- azure-events: handle exceptions in urlopen

  Resolves: rhbz#1846732
  Resolves: rhbz#1848673
  Resolves: rhbz#1862121
�1���n��~g�w^William Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��}g�u^William Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)�J��|g�/^William Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)
��>a��9��o�^Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��g�K^William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��o�^Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��o�^Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
>� �>�@��o�_Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���g�K^William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A^William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�^Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
������C��
o�_Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��	o�_Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��g�K_William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��o�_Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
�h��j�}��o�
_Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!_Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��
o�3_Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K_William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A_William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�#e����g�A`William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�`Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��o�`Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��g�K`William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)
c������o�C`Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�`Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
`Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!`Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3`Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K`William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�B�b����g�KaWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�AaWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�aChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��o�aChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�S����"o�CaChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��!o�aChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}�� o�
aChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!aChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3aChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�7����%g�AbWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��$o�bChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�|��#o�aChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)
c������+o�CbChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��*o�bChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��)o�
bChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���(o�!bChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��'o�3bChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���&g�KbWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��,o�bChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����/g�KcWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���.g�AcWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��-e�kbPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidek=h

e�r+��V��:��eD�o�
d850176c0a4cdf0424b72ae4e068e7464ebcaba44a41850c646e0e7b0e8b2ac7D�n�
6055927e846079a3ce12f1dd26324dd574b3c9ee5586ac850d83353548a1f68cD�m�
6e90444675848a4c5c3119f364cbb66d41bf048c40ae4f2af79225fe2278dcb4D�l�
e085961e3f16d1265f8327c5a41bf5ca2eea0419c2b09b20092466009a492983D�k�
838de1ef14179e1a8bb9c6a1bab3b688e72d7571e8442fa520294f469817484eD�j�
a2f2af622884bf98fdf41e5b0a6ddb5e6e8b63443f213bbaecd8e9e08096de98D�i�
55a9b8612201e7db7b7823d8075e79401bb12973850ce1975a877189671c59f7D�h�
f864e79dfe36d75d7556fb743ec1038d71b3a2297a830d51c78853475c425d76D�g�
6999892560bc188d71af958078c8b9560ffeb626747978ac0a90a392c446598fD�f�
7ec2f032f1c9b576b66559472dbe5f59eff0b891da2e1c9a1794711b872c6cdbD�e�
5fb69356881606ecd95f99c9d00d35c86e20c4e0489e6983a59445f286cf8d70D�d�
743d9e213a14ae1fa06bcef18a210a44805cb5da5b65c0f584ac8098ed4b81e6D�c�
88d0132317540d77db005b570d44a340644516f643914b0a811161f3f3f83a7f
�+�S����4o�CcChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��3o�cChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��2o�
cChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���1o�!cChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��0o�3cChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��5o�cChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���8g�AdWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��7amcJiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��6e�kcPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidek=m
c������>o�CdChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��=o�dChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��<o�
dChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���;o�!dChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��:o�3dChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���9g�KdWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��?o�dChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��@e�kdPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidek=q
�������Do�!eChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Co�3eChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Bg�KeWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��Ae�}dPino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��Ho�eChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���Go�CeChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Fo�eChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Eo�
eChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��Ie�kePino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidek=u
�C����M��fPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)���L��#fPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)�C��KQ�7ePino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��Je�}ePino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
�u�V�W��_��ToSfMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��SoufMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��Ro�fPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��Q�mfPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���P�}fPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���O��%fPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���Ng�'fTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)
h��`�_�hp��[ougMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��Zo�gPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��Y�mgPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���X�}gPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���W��%gPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���Vg�'gTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��Uo�fMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)
[�"�w�[���bg�'hTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���a��hPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)���`��#hPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)r��_oygMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���^o�AgMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��]o�gMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��\oSgMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patch
�f�e�n�w��io�hMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��hoShMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��gouhMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��fo�hPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��e�mhPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���d�}hPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���c��%hPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)
�u�V�W��_��poSiMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��oouiMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��no�iPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��m�miPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���l�}iPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���k��%iPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���jg�'iTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)
$��s�I�$���w��%jPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���vg�'jTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���u��jPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)���t��#jPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)r��soyiMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���ro�AiMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��qo�iMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)
�{�|�*����~g�'kTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��}o�jMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��|oSjMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��{oujMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��zo�jPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��y�mjPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���x�}jPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)
�f�e�n�w��o�kMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��oSkMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��oukMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��o�kPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x���mkPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)����}kPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)�����%kPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)
d�U�9�����}lPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)�����%lPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���
g�'lTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���	��lPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)�����#lPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)r��oykMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���o�AkMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271
���*�������mPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)�����#mPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)w��o�lMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��oSlMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��oulMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��o�lPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��
�mlPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)
�u�V�W��_��oSmMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��oumMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��o�mPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x���mmPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)����}mPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)�����%mPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���g�'mTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)
h��`�_�hp��!ounMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)�� o�nPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x���mnPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)����}nPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)�����%nPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���g�'nTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��o�mMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)
f�"���f���(�}oPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���'��%oPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���&g�'oTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)r��%oynMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���$o�AnMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��#o�nMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��"oSnMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patch
���*��r��/oyoMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���.o�AoMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��-o�oMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��,oSoMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��+ouoMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��*o�oPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��)�moPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)

e�r+��V��:��eD�|�
dc47fdc3f4078f0e108d5906bf66ded4e5642cacf6309ac532e5e06c533878baD�{�
0f2573a885d17c39d3733cec678c69833ac6d49b29e7e65f7783644066ec0b8dD�z�
55f08ad739819e709de85f5c4527291e0f16eaae36d650b0616bbe2b34dda6cdD�y�
9d9440a2b4ed4979c7741c8ff246d32dd982cf24ff59fb679bee4516ab71f0d1D�x�
5bf6acef9988011be2fdcbfe74a0c08dafb93852b5728854c765bf5d29f344b1D�w�
bd8c7fed84bd9c96c9070953fff9bc087ea7a8ba8cd56bfd5fc956ef76df0492D�v�
cdf297d87f9e31de2e54f1bf4d87339af059f5d4048b6160bee5114397b3fa21D�u�
4be78491df030e9fec9f5e5789c29611f39d783a9bf1e70cab686d996dc7f9eeD�t�
0474de8faa6866555281a93c12b25c1f8e532892f9dec72d0ccbaedaa2257d75D�s�
d1937f2c7485f2270affb2fae284834c2bfb13cad80964b9cd2717fed8279cbcD�r�
2ebad179e5985efceb7d0129bf95c5bdb47be73f2fad61d7da432bf901ce14faD�q�
74d5c2dc05acd6045abc44a395a51bc278efcd90d8b9949118c7b18193eccde5D�p�
0de926f65070e07d518fd6dde604c0aa41ed7aedee86e9dbd0db39abed1534cbv<J�NTZ`flrx~��������������������� &,28>DJPV\bhntz����������������������
"(.4:@FLRX^djpv|���������������������HB<J��J��Ju�8ɤ*8�792�D9��Q:�^:K�k:^�x:x�:��;�;7�,;L�9;��F;�S<-�`<C�m<Z�z<p�<��<�!<�.<��;=�H=3�U=L�b=j�o=��|=��	=��=֧#=��0>�=>6�J>V�W>��d>̧q>�~?�?�?3�%?K�2?f�??��L?��Y?��f?Ψs?�?��
@�@2�'@L�4@f�A@�N@��[@��h@Ωu@�A�A)�AF�)A^�6A��CA��PA�]B;�jB~�wBūC
�CP�C��+C۫8D�EDb�RD��_D�lE7�yE}�E��F� F0�-F^�:F��GF��TF�aF��nG2�{Gg�G��G˭"Gޭ/G�<G��IH�VH(�cHJ�pHl�}H��
H��HЮ$H�1I�>I<�KIX�XIm�eI��rI��I��I��Iد&I�3J�@J�MJ1�ZJG�gJ]�t
-g�K�,�-��6o�pPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��5�mpPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���4�}pPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���3��%pPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���2g�'pTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���1��pPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)���0��#pPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)
��)�#��x��=�mqPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���<�}qPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���;��%qPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���:g�'qTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��9o�pMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��8oSpMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��7oupMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)
�}	�+�����D��#rPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)r��CoyqMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���Bo�AqMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��Ao�qMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��@oSqMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��?ouqMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��>o�qPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)
Ro�J�I�Rp��KourMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��Jo�rPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��I�mrPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���H�}rPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���G��%rPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���Fg�'rTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���E��rPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)
N�"��m�N���R�}sPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���Q��%sPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���Pg�'sTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���O��sPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)���N��#sPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)w��Mo�rMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��LoSrMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patch
���*�$����Y��%tPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���Xg�'tTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��Wo�sMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��VoSsMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��UousMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��To�sPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��S�msPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)
{�|�*�r��aoytMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���`o�AtMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��_o�tMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��^oStMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��]outMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��\o�tPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��[�mtPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���Z�}tPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)
�u�V�W��_��hoSuMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��gouuMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��fo�uPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��e�muPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���d�}uPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���c��%uPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���bg�'uTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)
$��s�I�$���o��%vPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���ng�'vTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���m��vPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)���l��#vPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)r��koyuMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���jo�AuMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��io�uMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)
�{�|�*����v��#wPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)w��uo�vMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��toSvMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��souvMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��ro�vPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��q�mvPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���p�}vPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)
Ro�J�I�Rp��}ouwMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��|o�wPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��{�mwPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���z�}wPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���y��%wPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���xg�'wTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���w��wPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)
y�"��x�y��o�xPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x���mxPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)����}xPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)�����%xPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���g�'xTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��o�wMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��~oSwMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patch
w�)��w�����%yPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���
g�'yTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)r��	oyxMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���o�AxMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��o�xMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��oSxMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��ouxMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)
{�|�*�r��oyyMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���o�AyMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��o�yMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��oSyMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��ouyMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��o�yPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��
�myPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)����}yPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)
-g�K�,�-��o�zPanu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x���mzPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)����}zPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)�����%zPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���g�'zTomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)�����zPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)�����#zPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)bR=�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������=e��%=f��+=g��,=i��/=k��4=l��5=n��8=o��>=p��?=r��@=s��D=t��H=v��I=w��M=x��T=y��[=z��b={��i=|��p=}��w=~��~=��=���=���=���=���!=���(=���/=���6=���==���D=���K=���R=���Y=���a=���h=���o=���v=���}=���=���=���=���=���!=���(=���/=���6=���==���D=���K=���R=���Z=���a=���h=���m=���p=���u=���y=���~=���=���=���=���=���=���=���=���=���"=���'=���+=���0=���5=���8=���==���@=���E=���I=���N=���R=���W=���\=���_=���d=�g=Ã�j=ă�o=Ń�r=ƃ�w=ǃ�{=ȃ�=Ƀ�=ʃ�=˃�
=̃�=̓�=΃�=σ�=Ѓ�"
��)�#��x��!�m{Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)��� �}{Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)�����%{Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���g�'{Tomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��o�zMichal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��oSzMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��ouzMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)
�}	�+�����(��#|Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)r��'oy{Michal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���&o�A{Michal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��%o�{Michal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��$oS{Michal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��#ou{Michal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��"o�{Panu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)
Ro�J�I�Rp��/ou|Michal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��.o�|Panu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��-�m|Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���,�}|Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���+��%|Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���*g�'|Tomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)���)��|Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)
y�"��x�y��6o�}Panu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��5�m}Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���4�}}Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���3��%}Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���2g�'}Tomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��1o�|Michal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��0oS|Michal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patch

e�r+��V��:��eD�	�
10f4d4344b761febc0bc92621104b56e8002faba2566c0f27a1152a2951005edD��
8bb3427e24cc96d1a03b8501420a96372b0121baf87a18de170d70b0423f324eD��
65199e9ea2e12be16d067a95704c987d84ddb573ef4d2dca215c5cd3a28b3b2cD��
6c7c9ba4877418093e491bb7d8133af21eb702e5e6c5220866cf64e6755dadb3D��
87d2bce399fdc13d6471dbc90583d7e69c82b39679f9b844bea1a2f3051c3d10D��
7040c353b5fb82abf2f6a8f2ca1f7dc6752192e19210070275d4676cc61318b3D��
977e49aa36e447c99e215e9eeb2628e0e19cafb64eca4dbe1affffcfe2ad2c6fD��
a90d954e0c0bebfc47ee93b810520648c177574c86546b7215d65bbd566e1850D��
cb67d241eba9a27bbdc48cb45a7d59bf2fa393abbdd65778e51bb78396255ac4D��
1204cfb28866866392e87bed4b27492fc16eb53791f205892fab3ad27a9bf935D��
74820898155583309223b3ef4e3d5a41b76e9d492696051d4ec79f981d16febbD�~�
8dd767740e6b6382366fcbecc18ee6a8aa1e5cd856ce2b54b3611960dc3c297eD�}�
05cd5d302b4787e4b7f4d091ae0e2cfc78a0ad48883502cb3bc7ec1cf2c8601a
r�)��r���=��~Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-38\�|�- Add flag to use strip -g instead of full strip on DSOs (#1663264)���<��#~Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-37\�+@- Use user and group of the rpmbuild process or root for sources (#1572772)r��;oy}Michal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���:o�A}Michal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��9o�}Michal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��8oS}Michal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��7ou}Michal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)
�u�V�W��_��DoS~Michal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patchp��Cou~Michal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��Bo�~Panu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��A�m~Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���@�}~Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���?��%~Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���>g�'~Tomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)
h��`�_�hp��KouMichal Domonkos <mdomonko@redhat.com> - 4.11.3-44^�V@- Accept PGP public keys with missing EOL (#1840006)��Jo�Panu Matilainen <pmatilai@redhat.com> - 4.11.3-43]�4@- Fix packages getting removed on failed update via dnf (#1710691)x��I�mPavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-42]]2@- Fix segfault on fingerprint symlink (#1660232)���H�}Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-41]V��- Fix bogus if-condition in find-debuginfo.sh (#1720590)���G��%Pavlina Moravcova Varekova <pmoravco@redhat.com> - 4.11.3-40\��- Remove only special perl dependencies provided in the same file (#1570181)���Fg�'Tomas Orsava <torsava@redhat.com> - 4.11.3-39\�|�- Fix brp-python-bytecompile script to work with Python 3 packages (#1691402)w��Eo�~Michal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)
S�"�w�S���Rc�+�Ville Skyttä <ville.skytta@iki.fi> - 8.3-1PCJ@- Update to 8.3.
- Drop specfile constructs no longer needed with Fedora's rpm.���Q���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 8.2-3P
��- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���P���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 8.2-2On@- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuildr��OoyMichal Domonkos <mdomonko@redhat.com> - 4.11.3-48a�- Fix double-free in previously added patch (#2004228)���No�AMichal Domonkos <mdomonko@redhat.com> - 4.11.3-47aqV@- Improve range checks on signature and main header tags (#2004228)
- Fixes CVE-2021-20271w��Mo�Michal Domonkos <mdomonko@redhat.com> - 4.11.3-46aD�@- Bump up the limit of signature header to 64MB (#1993242)_��LoSMichal Domonkos <mdomonko@redhat.com> - 4.11.3-45^�?@- Actually apply the previous patch
>��z,�%�>d��Z?��Michal Ruprich - 3.0.9-18X�A�- Resolves: #1324754 -  rsyncd unit enters failed state on exit{��Yg��Michal Domonkos <mdomonko@redhat.com> - 8.3-8_��@- spectool: fix regression in URL fragment handling (RHBZ#1899112)j��Xgq�Michal Domonkos <mdomonko@redhat.com> - 8.3-7^�H�- Actually apply the spectool patch (RHBZ#1337544)���Wg�C�Michal Domonkos <mdomonko@redhat.com> - 8.3-6^��@- spectool: ignore query string in URL (RHBZ#1337544)
- Update upstream URLs (RHBZ#1502423)J��VY?�Daniel Mach <dmach@redhat.com> - 8.3-5R�k�- Mass rebuild 2013-12-27��Ui��Thomas Woerner <twoerner@redhat.com> - 8.3-3.1Rq@- removed fakeroot requirement and all qa_robot scripts (RHBZ#840780)���T���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 8.3-3Q�- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildf��Sek�Thomas Woerner <twoerner@redhat.com> - 8.3-2P}L@- xemacs is not available on RHEL (RHBZ#866841)
E��i�x�E���ai�9�Michal Ruprich <mruprich@redhat.com> - 3.1.2-9]5�@- Resolves: #1633850 - rsync is unable to preserve NFS v4 ACLs via extended attributes���`i�K�Michal Ruprich <mruprich@redhat.com> - 3.1.2-8]4S�- Resolves: #1566149 - rsync without --verbose still writes "(new) backup_dir is ..." to STDOUTx��_i�	�Michal Ruprich <mruprich@redhat.com> - 3.1.2-7\�@- Resolves: #1690786 - remove-source-files fails with symlinksq��^i}�Michal Ruprich <mruprich@redhat.com> - 3.1.2-6[z�A- Related: #1615799 - reverting changes made in RHEL-7.6���]i�!�Michal Ruprich <mruprich@redhat.com> - 3.1.2-5[z�@- Resolves: #1615799 - Rsync built-in testsuite fails with selinux enabled���\=�u�Michal Ruprich - 3.1.2-4Y�B@- Related: #1432899 - removing dependencies on perl
- using the bundled zlib.h(#1491582)
- turning on upstream testsm��[=��Michal Ruprich - 3.1.2-1Y���- Resolves: #1432899 - Rebase rsync to version >= 3.1.0
- rebase to 3.1.2
2X�I�#�2x��hi�	�Michal Ruprich <mruprich@redhat.com> - 3.1.2-7\�@- Resolves: #1690786 - remove-source-files fails with symlinksq��gi}�Michal Ruprich <mruprich@redhat.com> - 3.1.2-6[z�A- Related: #1615799 - reverting changes made in RHEL-7.6���fi�!�Michal Ruprich <mruprich@redhat.com> - 3.1.2-5[z�@- Resolves: #1615799 - Rsync built-in testsuite fails with selinux enabled���e=�u�Michal Ruprich - 3.1.2-4Y�B@- Related: #1432899 - removing dependencies on perl
- using the bundled zlib.h(#1491582)
- turning on upstream testsm��d=��Michal Ruprich - 3.1.2-1Y���- Resolves: #1432899 - Rebase rsync to version >= 3.1.0
- rebase to 3.1.2���ck�I�Michal Ruprich <mruprich@redhat.com> - 3.1.2-11b���- Resolves: #2111170 - remote arbitrary files write inside the directories of connecting peers�#��bk�]�Michal Ruprich <mruprich@redhat.com> - 3.1.2-10]_�@- Resolves: #1672779 - Rsync bug resets modification time of every destination file that has not changed
�b�%�����mk�E�Michal Ruprich <mruprich@redhat.com> - 3.1.2-12cjD�- Resolves: #2123815 - rsync error: protocol incompatibility when using rsync-3.1.2-11.el7_9���lk�I�Michal Ruprich <mruprich@redhat.com> - 3.1.2-11b���- Resolves: #2111170 - remote arbitrary files write inside the directories of connecting peers�#��kk�]�Michal Ruprich <mruprich@redhat.com> - 3.1.2-10]_�@- Resolves: #1672779 - Rsync bug resets modification time of every destination file that has not changed���ji�9�Michal Ruprich <mruprich@redhat.com> - 3.1.2-9]5�@- Resolves: #1633850 - rsync is unable to preserve NFS v4 ACLs via extended attributes���ii�K�Michal Ruprich <mruprich@redhat.com> - 3.1.2-8]4S�- Resolves: #1566149 - rsync without --verbose still writes "(new) backup_dir is ..." to STDOUT
[�[�?��pi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��oi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��ni��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��ui�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���ti�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��si��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��ri�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��qi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��yi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��xi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��wq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��vi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��~i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���}i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��|i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��{i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��zi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���
q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��	q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
[�[�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��
i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
�<���_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171
pc�p�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��"i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��!i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!�� i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��'i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��&i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���%i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��$i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��#i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��+i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��*i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���)q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��(q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
2�2�!��0i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��/i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���.i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��-i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��,i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��5i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���4i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���3q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���2q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��1q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717

e�r+��V��:��eD��
4370607a6da65b16c10efee16a7e7dc47d3ca219e5adbb651ea25e3150d278f4D��
b58cede57828d0966881342f8638cc0309f8064b70437b0adf9d649bfe1ade45D��
92a1308d201f7d1061b56b28ce70c44b58e1f876568a1cd1ce0d04d71b4e616fD��
763431d569a4717a132d38c72d98eb0656623f04155dc15baf5f8face7a581aaD��
96d562d6852e65228f853d36aee7193ca56da0031cf09991e2d16e15f55f69ffD��
a8df8c8e4de2b928926717150e1d011ee1c85226c1099e9ddabfe5b08e2d0d4eD��
32e1c67e1aff171de13642d103f733792e12a4c17c9ee64aa931d2315b08e1ecD��
8ece8095faf9fc05572d63b861d8bc795ed3d56a7c3235a44d3ee07d1403cde5D��
af56985c8953b2fc45d7974249df068c6d8d965f223db2279293d3ff072df271D�
�
fdec48655b5d576de07b5788ee9206ab7b71c6fb8374b3e7fa47f3b65bfea9f3D��
786d9abb0444f4e1a0a27702f0bb4b6278bcf8c30e15093e909b111eae35842cD��
99f7afea90a0a26964c80545f90fd551c442f1fdcb3ccdd6be042506650e78d5D�
�
e3a12de0d6fa0c1cb65f6e6311428c947041d9751905ca6825693129f0d1e5a5
�Z���'��8i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��7i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��6i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��=i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��<i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���;i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��:i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��9i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
[�[�?��@i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��?i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��>i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��Ei�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Di�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Ci��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Bi�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Ai�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��Ii��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��Hi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��Gq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��Fi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��Ni�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Mi�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Li��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Ki�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Ji�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��Ri��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���Qq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��Pq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��Oi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��Wi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Vi�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Ui��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Ti�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Si�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����\i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���[q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���Zq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��Yq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��Xi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
[�[�?��_i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��^i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��]i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��di�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���ci�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��bi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��ai�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��`i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��gi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��fi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��ei�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
�<���_��ji�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��ii�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��hi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171
pc�p�!��oq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��ni�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��mi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���li�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��ki��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��ri�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��qi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��pi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��wi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��vi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���ui�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��ti��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��si�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��{i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��zi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���yq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��xq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
2�2�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���~i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��}i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��|i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
�Z���'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��
i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��
i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��	i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
[�[�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��"i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���!q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!�� q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��'i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���&i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��%i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��$i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��#i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����,i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���+q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���*q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��)q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��(i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
[�[�?��/i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��.i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��-i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��4i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���3i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��2i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��1i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��0i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��7i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��6i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��5i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297

e�r+��V��:��eD�#�
8480c9c162030638d7e1aeafac122629e6446c5a5c93910cdd0ea2bdc51c5597D�"�
68c911318f2dcbe594b8475d8adb5d700b385aded343fa7870ca41d70e302681D�!�
5d6548300fb6f193fc969c4a7b833ac0ebc9a04231decb2ff8f853bf5fe358e0D� �
2825f16fd21e4445da86539295790890cabf52e583783c3a52aaa3c565dc6ecbD��
998aeda730e4ca3c63ce73e2345ed6e97ec1682e90df490b0e96faff1ebf4665D��
64beb126b2ee27d945966c6e8ed0eb93929053bfca0af0c12db4ed0a2219389cD��
97de1dacbcdab0e2e4fb05e8ddc0616aa314dfa320e4635133391b3491d7cc95D��
435f966aab54d076f8753e805379be8aab3e4bb69459fff3ce7c63cef6a043c8D��
e19244daf20ce87cf283cadda5ea9d45bb6c17bfdb674dfeef35d29825c62af2D��
4ad790401b462e49852b64d52ac831ef97ef989b5b507c46e6711cbffdc8e689D��
de9c5a6a93ac35ebe471dd45b8186ff0a1ee0c2c80c9e122c072728aa4e603a7D��
6d5044b286e25a56e8f05f0e476289cd678bdace8a5cdf6c00b7b99df760dd47D��
412cf05f06bbad13dcf4147fd9d0fe36f85f1ac4e736a1e70cceb3317d6375ed
�<���_��:i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��9i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��8i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171
pc�p�!��?q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��>i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��=i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���<i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��;i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��Bi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��Ai��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��@i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��Gi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��Fi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Ei�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Di��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Ci�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��Ki�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��Ji��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���Iq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��Hq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
2�2�!��Pi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��Oi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Ni�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Mi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Li�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��Ui��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���Ti�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���Sq�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���Rq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��Qq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
�Z���'��Xi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��Wi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��Vi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��]i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��\i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���[i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Zi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Yi�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
[�[�?��`i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��_i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��^i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��ei�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���di�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��ci��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��bi�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��ai�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��ii��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��hi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��gq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��fi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��ni�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���mi�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��li��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��ki�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��ji�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��ri��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���qq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��pq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��oi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��wi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���vi�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��ui��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��ti�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��si�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����|i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���{q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���zq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��yq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��xi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
[�[�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��~i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��}i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
�<���_��
i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��	i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171
pc�p�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��
i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
2�2�!�� i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��%i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���$i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���#q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���"q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��!q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
�Z���'��(i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��'i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��&i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��-i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��,i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���+i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��*i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��)i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
[�[�?��0i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��/i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��.i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��5i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���4i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��3i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��2i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��1i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��9i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��8i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��7q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��6i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297

e�r+��V��:��eD�0�
f5431ddb3fa8ee6d51952c046b560ee5619c84a6216a417156f99dd392045d24D�/�
db07f94b0ea8f757e8c7e4e9ab64552d472d4baf724499628c1d7447b4ce574bD�.�
3135fb73649247a469c3691a2239b2a4121aa0631f04e3bbb0f5c25bac9f93c7D�-�
edc739d70b417881fba0df26ea94231e859c67a681a92b7a79ac1c97f5bba817D�,�
2163bd81f1d4891e8048088136ac2e2285db8db7bf8cfe2aeb16b8fe1d7f8085D�+�
c81f90a03e1572c395b80f30a24efd34def63ec2a53550ae57b48380ded6bcd5D�*�
b03ee55965cce1d19f8f7a5b24672dccf097948e9345a8b8a66584397af9732eD�)�
f45ad8b56aec3746c319fed77321ec80808dbcf5aba0a01712c29bf922951edbD�(�
1fcad50692febc35d99fcc084dee4f58b8bcb6471e12072b6ea2bcf2cfe49dfdD�'�
093f80fc5d8e0da79a3979e52dfdc01e24389db68934cf76c4a575367b63914cD�&�
84ea46ab16a2d8ddddcb890ba2ccf11b3c873260b9756f1ed64d7aa1a779ac5eD�%�
c75b3f328720ad1b052e7621ddbf3ccfea04b35a21209225248e310d623b5644D�$�
836ae43529ca6681c98238726bad12871f01ac8436aa3e19605c87ec7aded177
,Tpp�,�"��>i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���=i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��<i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��;i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��:i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��Bi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���Aq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��@q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��?i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��Gi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Fi�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Ei��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Di�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Ci�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����Li�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���Kq�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���Jq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��Iq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��Hi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
[�[�?��Oi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��Ni�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��Mi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��Ti�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Si�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Ri��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Qi�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Pi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��Wi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��Vi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��Ui�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
�<���_��Zi�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Yi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��Xi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171bR>9RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������=҃�,=Ӄ�/=ԃ�4=Ճ�7=׃�:=؃�?=ك�B=ڃ�G=ۃ�K=܃�P=݃�U=ރ�X=߃�]=�`=Ⴣe=⃃i=ッn=䃃r=僃w=惃|=烃=胄=郄=ꃄ
=냄=샄=탄== =�%=�(=�-=�0=�5=���9=���>=���B=���G=���L=���O=���T=���W=���Z>��_>��b>��g>��k>��p>��u>��x>��}>��>	��>
��	>��>��>
��>��>��>��$>��'>��*>��/>��2>��7>��;>��@>��E>��H>��M>��P>��U>��Y>��^> ��b>!��g>"��l>#��o>$��t>%��w>&��z>'��>(��>)��>*��>+��>,��>-��>.��>/�� >0��%>1��)>2��.>3��2>4��7>5��<>7��?>8��D
pc�p�!��_q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��^i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��]i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���\i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��[i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��bi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��ai��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��`i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��gi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��fi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���ei�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��di��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��ci�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��ki�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��ji��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���iq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��hq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
2�2�!��pi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��oi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���ni�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��mi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��li�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��ui��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���ti�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���sq�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���rq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��qq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
�Z���'��xi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��wi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��vi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��}i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��|i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���{i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��zi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��yi�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
[�[�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��~i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��	i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���
i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��
i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
[�[�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��$i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���#i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��"i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��!i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'�� i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��'i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��&i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��%i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
�<���_��*i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��)i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��(i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171
pc�p�!��/q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��.i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��-i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���,i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��+i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��2i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��1i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��0i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��7i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��6i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���5i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��4i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��3i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��;i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��:i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���9q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��8q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717

e�r+��V��:��eD�=�
4435a2d66b8a1b83a30085a0be118a8b93bf7989d924736ce0ab0c1085446d8bD�<�
7fde0881297ab193f65e33fd5c8b564df7735f25fdee512b44a93fc5919686e3D�;�
7f98ddb94869395b5d09e7f387eb87ae1829dcd23a0e383391bf1b8f7b2a9dfbD�:�
ff6ddec249d0b0ae7fe315e3626507ee4cbcf1c98b1ef5a0b571846cfa67ac37D�9�
53ce8c9651b597aaf7b719c2d54b58fe264c394bd216587abb5e3c9981502c35D�8�
d1af2d4f355246306f9048649c71512ffc060b2884722d14e15d42ae54300524D�7�
1d9cb7ca8c804f9fa970b5e2df8cc163112c6d02f4769316009d22c080bddf91D�6�
6862243c7d4e91bdc68839fc5b50b2fe2d9be11cdc30df983b8506abd9bd00abD�5�
53785b577694f90da1cd6542ee6cd7b90b33ac6f11db3ae5b38c3a417ea82085D�4�
898e4f478919925f999cecc6d8765d5ca6196494ad8200b1c02607de58303982D�3�
13a2da96e0859c06d6b4b719445081c65053460547c38ccf8f0a2c1e06b039cbD�2�
295e1258aea3781299e6710ef8708bef6a5dd8bc6617af2cf2e7e205f45081b0D�1�
8dce1ab16065eccc2ffb9c5d0e51f15c77fa6e7e03bae26aa3ebbd9092a330a2
2�2�!��@i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��?i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���>i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��=i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��<i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��Ei��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���Di�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���Cq�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���Bq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��Aq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
�Z���'��Hi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��Gi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��Fi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��Mi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��Li�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Ki�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Ji��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Ii�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
[�[�?��Pi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��Oi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��Ni��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��Ui�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Ti�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Si��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Ri�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Qi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��Yi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��Xi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��Wq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��Vi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��^i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���]i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��\i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��[i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Zi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��bi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���aq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��`q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��_i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��gi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���fi�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��ei��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��di�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��ci�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����li�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���kq�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���jq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��iq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��hi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
[�[�?��oi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��ni�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��mi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��ti�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���si�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��ri��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��qi�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��pi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��wi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��vi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��ui�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
�<���_��zi�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��yi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��xi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171
pc�p�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��~i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��}i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���|i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��{i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��
i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���	q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
2�2�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��
i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
�Z���'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
[�[�?�� i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��%i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���$i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��#i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��"i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��!i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��)i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��(i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��'q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��&i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��.i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���-i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��,i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��+i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��*i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��2i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���1q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��0q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��/i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��7i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���6i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��5i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��4i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��3i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����<i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���;q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���:q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��9q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��8i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297

e�r+��V��:��eD�J�
621d13e7c135311f66ed8669c828821fa8da5c7b602afb4066d01bcdddf43bc3D�I�
25b4bbbd9ce981e8e49520f5c93c5c8ffc7b6d26b911440cb79a134719182d2cD�H�
4ee55b429ec95f43a7388f2b424b8db5a2a637fb009b640ffe07fc328900315eD�G�
0d30036d6a876fd21fc61439985a43f29d496b4089d41c5fa578c65ecde1d198D�F�
c52c2ec344adb35fb699f72d9fab8082e82e08caea1e844a3afc83b4ff564820D�E�
6ceb416b5532f415886858adab254c77f6774ca35e5bf9bb0d73e58fa794a0ffD�D�
aebed6c3e895ca3c142741fbc5d368ca8af370a2dcefaff98e3d2e596055f29eD�C�
5734c3f66c0d576c4dd6f560daf55c682f147e046ce312efb7cf7c0428164edeD�B�
5a7f183ea8444e1f7ef2ca3b7c8339565f6b19fb23f0968b9b3171b2d50a64ddD�A�
61151006ef84f2d4d9a7972cde6323a16d6ef02ce23105493ff8386ffb7d7708D�@�
d770a9ddaeae868ed4fb99212c73d0d42e4532aa0842040000775c829f11459fD�?�
a8c5b5cdea96dc06b0e2bfe64814361d7099d10d8c06277305f17129b0304233D�>�
67269c66b7c5a0c291c9f49a9ab7b1185370d1686cb0538cf41f90cbc4853472
[�[�?��?i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��>i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��=i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��Di�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Ci�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Bi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Ai�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��@i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��Gi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��Fi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��Ei�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
�<���_��Ji�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��Ii�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��Hi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171
pc�p�!��Oq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��Ni�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��Mi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Li�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Ki��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��Ri�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��Qi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��Pi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��Wi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��Vi�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���Ui�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��Ti��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��Si�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��[i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��Zi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���Yq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��Xq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
2�2�!��`i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��_i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���^i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��]i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��\i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��ei��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���di�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���cq�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���bq�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��aq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
�Z���'��hi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��gi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��fi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��mi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��li�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���ki�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��ji��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��ii�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
[�[�?��pi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��oi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��ni��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��ui�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���ti�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��si��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��ri�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��qi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
JZ�J�?��yi��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��xi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�!��wq�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��vi�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��~i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���}i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��|i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��{i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��zi�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
TZ�T�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
�Z�z����i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���
q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��	q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
[�[�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��
i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682
,Tpp�,�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)
yZy�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856�6��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
�<���_��i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746�'��i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171
pc�p�!��q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717�!��i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841
�Z���'��"i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��!i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!�� i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��'i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��&i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���%i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��$i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��#i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
NZ��N�'��+i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��*i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171���)q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��(q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
2�2�!��0i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��/i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���.i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��-i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��,i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746
LZ� �L�6��5i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-46]fl�RHEL 7.8 ERRATUM
- Support Intermediate Certificate Chains in rsyslog
  resolves: rhbz#1627799
- fixed WorAroundJournalBug patch to not cause leaks
  resolves: rhbz#1744617
- added patch fixing possible segfault in rate-limiter
  resolves: rhbz#1744682���4i�A�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-45]QT�RHEL 7.8 ERRATUM
- fixed fsync patch according to covscan results
  resolves: rhbz#1696686���3q�C�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.3b{�@- Address CVE-2022-24903, Heap-based overflow in TCP syslog server
  resolves: rhbz#2081395���2q�?�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.2b4t@RHEL 7.9.Z ERRATUM
- guard HUP signal processing in ompipe module
  resolves:rhbz#2062505�!��1q�S�Attila Lakatos <alakatos@redhat.com> - 8.24.0-57.1`dd@RHEL 7.9.Z ERRATUM
- added patch resolving theoretically "too large" groups
  resolves:rhbz#1944717
�Z���'��8i�g�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-49]�@RHEL 7.8 ERRATUM
- fixed fsync patch to actually revognize the new option
  resolves: rhbz#1696686 (failedQA)�?��7i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-48]µ�RHEL 7.8 ERRATUM
- added patch resolving crash on wrong MsgProperty
  resolves: rhbz#1549706
- added patch resolving CVE in pmaixforward module
  resolves: rhbz#1768320
- added patch resolving CVE in pmcisconames module
  resolves: rhbz#1768323
- added patch implementing file ID for imfile
  resolves: rhbz#1763746
- added patch fixing omelasticsearch with ES 6.X
  resolves: rhbz#1600171�!��6i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-47]p��RHEL 7.8 ERRATUM
- edited imfile truncation detection patch with reression fix
  resolves: rhbz#1744856
2�2�!��=i�[�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-57_:q@RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297�"��<i�]�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-55^�y�RHEL 7.9 ERRATUM
- edited imfile file-id patch to not segfault on selinux block
  resolves: rhbz#1843992���;i�I�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-54^��@RHEL 7.9 ERRATUM
- edited cert chains patch to not cause memory leaks
  resolves: rhbz#1832087�{��:i��Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-53^|�@RHEL 7.9 ERRATUM
- one more fix for file ID patch to extend to offline behavior
  resolves: rhbz#1806493
- added patch resoving race in serialization resulting in crash
  resolves: rhbz#1778841�_��9i�W�Jiri Vymazal <jvymazal@redhat.com> - 8.24.0-52]�e@RHEL 7.8 ERRATUM
- edited patch file ID for imfile to not log useless errors
  also improved file-id behavior to adress newly found problems
  resolves: rhbz#1763746

e�r+��V��:��eD�W�
c174e242620aa57f9c880faa05975ab8a1b3a70f3d6ea6ec30f58cfd3a0c11f8D�V�
3917b6cb3159c03532be12c75002a6b66aa15b5a026b3d9613b39cd118b668c1D�U�
06bec1b1e5fba64eb4e0e530da173b3bafb747f95f9629079d77f65567b15d42D�T�
254d3dd41b5b9214e5ff2838cf5688082478f2a5e8e8a104082720ea06bb1921D�S�
b0e87fb6b83f2d417585b8e9d2ba138a98dc6fcb1f21ac5485ddcdd9076cc90bD�R�
c75a27c33e9c743311271dde24228b03ec56642d945c2ce4bec9e63ef71d81a9D�Q�
fa07de67ceb878410ad9f1e78b5368935921fefc6de60e009128f1c94f70de52D�P�
163de5925a8b793540385ac13a1624df2bd90f757dcf6374adaabf2b88c60647D�O�
1802f181e6589961ea6d796ae4920da55d454d730791ccea8f2c37d1dc609c37D�N�
9e2c495e6129261f090cea872f60243d9dc4dde47a1a16137f85ddc7bebce41bD�M�
b9e13a24be722461646243414da9fe3046ae65baec41a7aad1670103307a6921D�L�
b135e72f01c1154da5b9255ee65113d9a344cc450c24d8b9e7174a0b731939ebD�K�
2185f211100a288fd632f43d7f2b186da452c6d0827eb87dea7ac3154a5e94f3
�v��}��@o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��?mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945���>m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��Ao�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >X
V�M�V�K��Ee�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >[���De�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��CoQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��Bo�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���Hm��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���Go�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��Fo�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��Jo�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��Imq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��Ko�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >^
V�M�V�K��Oe�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >a���Ne�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��MoQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��Lo�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���Rm��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���Qo�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��Po�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��To�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��Smq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��Uo�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >d
V�M�V�K��Ye�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >g���Xe�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��WoQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��Vo�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
]L�]V��\s=�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.2S�- Resolves: rhbz#1125544���[o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��Zo�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch
�k�g���o��bso�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��as�W�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B��`s��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056n��_sm�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
��^s�)�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���]s�/�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056
���\�5�n��hsm�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.6Ti�@- Fix: typo in man page
  resolves: rhbz#1099286�
��gs�)�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.4Td�@- Fix: hivex missing checks for small/truncated files
  resolves: rhbz#1158992���fs�/�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.3T"�@- Fix: hivexml generates "Argument list too long" error.
  resolves: rhbz#1145056���eu�;�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500���du��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��cs��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983
y9��y���nu�;�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.11`y|@- Bounds check for block exceeding page length (CVE-2021-3504)
  resolves: rhbz#1950500���mu��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.10^��@- Increase limits on number of subkeys etc.
  resolves: rhbz#1822889{��ls��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.9Yܶ@- Enable OCaml subpackage on s390x.
  resolves: rhbz#1447983o��kso�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.8Y�@- Rebuild for OCaml 4.05
  resolves: rhbz#1447983�$��js�W�Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.8X��- Tolerate corruption in some hives
  resolves: rhbz#1423436
- Switch to using git to manage patches.�B��is��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-5.7Ti�A- Fix: "Argument list too long" when using virt-v2v on Windows guest
  with French copy of Citrix installed
  related: rhbz#1145056bR>�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������>:��J>;��O><��R>=��W>>��[>?��`>@��e>A��h>B��m>C��p>D��u>E��y>F��~>G��>H��>I��>J��>K��>L��>M��>N��>O��">P��'>Q��+>R��0>S��5>T��8>U��=>W��@>Y��A>Z��E>\��H>]��J>_��K>`��O>b��R>c��T>e��U>f��Y>h��\>i��b>j��h>k��n>m��r>o��s>p��w>r��z>s��|>u��}>v��>x��>y��>{��>|��>~��>��>���>���>���>���>���>���>���">���$>���%>���)>���,>���.>���/>���3>���6>���8>���9>���=>���@>���B>���C>���G>���J>���L>���M>���Q>���T>���V>���W>���[>���^>���`>���a>���e>���h>���j>���k>���o>���r>���v>���z>���
�s�x��}��ro�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��qmq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945���pm��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���ou��Richard W.M. Jones <rjones@redhat.com> - 1.3.10-6.12a�@- Limit recursion in ri-records (CVE-2021-3622)
  resolves: rhbz#1976193buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��so�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >n
V�M�V�K��we�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >q���ve�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��uoQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��to�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���zm��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���yo�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��xo�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��|o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��{mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��}o�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >t
V�M�V�K��e�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >w���e�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��oQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��~o�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��o�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��o�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >z
V�M�V�K��e�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >}���
e�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��	oQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��o�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���
o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��o�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��o�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��e�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����e�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��oQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��o�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��o�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��o�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��e�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����e�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��oQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��o�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���"m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���!o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/�� o�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��$o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��#mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��%o�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��)e�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����(e�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��'oQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��&o�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���,m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���+o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��*o�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��.o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��-mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��/o�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��3e�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����2e�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��1oQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��0o�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���6m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���5o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��4o�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��8o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��7mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��9o�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��=e�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����<e�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��;oQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��:o�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���@m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���?o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��>o�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

e�r+��V��:��eD�d�
46a11b35c33059224764ebf871842b0fb284b2783875ccd819e16761e47dc4cbD�c�
16de628b418b1829da4235fe7e51f4fad2f0c73137e1c5cd7fe972ff2a960f53D�b�
7bc6360b4ac0650d8d43651e36f72b8c9c1a393ee315d2c1ee3d3e997ec61b5eD�a�
4b2789795e0561f07932d99dc35a224a5cb2e2fb4ffc4d3c3b1fb1c9256f2f25D�`�
f878599f24a0292058a13dbc96e35533360c55c1e4616d4db0cce5da1e4ed0e3D�_�
c763f6d47ed5f33b5810818fd094773ac77ca94070088529b832a5189debe293D�^�
e861c291ad02f4c05f77bcae1e8fdba63ab7eff4dbc48957941c33985baa04e1D�]�
19b2915a18191474719e65f30ae39ec3e32b24de808caf1144908d5905ec22dbD�\�
6f203af825d8187dfb775adef80a3622f5216a88db513e0ed31eafc3db4c7f54D�[�
cca2c300e4d60c107c6754108edbc965f0f6e66119848ecaa71eff8b4c7e5961D�Z�
a1ec1d1affcf4fc30a5337ef7012e0b57d8288af74888ea3b40f8aa781fff212D�Y�
bc5370995408c827ead95c7505c7c12bd393b513d4e6dcd996f4149eeda69686D�X�
d0da9dd8f5ac62ff338820e4c82cef86962fbebc7eac9dcbcddcf8b7b61036ba

�
�}��Bo�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��Amq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��Co�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��Ge�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����Fe�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��EoQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��Do�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���Jm��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���Io�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��Ho�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��Lo�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��Kmq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��Mo�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��Qe�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����Pe�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��OoQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��No�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���Tm��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���So�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��Ro�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��Vo�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��Umq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��Wo�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��[e�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����Ze�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��YoQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��Xo�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���^m��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���]o�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��\o�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��`o�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��_mq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��ao�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��ee�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����de�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��coQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��bo�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
-L�-���hm��Pavel Valena <pvalena@redhat.com> - 2.0.0.648-28WUe�- Fix missing declaration of 'rb_frame_last_func'
  Related: rhbz#1197720���go�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��fo�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch

�
�}��jo�
�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-30X���- Fix test_npn_protocol_selection_ary and test_npn_protocol_selection_enum
  failures with newest openssl.
  Resolves: rhbz#1416123
- Add gemspec_add_dep and gemspec_remove_dep macros.
- Extend 'gem_' macros for pre-release version support.
  Resolves: rhbz#1397390
- Make symlinks for json gem.
  Resolves: rhbz#1308992m��imq�Pavel Valena <pvalena@redhat.com> - 2.0.0.648-29WX�- Fix hostname size limit
  Resolves: rhbz#1343945buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898).
  * ruby-2.2.8-Buffer-underrun-vulnerability-in-Kernel.sprintf.patch
  Resolves: CVE-2017-0898
- Escape sequence injection vulnerability in the Basic
    authentication of WEBrick (CVE-2017-10784).
  * ruby-2.2.8-sanitize-any-type-of-logs.patch
  Resolves: CVE-2017-10784
- Arbitrary heap exposure during a JSON.generate call (CVE-2017-14064).
  * ruby-2.2.8-Fix-arbitrary-heap-exposure-during-a-JSON.generate-call.patch
  Resolves: CVE-2017-14064
- Command injection vulnerability in Net::FTP (CVE-2017-17405).
  * ruby-2.2.9-Fix-a-command-injection-vulnerability-in-Net-FTP.patch
  Resolves: CVE-2017-17405
- Buffer underrun in OpenSSL ASN1 decode (CVE-2017-14033).
  * ruby-2.2.8-asn1-fix-out-of-bounds-read-in-decoding-constructed-objects.patch
  Resolves: CVE-2017-14033
- Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code
    execution(CVE-2017-17790).
  * ruby-2.5.0-Fixed-command-Injection.patch
  Resolves: CVE-2017-17790
�\��ko�K�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-31Z\��- Fix unsafe object deserialization in RubyGems (CVE-2017-0903).
  * ruby-2.4.3-CVE-2017-0903-Fix-unsafe-object-deserialization
      -vulnerability.patch
  Resolves: CVE-2017-0903
- Fix an ANSI escape sequence vulnerability (CVE-2017-0899).
  Resolves: CVE-2017-0899
- Fix a DOS vulernerability in the query command (CVE-2017-0900).
  Resolves: CVE-2017-0900
- Fix a vulnerability in the gem installer that allowed a malicious gem
    to overwrite arbitrary files (CVE-2017-0901).
  Resolves: CVE-2017-0901
- Fix a DNS request hijacking vulnerability (CVE-2017-0902).
  * ruby-2.2.8-lib-rubygems-fix-several-vulnerabilities-in-RubyGems.patch
  Resolves: CVE-2017-0902
- Fix >�
V�M�V�K��oe�3�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-35\X)@- Kill bundled certificates.
- Add macros to edit files lists in .gemspec
- Fix buffer under-read in String#unpack
  Resolves: CVE-2018-8778
- Fix HTTP response splitting in WEBrick
  Resolves: CVE-2017-17742
- Fix DoS by large request in WEBrick
  Resolves: CVE-2018-8777
- Fix >����ne�Q�Jun Aruga <jaruga@redhat.com> - 2.0.0.648-34[��- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
  Resolves: CVE-2018-16395^��moQ�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-33Z��@- Fix always passing WEBrick test.�L��lo�+�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-32Z��- Add Psych.safe_load
  * ruby-2.1.0-there-should-be-only-one-exception.patch
  * ruby-2.1.0-Adding-Psych.safe_load.patch
  Related: CVE-2017-0903
- Disable Tokyo TZ tests broken by recen tzdata update.
  * ruby-2.5.0-Disable-Tokyo-TZ-tests.patch
  Related: CVE-2017-0903directory traversal by poisoned NULL byte in Dir.
  Resolves: CVE-2018-8780
- Fix file and directory creation with directory traversal.
  Resolves: CVE-2018-6914
- Fix socket creation by poisoned NULL byte.
  Resolves: CVE-2018-8779
- Fix: return default path with nonexistent home dir
- Fix flags not propagated in Array#pack and String#unpack.
  Resolves: CVE-2018-16396
- Fix strictly interpret octal fields in tar headers.
  Resolves: CVE-2018-1000075
- Fix a security error for duplicate files in a package.
  Resolves: CVE-2018-1000076
- Enforce URL validation on spec homepage attribute.
  Resolves: CVE-2018-1000077
- Mitigate XSS vulnerability in homepage attribute.
  Resolves: CVE-2018-1000078
- Prevent Path Traversal issue during gem installation.
  Resolves: CVE-2018-1000079
- Fix unsafe Object Deserialization Vulnerability in gem owner.
  Resolves: CVE-2018-1000074
- Refresh expired certificates.
- Fix path traversal when writing to a symlinked basedir outside of the root
  Resolves: CVE-2018-1000073
KL�Kh��rik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���qo�3�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-39a?=@- Bump the release to fix the upgrade path from RHEL7 EUS.
  Resolves: rhbz#1993504�/��po�q�Vít Ondruch <vondruch@redhat.com> - 2.0.0.648-36\��- Introduce `Gem::UserInteraction#verbose` method as precondition to fix
  CVE-2019-8321.
  * rubygems-2.3.0-refactor-checking-really_verbose.patch
- Fix escape sequence injection vulnerability in verbose.
- Fix escape sequence injection vulnerability in gem owner.
  Resolves: CVE-2019-8322
- Fix escape sequence injection vulnerability in API response handling.
  Resolves: CVE-2019-8323
- Prohibit arbitrary code execution when installing a malicious gem.
  Resolves: CVE-2019-8324
- Fix escape sequence injection vulnerability in errors.
  Resolves: CVE-2019-8325
  * ruby-2.4.6-Applied-security-patches-for-RubyGems.patch
�H�c�w��vk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��uk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��tii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��sk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������zk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���yk�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��xiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��wi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��~k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��}k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��|ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���{k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
!�~��!w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
������
k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���	k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��
k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��"k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��!k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�� k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��(k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��'k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���&k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���%k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���$k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��#k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��-k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��,k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��+k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��*k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��)k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��2k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��1k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��0k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��/k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���.k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��7k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��6k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��5k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��4k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��3k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��<k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��;k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��:k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��9k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��8k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��Bi��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��Ak}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��@k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��?k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��>k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��=k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict

e�r+��V��:��eD�q�
47b080e5a77e0a4e64120cb62ee1a56fde234cd979ec9e29cfa1488c409e4a88D�p�
24a29d91614a01ef8bac9bbf460d34163c334449765b6003400b4298035f4ac3D�o�
472b850598b3b222ab19456cea632da56a9a1a5433cbd99f43868e6e98595701D�n�
babc2d4404f1281796b179a84267b81054e32776eea8769de35591c3971fe0feD�m�
04123c3387456fe96ccae3db4f1c8332ab30d6d0ddea9994b55a58e704a1d264D�l�
9ff1593a282c3d42607507ffbc763ae17f3ae2a5896b8152f03b1dd8d3bebe51D�k�
fc7476815d3e884a39b6216376b5758e79de7e6fa1e0d85ad7c4923a963f6e0dD�j�
7dae50109a258ad6094999bad1cf8de9bc680b967fcb221cf9e38f896f8cbf93D�i�
4cab2e9389c0bda9927bc8ffb3f5843f6888147fd2ee09109c97a50a8e313dfaD�h�
82d73a39a7efd415652fcfc12d6bf4b9c9213db0f32c9c81ec5b93e7020c715fD�g�
92fe5e925dcbbf773a6a9a67725a97c2ee05ba99988b7c569d34ea5485b8e2caD�f�
10c0a3e8cca4f6a5ac8100afa56a4ced7e149d3968dfd722f8895b6144463313D�e�
75b8e9f03001f9908924df507ac906625eedad84d4f379872e8537a185488c11
@�'�I�%�@v��Jk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Iii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Hk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Gik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Fiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Eim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��DiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��Ck��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��Rk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Qii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Pk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Oik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Niu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Mim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��LiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��Kk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��Vik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��Uiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ti�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Sk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��Zk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Yk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Xii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Wk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������^k��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���]k�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��\iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��[i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��ci�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��bk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��ak��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��`ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���_k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
!�~��!w��jk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��ik_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��hk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���gk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���fk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ek�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��diq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
������nk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���mk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��liq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ki�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��sk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��rk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��qk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��pk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���ok��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������wk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���vk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��uiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ti�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��|k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��{k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��zk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��yk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���xk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��~iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��}k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���
k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���	k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��
k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{�� k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��&i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��%k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��$k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��#k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��"k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��!k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��.k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��-ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��,k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��+ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��*iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��)im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��(iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��'k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��6k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��5ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��4k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��3ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��2iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��1im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��0iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��/k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��:ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��9iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��8i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��7k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��>k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��=k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��<ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��;k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������Bk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ak�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��@iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��?i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�zV�q�w��Hk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Gk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Fii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Ek�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Dik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���Ck��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock

e�r+��V��:��eD�~�
10051afb3f6d2fb5bf647ec9390076d0e4fdf72b804eaad8ed489a50c74d6237D�}�
659d1840568aaaa0890a8531c9387ac75d19acdb5849da0093220059585ae3c2D�|�
91353b8f07e3454295bdcd3066dd865de2413f8c9940caa28844124b3ccc2e2cD�{�
5f3727aea86f6f83c8535492e9334015510770ed19b3f3a98ab88000dfa6b9e6D�z�
8d7b3ce7f953eba64eb5ea6f0a0fd7b8a9e05c1d43bd8fa681d19fe3a735e568D�y�
a4645f394179a96fed5377b5fe20f2357bcc3d4c57000c4f11b2bd1c6d05a2e7D�x�
ba296a88e1432d771cd920109f74098580b81344ab27e869815dfaf5cd73b1bdD�w�
7029af1412cd34983bc590c58b75f33a9bcb75cb2a5bdf5e6514f8ac4b8089e6D�v�
5d4abbc89df8da961aa64935f5a986b89626f1f1e99a8728467557a6b761decfD�u�
594bfd4b3bb5ccb47a34df5c0220769ae40a50c53152652adbcf1803d747d0f3D�t�
58dcbc8296bbbf5a241618ee45e73e4be9870a429bfea9339cb245b68523f7abD�s�
6334cfed646e36032d28600310824098963bf8c4a3d59a3dffaafae4184e1d56D�r�
e5677937bcb75d7acb7f08f429bf9a0f982b23101f1c089b063117be1a84ccb1
������Lk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Kk�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Jiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ii�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��Qi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Pk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Ok��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Nii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���Mk��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��Xii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��Wk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Vk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Uk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Tk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Sk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Riq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����]k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��\iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��[i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Zk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Yk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��bk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��ak_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��`k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���_k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���^k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������fk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ek�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��diq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ci�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagebR?'RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������>���
>���>�>Ã�>ă�>Ń�">ƃ�(>ǃ�->ȃ�2>Ƀ�7>ʃ�<>˃�B>̓�J>΃�R>σ�V>Ѓ�Z>у�^>҃�c>Ӄ�j>ԃ�n>Ճ�s>փ�w>׃�|>؃�>ك�>ڃ�>ۃ�>܃�>݃�>ރ� >߃�&>�.>჊6>⃊:>ナ>>䃊B>僊H>烊L>胊Q>郊X>ꃊ]>냊b>샊f>l>p>�u>�y>�~>�>�>���
>���>���>���>���#>���)>���.>���3>���9>���?>���E?��J?��Q?��W?��^?��d?��l?��t?��y?	��?
��?��?��?
��?��?��?��?��#?��(?��-?��2?��8?��=?��B?��G?��L?��R?��Z?��b?��f?��j? ��n?!��t?"��x?#��}?$��?%��	?&��
Pz�I�Pw��lk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��kk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��jk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ik_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��hk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���gk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������pk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ok�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��niq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��mi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��uk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��tk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��sk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��rk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���qk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������yk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���xk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��wiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��vi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��~k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��}k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��|k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��{k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���zk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����
k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��
iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��	k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��#k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��"k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��!k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services��� k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���)k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���(k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��'k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��&k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��%k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��$k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��.k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��-k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��,k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��+k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���*k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��3k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���2k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��1k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��0k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��/k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��9k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��8k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��7k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��6k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��5k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��4k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��?k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��>k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��=k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���<k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��;k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��:k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��Ek��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Dk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Ck{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Bk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Ak�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��@k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role

e�r+��V��:��eD��
801e9bca39684a29a84c368956ed668beef392b230692274c32ffbc1cb714b73D�
�
c0cdfc6bfb60f09c2c483ee32a2e4b09104018a5e00d8f9d93e0c7532e31f72aD�	�
c57d7c3a751af63b1ff3aecc767463cb46fcfcea3212e2b6a04d39baa1975083D��
5e9fa6a9c3dc6c925f58ce3d112f48e8d7a89835f56c85fdfa648a880246ebccD��
ac7d75cd25f6bfa86cdc28cc1059d66db9ae1f53bd0df0d2e026116587b508b0D��
a76f48da787342ed53a149870e65a5c17f6c5a2025f715b076686311a0255c64D��
6b1f4e0b7d2eac0f0c87900cfe0b6ceee898b0e7fff0ea37a318fb2be0b794aeD��
014111c7993e5c5c0c955d00c5e230799fda34ca92a9b109dd0a572200c4dbedD��
c00c788573b1f8856547492b5c19c3b90b2452bcbf56003dee2b20426b79dab2D��
bccc059b870905bea5990608d411cde04cf06ed6d3bfa76015aa73439a38a8b6D��
611d2e194ff61bd1597a7136c77b1cf881bf1473268ee08ccf54184adcc4da79D��
e59f39966b86233054daea322ee01721e6f8f1148e751fbc8fe36aa7381a0c3aD��
de913afce451c42b905510d6c1260b853922e572f20edefc2488719a3c92770a
Q��QQ�{��Jk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Ik��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Hk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Gk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Fk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��Qk_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Pk�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��Ok}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Nk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Mk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Lk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Kk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��Wk_Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Vk{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Uk�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Tk�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Sk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Rk�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��^iuAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��]imAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��\iEAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��[k�Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��Zi�Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��Yk}Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Xk�Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��di�Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��ck�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��bk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��aiiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��`k�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��_ikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��lk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��kiiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��jk�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��iikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��hiuAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��gimAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��fiEAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��ek�Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��tk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��siiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��rk�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��qikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��piuAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��oimAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��niEAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��mk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��yimAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��xiEAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��wiqAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��vi�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��uk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��~k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��}iiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��|k�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��{ikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��ziuAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
x�0x�3��k�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��iqAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
<���<k��iqAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires
t�g��w��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��
k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���k�Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���
k�Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���	k�%Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
������k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��w��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������#k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���"k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��!iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p�� i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��(k�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��'k�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��&k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��%k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���$k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����-k�	Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���,k�	Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���+k�%	Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��*iq	Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��)k�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��2k�
	Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��1k�	Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��0k�7	Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��/k_	Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��.k�w	Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��8k_
Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��7k�w
Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���6k�
Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���5k�
Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���4k�%
Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��3k�	Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��=k{
Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��<k�
Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��;k�

Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��:k�
Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��9k�7
Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��Bk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Ak�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��@k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��?k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���>k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��Gk�Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Fk_Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Ek{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Dk�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Ck�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142

e�r+��V��:��eD��
04b897ee5a470f0fb0ecc0e412cc6d3910847f21d8a28f788c5515366e2ac15bD��
2b65890542b472692e7023dc8a29b0b0fb54c80adcb4705c53d520b6c66c1c4bD��
1e539eb940638371c11f0e077bf6396b4c0afe2d8a5e55e1a10d9e05b8865487D��
84eb961185970d439cbddea77f57986510cc0e948d47a65f64173b75fa19949bD��
46b7ac1c6e8834a1d46051b922ee8bd78569b89c91a40bac7b9886b7f75ed974D��
21fa1a95375af231395873580adb9f748d65f91c14f7835244aed1cbf60db644D��
9fd356bb83a32c07e83db458f3325d6bb9b9d294bf167987ff425f01ceec9bb3D��
668aa02abd3ff0859bc87b987a759a3a31fbe34f12aac062a8c53a042ea273c7D��
07a39b4944cc8d1c6e61f1ad215c744f685fcf1cf0494ce979a7f28539da66d6D��
f87c2dd925c9d1309b2c16ad21f5c84cb1b2789d322aefb90bd02179185c3c04D��
549ed9d000ddff74758b2c4266ac73c915179f78808cb685c1812d5cbe4d3c36D�
�
2e4e3b337d65ebe2475a8b0c521957f5a723460fab8ee95aace9f4b6433d25c1D��
e88c137e89be1334bc4b12c371f5d7a2513ff468e6b5530a069c0f42a2d803ea
Q��QQ�{��Lk�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Kk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Jk�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Ik_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Hk�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��Ri�
Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��Qk}Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Pk�Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Ok_Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Nk{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Mk�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��Zk�
Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Yii
Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Xk�}
Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Wik
Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Viu
Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Uim
Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��TiE
Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��Sk�
Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��bk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��aiiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��`k�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��_ikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��^iuAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��]imAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��\iEAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��[k�
Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��fikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��eiqAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��di�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��ck�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��jk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��ik�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��hiiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��gk�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������nk�Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���mk�%Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��liqAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��ki�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�zV�q�w��tk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��sk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��riiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��qk�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��pikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���ok�Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������xk�Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���wk�%Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��viqAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��ui�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��}i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��|k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��{k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ziiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���yk�Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��iiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��~iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����	k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��
k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���
k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��k�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��!k�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P�� k�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������%k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���$k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��#iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��"i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��*k�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��)k�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��(k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��'k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���&k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����.k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��-iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��,i�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��+k�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��4k�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��3k�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��2k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��1k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���0k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���/k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����9k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���8k�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���7k�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��6iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��5k�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��>k�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��=k�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��<k�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��;k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��:k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��Dk�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Ck�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Bk�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ak�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��@iqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��?k�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��Ik�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Hk�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Gk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Fk�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Ek_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254

e�r+��V��:��eD�%�
1fb9ef577f0e9e4a896981792189019932788dd1325084e83bf11f422ec11e55D�$�
9fd94d3abf2eb974789a7462096058ddb3171ea77c08cd56496f956960a28322D�#�
48d7e4811a291ee31fea33ff56b5e11082ae3d2a0bee442c7ee6b29212f72b3eD�"�
9848ba3b7d2dcbf53d06c6dcd18ead76a0a0048e2222d60c5027b037fdd628a5D�!�
354a7f6dc710763963d56fba904430a98f75f770240185bd954597c4338b1d0eD� �
59322a58bf2949a46807f44a970d90fdb94b2e15f2de040025b4cb5e17568171D��
3c7a4b80b2ddae9fd2eea4d9ca2f112f0086b0f0366fe20bd37a1f21328467c9D��
e528ea9bec7db57fa568791758764da431303a54e6189e0449c7b1f92756f230D��
1f9b0f9eecf8b7a6008d7136a85ba783f0bc60894d8d724b0adb44f56d167728D��
fffeb3e36d81e735ea56a95e6ac78d23c78c3ac7e4afb27bcdf91a835d7cb3b6D��
1768bd5acb4d22e917fb9f3d2c5b2d56b9563f0d453dc52f436e8ee1fe717ab6D��
21239c5b9999cc70790783421ae9dd4466f9017bc973479de248a20ed5447111D��
efa06b2642e8d158f0e16bbaaa5d8d454be1db364722a3321c4cf61727e988d8
6t�gr6�P��Ok�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Nk_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Mk�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Lk�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Kk�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Jk�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���Uk�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Tk�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��Sk{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Rk�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Qk�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Pk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��Zk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Yk�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Xk_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Wk�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Vk�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��_k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���^k�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��]k{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��\k�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��[k�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��ek{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��dk�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��ck�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��bk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��ak�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��`k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��kk�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��jk_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��ik�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���hk�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��gk�Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��fk_Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��qk�Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��pk_Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��ok{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��nk�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��mk�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��lk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��vk�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��uk�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��tk�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��sk_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��rk�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��}k_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��|k�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��{k}Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��zk�Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��yk_Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��xk{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��wk�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��k_Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��~k�7Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��
iuAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��	imAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iEAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k�Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��i�Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��k}Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��k�Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��i� Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��
iiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ikAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��k� Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�} Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iu Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��im Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k� Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev�� k�!Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii!Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}!Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik!Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iu!Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��im!Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE!Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��k� Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��%im"Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��$iE"Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��#iq!Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��"i�y!Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��!k�!Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��+k�"Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��*k�"Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��)ii"Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��(k�}"Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��'ik"Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��&iu"Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
x�0x�3��/k�}#Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��.ik#Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��-iq"Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��,i�y"Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
<���<k��4iq#Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��3i�y#Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��2k�#Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��1k�#Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��0ii#Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires
t�g��w��:k�$Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��9k�$Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��8ii$Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���7k�#Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���6k�#Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���5k�%#Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
������>k�$Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���=k�%$Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��<iq$Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��;i�y$Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��w��Bk�%Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��Ak_$Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��@k�w$Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���?k�$Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Fk�%Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ek�%%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Diq%Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ci�y%Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��Kk�%Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Jk�7%Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Ik_%Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Hk�w%Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Gk�%Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock

e�r+��V��:��eD�2�
15ba10efc121a3ed0a0eca1fa166dedb998e453bd44dfab80b4ea710432aa8c0D�1�
4c04f9c0edd59e74074f9a36500741821e912b6a5865fae5f59b76252ebba71fD�0�
fd9eac77800954e912c795b1baa2897a1255e8c44f1dcbe7f154da4bbb690fcdD�/�
793ed94885ccb91d3de9ac0ee3c6ae228181f6d4d90d6c2ba44aeecea596a647D�.�
5c3f57ee8f26430a0967dbc9fb3d9d5fc2c5dd13b98177359cedcda6874b3799D�-�
5f7b92aac28013990bf6ff5dfda904b49259d332381f6fd3a71b635df396f7e1D�,�
4002815b3af5011f39413ce958784b1f26655ab8f66ee5e65f83422aa955b381D�+�
ab13aa04aeb348258901773260b01891907dc2f1c189f183f4e44235a851f3afD�*�
aedb64f36af805dd8fb683d049561dd019fa2ef5e48b7562c0f91dbdb1fb951eD�)�
28c2a5051272af63a8edc3a8a14de5ce766ac890e9ece13f89e53bf7481f9f51D�(�
112b6e97fc16e295181066cb46ff1a9262b26431c1ac47354e7d5d67d3fc1615D�'�
46cf410604f7938205308a15957f49b1342c994799e461a129e01bd216d7a933D�&�
dc916d8fb8fa71e2b3598fd5f5d1544cc54745b116f27a7ab2ecadf3df918a7f
������Ok�&Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Nk�%&Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Miq&Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Li�y&Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��Tk�&Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Sk�7&Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Rk_&Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Qk�w&Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Pk�&Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����Yk�'Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Xk�'Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Wk�%'Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Viq'Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��Uk�
&Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��^k�
'Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��]k�'Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��\k�7'Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��[k_'Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Zk�w'Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��dk_(Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��ck�w(Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���bk�(Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���ak�(Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���`k�%(Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��_k�'Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��ik{(Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��hk�(Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��gk�
(Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��fk�(Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��ek�7(Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��nk�)Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��mk�7)Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��lk_)Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��kk�w)Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���jk�)Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��sk�)Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��rk_)Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��qk{)Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��pk�)Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��ok�
)Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��xk�
*Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��wk�*Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��vk�7*Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��uk_*Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��tk�w*Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesbR?�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������?(��?)��?*��!?+��%?,��*?-��.?.��4?/��9?0��>?1��D?2��I?4��O?5��U?6��Z?7��_?8��e?9��k?:��q?;��v?<��}?=��?>��
??��?@��?A�� ?B��%?C��+?D��/?E��4?F��:?G��>?H��B?I��F?J��K?L��O?M��T?N��Y?O��^?P��d?Q��i?R��n?S��s?T��x?V��~?W��?X��?Y��?Z��?[��?\��?]��&?^��*?_��/?`��3?a��8?b��=?c��B?d��H?e��M?g��R?h��W?i��\?j��b?k��j?l��r?m��v?n��z?o��~?p��?q��
?r��?s��?t��?u��?v��!?w��&?x��,?y��1?z��6?{��;?|��@?}��F?~��N?��V?���Z?���^?���b?���h?���l?���q?���x?���}?���?���?���?���?���?���
{F�j�v{�v��~i�+Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��}k}*Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��|k�*Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��{k_*Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��zk{*Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��yk�*Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��k�+Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii+Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}+Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik+Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iu+Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��im+Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE+Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k�+Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��k�,Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��
ii,Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�},Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik,Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��
iu,Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��	im,Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE,Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��k�+Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��ik-Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��iq,Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y,Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�,Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��k�-Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�-Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii-Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}-Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������k�-Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%-Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq-Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y-Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��i�y.Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�.Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�.Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii.Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���k�-Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
!�~��!w��&k�/Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��%k_.Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��$k�w.Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���#k�.Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���"k�.Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���!k�%.Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�� iq.Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
������*k�/Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���)k�%/Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��(iq/Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��'i�y/Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��/k�/Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��.k�7/Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��-k_/Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��,k�w/Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���+k�/Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������3k�0Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���2k�%0Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��1iq0Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��0i�y0Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��8k�0Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��7k�70Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��6k_0Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��5k�w0Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���4k�0Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����=k�1Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���<k�1Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���;k�%1Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��:iq1Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��9k�
0Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��Bk�
1Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Ak�1Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��@k�71Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��?k_1Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��>k�w1Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��Hk_2Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Gk�w2Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Fk�2Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Ek�2Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Dk�%2Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��Ck�1Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��Mk{2Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Lk�2Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Kk�
2Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Jk�2Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Ik�72Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl

e�r+��V��:��eD�?�
836c3fcced9a9357e2eead69c55ef322cb19c6fed119b1eae1877c6b2bd51169D�>�
85b37a5fd5787e7ba6d0b814f2b7c0de2df1e314d12a9e9ec3fd2cd80e7dbf28D�=�
f2e6529205d5d5cda9ea3d5996514f86afdf1ddacc087c47d9f80362b885b94dD�<�
2272979129fdda737c2763fb9bb135cf5763b18ba685523ac289d17b110c0dfaD�;�
ec7d4d6f34f218c71ac4c95b8ae162cfa554d6f3285e389a230c52898b5df662D�:�
99fbbb592c991c048c088d31d6dc60cef74de08cfb469bfc81e440dd3938c4d4D�9�
0c9251da98f68e439285f3e9fe1d2564f460335667000f17d613cca5310aa954D�8�
1ac0a06d5f14e63729e4206d6934c71f032a9d594c6bbb5ecc1c0ceee1abc06dD�7�
0bc7a3258a261dafb1804614ca3e65cc202ca5a9607554f6524da136cb7c7ee6D�6�
4598455c105686eb7e3fd9bbe5dd3d1c3e012036441206b4a4b2c4cf8b732302D�5�
a4d493ddbcf031863d7df693b8bc739563ff7942f02210a63070f6e5f86aa7fcD�4�
1617a73a615b21a99cc94d4baf19a16b3e787c5cae853c5b1ca7340d1dfe84c9D�3�
a384513b0be353541f3730615409df1cd228cf1a4fef5a3c14bd1bfca576d8f9
�z�I�z��Rk�3Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Qk�73Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Pk_3Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Ok�w3Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Nk�3Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��Wk�3Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Vk_3Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Uk{3Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Tk�3Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Sk�
3Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��\k�
4Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��[k�4Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Zk�74Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Yk_4Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Xk�w4Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��bi�5Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��ak}4Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��`k�4Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��_k_4Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��^k{4Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��]k�4Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��jk�5Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iii5Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��hk�}5Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��gik5Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��fiu5Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��eim5Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��diE5Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��ck�5Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��rk�6Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��qii6Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��pk�}6Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��oik6Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��niu6Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��mim6Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��liE6Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��kk�5Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��vik7Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��uiq6Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��ti�y6Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��sk�6Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��zk�7Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��yk�7Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��xii7Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��wk�}7Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������~k�7Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���}k�%7Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��|iq7Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��{i�y7Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��i�y8Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�8Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�8Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii8Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���k�7Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
!�~��!w��
k�9Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��	k_8Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w8Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�8Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k�8Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%8Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq8Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
������k�9Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���
k�%9Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq9Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y9Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k�9Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�79Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_9Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w9Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�9Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�:Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%:Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq:Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y:Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k�:Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7:Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_:Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w:Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�:Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����!k�;Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��� k�;Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%;Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq;Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��k�
:Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��&k�
;Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��%k�;Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��$k�7;Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��#k_;Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��"k�w;Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��,k_<Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��+k�w<Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���*k�<Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���)k�<Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���(k�%<Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��'k�;Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��1k{<Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��0k�<Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��/k�
<Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��.k�<Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��-k�7<Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��6k�=Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��5k�7=Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��4k_=Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��3k�w=Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���2k�=Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��;k�=Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��:k_=Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��9k{=Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��8k�=Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��7k�
=Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��@k�
>Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��?k�>Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��>k�7>Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��=k_>Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��<k�w>Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��Fi�?Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��Ek}>Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Dk�>Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Ck_>Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Bk{>Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Ak�>Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��Nk�?Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Mii?Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Lk�}?Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Kik?Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Jiu?Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Iim?Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��HiE?Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��Gk�?Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��Vk�@Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Uii@Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Tk�}@Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Sik@Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Riu@Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Qim@Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��PiE@Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��Ok�?Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag

e�r+��V��:��eD�L�
7e7bc2ad7bb400736ea42cfba2ef80b5d0a56bc7d73625f692b8597a92251297D�K�
7380c6641a8e803a62e76e8af53969ed47f13f90aded491ee5e72f1947b0995bD�J�
10a162b74ab12cba105a1556951bb59dc3a6fe0ead031488abf12f3017324716D�I�
6d1695ee0cacafe8f21952e32e2db02bc6e264eadd5e68c3e8db3612519ab13aD�H�
3bb061745bcab5ccdf7cac588403affcb1f45108fd78412872bc78b646404b98D�G�
6b416b00b5ef6cb53e5629184ff45e772a8c2a837a9e0bb69dc38ebdd07ec7f2D�F�
5a74a6ec4e7d6d8944913ada4270edb09c6f3b75a0b4caba77d076c07bc64964D�E�
f086e1ae057782a612a9146ab15a673cb1fc1c351507f164527a1561fe1017e1D�D�
434aa31c1e300108134248129540211cac97b9c972fee7b8a5c1247a8c318c2fD�C�
9384630d77721b9cf0583684ad152790662a117c211334438628621a8b12dec7D�B�
f8d72ec48ec0e1f77e42f4f2a5c6dbeabe6e13e680771e35008c6865faee59f6D�A�
c31f2747e3388b9d79c19442e86c3d4556be28b28509108ed5c494f7278e2a38D�@�
be1124e1f840cb866d332ff93aa0c138c358e7a5c45b54ab72d58a19da6c3a65
���!�h��ZikAAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��Yiq@Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Xi�y@Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Wk�@Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��^k�AIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��]k�AIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��\iiAAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��[k�}AIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������bk�AAndreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ak�%AAndreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��`iqAAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��_i�yAAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�zV�q�w��hk�BIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��gk�BIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��fiiBAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��ek�}BIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��dikBAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���ck�AAndreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������lk�BAndreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���kk�%BAndreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��jiqBAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��ii�yBAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��qi�yCAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��pk�CIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��ok�CIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��niiCAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���mk�BAndreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��xiiDAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��wk_CAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��vk�wCAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���uk�CAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���tk�CAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���sk�%CAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��riqCAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����}k�%DAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��|iqDAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��{i�yDAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��zk�DIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��yk�DIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��k�EIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��k_DAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wDAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�DAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���~k�DAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������k�EAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%EAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqEAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yEAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��k�FIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��k�EAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��
k�7EAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��	k_EAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wEAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�EAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�FAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%FAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqFAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��
i�yFAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k�FAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7FAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_FAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wFAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�FAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�GAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%GAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqGAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�yGAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k�GAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7GAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_GAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wGAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�GAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����"k�%HAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��!iqHAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p�� i�yHAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��k�
GAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��(k�HAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��'k�7HAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��&k_HAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��%k�wHAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���$k�HAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���#k�HAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����-k�IAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���,k�IAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���+k�%IAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��*iqIAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��)k�
HAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��2k�
IAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��1k�IAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��0k�7IAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��/k_IAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��.k�wIAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��8k�wJAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���7k�JAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���6k�JAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���5k�%JAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��4iqJAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��3k�IAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��=k�JAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��<k�
JAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��;k�JAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��:k�7JAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��9k_JAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��Ck�7KAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Bk_KAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Ak�wKAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���@k�KAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���?k�KAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���>k�%KAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���Ik�LAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Hk�%LAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��Gk{KAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Fk�KAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Ek�
KAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Dk�KAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��Nk�LAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Mk�7LAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Lk_LAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Kk�wLAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Jk�LAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��Sk�wMAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Rk�MAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��Qk{LAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Pk�LAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Ok�
LAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142

e�r+��V��:��eD�Y�
a1d7425caccc9a966670aae472b941355eabfd2f097cd2e1f237f22cfe4a17abD�X�
df6e614866add11969ca0b65851bfa71c6bc9f4844246ad53138cc6918480108D�W�
18cd5d8d39b9aec1631228c86412a11eed902b967a26b6a64c816e4fcccaff89D�V�
88cbca784ae7af25ab7e769129e7fd6d1e91281dc714e9bc35a46dfde2da5624D�U�
a6776dea18957f42231f6c504897a29ef208e3c2b1f0ae2ca2b12d5f93fec583D�T�
0bc17855cc6640920597c449da532b260707f9f0446c2d6c601ace461632007eD�S�
05ab159708542ab7cbdc54eec74ffdbd8cb86dd12b6b0a5c10faff3414c5ddceD�R�
5259da8d02da50b7fa77e6a85337bd5b220b5a2f13fdffdf6bf2245e630017c8D�Q�
0d2d3cbaee9c9fdd4bf0e41db231e656141f296acbbf0480fb738b9c04e78268D�P�
8dbad9b74358ef443eacae1628f33b8cf52128bfd4a1e2ad38ef0ec9549a22c4D�O�
61c886355da15df816e8e94fb32990af3d0e4c89549b100c128c54b438924eb7D�N�
ef91b432545f513294a7b3949519656a6cd8b9d3ee0fc8217364537cfefde363D�M�
b31cc50cbf74e369bada216975078737e5f701111fb2ea5d0c97c5979d5c4db4
��FF�q��Yk{MAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Xk�MAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Wk�
MAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Vk�MAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Uk�7MAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Tk_MAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��_k�7NAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��^k_NAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��]k�wNAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���\k�NAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��[k�MAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Zk_MAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��ek�NAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��dk_NAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��ck{NAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��bk�NAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��ak�
NAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��`k�NAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��jk�
OAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��ik�OAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��hk�7OAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��gk_OAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��fk�wOAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��qk_PAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��pk�wPAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��ok}OAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��nk�OAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��mk_OAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��lk{OAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��kk�OAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��wk_PAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��vk{PAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��uk�PAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��tk�
PAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��sk�PAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��rk�7PAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��~iuQAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��}imQAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��|iEQAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��{k�QIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��zi�QAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��yk}PAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��xk�PAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��i�RAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��k�QIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�QIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iiQAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}QIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ikQAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��k�RIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iiRAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��
k�}RIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��	ikRAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iuRAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��imRAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iERAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k�RIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��k�SIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iiSAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}SIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ikSAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iuSAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��imSAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iESAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��
k�RIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��imTAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iETAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��iqSAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�ySAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�SIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��k�TIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�TIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iiTAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}TIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ikTAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iuTAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
x�0x�3��#k�}UIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��"ikUAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��!iqTAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p�� i�yTAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
<���<k��(iqUAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��'i�yUAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��&k�UIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��%k�UIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��$iiUAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires
t�g��w��.k�VIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��-k�VIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��,iiVAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���+k�UAndreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���*k�UAndreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���)k�%UAndreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
������2k�VAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���1k�%VAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��0iqVAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��/i�yVAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��w��6k�WIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��5k_VAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��4k�wVAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���3k�VAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������:k�WAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���9k�%WAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��8iqWAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��7i�yWAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��?k�WAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��>k�7WAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��=k_WAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��<k�wWAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���;k�WAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Ck�XAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Bk�%XAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��AiqXAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��@i�yXAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��Hk�XAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Gk�7XAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Fk_XAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Ek�wXAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Dk�XAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����Mk�YAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Lk�YAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Kk�%YAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��JiqYAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��Ik�
XAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��Rk�
YAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Qk�YAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Pk�7YAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Ok_YAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Nk�wYAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��Xk_ZAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Wk�wZAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Vk�ZAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Uk�ZAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Tk�%ZAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��Sk�YAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict

e�r+��V��:��eD�f�
0d795cbf22fec282f02654f7712344c97027974130c274b8e837bec939303861D�e�
0ebd7a7d93f6af20c4e8fff8d52032fda80556a14021adf330e1c9f9e8063482D�d�
4aab05abd1b63222c6aa994c3754ec20a9d3258f4769449d5e105f718ba5f442D�c�
1b20547bbbfca3c83fa9317da6351d845a3f6ee818efb377f5a74fe92ae5a2fdD�b�
25b247bcb5f601c204d1a8049befe95cc84a219558a504a5e7412cc129f8cceaD�a�
a9cc4d39a2d6ad848428798509620c583ee6ec0da4ca03fdc079133cea857364D�`�
113bbd026677c12bbfb0f6803e303c762606f5f0c0dd003dac3e57e0a598d8c9D�_�
6ab73b9be208b744fbb10e2b4b62ee6782dd5717e49b00d2c93994bf8c59e499D�^�
c7423e39173d9fe8056ef70f6214e1c4f4af271fa10cf07b321ec23fa5e89359D�]�
b989926a63d032134a604af73945bec5d655b1f56d71ee89b60cdd36ad43db7bD�\�
6a54b11f2a8b565659f8bbc6b4fdd6ea12732e30070c5a27c01336f48847fffcD�[�
d9b6c849e3f7bb3fa602d5b17cbfbda40ae131b42cc00f3c522157a30999d010D�Z�
3d3fa496232fa0f5bb5b56927dea03ee514808271edae94b35d550e3dbe54772
~+���~q��]k{ZAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��\k�ZAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��[k�
ZAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Zk�ZAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Yk�7ZAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��bk�[Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��ak�7[Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��`k_[Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��_k�w[Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���^k�[Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��gk�[Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��fk_[Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��ek{[Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��dk�[Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��ck�
[Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��lk�
\Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��kk�\Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��jk�7\Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ik_\Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��hk�w\Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��ri�]Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��qk}\Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��pk�\Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��ok_\Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��nk{\Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��mk�\Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��zk�]Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��yii]Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��xk�}]Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��wik]Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��viu]Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��uim]Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��tiE]Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��sk�]Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��k�^Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii^Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}^Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik^Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��~iu^Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��}im^Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��|iE^Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��{k�]Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��ik_Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��iq^Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y^Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�^Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��
k�_Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��	k�_Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii_Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}_Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinbR?�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������?���"?���(?���-?���2?���8?���=?���C?���I?���N?���S?���Y?���_?���e?���j?���q?���w?���~?���?���?���?���?���?���#?���(?���.?���2?���6?���:?���??���C?���H?���M?���R?���X?���]?���b?���g?���l?���r?���z?���?���?���
?���?���?���?���?�$?Ã�)?ă�.?Ń�2?ƃ�8?ǃ�<?ȃ�A?Ƀ�E?ʃ�J?˃�N?̃�T?̓�Y?σ�^?Ѓ�d?у�i?҃�o?Ӄ�u?ԃ�z?Ճ�?փ�?׃�?؃�?ك�?ڃ�?ۃ�#?܃�*?݃�0?ރ�8?߃�@?�E?ეK?⃔O?ピT?䃔Z?惔^?烔b?胔f?郔k?ꃔo?냔t?샔y?탔~??	?�?�?�?�?�&?���.?���2
������k�_Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���
k�%_Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq_Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y_Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�zV�q�w��k�`Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�`Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii`Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}`Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik`Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���k�_Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k�`Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%`Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq`Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y`Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��i�yaAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k�aIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k�aIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iiaAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���k�`Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��$iibAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��#k_aAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��"k�waAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���!k�aAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock��� k�aAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%aAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iqaAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����)k�%bAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��(iqbAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��'i�ybAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��&k�bIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��%k�bIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��.k�cIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��-k_bAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��,k�wbAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���+k�bAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���*k�bAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������2k�cAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���1k�%cAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��0iqcAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��/i�ycAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��8k�dIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��7k�cAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��6k�7cAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��5k_cAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��4k�wcAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���3k�cAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������<k�dAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���;k�%dAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��:iqdAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��9i�ydAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��Ak�dAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��@k�7dAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��?k_dAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��>k�wdAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���=k�dAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Ek�eAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Dk�%eAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��CiqeAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Bi�yeAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��Jk�eAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Ik�7eAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Hk_eAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Gk�weAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Fk�eAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����Nk�%fAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��MiqfAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Li�yfAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��Kk�
eAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��Tk�fAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Sk�7fAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Rk_fAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Qk�wfAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Pk�fAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Ok�fAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����Yk�gAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Xk�gAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Wk�%gAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��ViqgAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��Uk�
fAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142

e�r+��V��:��eD�s�
ac054a6cb21fb80c8fa5d92b7cfe026640f5eb200f4e353fa4faf2ec2c2a0cf9D�r�
0f0241e556ea298645602911fe3d8280bc945bfbbbdf05c822cbe1fd63f1641cD�q�
dc829add4d45f5884e77bcd5570fa643f0a482815fe304ac97cf74eae7bf891dD�p�
71d5237e53d98bad084c2240820cd15af03b5f087119d5b59e92f1a002d4386cD�o�
e68322c77301aa109da2791f2c544f5933ba77ca4eb36116ea02fcc3d83c6209D�n�
c37c5f2481d02ad5543d7d4d2dbddb16eba4ee2deed077d977114cf608f12247D�m�
93a4cbbbc8b5c4b31b05ac687761f0f8f9699c2b5691192ad0f370b70ad1a30fD�l�
dddabe759540f01cb15424d35255ccfac26564331254e9757e3ad94869e2cf05D�k�
3deb7d3a6136871ad159d05ae95e27d8d744b7e3ed0cdee2668d0f7c847daaa5D�j�
79d7dc58c2f988ca4128c170279bb74b7e02f4d11996be672cb921db54e36161D�i�
69372e8180b47681712e917eeaf3777bfa1ae27641645b1797b5e61104693c4eD�h�
d78b8165e29e10002bc50adceb4a01bd56deec94d12fc30d4f3479c5ece32e38D�g�
6f4992979d6450182615d2419ce9c9ce044361871407e1a88a1c9911fe497221
Q��QQ�{��^k�
gAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��]k�gAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��\k�7gAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��[k_gAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Zk�wgAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��dk�whAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���ck�hAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���bk�hAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ak�%hAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��`iqhAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��_k�gAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��ik�hAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��hk�
hAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��gk�hAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��fk�7hAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ek_hAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��ok�7iAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��nk_iAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��mk�wiAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���lk�iAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���kk�iAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���jk�%iAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���uk�jAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���tk�%jAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��sk{iAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��rk�iAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��qk�
iAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��pk�iAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��zk�jAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��yk�7jAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��xk_jAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��wk�wjAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���vk�jAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��k�wkAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���~k�kAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��}k{jAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��|k�jAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��{k�
jAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��k{kAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�kAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
kAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�kAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7kAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_kAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��k�7lAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��
k_lAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��	k�wlAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�lAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��k�kAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_kAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��k�lAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_lAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{lAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�lAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��
k�
lAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�lAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��k�
mAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�mAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7mAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_mAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wmAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��k_nAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wnAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��k}mAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��k�mAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_mAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{mAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�mAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��#k_nAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��"k{nAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��!k�nAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{�� k�
nAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�nAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7nAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��*iuoAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��)imoAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��(iEoAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��'k�oIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��&i�oAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��%k}nAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��$k�nAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��0i�pAndreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��/k�oIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��.k�oIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��-iioAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��,k�}oIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��+ikoAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��8k�pIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��7iipAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��6k�}pIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��5ikpAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��4iupAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��3impAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��2iEpAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��1k�pIsaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��@k�qIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��?iiqAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��>k�}qIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��=ikqAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��<iuqAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��;imqAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��:iEqAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��9k�pIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��EimrAndreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��DiErAndreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��CiqqAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Bi�yqAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Ak�qIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��Kk�rIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Jk�rIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��IiirAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Hk�}rIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��GikrAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��FiurAndreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
x�0x�3��Ok�}sIsaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��NiksAndreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��MiqrAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Li�yrAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
<���<k��TiqsAndreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Si�ysAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Rk�sIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Qk�sIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��PiisAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires
t�g��w��Zk�tIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Yk�tIsaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��XiitAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���Wk�sAndreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Vk�sAndreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Uk�%sAndreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues

e�r+��V��:��eD��
dab8429bc58eb477c02d8eddb235455fe3be912176fb73b641187fb0ae7dfceeD��
4b38bac5d80fcc0063946dca9ca07cf5eb6d0ed1e82eaa7df1715a790288016eD�~�
88ebbac297f77c53cd09a2f137fda3254023224d3da2a351b153770a4ada109fD�}�
4752988d38c83850c74c74ec19ca5b7e1c79f8817544be00ab3fbc407c01355aD�|�
27194ef3e88b3dacc48cebc87ff15160878a2198d33fb8689040549b6083a26cD�{�
70215dcd3ae55ef64ecc4091cf3625d634872ef001749ced33e1b98ccf7a9b10D�z�
e931e9fe49a9a7c21e0cc3baa18262e5603d94fb11d0284564ceefad2eac5d87D�y�
168aca43a6275ed770802ded267285a01db77e46803e6ec90dad47985d8145eaD�x�
223ee648bd84e6a7bd0e7a0a189113bd1a3af31a18ecd5529530b10979cd3328D�w�
9a5fecf7eddf64da702208bc6b583307af8b3e3c8f80f0306e8eb58001ba5cdaD�v�
f2241666af94fe720a9238c276f97db47b1cb8737b678465e84924e2d3a8d6e1D�u�
b6e908a5877e75ecf0c9f0d2e6230660232dc1176edac5fab3ea2fc7d9185753D�t�
ef7f2a44b28fe81a03c9c1d9ff9899b216bc95ee9f93b7647a5a07a655a990c2
������^k�tAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���]k�%tAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��\iqtAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��[i�ytAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��w��bk�uIsaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��ak_tAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��`k�wtAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���_k�tAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������fk�uAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ek�%uAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��diquAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ci�yuAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��kk�uAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��jk�7uAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ik_uAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��hk�wuAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���gk�uAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������ok�vAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���nk�%vAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��miqvAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��li�yvAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��tk�vAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��sk�7vAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��rk_vAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��qk�wvAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���pk�vAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����yk�wAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���xk�wAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���wk�%wAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��viqwAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��uk�
vAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��~k�
wAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��}k�wAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��|k�7wAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��{k_wAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��zk�wwAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��k_xAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wxAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k�xAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k�xAndreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%xAndreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��k�wAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��	k{xAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�xAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
xAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�xAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7xAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��k�yAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��
k�7yAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_yAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wyAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���
k�yAndreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��k�yAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_yAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{yAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�yAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
yAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
zAndreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k�zAndreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7zAndreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_zAndreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�wzAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��i�{Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��k}zAndreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��k�zAndreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_zAndreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{zAndreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k�zAndreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��&k�{Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��%ii{Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��$k�}{Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��#ik{Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��"iu{Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��!im{Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU�� iE{Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k�{Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��.k�|Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��-ii|Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��,k�}|Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��+ik|Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��*iu|Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��)im|Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��(iE|Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��'k�{Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��2ik}Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��1iq|Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��0i�y|Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��/k�|Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��6k�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��5k�}Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��4ii}Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��3k�}}Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������:k�}Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���9k�%}Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��8iq}Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��7i�y}Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�zV�q�w��@k�~Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��?k�~Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��>ii~Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��=k�}~Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��<ik~Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���;k�}Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Dk�~Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ck�%~Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Biq~Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ai�y~Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��Ii�yAndreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Hk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Gk�Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��FiiAndreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���Ek�~Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��Pii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��Ok_Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Nk�wAndreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Mk�Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Lk�Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Kk�%Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��JiqAndreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����Uk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Tiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Si�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Rk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Qk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��Zk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��Yk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Xk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Wk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Vk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock

e�r+��V��:��eD�
�
df2c03d36edd3da46dc78887ba0c21af48565b9a39893e1157cf83913aa1b361D��
003c7635f8d23b7b12ec78287877a43a4ae9429260d34c92695eafb0df5d061aD��
c40a42601b6e79bc8b02eba97fef14998961f2c034ebf3a2c9cf36acb94a8012D�
�
cc4f393f3dc8376ae20557ef6ef4666627e5e582ff7ecd121164659a24781cfdD�	�
00056c9175a4ec1b58cad0e3b3b16cbd29712335001c85d5f270931b04d4bb6aD��
1930ee508064d9fc5b82d42aba3062a28da268f293b47a7af9f89dfc9ff3fd1fD��
8528777e2d5d089f809fd37c5c722627e07d23a1c4a116c83e8ff648c57058b9D��
bd868619b7086e2a7d7b78b6c2fc753b70a71567880be1bb5c40f85ca1a88875D��
a6aac81cd2d6ebe99abec53cff2653ecf43ba9a2c3087ea8406123927419b978D��
009f1e5fdfe0287c2d456390aacab52be52e77247292e285d5caa965c2330dabD��
a8f1e3373e10bfb45af34690456fb06dbf9cf8022362cfda341212c6841271dbD��
fcfcf89049ecf9f09cbf47f552ddb936bf74e4cd3537825f1c463ce4d4d50c66D��
622141e5636c218b10a59ecdbd66106cdad2a25b673f891edc0d4b61ac7965f8
������^k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���]k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��\iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��[i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��dk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��ck��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��bk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ak_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��`k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���_k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������hk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���gk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��fiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ei�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��mk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��lk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��kk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��jk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���ik��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������qk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���pk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��oiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ni�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��vk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��uk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��tk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��sk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���rk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����zk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��yiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��xi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��wk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��~k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��}k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���|k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���{k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��
k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��	k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���
k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���!k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��� k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��&k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��%k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��$k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��#k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���"k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��+k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���*k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��)k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��(k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��'k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��1k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��0k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��/k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��.k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��-k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��,k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��7k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��6k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��5k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���4k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��3k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��2k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��=k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��<k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��;k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��:k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��9k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��8k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��Bk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Ak��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��@k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��?k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��>k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��Ik_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Hk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��Gk}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Fk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Ek_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Dk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Ck��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��Ok_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Nk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Mk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Lk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Kk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Jk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��Viu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Uim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��TiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��Sk��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��Ri��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��Qk}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Pk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��\i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��[k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Zk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Yii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Xk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Wik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16

e�r+��V��:��eD��
4c1acd8485fdfe86cd47962474dfcb9f59d713caf6da198b738ec4fa3dd0c38bD��
0f8617080bdf5906164380f70a90898bdb69a7910d8fedcf476ef4c3300ccc36D��
65d95beebc4fa859daf899819187c19f9a0f248d4f60b30fed6a324c4ffda665D��
8d95806a7fbf5e875e27f1dac6cd557d87cc508a301218b36c67eb9012718b1aD��
5af10f82c939cf1b8c13d3064e3ddfe2de4add71af9db95263ae64050efcaef3D��
c5c83afc05bf26a4cc57f6113c9a03a1c709f35aca39423aa00a65cde5710234D��
40519a4b9f7188d9987ae8efcdcd2a6c382d6311c8aafae7cf914313e1d5eef3D��
0c6ad74477b64388fb061cd59308e5053fb53c352648ac10728050169bb9ac48D��
22822221e0cec5832d579c490f43f73da5575489c0b0fe6c53f5d0ca3ffda90cD��
809f841a5c44ddbe609d0827d1562e3515efe0f58ca9a5b5495789e578e2f7cfD��
66c9841543e52d2762a3f03b0bf340fa1bcf22e9038a8ad6659900270e97843aD��
4c8d4ec39fdb607061601e0e4b1e5230323ad72c01643e17ec55ef571d886e49D��
9c231e9b4e39bea78503148cf3642323271b9fdc99cef9271273ef16cfa78ef9
@�'�I�%�@v��dk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��cii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��bk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��aik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��`iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��_im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��^iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��]k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��lk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��kii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��jk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��iik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��hiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��gim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��fiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��ek��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��qim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��piE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��oiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��ni�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��mk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��wk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��vk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��uii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��tk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��sik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��riu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
x�0x�3��{k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��zik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��yiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��xi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
<���<k��iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��~k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��}k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��|ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires
t�g��w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
������
k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���	k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��
k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagebR@_RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������?���:?���@?���D?���I?���P?���U?���Z@��^@��d@��h@��m@��q@��v@��z@��@��@	��
@
��@��@��@
��!@��&@��+@��1@��7@��=@��B@��I@��O@��V@��\@��d@��l@��q@��w@��{@��@��@ ��
@!��@"��@#��@$��@&�� @'��%@(��*@)��0@*��5@+��:@,��?@-��D@.��J@/��R@0��Z@1��^@3��b@4��f@5��k@6��r@7��v@8��{@9��@:��@;��	@<��@=��@>��@?��@@��#@A��(@B��.@C��6@D��>@E��B@F��F@G��J@H��P@I��T@J��Y@K��`@M��e@N��j@O��n@P��t@Q��x@R��}@S��@T��@U��
@V��@W��@X��@Y�� @Z��%@[��+@\��1@]��6@^��;
�z�I�z�� k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����%k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���$k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���#k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��"iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��!k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��*k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��)k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��(k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��'k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��&k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��0k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��/k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���.k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���-k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���,k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��+k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��5k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��4k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��3k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��2k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��1k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��:k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��9k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��8k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��7k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���6k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��?k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��>k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��=k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��<k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��;k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��Dk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Ck��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Bk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Ak_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��@k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��Ji��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��Ik}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Hk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Gk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Fk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Ek��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��Rk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Qii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Pk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Oik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Niu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Mim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��LiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��Kk��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��Zk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Yii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Xk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Wik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Viu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Uim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��TiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��Sk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��^ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��]iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��\i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��[k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag

e�r+��V��:��eD�'�
fa096ffba3dc527395eaeb5d48dee9df05e4ddb693f382a610b5b0527eb217d4D�&�
cd38869a69886ec7014b529b0a5e2a8c6f5cb941544d083216de2f68d1db8abfD�%�
e67d6b84ad7acb2955ee72b7ee68979e8e001bb2a5d5cd54e752f6d78ee327d9D�$�
496cf5c5ca7cdfa69a957f1fd58b42a7ca210246b35627830c2607273e22b7c0D�#�
af89fab6b1b6beba4655dab160a80e43f00d9a3eb59e3da5678d9caf8ca4b865D�"�
7383213f19577210f9167fcd27957f9bd4763d172ec1509e90329b4f69c04a81D�!�
4735272f88bc3a162accf0ab7bae821772bb319cd6b136ca5791eb1cef2eb048D� �
cefaa998452e2e34b3a59dbbf972dd1e45e2bf1e4bad5a8df4b34529aab350b6D��
284a8c6f38b53f8ec780e1374c2a59b687177b7be9e40b2a673f14675843b17bD��
0159bd2e5e5911a949c27ecc4ee8003c3e2bdc4fe0074b1d0eb53e28360580faD��
a7a8c48658f7054decf6176a5bd02e2d560ad065376f79744ce3f8843e7b5f6fD��
0216cb555eb5ac8bb5f746370557652aa2a2e0814f298bdf4fe756f0f1cebcacD��
ef6b1d6ee31b3645952263c7292d83ff8479a7e1fa07238da2994be9d38f266b
�H�c�w��bk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��ak��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��`ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��_k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������fk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ek�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��diq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��ci�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��ki�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��jk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��ik��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��hii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���gk��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
!�~��!w��rk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��qk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��pk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���ok��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���nk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���mk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��liq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
������vk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���uk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��tiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��si�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��{k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��zk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��yk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��xk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���wk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���~k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��}iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��|i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����	k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��
k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��
k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��#k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��"k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��!k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5�� k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��(k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��'k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��&k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��%k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��$k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��.i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��-k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��,k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��+k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��*k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��)k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��6k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��5ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��4k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��3ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��2iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��1im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��0iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��/k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��>k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��=ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��<k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��;ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��:iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��9im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��8iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��7k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��Bik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��Aiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��@i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��?k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��Fk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Ek��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Dii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Ck�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������Jk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ik�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Hiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Gi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�zV�q�w��Pk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Ok��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Nii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Mk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Lik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���Kk��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Tk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Sk�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Riq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Qi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��Yi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Xk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Wk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Vii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���Uk��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��`ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��_k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��^k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���]k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���\k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���[k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Ziq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks

e�r+��V��:��eD�4�
b772674f402708d7a9f5c7def69900c57b170e563c2d85cab68cb3c7dd011b4aD�3�
bdc9a186d8366629fb8cebd6f2da7e719bafe512cf237e1600cb799720208e34D�2�
2aebe9981726c0cb957fba5fd53f20dc834ae5db5bffd674f3e8dfd37e300569D�1�
80f7c4d43325e0eaf5c03d461abdecaa270e288f97e98c48b11ef953ac3c2ad7D�0�
21e025565c6df51abd78e6c98b69d9f5be23937f57c5a64c76d807474bb9cb0bD�/�
ebf6108e3363c7e97a710010b034bcd8756cb06bdb7dcad7f1cfd7b5d5b94925D�.�
1f08621d329170cddb192cd470d84cca45c4f102f80f2763f6ad12bcd7d94903D�-�
f1aac8f28d7b09a95684a3721602f0d75b800ec4446164425cbe36568cb5d9e6D�,�
92d0bc0edf07e6a5b24d5dcbe83924f7438ff5eaa170034fbde75f52fbbde969D�+�
166e3f5af4c284b83976badb2166ef9cbf7ee9204cc585ab900bfe28006a7917D�*�
bf842b8211bed6cacf365fa45198ae4376c511311e8e65daff8a87231424ed8fD�)�
bcabaf0d5da539b375bef6f5b408b4c4ec6fb3c207f79f771b9a4349431144f7D�(�
86b9d3e949b76b70e8c793f03ef07004f125e978056735b094814e3c282208a6
�����ek�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��diq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ci�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��bk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��ak��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��jk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��ik_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��hk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���gk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���fk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������nk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���mk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��liq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ki�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��tk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��sk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��rk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��qk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��pk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���ok��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������xk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���wk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��viq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��ui�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��}k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��|k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��{k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��zk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���yk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��~i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����
k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��	iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��
k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p�� k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��%k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��$k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��#k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��"k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��!k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��+k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��*k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��)k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���(k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���'k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���&k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���1k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���0k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��/k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��.k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��-k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��,k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��6k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��5k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��4k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��3k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���2k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��;k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���:k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��9k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��8k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��7k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��Ak{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��@k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��?k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��>k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��=k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��<k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��Gk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Fk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Ek�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Dk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��Ck��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Bk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��Mk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Lk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Kk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Jk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Ik�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Hk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��Rk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Qk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Pk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Ok_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Nk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��Yk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Xk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��Wk}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Vk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Uk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Tk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Sk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��_k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��^k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��]k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��\k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��[k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Zk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��fiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��eim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��diE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��ck��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��bi��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��ak}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��`k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023

e�r+��V��:��eD�A�
134ebbe6274a1c839f7532e6c8c356f561d28c58fcde4685da109f394c8081acD�@�
b2ef8a6d19b994c6cead1e1510c4b2f0abe8b34327fe6fbc1e106f3549ef5de9D�?�
26a68d26adb827543aeaad6e4d3d44e9427ff343621f03ac95b3ee77567a2791D�>�
085f2174502e709dad29fc828ef0fd2f5c027de6d68e07e337607b8c77e184cdD�=�
a6bfb1c5831155f91a3bad78a1830d94fefc2a73404bac0d0cd1818419a2bd97D�<�
87db2fe7caa5472a08068b5229089b79f46799961c76df49341071e86736a23eD�;�
9aaf0e40133fe06566b60b7c5045d71204f986d2fb7aef8c6375d03c80b89120D�:�
878e4a65ea92ff450fd8d2bd226c5bc9e55bcd148895af1d80aec4ad27528da7D�9�
410ce04c09d80f22a31d904271e83d196121736299e85e3eed33da09b5e99399D�8�
8408d0aca2bfcaaac96c7f2344996a46fdebe107dd0cb02f4af7dbdca094e232D�7�
377ad2aef6a59ddb2c292a6fac9feb315ee0b1fa109bd47f5aca3c6b7710e3b8D�6�
6384423635a67bb9f927be241ed3f67b1e101743ff36d4f239fdca3de98d1474D�5�
e3d6fe10b5be6ef1037244968642c245659e0a8f0dce997e92167e26158779cf
���q�|��v��li��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��kk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��jk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��hk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��gik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��tk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��sii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��rk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��qik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��piu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��oim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��niE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��mk��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��|k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��{ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��zk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��yik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��xiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��wim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��viE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��uk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��~i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��}k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
x�0x�3��k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��
ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��	iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
<���<k��iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��
k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires
t�g��w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z��w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������"k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���!k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�� iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��'k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��&k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��%k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��$k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���#k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������+k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���*k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��)iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��(i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��0k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��/k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��.k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��-k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���,k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����5k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���4k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���3k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��2iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��1k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��:k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��9k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��8k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��7k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��6k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��@k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��?k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���>k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���=k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���<k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��;k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��Ek{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Dk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Ck�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Bk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Ak�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��Jk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Ik�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Hk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Gk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Fk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��Ok��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Nk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Mk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Lk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��Kk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��Tk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��Sk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Rk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Qk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Pk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��Zi��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��Yk}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��Xk��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��Wk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��Vk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��Uk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��bk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��aii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��`k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��_ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��^iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��]im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��\iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��[k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��jk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��iii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��hk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��gik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��fiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��eim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��diE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��ck��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag

e�r+��V��:��eD�N�
78a505e2bcfc16a350b57ebc21548ec930762a04126892a45b3a16320eab40bfD�M�
4e82685863559181e2fb19cd0ab050ce5c0cc72aee0aa23484c3c8bd3233a2aeD�L�
6b8e84e40f76c1ccc98e60f6fc669dc338d056f42c48ba13b6a52100a4f94564D�K�
c5857421c619421bd4cd8ddb51736ad8d819352b2770078910fd43a33461df77D�J�
90f1c235b87123f7d8a5ed0f7a6b6a246999326ece8c0c87c4412e41a67e4990D�I�
ea43fb93ee5477ce7a096f94c4c69775bd338911a252668b833ecc7ffe9f4452D�H�
5a4016edab2fb96b11729042f640f939d31bdd1eea435240f269d9ece5ab72d1D�G�
307213631a2c91a2525aabaa4c385612cf940c0756076d44a20f99ccf48fb1e3D�F�
4378731794448fc800d324e71a41beeae2b174ba078b23eb78ccff27fd8d5764D�E�
dfa0087b709a643d5c0cd08f474c7f4e2246be49e0ed748ef007f5903a31b544D�D�
0b321ea4f022bb7f3c34a1bd3f7d2b5cda3bc71f527d5d4e5af585464ef88de7D�C�
fee2103b6ba68f134bc8d706313e6d873b9ef2d803cbcb27234da184bd579eb1D�B�
d6ea0ca981efba600c4c9a961ef325d51932a90a277b9769a59c3a585824515d
���!�h��nik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��miq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��li�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��kk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��rk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��qk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��pii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��ok�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������vk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���uk�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��tiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��si�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��{i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��zk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��yk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��xii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���wk��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
!�~��!w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���~k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���}k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��|iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��
k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��	k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��
iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��$k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��#k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���"k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���!k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock��� k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��)k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��(k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��'k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��&k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��%k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlbR@�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������@`��G@a��M@b��R@c��Y@d��_@e��f@g��l@h��t@i��|@j��@k��@l��@m��@n��@o��@p��@q��"@r��'@s��+@t��0@u��5@v��:@w��@@x��E@y��J@z��O@{��T@|��Z@}��b@~��j@���n@���r@���v@���{@���@���@���@���@���@���@���@���$@���)@���.@���3@���8@���>@���F@���N@���R@���V@���Z@���_@���f@���j@���o@���s@���x@���}@���@���@���
@���@���@���@���"@���*@���2@���6@���:@���>@���C@���J@���N@���S@���W@���\@���a@���f@���l@���q@���v@���{@���@���@���@���@���@���@���"@���(@���,@���1@�8@Ã�=@ă�B@Ń�F@ƃ�L
�z�I�z��.k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��-k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��,k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��+k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���*k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��3k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��2k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��1k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��0k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��/k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��8k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��7k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��6k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��5k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��4k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��>i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��=k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��<k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��;k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��:k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��9k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��Fk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Eii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Dk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Cik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Biu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Aim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��@iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��?k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��Nk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Mii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Lk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Kik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Jiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Iim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��HiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��Gk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��Rik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��Qiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Pi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Ok��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��Vk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Uk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Tii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Sk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������Zk��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Yk�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Xiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Wi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��_i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��^k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��]k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��\ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���[k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
!�~��!w��fk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��ek_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��dk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���ck��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���bk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ak�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��`iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks

e�r+��V��:��eD�[�
166d7341007094fcdf2e7262d74c699cb960d009945a221df4ba4a33d63ebc76D�Z�
2833f7d8c4764e2c4c247d5f95bf07698e64f2a6dc53aba92fe3fa1f92affe42D�Y�
0adc9fe4603e83cc02d7181487b5982803e7d1ac319a09428f7f62c4b74d8d3dD�X�
672ffef35a04fe32b016bba89b95e6120a868c7d27c5054cb5fed31aca0fca0aD�W�
5cadd6d1e44a896802e1df30ac84a484345f572bfaaa938544b43458dc6d80bdD�V�
3a891b3b430fed933fb5c51f4dabf4aad4986782e238208490c03139368c40d4D�U�
fc626afc893b85c55f51d292c8bb06d0f31d54e62391e473e9fd5d070392c64cD�T�
ac1a64b7b78526de7991cf4af7c5df8f1b799a4c43b62277a17f7e6b5a8bb4e4D�S�
b08b52ab528346df18af0d47ce99984bb2bd02ac6801bb580534ff9d3274a0abD�R�
28000a91ccbcd79237e5ddae52f2c4002be7344262fc0e43ce86378d90823bd7D�Q�
c791e843e2fbae086343a6654618fae6ea425f37e0816212e9805136c98a236cD�P�
9b69e41e187f8c3cd3d73d8a8b89d8ee3e0237dbf11ca2481d2bb26444e5ed32D�O�
4985ef8243b405acb259897280bebdf83951ffe71af3db3fcf8140797602544b
������jk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���ik�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��hiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��gi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��ok��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��nk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��mk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��lk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���kk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������sk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���rk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��qiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��pi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��xk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��wk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��vk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��uk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���tk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����}k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���|k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���{k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��ziq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��yk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��~k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
~+���~q��
k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��
k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��	k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��"i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��!k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z�� k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��*k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��)ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��(k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��'ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��&iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��%im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��$iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��#k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��2k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��1ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��0k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��/ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��.iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��-im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��,iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��+k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��6ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��5iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��4i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��3k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��:k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��9k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��8ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��7k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������>k��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���=k�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��<iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��;i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��Ci�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Bk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Ak��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��@ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���?k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
!�~��!w��Jk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��Ik_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Hk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Gk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���Fk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ek�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Diq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
������Nk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Mk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Liq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ki�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��Sk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Rk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Qk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Pk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Ok��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Wk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Vk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Uiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ti�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��\k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��[k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Zk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Yk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Xk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
��~����ak��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���`k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���_k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��^iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��]k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��fk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��ek��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��dk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ck_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��bk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
QF�3��Qc��lk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��kk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���jk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���ik��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���hk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues�5��gk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict

e�r+��V��:��eD�h�
b4483eb8d3d6d68b68ad3e08c79385f43b0a40aa17c3681e16b53bdddfa10befD�g�
f85bf7e8f01a89ac772fea257536fa49cc0e71b925cccbf45c5bac62a6c37058D�f�
416e2bda192d4d2ef653af8a613b3317548b4dffe2455e834970d920976316a3D�e�
e2f69cb9ce06dc6e440ee55d4de796bbf6daa032c04f11a93e33ceae0d79eb9cD�d�
fc095d80f336de3930ba83232f8684e5f27e20a6a90348f9746f9d4c65940aa4D�c�
a94b2b0e58abe148cf3859a7fc971e0d1a559ce796f9f47b7450164810d65dc5D�b�
dfe0da66e34f229040771968adc12e53f3ef8575433da409ecd46a284495677eD�a�
4a0c264159f020e612793ba279b544a49c67ce5644e4673d6a1b7e01986d8c98D�`�
b0239f1e155c51adc55198eac03bc51b27badae7390b0220ca96829e87c6c759D�_�
f13bbe4b18a80136adc1b2b02ef61c69686b5b4b0437ee77f9ae29ee64542d8cD�^�
6c0b00e1f00b1bfb079fb63ec314dec78319b2c8c2820688cfdc033017e0dc14D�]�
1a7644fd57be2d7e96c28f3c6603e556bdb0d939164b61e085301064464d1aa7D�\�
c8c0d6d376e5a026cccec4e8a7f10de5f58b0178fb266a8f627d285ea803e25c
~+���~q��qk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��pk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��ok�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��nk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��mk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
�z�I�z��vk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��uk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��tk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��sk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���rk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
�F�j�z��{k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��zk_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��yk{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��xk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��wk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Q��QQ�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��~k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��}k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��|k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
{F�j�v{�v��i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
@�'�I�%�@v��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��
ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��
iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��	im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
���!�h��ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16k��iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�H�c�w��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-join
������"k��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���!k�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk�� iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�zV�q�w��(k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��'k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��&ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��%k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��$ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16���#k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������,k��Andreas Schneider <asn@redhat.com> - 4.10.17-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���+k�%�Andreas Schneider <asn@redhat.com> - 4.10.17-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��*iq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��)i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
%z�%�p��1i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��0k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��/k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��.ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires���-k��Andreas Schneider <asn@redhat.com> - 4.10.17-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
1�~��1g��8ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requiresc��7k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��6k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���5k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���4k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���3k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��2iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks
�����=k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��<iq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��;i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��:k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��9k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DC
y���w��Bk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagc��Ak_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��@k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���?k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���>k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
������Fk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ek�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Diq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Ci�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
Pz�I�Pw��Lk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagz��Kk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Jk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Ik_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Hk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Gk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Pk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Ok�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Niq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Mi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��Uk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��Tk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��Sk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��Rk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Qk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
������Yk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���Xk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��Wiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��Vi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
�z�I�z��^k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��]k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��\k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��[k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���Zk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
����bk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��aiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�p��`i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage�{��_k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
Dy����Dz��hk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��gk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��fk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��ek�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���dk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���ck��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock
��~����mk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���lk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���kk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��jiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�{��ik�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142

e�r+��V��:��eD�u�
ec41eab909a34c37394e1bd1e2d8c1f86ed4342eb3aec006e4dce9be59094696D�t�
a9f17b1fddb696d9e462b1c59846a76dfba2d99b26bfd9a07e461bcae6c41834D�s�
b438e03eb4776904a5d3eda9f71311951963cace861385cb395c161e85901444D�r�
3bd639121f6b04020233f7f81a713e0fdde89de7bd7b34c14ad4c211ad5b1560D�q�
b16634b5890da4c94a654fa49d88e872174872df18ecfff9c897a547f2828abcD�p�
240ac23487f8ee37fa0e974ec81a99ac0f9ef344259c12e512cbca60992948bfD�o�
9cbc0d51860b18d2d4dad73f8fcd78a82a9751a94316cae1b852109e078f1b33D�n�
1f353580c9e10d38968fb29d6afe568ae1887002f902073726b229aacd22921aD�m�
4d459fe6f652254e5a835c98f2be03ec668f7667a2f0789647fd5a2e1ec01e0dD�l�
30090b57be5124d284a1340b0f43017ad484be4f476f8f4103506d8736eef996D�k�
0794a0f7d6a515b2cdfb8187e15d5605671a95d2ebabff7bdf87777d0c9530dcD�j�
63c934de1e5c85819654daeea796881641d8431d74c21df7d4cc109514cacb35D�i�
1d8a98543a1bf0ec8722595afa191584c9cba8432bcaa4234ae07105479c78c7
Q��QQ�{��rk�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��qk��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��pk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��ok_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��nk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
IF�K�>I�p��xk�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���wk��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���vk��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���uk�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesk��tiq�Andreas Schneider <asn@redhat.com> - 4.10.16-9_�:�- related: #1853272 - Add back missing patch hunks�5��sk��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
���FF��5��}k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��|k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��{k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��zk�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��yk_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
6t�gr6�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock���k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���~k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issues
@���S�@���	k��Andreas Schneider <asn@redhat.com> - 4.10.16-11`@- resolves: #1876839 - Fix double crash when requesting share mode lock���k�%�Andreas Schneider <asn@redhat.com> - 4.10.16-10_��- resolves: #1868327 - Fix winbind in trust scenaries with connection issuesq��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
�z�I�z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��
k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���
k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lock
VF�KV�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockq��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142
��FF�q��k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254
d���9d�P��k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services���k��Andreas Schneider <asn@redhat.com> - 4.10.16-13`�@- related: #1876839 - Fix double crash when requesting share mode lockz��k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023
n���S�nz��%k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��$k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��#k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��"k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��!k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z�� k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role
Q��QQ�{��*k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��)k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��(k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idlc��'k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��&k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting services
F�j�v�c��1k_�Andreas Schneider <asn@redhat.com> - 4.10.16-15`��@- resolves: #1949444 - Fix CVE-2021-20254�p��0k�w�Andreas Schneider <asn@redhat.com> - 4.10.16-14`t6@- resolves: #1937867 - Fix possible core dump with printing support
- resolves: #1930747 - Ensure that libwbclient has been updated before
                       restarting servicesr��/k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��.k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023c��-k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��,k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��+k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict
+���~c��7k_�Andreas Schneider <asn@redhat.com> - 4.10.16-23c��@- resolves: #2154364 - Fix CVE-2022-38023q��6k{�Andreas Schneider <asn@redhat.com> - 4.10.16-20c
��- resolves: #2119058 - Fix possible segfault in winbind�5��5k��Andreas Schneider <asn@redhat.com> - 4.10.16-19bzS�- resolves: #2081649 - Fix idmap_rfc2307 and idmap_nss returning wrong
                       mapping for uid/gid conflict�{��4k�
�Andreas Schneider <asn@redhat.com> - 4.10.16-18a��@- resolves: #2034800 - Fix usermap script regression caused by CVE-2020-25717
- resolves: #2036595 - Fix MIT realm regression caused by CVE-2020-25717
- resolves: #2046148 - Fix CVE-2021-44142z��3k��Andreas Schneider <asn@redhat.com> - 4.10.16-17a�K�- related: #2019673 - Add missing checks for IPA DC server role�P��2k�7�Andreas Schneider <asn@redhat.com> - 4.10.16-16a�@- resolves: #2019661 - Fix CVE-2016-2124
- resolves: #2019673 - Fix CVE-2020-25717
- resolves: #2021428 - Add missing PAC buffer types to krb5pac.idl
Z��8�Zm��>iu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��=im�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��<iE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��;k��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL�v��:i��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesr��9k}�Andreas Schneider <asn@redhat.com> - 4.10.16-25d��@- resolves: #2222250 - Fix netlogon capabilities level 2z��8k��Andreas Schneider <asn@redhat.com> - 4.10.16-24cʂ@- related: #2154364 - Add additional patches for CVE-2022-38023
���q�|��v��Di��Andreas Schneider <asn@redhat.com> - 4.10.15-1^���- related: #1785121 - Rebase to version 4.10.15
- resolves: #1828924 - Fix typo in pam_winbind documentation about require_membership_of
- resolves: #1801496 - Add missing ctdb directoriesw��Ck��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��Bk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Aii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��@k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��?ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16
@�'�I�%�@v��Lk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Kii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Jk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Iik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Hiu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Gim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��FiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057|��Ek��Isaac Boukris <iboukris@redhat.com> - 4.10.15-2^��- resolves: #1825505 - Compilation of samba sources fails on RHEL
E�,�N�*�Ev��Tk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��Sii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��Rk�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��Qik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Piu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal usersi��Oim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��NiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057w��Mk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
[��!�[i��Yim�Andreas Schneider <asn@redhat.com> - 4.10.15-4^��@- resolves: #1813017 - Fix smbclient log to fileU��XiE�Andreas Schneider <asn@redhat.com> - 4.10.15-3^�U@- Removed patch for #1634057k��Wiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��Vi�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpagew��Uk��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tag
�#k�w��_k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-7_�- related: #1852812 - trigger a rebuild to get the right tagv��^k��Isaac Boukris <iboukris@redhat.com> - 4.10.16-6_A@- resolves: #1852812 - Fix additioanl hostnames with win DCg��]ii�Andreas Schneider <asn@redhat.com> - 4.10-16-5^א�- related: #1785121 - Add missing RPM Requires�3��\k�}�Isaac Boukris <iboukris@redhat.com> - 4.10.16-2^�?@- resolves: #1828354 - add additioanl hostnames to the keytab
- resolves: #1836427 - add dnshostname option net-ads-joinh��[ik�Andreas Schneider <asn@redhat.com> - 4.10.16-1^˳@- related: #1785121 - Rebase to version 4.10.16m��Ziu�Andreas Schneider <asn@redhat.com> - 4.10.15-5^��@- resolves: #1831986 - Fix gencache for normal users
S�S�>��c_��Watson Sato <wsato@redhat.com> - 0.1.49-7^��- Bug fixes on CIS profile (RHBZ#1821633)
  Added Ansible remediations
  Fixed CIS references
  Fixed integration issues with CIS profile���bm��Vojtech Polasek <vpolasek@redhat.com> - 0.1.49-6^��- Added a patch fixing audit_rules_privileged_commands (RHBZ#1691877)k��aiq�Andreas Schneider <asn@redhat.com> - 4.10.17-9_�:�- related: #1853272 - Add back missing patch hunks�p��`i�y�Andreas Schneider <asn@redhat.com> - 4.10.16-8_��- resolves: #1878205 - Fix restarting winbind on package upgrade
- resolves: #1892632 - Fix CVE-2020-14318
- resolves: #1891687 - Fix CVE-2020-14323
- resolves: #1879834 - Fix CVE-2020-1472
- resolves: #1892313 - Fix memory leak in winbindd (wbinfo -u)
- resolves: #1868917 - Fix %U substitution for 'valid users' option
- resolves: #1853272 - Fix 'require_membership_of' documentation in
                       pam_winbind{.conf} manpage
)��)�f��ha�m�Watson Sato <wsato@redhat.com> - 0.1.49-12^�m@- CIS Profile (RHBZ#1821633)
  - Make sure boot target is multi-user.target when xorg package is removed
  - Add CIS Profile content attribution to Center for Internet Security���ga�Y�Watson Sato <wsato@redhat.com> - 0.1.49-11^��- HIPAA Profile improvement (RHBZ#1513087)
  - Add Ansible remediation for audit_rules_system_shutdown�E��fa�+�Watson Sato <wsato@redhat.com> - 0.1.49-10^��@- CIS Profile fixes (RHBZ#1821633)
  - Fix Ansible mount_option template
  - Re-order rpm_verify_permissions to avoid file permission conflicts���e_�S�Watson Sato <wsato@redhat.com> - 0.1.49-9^���- CIS Profile fixes (RHBZ#1821633)
  - Fix Ansible mount_option template
  - Add Ansible for ensure_logrotate_activated
  - Add warnings to rpm_verify_permissions and ownership about findindings that may need further inspection`��d_e�Watson Sato <wsato@redhat.com> - 0.1.49-8^�>@- Fix specfile to apply patch (RHBZ#1691877)
rl�Y<r�E��ma�+�Watson Sato <wsato@redhat.com> - 0.1.49-10^��@- CIS Profile fixes (RHBZ#1821633)
  - Fix Ansible mount_option template
  - Re-order rpm_verify_permissions to avoid file permission conflicts���l_�S�Watson Sato <wsato@redhat.com> - 0.1.49-9^���- CIS Profile fixes (RHBZ#1821633)
  - Fix Ansible mount_option template
  - Add Ansible for ensure_logrotate_activated
  - Add warnings to rpm_verify_permissions and ownership about findindings that may need further inspectioni��kkk�Gabriel Becker <ggasparb@redhat.com> - 0.1.52-2_��@- Update RHEL7 DISA STIG to V3R1 (RHBZ#1665233)�!��jk�Y�Gabriel Becker <ggasparb@redhat.com> - 0.1.52-1_~�@- Update to the latest upstream release (RHBZ#1665233)
- Update RHEL7 DISA STIG to V2R8 (RHBZ#1665233)���ia�?�Watson Sato <wsato@redhat.com> - 0.1.49-13^��- Add example kickstart for RHEL7 HIPAA (RHBZ#1513087)
- Fix Test Suite to run on Python3

e�r+��V��:��eD��
d40393b60950d71a26774d9b1e266fd5bb089196ab92a7c1d63bc4e09f86640cD��
c1fb45bbf918990aa7c9459fcbcf058bc3b97c0e00ccf709693ef5cf9d26dd1dD��
5dbc6a254bc8c77e947deecbb35eecf6dd6724e8271f52c60fabb83775d0653cD��
ab57e2a2afb31039c65c93e0ca3680f1377080ea7d39ce5ba84007dbe8770b6fD�~�
4d3ff47c13cc9874693a7b3fa026f1ab176d6a2d2b0a14b6d2ce80773ed3fae9D�}�
a39b37b22a67c2fed32b45b2c75ceda293b7a59938dfb6d991ff59b639ae2aeaD�|�
e02972fac05c3f064d850d48bd37730bdc682a15ee48e9df9f51ad3d023e5115D�{�
1296d51c39d8f5be9667a1c80e53bc0edc3a1395b7d75cbce793d6ca7fc9648dD�z�
be9e5f7cee095463cb4d9b9f2109692cc190d7b3dd83fd149316ee244992293fD�y�
f7945628e8e698e802ec8e5135e5523626b0540472b6dbc6921ff39095ca55d1D�x�
020558539740256bcdb84e7c5606c92c374e8b5d5af9021d52cb794b0f6131e1D�w�
9f0008a88260081411e863e41debfe8067b201353ea3a2182eb3f16e4267d6e5D�v�
cb86afe6203e0e076f646a698b5f55cc194b2523e731d2af6fad43073fedcf79
�_t�:�i��rkk�Gabriel Becker <ggasparb@redhat.com> - 0.1.52-2_��@- Update RHEL7 DISA STIG to V3R1 (RHBZ#1665233)�!��qk�Y�Gabriel Becker <ggasparb@redhat.com> - 0.1.52-1_~�@- Update to the latest upstream release (RHBZ#1665233)
- Update RHEL7 DISA STIG to V2R8 (RHBZ#1665233)���pa�?�Watson Sato <wsato@redhat.com> - 0.1.49-13^��- Add example kickstart for RHEL7 HIPAA (RHBZ#1513087)
- Fix Test Suite to run on Python3�f��oa�m�Watson Sato <wsato@redhat.com> - 0.1.49-12^�m@- CIS Profile (RHBZ#1821633)
  - Make sure boot target is multi-user.target when xorg package is removed
  - Add CIS Profile content attribution to Center for Internet Security���na�Y�Watson Sato <wsato@redhat.com> - 0.1.49-11^��- HIPAA Profile improvement (RHBZ#1513087)
  - Add Ansible remediation for audit_rules_system_shutdown
�\�I��C��wk��Gabriel Becker <ggasparb@redhat.com> - 0.1.54-5`�[�- Create subpackage to hold ansible playbooks per rule (RHBZ#1966589)
- Fix Bash remediation of dconf_gnome_login_retries (RHBZ#1967566)���vm�I�Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-4`� @- Update RHEL 7 STIG profile to V3R3 (RHBZ#1958789)
- Update ANSSI High Profile (RHBZ#1955180)p��u_��Watson Sato <wsato@redhat.com> - 0.1.54-3`6?�- Realign PCI-DSS rules selection to v0.1.54 (RHBZ#1497415)�7��t_��Watson Sato <wsato@redhat.com> - 0.1.54-2`-@- Remove Kickstart for not shipped profile (RHBZ#1497415)
- Fix STIG id reference format for sshd_x11_use_localhost (RHBZ#1921643)�c��s_�i�Watson Sato <wsato@redhat.com> - 0.1.54-1`�@- Rebase to incorporate ANSSI Profile (RHBZ#1497415)
- Update RHEL7 STIG profile to V3R2 (RHBZ#1921643)
- Add Minimal, Intermediary and Enhanced ANSSI Profiles (RHBZ#1497415)
Bu�)�,�Bq��~k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)q��}k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��|k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���{k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)�8��za��Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�
��ym�)�Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-7`�\�- Generate HTML STIG reference tables also for stig_gui profile (RHBZ#1958789)���xm�!�Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-6`�P@- Add kickstart files for RHEL 7 stig and stig_gui profiles (RHBZ#1958789)
1z�`��1q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)�8��a��Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�
��m�)�Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-7`�\�- Generate HTML STIG reference tables also for stig_gui profile (RHBZ#1958789)���m�!�Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-6`�P@- Add kickstart files for RHEL 7 stig and stig_gui profiles (RHBZ#1958789)���k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)
Z��Z�8��a��Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�
��
m�)�Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-7`�\�- Generate HTML STIG reference tables also for stig_gui profile (RHBZ#1958789)q��	_��Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��_�m�Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)
4x���4q��_��Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��_�m�Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��
k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)
O��O���k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)�8��a��Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�g��_�q�Watson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
���1�q��_��Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��_�m�Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)
���g��_�q�Watson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
}�g�}q�� k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)���_�;�Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
���q��$_��Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��#_�m�Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���"k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��!k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)
���g��%_�q�Watson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
'��'q��(k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)�N��'a�=�Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���&_�;�Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
���q��,_��Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��+_�m�Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���*k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��)k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)
���g��-_�q�Watson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)bRA/RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������@ȃ�U@Ƀ�Y@ʃ�^@˃�b@̃�h@̓�m@σ�r@Ѓ�x@у�}@҃�@Ӄ�	@ԃ�@Ճ�@փ�@׃�@؃�%@ك�*@ڃ�1@ۃ�7@܃�>@݃�D@ރ�L@߃�T@�Y@პ_@⃞c@マh@䃞m@惞r@烞w@胞~@郟@ꃟ@냟@샟@탟@@ @�$@�%@�(@�,@�-@���/@���5@���6@���8@���>@���@@���B@���H@���L@���QA��VA��[A��bA��iA��oA��vA��yA��A	��A
��A��A��	A
��A��A��A��A��A��A��A��"A��)A��/A��2A��6A��:A��;A��>A��BA��CA��EA��KA ��LA!��NA"��TA#��ZA$��`A%��dA&��iA'��mA(��rA*��vA+��yA,��A-��A.��
����N��/a�=�Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���._�;�Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
h2�M��hq��5_��Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��4_�m�Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���3k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��2k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)l��1om�Marcus Burghardt <maburgha@redhat.com> - 0.1.72-2e�N@- Unlist profiles no longer maintained in RHEL8.�I��0o�%�Marcus Burghardt <maburgha@redhat.com> - 0.1.72-1e̫@- Rebase to a new upstream release 0.1.72 (RHEL-25251)
- Include filter to dracut files in audit_rules_privileged_commands rule (RHEL-11938)
���g��6_�q�Watson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
����N��8a�=�Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���7_�;�Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
`2�E�J`�e��>_�m�Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���=k��Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��<k{�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)y��;a��Jan Černý <jcerny@redhat.com> - 0.1.73-1fL��- Rebase scap-security-guide package to version 0.1.73 (RHEL-36739)l��:om�Marcus Burghardt <maburgha@redhat.com> - 0.1.72-2e�N@- Unlist profiles no longer maintained in RHEL8.�I��9o�%�Marcus Burghardt <maburgha@redhat.com> - 0.1.72-1e̫@- Rebase to a new upstream release 0.1.72 (RHEL-25251)
- Include filter to dracut files in audit_rules_privileged_commands rule (RHEL-11938)
��g��@_�q�Watson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)q��?_��Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)
����N��Ba�=�Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���A_�;�Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
�2�E���`��H_e�Watson Sato <wsato@redhat.com> - 0.1.49-8^�>@- Fix specfile to apply patch (RHBZ#1691877)�>��G_��Watson Sato <wsato@redhat.com> - 0.1.49-7^��- Bug fixes on CIS profile (RHBZ#1821633)
  Added Ansible remediations
  Fixed CIS references
  Fixed integration issues with CIS profile���Fm��Vojtech Polasek <vpolasek@redhat.com> - 0.1.49-6^��- Added a patch fixing audit_rules_privileged_commands (RHBZ#1691877)y��Ea��Jan Černý <jcerny@redhat.com> - 0.1.73-1fL��- Rebase scap-security-guide package to version 0.1.73 (RHEL-36739)l��Dom�Marcus Burghardt <maburgha@redhat.com> - 0.1.72-2e�N@- Unlist profiles no longer maintained in RHEL8.�I��Co�%�Marcus Burghardt <maburgha@redhat.com> - 0.1.72-1e̫@- Rebase to a new upstream release 0.1.72 (RHEL-25251)
- Include filter to dracut files in audit_rules_privileged_commands rule (RHEL-11938)
��x��f��La�m�Watson Sato <wsato@redhat.com> - 0.1.49-12^�m@- CIS Profile (RHBZ#1821633)
  - Make sure boot target is multi-user.target when xorg package is removed
  - Add CIS Profile content attribution to Center for Internet Security���Ka�Y�Watson Sato <wsato@redhat.com> - 0.1.49-11^��- HIPAA Profile improvement (RHBZ#1513087)
  - Add Ansible remediation for audit_rules_system_shutdown�E��Ja�+�Watson Sato <wsato@redhat.com> - 0.1.49-10^��@- CIS Profile fixes (RHBZ#1821633)
  - Fix Ansible mount_option template
  - Re-order rpm_verify_permissions to avoid file permission conflicts���I_�S�Watson Sato <wsato@redhat.com> - 0.1.49-9^���- CIS Profile fixes (RHBZ#1821633)
  - Fix Ansible mount_option template
  - Add Ansible for ensure_logrotate_activated
  - Add warnings to rpm_verify_permissions and ownership about findindings that may need further inspection
rl�Y<r�E��Qa�+Watson Sato <wsato@redhat.com> - 0.1.49-10^��@- CIS Profile fixes (RHBZ#1821633)
  - Fix Ansible mount_option template
  - Re-order rpm_verify_permissions to avoid file permission conflicts���P_�SWatson Sato <wsato@redhat.com> - 0.1.49-9^���- CIS Profile fixes (RHBZ#1821633)
  - Fix Ansible mount_option template
  - Add Ansible for ensure_logrotate_activated
  - Add warnings to rpm_verify_permissions and ownership about findindings that may need further inspectioni��Okk�Gabriel Becker <ggasparb@redhat.com> - 0.1.52-2_��@- Update RHEL7 DISA STIG to V3R1 (RHBZ#1665233)�!��Nk�Y�Gabriel Becker <ggasparb@redhat.com> - 0.1.52-1_~�@- Update to the latest upstream release (RHBZ#1665233)
- Update RHEL7 DISA STIG to V2R8 (RHBZ#1665233)���Ma�?�Watson Sato <wsato@redhat.com> - 0.1.49-13^��- Add example kickstart for RHEL7 HIPAA (RHBZ#1513087)
- Fix Test Suite to run on Python3
�_t�:�i��VkkGabriel Becker <ggasparb@redhat.com> - 0.1.52-2_��@- Update RHEL7 DISA STIG to V3R1 (RHBZ#1665233)�!��Uk�YGabriel Becker <ggasparb@redhat.com> - 0.1.52-1_~�@- Update to the latest upstream release (RHBZ#1665233)
- Update RHEL7 DISA STIG to V2R8 (RHBZ#1665233)���Ta�?Watson Sato <wsato@redhat.com> - 0.1.49-13^��- Add example kickstart for RHEL7 HIPAA (RHBZ#1513087)
- Fix Test Suite to run on Python3�f��Sa�mWatson Sato <wsato@redhat.com> - 0.1.49-12^�m@- CIS Profile (RHBZ#1821633)
  - Make sure boot target is multi-user.target when xorg package is removed
  - Add CIS Profile content attribution to Center for Internet Security���Ra�YWatson Sato <wsato@redhat.com> - 0.1.49-11^��- HIPAA Profile improvement (RHBZ#1513087)
  - Add Ansible remediation for audit_rules_system_shutdown
�\�I��C��[k�Gabriel Becker <ggasparb@redhat.com> - 0.1.54-5`�[�- Create subpackage to hold ansible playbooks per rule (RHBZ#1966589)
- Fix Bash remediation of dconf_gnome_login_retries (RHBZ#1967566)���Zm�IVojtech Polasek <vpolasek@redhat.com> - 0.1.54-4`� @- Update RHEL 7 STIG profile to V3R3 (RHBZ#1958789)
- Update ANSSI High Profile (RHBZ#1955180)p��Y_�Watson Sato <wsato@redhat.com> - 0.1.54-3`6?�- Realign PCI-DSS rules selection to v0.1.54 (RHBZ#1497415)�7��X_�Watson Sato <wsato@redhat.com> - 0.1.54-2`-@- Remove Kickstart for not shipped profile (RHBZ#1497415)
- Fix STIG id reference format for sshd_x11_use_localhost (RHBZ#1921643)�c��W_�iWatson Sato <wsato@redhat.com> - 0.1.54-1`�@- Rebase to incorporate ANSSI Profile (RHBZ#1497415)
- Update RHEL7 STIG profile to V3R2 (RHBZ#1921643)
- Add Minimal, Intermediary and Enhanced ANSSI Profiles (RHBZ#1497415)
Bu�)�,�Bq��bk{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)q��ak{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��`k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���_k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)�8��^a�Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�
��]m�)Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-7`�\�- Generate HTML STIG reference tables also for stig_gui profile (RHBZ#1958789)���\m�!Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-6`�P@- Add kickstart files for RHEL 7 stig and stig_gui profiles (RHBZ#1958789)
1z�`��1q��ik{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��hk{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���gk�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)�8��fa�Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�
��em�)Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-7`�\�- Generate HTML STIG reference tables also for stig_gui profile (RHBZ#1958789)���dm�!Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-6`�P@- Add kickstart files for RHEL 7 stig and stig_gui profiles (RHBZ#1958789)���ck�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)
Z��Z�8��oa�Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�
��nm�)Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-7`�\�- Generate HTML STIG reference tables also for stig_gui profile (RHBZ#1958789)q��m_�Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��l_�mWatson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���kk�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��jk{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)

e�r+��V��:��eD��
00d2bde49dfc19aa010c5926838900760b435bfe8f53e8d8ad0acefd762cafcfD��
90862c0f721b1d5b253c6c69c26a15f9b8e4f492615fda39d9aa26a36263853dD�
�
30b844415ba647e65a9810574f3ded5e1fc1edd02e28f73cc44ee2c35e97baeaD��
878572277531168e4e6b34f6078224450001b713981b2781b0ccb572c1db7c3aD��
5858767f54c2120e5d407542c3960c0bcdbe0ac20b7db144d540566f95fa03eeD�
�
3f7f1d7529325771aca130abb3ada20b55752fb8168b35e388cf43ccaba01f5aD�	�
753153d2c6886bf4e0fd54f9652da1247fec1c0ab4d58a1aeb4bec8ebba28d9eD��
0f031938a045f2ce246507b233ce7a53103a6051e0cda09aa7d2b4feab4e773bD��
358ebccf9931f8222e5503aa6255be88b2b6862a1cff9b34c0622117c0fcfc97D��
047afe9b60a6d1228931b215d26c7cc7dc637d69a40463e0a25163cd20c53b43D��
f281eb4ce184ac0156ea4bb4999c5ac0071da44c1cb72f33d1fa6cfd57c1b932D��
395a33a57a17338d844c031715190aa5f9cfe26cbff564eca64617c5328e167fD��
d51829dbdacb88845a2597570d1a7102fbf961cce1be232b53e652c9e0877c17
4x���4q��v_�Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��u_�mWatson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���tk�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��sk{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)q��rk{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��qk{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���pk�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)
O��O���yk�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)�8��xa�Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�g��w_�qWatson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
���1�q��_�Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��~_�mWatson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���}k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��|k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)q��{k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��zk{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)
���g��_�qWatson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
}�g�}q��k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)���_�;Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
���q��_�Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��_�mWatson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)
���g��	_�qWatson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
'��'q��k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)�N��a�=Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���
_�;Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
���q��_�Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��_�mWatson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��
k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)
���g��_�qWatson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
����N��a�=Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���_�;Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
h2�M��hq��_�Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��_�mWatson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)l��omMarcus Burghardt <maburgha@redhat.com> - 0.1.72-2e�N@- Unlist profiles no longer maintained in RHEL8.�I��o�%Marcus Burghardt <maburgha@redhat.com> - 0.1.72-1e̫@- Rebase to a new upstream release 0.1.72 (RHEL-25251)
- Include filter to dracut files in audit_rules_privileged_commands rule (RHEL-11938)
���g��_�qWatson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
����N��a�=Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���_�;Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
S2�E��S���"m�!Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-6`�P@- Add kickstart files for RHEL 7 stig and stig_gui profiles (RHBZ#1958789)�C��!k�Gabriel Becker <ggasparb@redhat.com> - 0.1.54-5`�[�- Create subpackage to hold ansible playbooks per rule (RHBZ#1966589)
- Fix Bash remediation of dconf_gnome_login_retries (RHBZ#1967566)��� m�IVojtech Polasek <vpolasek@redhat.com> - 0.1.54-4`� @- Update RHEL 7 STIG profile to V3R3 (RHBZ#1958789)
- Update ANSSI High Profile (RHBZ#1955180)y��a�Jan Černý <jcerny@redhat.com> - 0.1.73-1fL��- Rebase scap-security-guide package to version 0.1.73 (RHEL-36739)l��omMarcus Burghardt <maburgha@redhat.com> - 0.1.72-2e�N@- Unlist profiles no longer maintained in RHEL8.�I��o�%Marcus Burghardt <maburgha@redhat.com> - 0.1.72-1e̫@- Rebase to a new upstream release 0.1.72 (RHEL-25251)
- Include filter to dracut files in audit_rules_privileged_commands rule (RHEL-11938)
Gq�,�B�G���)k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��(k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)q��'k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��&k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���%k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)�8��$a�Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)�
��#m�)Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-7`�\�- Generate HTML STIG reference tables also for stig_gui profile (RHBZ#1958789)
�C�F�\����/k�	Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��.k{	Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)q��-k{	Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��,k{	Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���+k�	Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)�8��*a�	Jan Černý <jcerny@redhat.com> - 0.1.57-1a^�@- Rebase to the 0.1.57 upstream release
- Update RHEL7 DISA STIG profile to v3r4 (RHBZ#1996678)
- Split CIS profile (RHBZ#1953787)
5�5�g��2_�q	Watson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)q��1_�	Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��0_�m	Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)
}�g�}q��6k{
Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)q��5k{
Gabriel Becker <ggasparb@redhat.com> - 0.1.57-3aqV@- Fix broken SELinux documentation links (RHBZ#1996678)���4k�
Gabriel Becker <ggasparb@redhat.com> - 0.1.57-2ap�- Fix auditd_overflow_action configuration path for RHEL7 (RHBZ#1996678)���3_�;	Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
���q��:_�
Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��9_�m
Watson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���8k�
Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��7k{
Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)
���g��;_�q
Watson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
'��'q��>k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-4a�(@- Update RHEL7 DISA STIG profile to v3r5 (RHBZ#1996678)�N��=a�=
Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���<_�;
Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
���q��B_�Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��A_�mWatson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���@k�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��?k{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)
���g��C_�qWatson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
����N��Ea�=Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���D_�;Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
h2�M��hq��K_�Watson Sato <wsato@redhat.com> - 0.1.57-8bq@- Remove warning how to override audit buffer (RHBZ#1993822)�e��J_�mWatson Sato <wsato@redhat.com> - 0.1.57-7bi0@- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)���Ik�Gabriel Becker <ggasparb@redhat.com> - 0.1.57-6b�- Fix bash remediation of sudo_require_reauthentication (RHBZ#2049532)q��Hk{Gabriel Becker <ggasparb@redhat.com> - 0.1.57-5b8�- Update RHEL7 DISA STIG profile to v3r6 (RHBZ#2049532)l��GomMarcus Burghardt <maburgha@redhat.com> - 0.1.72-2e�N@- Unlist profiles no longer maintained in RHEL8.�I��Fo�%Marcus Burghardt <maburgha@redhat.com> - 0.1.72-1e̫@- Rebase to a new upstream release 0.1.72 (RHEL-25251)
- Include filter to dracut files in audit_rules_privileged_commands rule (RHEL-11938)
���g��L_�qWatson Sato <wsato@redhat.com> - 0.1.63-1b�L@- Update to the latest upstream release (RHBZ#2116359)
- Fix SSH Key permissions (RHBZ#2021258)
- Remove PCI-DSS Benchmark(RHBZ2038165)
- Updated source of CVE data feed(RHBZ#2028432)
- Improved alignment with DISA's RHEL7 STIG(RHBZ#1967950)
- Update RHEL7 STIG profile to v3r8 (RHBZ#2112939)
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix smartcard_auth rule for systems installed without authconfig (RHBZ#2116359)
- Fix check of enable_fips_mode on s390x (RHBZ#2116359)
- Fix applicability of pam_pkcs11 and grub2 rules on s390x (RHBZ#2116359)
����N��Na�=Jan Černý <jcerny@redhat.com> - 0.1.69-1d��@- Rebase to the latest upstream release (RHBZ#2221694)
- Make IPv6 related rules applicable only in case IPv6 is actually enabled. (RHBZ#2210276)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155793)
- Correct URL used to download CVE checks. (RHBZ#2223817)���M_�;Watson Sato <wsato@redhat.com> - 0.1.66-1c�w�- Rebase to a new upstream release 0.1.66 (RHBZ#2158410)
- Update RHEL7 STIG profile to V3R10 (RHBZ#2152657)
- Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2123284)
- Fix remediation of audit watch rules (RHBZ#2123367)
- Fix check firewalld_sshd_port_enabled (RHBZ#2158410)
- Fix accepted control flags for pam_pwhistory (RHBZ#2158410)
- Unselect rule logind_session_timeout (RHBZ#2158410)
- Add support rainer scripts in rsyslog rules (RHBZ#2170038)
�2�E�y��^��Tu�I
Petr Hracek <phracek> - 4.1.0-0.20.20120314git3c2946U�3@- Multiple packages are installing files under /etc/tmpfiles.d
- comply http://fedoraproject.org/wiki/Packaging:Guidelines#Tmpfiles.d
- Resolves: rhbz#1121958b��S�?
Daniel Mach <dmach@redhat.com> - 4.1.0-0.19.20120314git3c2946R�U�- Mass rebuild 2014-01-24b��R�?
Daniel Mach <dmach@redhat.com> - 4.1.0-0.18.20120314git3c2946R�k�- Mass rebuild 2013-12-27y��Qa�Jan Černý <jcerny@redhat.com> - 0.1.73-1fL��- Rebase scap-security-guide package to version 0.1.73 (RHEL-36739)l��PomMarcus Burghardt <maburgha@redhat.com> - 0.1.72-2e�N@- Unlist profiles no longer maintained in RHEL8.�I��Oo�%Marcus Burghardt <maburgha@redhat.com> - 0.1.72-1e̫@- Rebase to a new upstream release 0.1.72 (RHEL-25251)
- Include filter to dracut files in audit_rules_privileged_commands rule (RHEL-11938)
GY��p�G���Z��
Václav Doležal <vdolezal@redhat.com> - 4.1.0-0.26.2012314git3c2946^9\�- Resolves: #1791793 - backport Bracketed Past Mode support���Y��
Josef Ridky <jridky@redhat.com> - 4.1.0-0.25.2012314git3c2946Y��@- Resolves: #1423036 - fix issue with coloring when using caption padding���X��
Petr Hracek <phracek@redhat.com> - 4.1.0-0.24.20120314git3c2946Wu	�- Build has to be bigger then RHEL-7.2
- Related: #1196239�.��W��Q
Petr Hracek <phracek@redhat.com> - 4.1.0-0.23.20120314git3c2946V��@- screen does not log successful authentication messages with STIG GEN003660 
- Resolves: #1196239�&��V��A
Petr Hracek <phracek@redhat.com> - 4.1.0-0.22.20120314git3c2946V�@- cannot reattach to screen sessions (regression 'LoginName to long')
- Resolves: #1253697�"��U��9
Petr Hracek <phracek@redhat.com> - 4.1.0-0.21.20120314git3c2946U���- 'LoginName too long' with login name greater then 20 characters
- Resolves: #1119794
���g�<����`i�CLukas Vrabec <lvrabec@redhat.com> - 3.13.1-265]��- Allow tmpreaper_t domain to getattr files labeled as mtrr_device_t
Resolves: rhbz#1765063� ��_i�YLukas Vrabec <lvrabec@redhat.com> - 3.13.1-264]�{A- Allow tmpwatch process labeled as tmpreaper_t domain to execute fuser command
Resolves: rhbz#1765063���^i�Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-263]�{@- Update tmpreaper_t policy due to fuser command
Resolves: rhbz#1765063���]i�#Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-262]��- Allow tmpreaper_t domain to read all domains state
Resolves: rhbz#1765063���\i�ULukas Vrabec <lvrabec@redhat.com> - 3.13.1-261]�c@- Update sudo_role_template() to allow caller domain to read syslog pid files
Resolves: rhbz#1651253h��[�K
Josef Ridky <jridky@redhat.com> - 4.1.0-0.27.2012314git3c2946`.V�- fix CVE-2021-26937 (#1927063)
%i^�%���do�!Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.1_V �- Allow ssh-keygen create file in /var/lib/glusterd
Resolves: rhbz#1867995�(��ck�gZdenek Pytela <zpytela@redhat.com> - 3.13.1-268^���- Allow rhsmd read process state of all domains and kernel threads
Resolves: rhbz#1837461
- Allow ipa-adtrust-install restart sssd and dirsrv services
Resolves: rhbz#1820298
- Allow nagios_plugin_domain execute programs in bin directories
Resolves: rhbz#1824625
- selinux policy: add the right context for org.freeipa.server.trust-enable-agent
Related: rhbz#1820298���bk�#Zdenek Pytela <zpytela@redhat.com> - 3.13.1-267^x��- Allow chronyd_t domain to exec shell
Resolves: rhbz#1775573
- Allow pmie daemon to send signal pcmd daemon
Resolves: rhbz#1770123
- Allow auditd poweroff or switch to single mode
Resolves: rhbz#1780332���ai�=Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-266]µ�- Dontaudit tmpreaper_t getting attributes from sysctl_type files
Resolves: rhbz#1765063
f��f� ��ii�YLukas Vrabec <lvrabec@redhat.com> - 3.13.1-264]�{A- Allow tmpwatch process labeled as tmpreaper_t domain to execute fuser command
Resolves: rhbz#1765063���hi�Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-263]�{@- Update tmpreaper_t policy due to fuser command
Resolves: rhbz#1765063���gi�#Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-262]��- Allow tmpreaper_t domain to read all domains state
Resolves: rhbz#1765063���fi�ULukas Vrabec <lvrabec@redhat.com> - 3.13.1-261]�c@- Update sudo_role_template() to allow caller domain to read syslog pid files
Resolves: rhbz#1651253�=��eo�
Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.2_���- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496
f���(��mk�gZdenek Pytela <zpytela@redhat.com> - 3.13.1-268^���- Allow rhsmd read process state of all domains and kernel threads
Resolves: rhbz#1837461
- Allow ipa-adtrust-install restart sssd and dirsrv services
Resolves: rhbz#1820298
- Allow nagios_plugin_domain execute programs in bin directories
Resolves: rhbz#1824625
- selinux policy: add the right context for org.freeipa.server.trust-enable-agent
Related: rhbz#1820298���lk�#Zdenek Pytela <zpytela@redhat.com> - 3.13.1-267^x��- Allow chronyd_t domain to exec shell
Resolves: rhbz#1775573
- Allow pmie daemon to send signal pcmd daemon
Resolves: rhbz#1770123
- Allow auditd poweroff or switch to single mode
Resolves: rhbz#1780332���ki�=Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-266]µ�- Dontaudit tmpreaper_t getting attributes from sysctl_type files
Resolves: rhbz#1765063���ji�CLukas Vrabec <lvrabec@redhat.com> - 3.13.1-265]��- Allow tmpreaper_t domain to getattr files labeled as mtrr_device_t
Resolves: rhbz#1765063
t2����ri�Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-263]�{@- Update tmpreaper_t policy due to fuser command
Resolves: rhbz#1765063���qi�#Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-262]��- Allow tmpreaper_t domain to read all domains state
Resolves: rhbz#1765063���pi�ULukas Vrabec <lvrabec@redhat.com> - 3.13.1-261]�c@- Update sudo_role_template() to allow caller domain to read syslog pid files
Resolves: rhbz#1651253�=��oo�
Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.2_���- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496���no�!Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.1_V �- Allow ssh-keygen create file in /var/lib/glusterd
Resolves: rhbz#1867995

e�r+��V��:��eD��
607a56f5829235f4d97bd2c9135a74f23a25422c6eb8e64ad1a207404f8ce181D��
13134e2ba51f0808b8c80f28f0f4a95f367f1ecef286a2a63576e93a76453a03D��
1c844415d79cf4e5509e9b7ea70274ecad4b7e52cd6d0810f0df2dda40106afcD��
e9cf08af12886825c6d69d18bf973a365efea2397256411d55daa08c561f2b04D��
0cb96b04da1187dc59c06a37d73082671753740008c7d0f948693e3929f1b1a4D��
44b24b7b0c7aa6f549efcc0d2d645424850f626003bf441a5cd992eaf86c7fd3D��
f9a6ea022ebc4cdade8272e421cc47f8c54d66a2ad1efefff8e7486fa6802399D��
406370b48821a02c6cd77913d2bbfb9b1c8a38d584ee789492dbdbda1796c482D��
0884e384499ad64f6f25f663be6d416d9290f010f743e6eed115ceae93d81f8bD��
7d33a7b50c3e3166f40ccd88712ae894914a62c9c8468f2b8145876e20f92bf9D��
eda7c72438a02feaa87b0471bad982e64322ca96392f353cea98f6fac51c34ceD��
9827101cf4d8dcc1d15f1fb432105b7bb92fc32f4674ff6e1b053110b96810c5D��
48c7292215b233ddce0ec673e57163a6f867a0e6557f4d3d0ae79f6155792fd3
[�*���vk�#Zdenek Pytela <zpytela@redhat.com> - 3.13.1-267^x��- Allow chronyd_t domain to exec shell
Resolves: rhbz#1775573
- Allow pmie daemon to send signal pcmd daemon
Resolves: rhbz#1770123
- Allow auditd poweroff or switch to single mode
Resolves: rhbz#1780332���ui�=Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-266]µ�- Dontaudit tmpreaper_t getting attributes from sysctl_type files
Resolves: rhbz#1765063���ti�CLukas Vrabec <lvrabec@redhat.com> - 3.13.1-265]��- Allow tmpreaper_t domain to getattr files labeled as mtrr_device_t
Resolves: rhbz#1765063� ��si�YLukas Vrabec <lvrabec@redhat.com> - 3.13.1-264]�{A- Allow tmpwatch process labeled as tmpreaper_t domain to execute fuser command
Resolves: rhbz#1765063
�S���=��yo�
Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.2_���- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496���xo�!Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.1_V �- Allow ssh-keygen create file in /var/lib/glusterd
Resolves: rhbz#1867995�(��wk�gZdenek Pytela <zpytela@redhat.com> - 3.13.1-268^���- Allow rhsmd read process state of all domains and kernel threads
Resolves: rhbz#1837461
- Allow ipa-adtrust-install restart sssd and dirsrv services
Resolves: rhbz#1820298
- Allow nagios_plugin_domain execute programs in bin directories
Resolves: rhbz#1824625
- selinux policy: add the right context for org.freeipa.server.trust-enable-agent
Related: rhbz#1820298
w]�M�w���i�=Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-266]µ�- Dontaudit tmpreaper_t getting attributes from sysctl_type files
Resolves: rhbz#1765063���~i�CLukas Vrabec <lvrabec@redhat.com> - 3.13.1-265]��- Allow tmpreaper_t domain to getattr files labeled as mtrr_device_t
Resolves: rhbz#1765063� ��}i�YLukas Vrabec <lvrabec@redhat.com> - 3.13.1-264]�{A- Allow tmpwatch process labeled as tmpreaper_t domain to execute fuser command
Resolves: rhbz#1765063���|i�Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-263]�{@- Update tmpreaper_t policy due to fuser command
Resolves: rhbz#1765063���{i�#Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-262]��- Allow tmpreaper_t domain to read all domains state
Resolves: rhbz#1765063���zi�ULukas Vrabec <lvrabec@redhat.com> - 3.13.1-261]�c@- Update sudo_role_template() to allow caller domain to read syslog pid files
Resolves: rhbz#1651253
��H����o�!Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.1_V �- Allow ssh-keygen create file in /var/lib/glusterd
Resolves: rhbz#1867995�(��k�gZdenek Pytela <zpytela@redhat.com> - 3.13.1-268^���- Allow rhsmd read process state of all domains and kernel threads
Resolves: rhbz#1837461
- Allow ipa-adtrust-install restart sssd and dirsrv services
Resolves: rhbz#1820298
- Allow nagios_plugin_domain execute programs in bin directories
Resolves: rhbz#1824625
- selinux policy: add the right context for org.freeipa.server.trust-enable-agent
Related: rhbz#1820298���k�#Zdenek Pytela <zpytela@redhat.com> - 3.13.1-267^x��- Allow chronyd_t domain to exec shell
Resolves: rhbz#1775573
- Allow pmie daemon to send signal pcmd daemon
Resolves: rhbz#1770123
- Allow auditd poweroff or switch to single mode
Resolves: rhbz#1780332
f��f� ��i�YLukas Vrabec <lvrabec@redhat.com> - 3.13.1-264]�{A- Allow tmpwatch process labeled as tmpreaper_t domain to execute fuser command
Resolves: rhbz#1765063���i�Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-263]�{@- Update tmpreaper_t policy due to fuser command
Resolves: rhbz#1765063���i�#Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-262]��- Allow tmpreaper_t domain to read all domains state
Resolves: rhbz#1765063���i�ULukas Vrabec <lvrabec@redhat.com> - 3.13.1-261]�c@- Update sudo_role_template() to allow caller domain to read syslog pid files
Resolves: rhbz#1651253�=��o�
Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.2_���- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496
f���(��k�gZdenek Pytela <zpytela@redhat.com> - 3.13.1-268^���- Allow rhsmd read process state of all domains and kernel threads
Resolves: rhbz#1837461
- Allow ipa-adtrust-install restart sssd and dirsrv services
Resolves: rhbz#1820298
- Allow nagios_plugin_domain execute programs in bin directories
Resolves: rhbz#1824625
- selinux policy: add the right context for org.freeipa.server.trust-enable-agent
Related: rhbz#1820298���
k�#Zdenek Pytela <zpytela@redhat.com> - 3.13.1-267^x��- Allow chronyd_t domain to exec shell
Resolves: rhbz#1775573
- Allow pmie daemon to send signal pcmd daemon
Resolves: rhbz#1770123
- Allow auditd poweroff or switch to single mode
Resolves: rhbz#1780332���	i�=Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-266]µ�- Dontaudit tmpreaper_t getting attributes from sysctl_type files
Resolves: rhbz#1765063���i�CLukas Vrabec <lvrabec@redhat.com> - 3.13.1-265]��- Allow tmpreaper_t domain to getattr files labeled as mtrr_device_t
Resolves: rhbz#1765063
t2����i�Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-263]�{@- Update tmpreaper_t policy due to fuser command
Resolves: rhbz#1765063���i�#Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-262]��- Allow tmpreaper_t domain to read all domains state
Resolves: rhbz#1765063���i�ULukas Vrabec <lvrabec@redhat.com> - 3.13.1-261]�c@- Update sudo_role_template() to allow caller domain to read syslog pid files
Resolves: rhbz#1651253�=��
o�
Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.2_���- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496���o�!Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.1_V �- Allow ssh-keygen create file in /var/lib/glusterd
Resolves: rhbz#1867995
[�*���k�#Zdenek Pytela <zpytela@redhat.com> - 3.13.1-267^x��- Allow chronyd_t domain to exec shell
Resolves: rhbz#1775573
- Allow pmie daemon to send signal pcmd daemon
Resolves: rhbz#1770123
- Allow auditd poweroff or switch to single mode
Resolves: rhbz#1780332���i�=Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-266]µ�- Dontaudit tmpreaper_t getting attributes from sysctl_type files
Resolves: rhbz#1765063���i�CLukas Vrabec <lvrabec@redhat.com> - 3.13.1-265]��- Allow tmpreaper_t domain to getattr files labeled as mtrr_device_t
Resolves: rhbz#1765063� ��i�YLukas Vrabec <lvrabec@redhat.com> - 3.13.1-264]�{A- Allow tmpwatch process labeled as tmpreaper_t domain to execute fuser command
Resolves: rhbz#1765063
�S���=��o�
Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.2_���- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496���o�!Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.1_V �- Allow ssh-keygen create file in /var/lib/glusterd
Resolves: rhbz#1867995�(��k�gZdenek Pytela <zpytela@redhat.com> - 3.13.1-268^���- Allow rhsmd read process state of all domains and kernel threads
Resolves: rhbz#1837461
- Allow ipa-adtrust-install restart sssd and dirsrv services
Resolves: rhbz#1820298
- Allow nagios_plugin_domain execute programs in bin directories
Resolves: rhbz#1824625
- selinux policy: add the right context for org.freeipa.server.trust-enable-agent
Related: rhbz#1820298
w]�M�w���i�=Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-266]µ�- Dontaudit tmpreaper_t getting attributes from sysctl_type files
Resolves: rhbz#1765063���i�CLukas Vrabec <lvrabec@redhat.com> - 3.13.1-265]��- Allow tmpreaper_t domain to getattr files labeled as mtrr_device_t
Resolves: rhbz#1765063� ��i�YLukas Vrabec <lvrabec@redhat.com> - 3.13.1-264]�{A- Allow tmpwatch process labeled as tmpreaper_t domain to execute fuser command
Resolves: rhbz#1765063���i�Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-263]�{@- Update tmpreaper_t policy due to fuser command
Resolves: rhbz#1765063���i�#Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-262]��- Allow tmpreaper_t domain to read all domains state
Resolves: rhbz#1765063���i�ULukas Vrabec <lvrabec@redhat.com> - 3.13.1-261]�c@- Update sudo_role_template() to allow caller domain to read syslog pid files
Resolves: rhbz#1651253
��H���� o�!Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.1_V �- Allow ssh-keygen create file in /var/lib/glusterd
Resolves: rhbz#1867995�(��k�gZdenek Pytela <zpytela@redhat.com> - 3.13.1-268^���- Allow rhsmd read process state of all domains and kernel threads
Resolves: rhbz#1837461
- Allow ipa-adtrust-install restart sssd and dirsrv services
Resolves: rhbz#1820298
- Allow nagios_plugin_domain execute programs in bin directories
Resolves: rhbz#1824625
- selinux policy: add the right context for org.freeipa.server.trust-enable-agent
Related: rhbz#1820298���k�#Zdenek Pytela <zpytela@redhat.com> - 3.13.1-267^x��- Allow chronyd_t domain to exec shell
Resolves: rhbz#1775573
- Allow pmie daemon to send signal pcmd daemon
Resolves: rhbz#1770123
- Allow auditd poweroff or switch to single mode
Resolves: rhbz#1780332
P�-2�PO��%s/Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-10\�e�- Fixed: #1435663�
��$q�%Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-9\��- Fixed: #1502429
- Update upstream reference to http://pagure.io/slapi-nis/�v��#q�}Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-8Z*~�- Fixed: #1473572
- Changes of ID overrides now force clearing of affected SSSD cache entries on IPA master
- Related: #1473577
- Synchronize timeout-enabled code with ipa-extdom-extop���"q�)Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-7ZN�- Related: #1473577
- Force at least SSSD 1.16.0-3 for timeout-enabled NSS API�=��!o�
Zdenek Pytela <zpytela@redhat.com> - 3.13.1-268.2_���- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496
>l{�>z��*q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-2^���- Initialize map lock in NIS plugin
- Resolves: rhbz#1832190�:��)q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-1^��- Upstream release 0.56.5
- Resolves: rhbz#1820124 When sync-repl is enabled, slapi-nis can deadlock during retrochanglog trimming
- Resolves: rhbz#1820122 ERR - schemacompat - map rdlock: old way MAP_MONITOR_DISABLED
- Resolves: rhbz#1819018 ipa slapi-nis stack traces review request for LDAP server deadlock
- Resolves: rhbz#1830894 Memory leak during search of idview overrides���(s�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-13]V��- Fixed: #1725845
  ns-slapd is crashing intermittently
- Compiler fixesa��'sSAlexander Bokovoy <abokovoy@redhat.com> - 0.56.0-12\��@- Related: #1435663
  Covscan fixes���&s�-Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-11\�e�- Fixed: #1435663
  Additional set of fixes for conflicts over cn=config updates
{������0s�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-13]V��- Fixed: #1725845
  ns-slapd is crashing intermittently
- Compiler fixesa��/sSAlexander Bokovoy <abokovoy@redhat.com> - 0.56.0-12\��@- Related: #1435663
  Covscan fixes���.s�-Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-11\�e�- Fixed: #1435663
  Additional set of fixes for conflicts over cn=config updatesO��-s/Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-10\�e�- Fixed: #1435663�
��,q�%Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-9\��- Fixed: #1502429
- Update upstream reference to http://pagure.io/slapi-nis/���+q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-3`��- Fix memory leaks in ID views processing
- Resolves: rhbz#1866113
�A�>��,��4q�iAlexander Bokovoy <abokovoy@redhat.com> - 0.56.5-4`m��- CVE 2021-3480:  slapi-nis: NULL dereference (DoS) with specially crafted Binding DN
- Resolves: rhbz#1942937���3q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-3`��- Fix memory leaks in ID views processing
- Resolves: rhbz#1866113z��2q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-2^���- Initialize map lock in NIS plugin
- Resolves: rhbz#1832190�:��1q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-1^��- Upstream release 0.56.5
- Resolves: rhbz#1820124 When sync-repl is enabled, slapi-nis can deadlock during retrochanglog trimming
- Resolves: rhbz#1820122 ERR - schemacompat - map rdlock: old way MAP_MONITOR_DISABLED
- Resolves: rhbz#1819018 ipa slapi-nis stack traces review request for LDAP server deadlock
- Resolves: rhbz#1830894 Memory leak during search of idview overrides
������8s�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-13]V��- Fixed: #1725845
  ns-slapd is crashing intermittently
- Compiler fixesa��7sSAlexander Bokovoy <abokovoy@redhat.com> - 0.56.0-12\��@- Related: #1435663
  Covscan fixes���6s�-Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-11\�e�- Fixed: #1435663
  Additional set of fixes for conflicts over cn=config updates�k��5q�gAlexander Bokovoy <abokovoy@redhat.com> - 0.60.0-1c*�- upstream release 0.60.0
- Change license from GPLv2 to GPLv3+ to follow 389-ds licensing
- Resolves: rhbz#1978748
  Release adds following fixes:
  - Fix ID views integration
  - Fix base scope lookups
  - Bump NIS max dgram size to 8KB by default instead of 1KB
  - Allow to rebuild the compat tree
�A�>��,��<q�iAlexander Bokovoy <abokovoy@redhat.com> - 0.56.5-4`m��- CVE 2021-3480:  slapi-nis: NULL dereference (DoS) with specially crafted Binding DN
- Resolves: rhbz#1942937���;q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-3`��- Fix memory leaks in ID views processing
- Resolves: rhbz#1866113z��:q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-2^���- Initialize map lock in NIS plugin
- Resolves: rhbz#1832190�:��9q�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-1^��- Upstream release 0.56.5
- Resolves: rhbz#1820124 When sync-repl is enabled, slapi-nis can deadlock during retrochanglog trimming
- Resolves: rhbz#1820122 ERR - schemacompat - map rdlock: old way MAP_MONITOR_DISABLED
- Resolves: rhbz#1819018 ipa slapi-nis stack traces review request for LDAP server deadlock
- Resolves: rhbz#1830894 Memory leak during search of idview overrides
��x����As�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.0-13]V��- Fixed: #1725845
  ns-slapd is crashing intermittently
- Compiler fixesa��@sSAlexander Bokovoy <abokovoy@redhat.com> - 0.56.0-12\��@- Related: #1435663
  Covscan fixes�	��?q�#Alexander Bokovoy <abokovoy@redhat.com> - 0.60.0-3dJc�- Also handle base searches within the compat tree
- Resolves: rhbz#2168893���>q�Alexander Bokovoy <abokovoy@redhat.com> - 0.60.0-2d�- Fix base DN searches outside the compat tree
- Resolves: rhbz#2168893�k��=q�gAlexander Bokovoy <abokovoy@redhat.com> - 0.60.0-1c*�- upstream release 0.60.0
- Change license from GPLv2 to GPLv3+ to follow 389-ds licensing
- Resolves: rhbz#1978748
  Release adds following fixes:
  - Fix ID views integration
  - Fix base scope lookups
  - Bump NIS max dgram size to 8KB by default instead of 1KB
  - Allow to rebuild the compat tree
�A�>��,��Eq�iAlexander Bokovoy <abokovoy@redhat.com> - 0.56.5-4`m��- CVE 2021-3480:  slapi-nis: NULL dereference (DoS) with specially crafted Binding DN
- Resolves: rhbz#1942937���Dq�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-3`��- Fix memory leaks in ID views processing
- Resolves: rhbz#1866113z��Cq�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-2^���- Initialize map lock in NIS plugin
- Resolves: rhbz#1832190�:��Bq�Alexander Bokovoy <abokovoy@redhat.com> - 0.56.5-1^��- Upstream release 0.56.5
- Resolves: rhbz#1820124 When sync-repl is enabled, slapi-nis can deadlock during retrochanglog trimming
- Resolves: rhbz#1820122 ERR - schemacompat - map rdlock: old way MAP_MONITOR_DISABLED
- Resolves: rhbz#1819018 ipa slapi-nis stack traces review request for LDAP server deadlock
- Resolves: rhbz#1830894 Memory leak during search of idview overrides
:�x�:p��J[�Jan Jansky <jjansky@redhat.com> = 3.8-4]�A�- [man] describe --allow-system-changes
  Resolves: bz1630028�E��Iq�Alexander Bokovoy <abokovoy@redhat.com> - 0.60.0-4e7��- Ignore updates from non-tracked subtrees during modify/modrdn/update
  to avoid deadlocks with retro changelog
- Resolves: RHEL-11869�	��Hq�#Alexander Bokovoy <abokovoy@redhat.com> - 0.60.0-3dJc�- Also handle base searches within the compat tree
- Resolves: rhbz#2168893���Gq�Alexander Bokovoy <abokovoy@redhat.com> - 0.60.0-2d�- Fix base DN searches outside the compat tree
- Resolves: rhbz#2168893�k��Fq�gAlexander Bokovoy <abokovoy@redhat.com> - 0.60.0-1c*�- upstream release 0.60.0
- Change license from GPLv2 to GPLv3+ to follow 389-ds licensing
- Resolves: rhbz#1978748
  Release adds following fixes:
  - Fix ID views integration
  - Fix base scope lookups
  - Bump NIS max dgram size to 8KB by default instead of 1KB
  - Allow to rebuild the compat tree
����x��P[�Jan Jansky <jjansky@redhat.com> = 3.9-2^�V@- [rabbitmq] emulate TTY via timeout foreground
  Resolves: bz1840571P��O[IJan Jansky <jjansky@redhat.com> = 3.9-1^��@- New upstream release sos-3.9�!��N[�iJan Jansky <jjansky@redhat.com> = 3.8-8^S��- Added Obsolete for leapp-repository-sos-plugin to solve
  conflicts during install/upgrade/downgrade of RPM.s��M[�
Jan Jansky <jjansky@redhat.com> = 3.8-7^M#@- [networking] options to limit namespaces
  Resolves: bz1683904���Lc�)Pavel Moravec <pmoravec@redhat.com> = 3.8-6]��@- [foreman] cast dynflow_execution_plans.uuid as varchar
  Resolves: bz1781148q��K[�	Jan Jansky <jjansky@redhat.com> = 3.8-5]��- [Plugin, kernel] interim sysroot fixes
  Resolves: bz1767445
BX��B�A��U_�%Jan Jansky <jjansky@redhat.com> = 3.9-5.3`Gc@- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [foreman] proxy_password scrub in installer logs
  Resolves: bz1785813���T_�'Jan Jansky <jjansky@redhat.com> = 3.9-5.2`	l�- [networking] 'ethtool -e <device>' conditionally only
  Resolves: bz1917074W��Ss?CentOS Sources <bugs@centos.org> - 3.9-4.el7.centos_s!�- Roll in CentOS Brandingj��R[}Jan Jansky <jjansky@redhat.com> = 3.9-4_A@- [gluster] remove only dump files
  Resolves: bz1856417�#��Q[�mJan Jansky <jjansky@redhat.com> = 3.9-3_c�- [gluster] fix gluster volume splitlines iteration
  Resolves: bz1843520
- [block] proper parsing of luks partition on self device
  Resolves: bz1850544
- [pci] Update gating for lspci commands
  Resolves: bz1853701
- [foreman] collects stats of some tables from foreman DB
  Resolves: bz1853235
- [logs] collect also non-persistent journal logs
  Resolves: bz1850925
g�D�gi��Y_wJan Jansky <jjansky@redhat.com> = 3.9-5.7au�- [migrationresults] new plugin
  Resolves: bz1959781l��X_}Jan Jansky <jjansky@redhat.com> = 3.9-5.6`��- [pulpcore] add plugin for pulp-3
  Resolves: bz1956672���W_�3Jan Jansky <jjansky@redhat.com> = 3.9-5.5`�P@- [sssd] Add individual SSSD log files
  Resolves: bz1938932
- [sssd] sssd plugin when sssd-common
  Resolves: bz1946641
- [foreman] fix unmatched group in scrubbing installer logs
  Resolves: bz1956817
- [foreman] Sizelimit foreman-maintain and installer logs
  Resolves: bz1964000
- [pulpcore] add plugin for pulp-3
  Resolves: bz1956672�*��V_�wJan Jansky <jjansky@redhat.com> = 3.9-5.4`S@�- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [pacemaker] password scrub fix
  Resolves: bz1903144
- [filesys] never collect panfs
  Resolves: bz1886784
- [openstack_ceilometer] backend_url protected
  Resolves: bz1892692
'rzV'�*��__�wJan Jansky <jjansky@redhat.com> = 3.9-5.4`S@�- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [pacemaker] password scrub fix
  Resolves: bz1903144
- [filesys] never collect panfs
  Resolves: bz1886784
- [openstack_ceilometer] backend_url protected
  Resolves: bz1892692�A��^_�%Jan Jansky <jjansky@redhat.com> = 3.9-5.3`Gc@- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [foreman] proxy_password scrub in installer logs
  Resolves: bz1785813Z��]y?CentOS Sources <bugs@centos.org> - 3.9-5.el7.centos.10b�@- Roll in CentOS Branding���\k�!Barbora Vassova <bvassova@redhat.com = 3.9-5.10a�+@- [report] Handle exceptionally old pexpect versions
  Resolves: bz2011337j��[ioBarbora Vassova <bvassova@redhat.com = 3.9-5.9a�L�- [Red Hat] SFTP api change
  Resolves: bz2011337�	��Ze�/Pavel Moravec <pmoravec@redhat.com = 3.9-5.8ap�- [Red Hat] Update policy to use SFTP instead of legacy FTP
  Resolves: bz2011337
�s��j��dioBarbora Vassova <bvassova@redhat.com = 3.9-5.9a�L�- [Red Hat] SFTP api change
  Resolves: bz2011337�	��ce�/Pavel Moravec <pmoravec@redhat.com = 3.9-5.8ap�- [Red Hat] Update policy to use SFTP instead of legacy FTP
  Resolves: bz2011337i��b_wJan Jansky <jjansky@redhat.com> = 3.9-5.7au�- [migrationresults] new plugin
  Resolves: bz1959781l��a_}Jan Jansky <jjansky@redhat.com> = 3.9-5.6`��- [pulpcore] add plugin for pulp-3
  Resolves: bz1956672���`_�3Jan Jansky <jjansky@redhat.com> = 3.9-5.5`�P@- [sssd] Add individual SSSD log files
  Resolves: bz1938932
- [sssd] sssd plugin when sssd-common
  Resolves: bz1946641
- [foreman] fix unmatched group in scrubbing installer logs
  Resolves: bz1956817
- [foreman] Sizelimit foreman-maintain and installer logs
  Resolves: bz1964000
- [pulpcore] add plugin for pulp-3
  Resolves: bz1956672
�v�����*��i_�wJan Jansky <jjansky@redhat.com> = 3.9-5.4`S@�- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [pacemaker] password scrub fix
  Resolves: bz1903144
- [filesys] never collect panfs
  Resolves: bz1886784
- [openstack_ceilometer] backend_url protected
  Resolves: bz1892692�A��h_�%Jan Jansky <jjansky@redhat.com> = 3.9-5.3`Gc@- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [foreman] proxy_password scrub in installer logs
  Resolves: bz1785813Z��gy?CentOS Sources <bugs@centos.org> - 3.9-5.el7.centos.11b��@- Roll in CentOS Branding���fm�5Barbora Vassova <bvassova@redhat.com> = 3.9-5.11bM��- [foreman] Use psql-msgpack-decode wrapper for dynflow >= 1.6
  Resolves: bz2043103���ek�!Barbora Vassova <bvassova@redhat.com = 3.9-5.10a�+@- [report] Handle exceptionally old pexpect versions
  Resolves: bz2011337
�s��j��nioBarbora Vassova <bvassova@redhat.com = 3.9-5.9a�L�- [Red Hat] SFTP api change
  Resolves: bz2011337�	��me�/Pavel Moravec <pmoravec@redhat.com = 3.9-5.8ap�- [Red Hat] Update policy to use SFTP instead of legacy FTP
  Resolves: bz2011337i��l_wJan Jansky <jjansky@redhat.com> = 3.9-5.7au�- [migrationresults] new plugin
  Resolves: bz1959781l��k_}Jan Jansky <jjansky@redhat.com> = 3.9-5.6`��- [pulpcore] add plugin for pulp-3
  Resolves: bz1956672���j_�3Jan Jansky <jjansky@redhat.com> = 3.9-5.5`�P@- [sssd] Add individual SSSD log files
  Resolves: bz1938932
- [sssd] sssd plugin when sssd-common
  Resolves: bz1946641
- [foreman] fix unmatched group in scrubbing installer logs
  Resolves: bz1956817
- [foreman] Sizelimit foreman-maintain and installer logs
  Resolves: bz1964000
- [pulpcore] add plugin for pulp-3
  Resolves: bz1956672
gv��
g�!��s[�iJan Jansky <jjansky@redhat.com> = 3.8-8^S��- Added Obsolete for leapp-repository-sos-plugin to solve
  conflicts during install/upgrade/downgrade of RPM.s��r[�
Jan Jansky <jjansky@redhat.com> = 3.8-7^M#@- [networking] options to limit namespaces
  Resolves: bz1683904�X��qm�EBarbora Vassova <bvassova@redhat.com> = 3.9-5.12e�d@- [redhat] Change authentication method for RHEL
  Resolves: RHEL-21176
- [rpm] Capture the output of 'rpm --showrc'
  Resolves: RHEL-2357
- [candlepin] collect information about SCA
  Resolves: RHEL-22263
- [foreman] scrub admin init password in installer logs
  Resolves: RHEL-22264���pm�5Barbora Vassova <bvassova@redhat.com> = 3.9-5.11bM��- [foreman] Use psql-msgpack-decode wrapper for dynflow >= 1.6
  Resolves: bz2043103���ok�!Barbora Vassova <bvassova@redhat.com = 3.9-5.10a�+@- [report] Handle exceptionally old pexpect versions
  Resolves: bz2011337

e�r+��V��:��eD�)�
45af49fe978be47c6b7dc1d84f54b54ddf45d39e67431887ec68d47802feb0ccD�(�
dc97c23964c8ec5ec9543fb0bb7c476a1deca4202929a65f43265b1ae8ccf0adD�'�
0913430ac82b85ff2505f1428fd1ee1c2cbdf9c4b58cc447ab469fccea954369D�&�
eabc52b09196e354f58fd80ffdc7a2ac038da61c3a8d783f6064cc3031bc9fccD�%�
27e3e327ceafc04ea5e9faed37c22dbb650fa79b11eebea73713df7e611dfcb8D�$�
60c42c4261b381295acac9b8bad53e4d11b07aa44a6886d268acdf68415fb2e3D�#�
facd76c3134bc61acc238804781421a124627264ef3476cf551ab5fdf5edf584D�"�
7614360f2f41c4a9acb375c65afe79453a28906b14eb8088a9a89a96d3374218D�!�
9980a8413abfc3a1135efb5094b967176ab339e1f12d5eca6b6bab8d981b0391D� �
fefe08dca680fa571c295cf0d51d266aa3aa3a357dc1bdb87dd804e1fe5179fdD��
f53f33bb25947de42ac961faa1b3edbf1207b3e8028e8c283c139b943b66ed73D��
3cacb30cdf9cf8886bd3adabfb82541a6334ec3b33f75528e73c4d209bb76917D��
96c48318b9e9154def4e98ffc6c16ef9c9663b6dd5fd0a35de6a541ab73ea684
�0�j��w[}Jan Jansky <jjansky@redhat.com> = 3.9-4_A@- [gluster] remove only dump files
  Resolves: bz1856417�#��v[�mJan Jansky <jjansky@redhat.com> = 3.9-3_c�- [gluster] fix gluster volume splitlines iteration
  Resolves: bz1843520
- [block] proper parsing of luks partition on self device
  Resolves: bz1850544
- [pci] Update gating for lspci commands
  Resolves: bz1853701
- [foreman] collects stats of some tables from foreman DB
  Resolves: bz1853235
- [logs] collect also non-persistent journal logs
  Resolves: bz1850925x��u[�Jan Jansky <jjansky@redhat.com> = 3.9-2^�V@- [rabbitmq] emulate TTY via timeout foreground
  Resolves: bz1840571P��t[IJan Jansky <jjansky@redhat.com> = 3.9-1^��@- New upstream release sos-3.9
0:�]�0x��}[�Jan Jansky <jjansky@redhat.com> = 3.9-2^�V@- [rabbitmq] emulate TTY via timeout foreground
  Resolves: bz1840571P��|[IJan Jansky <jjansky@redhat.com> = 3.9-1^��@- New upstream release sos-3.9Y��{w?CentOS Sources <bugs@centos.org> - 3.9-5.el7.centos.2`>�- Roll in CentOS Branding���z_�'Jan Jansky <jjansky@redhat.com> = 3.9-5.2`	l�- [networking] 'ethtool -e <device>' conditionally only
  Resolves: bz1917074R��y_IJan Jansky <jjansky@redhat.com> = 3.9-5.1_��@- Adjusting .1 zstream version�A��x[�)Jan Jansky <jjansky@redhat.com> = 3.9-5_���- [gluster] remove generated state files
  Resolves: bz1857697
- [kubernetes] ignore blank+empty lines
  Resolves: bz1859885
- [networking] remove 'ethtool -e' option for bnx2x NICs
  Resolves: bz1870379
- [auditd] collect /etc/audisp
  Resolves: bz1871207
- [policy] Fix several failure conditions with upload
  Resolves: bz1886432
- [postgresql] reorganize postgres from SCL
  Resolves: bz1897903
$X�$�A��[�)Jan Jansky <jjansky@redhat.com> = 3.9-5_���- [gluster] remove generated state files
  Resolves: bz1857697
- [kubernetes] ignore blank+empty lines
  Resolves: bz1859885
- [networking] remove 'ethtool -e' option for bnx2x NICs
  Resolves: bz1870379
- [auditd] collect /etc/audisp
  Resolves: bz1871207
- [policy] Fix several failure conditions with upload
  Resolves: bz1886432
- [postgresql] reorganize postgres from SCL
  Resolves: bz1897903j��[}Jan Jansky <jjansky@redhat.com> = 3.9-4_A@- [gluster] remove only dump files
  Resolves: bz1856417�#��~[�mJan Jansky <jjansky@redhat.com> = 3.9-3_c�- [gluster] fix gluster volume splitlines iteration
  Resolves: bz1843520
- [block] proper parsing of luks partition on self device
  Resolves: bz1850544
- [pci] Update gating for lspci commands
  Resolves: bz1853701
- [foreman] collects stats of some tables from foreman DB
  Resolves: bz1853235
- [logs] collect also non-persistent journal logs
  Resolves: bz1850925
c�#].�cj��[}Jan Jansky <jjansky@redhat.com> = 3.9-4_A@- [gluster] remove only dump files
  Resolves: bz1856417Y��w?CentOS Sources <bugs@centos.org> - 3.9-5.el7.centos.4`���- Roll in CentOS Branding�*��_�wJan Jansky <jjansky@redhat.com> = 3.9-5.4`S@�- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [pacemaker] password scrub fix
  Resolves: bz1903144
- [filesys] never collect panfs
  Resolves: bz1886784
- [openstack_ceilometer] backend_url protected
  Resolves: bz1892692�A��_�%Jan Jansky <jjansky@redhat.com> = 3.9-5.3`Gc@- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [foreman] proxy_password scrub in installer logs
  Resolves: bz1785813���_�'Jan Jansky <jjansky@redhat.com> = 3.9-5.2`	l�- [networking] 'ethtool -e <device>' conditionally only
  Resolves: bz1917074R��_IJan Jansky <jjansky@redhat.com> = 3.9-5.1_��@- Adjusting .1 zstream version
�:�]��A��
_�%Jan Jansky <jjansky@redhat.com> = 3.9-5.3`Gc@- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [foreman] proxy_password scrub in installer logs
  Resolves: bz1785813���	_�'Jan Jansky <jjansky@redhat.com> = 3.9-5.2`	l�- [networking] 'ethtool -e <device>' conditionally only
  Resolves: bz1917074R��_IJan Jansky <jjansky@redhat.com> = 3.9-5.1_��@- Adjusting .1 zstream version�A��[�)Jan Jansky <jjansky@redhat.com> = 3.9-5_���- [gluster] remove generated state files
  Resolves: bz1857697
- [kubernetes] ignore blank+empty lines
  Resolves: bz1859885
- [networking] remove 'ethtool -e' option for bnx2x NICs
  Resolves: bz1870379
- [auditd] collect /etc/audisp
  Resolves: bz1871207
- [policy] Fix several failure conditions with upload
  Resolves: bz1886432
- [postgresql] reorganize postgres from SCL
  Resolves: bz1897903
g�D�gi��_wJan Jansky <jjansky@redhat.com> = 3.9-5.7au�- [migrationresults] new plugin
  Resolves: bz1959781l��
_}Jan Jansky <jjansky@redhat.com> = 3.9-5.6`��- [pulpcore] add plugin for pulp-3
  Resolves: bz1956672���_�3Jan Jansky <jjansky@redhat.com> = 3.9-5.5`�P@- [sssd] Add individual SSSD log files
  Resolves: bz1938932
- [sssd] sssd plugin when sssd-common
  Resolves: bz1946641
- [foreman] fix unmatched group in scrubbing installer logs
  Resolves: bz1956817
- [foreman] Sizelimit foreman-maintain and installer logs
  Resolves: bz1964000
- [pulpcore] add plugin for pulp-3
  Resolves: bz1956672�*��_�wJan Jansky <jjansky@redhat.com> = 3.9-5.4`S@�- [candlepin/foreman] psql with --no-password
  Resolves: bz1932772
- [pacemaker] password scrub fix
  Resolves: bz1903144
- [filesys] never collect panfs
  Resolves: bz1886784
- [openstack_ceilometer] backend_url protected
  Resolves: bz1892692
����g��_s Jan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage� ��_�c Jan Friesse <jfriesse@redhat.com> 2.4.3-5\�|�- Resolves: rhbz#1376819
- Resolves: rhbz#1634710

- configure: add --with-initconfigdir option (rhbz#1376819)
- merge upstream commit c0d8af0c7b247df16a90850b0edab4f978cb8192 (rhbz#1376819)
- Use RuntimeDirectory instead of tmpfiles.d (rhbz#1376819)
- merge upstream commit fde7fa0c6408709ccdd090aa9064e6a78232498a (rhbz#1376819)
- totemcrypto: Fix importing of the private key (rhbz#1634710)
- merge upstream commit 3f3e6b62719a263cb221c19a06d9a2c570234caa (rhbz#1634710)
- qnetd: Check existence of NSS DB dir before fork (rhbz#1376819)
- merge upstream commit eac28dffdf7f060f41f2b2e95bb0f4c6c033425d (rhbz#1376819)Y��w?CentOS Sources <bugs@centos.org> - 3.9-5.el7.centos.7a.�- Roll in CentOS Branding
c`��cj��cu Jan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/��c�} Jan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition�V��_�O Jan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)���_�Y Jan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5
t�t�j��_�w Jan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)���_�S Jan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)
\"B�7\�V��_�O!Jan Friesse <jfriesse@redhat.com> 2.4.5-2]@1A- Resolves: rhbz#1656492

- totem: Increase ring_id seq after load (rhbz#1656492)
- merge upstream commit 1061804d09565363aba73e369faf310a7d2c4d86 (rhbz#1656492)���_�Y!Jan Friesse <jfriesse@redhat.com> 2.4.5-1]@1@- Resolves: rhbz#1732039
- Resolves: rhbz#1153818
- Resolves: rhbz#1647120

- Rebase to Corosync 2.4.5g��_s!Jan Friesse <jfriesse@redhat.com> 2.4.3-6\�|�- Resolves: rhbz#1542703

- Add spausedd subpackage�[��c�U Jan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y��_�U Jan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)
�L�����_�S!Jan Friesse <jfriesse@redhat.com> 2.4.5-5^y�@- Resolves: rhbz#1679792
- Resolves: rhbz#1780134

- votequorum: Ignore the icmap_get_* return value (rhbz#1780134)
- merge upstream commit 8ad3c6bbb4556332c5a6b7fecdab73310c045b24 (rhbz#1780134)
- votequorum: Reflect runtime change of 2Node to WFA (rhbz#1780134)
- merge upstream commit bfbed8c320b0c0c5d3db48630f3de77e5fd62b75 (rhbz#1780134)
- votequorum: set wfa status only on startup (rhbz#1679792)
- merge upstream commit 6894792d76b1e8932bc822bb040933ae17e1a0c7 (rhbz#1679792)j��cu!Jan Friesse <jfriesse@redhat.com> - 2.4.5-4]J�@- Related: rhbz#1737884

- Enhance spausedd makefile�/��c�}!Jan Friesse <jfriesse@redhat.com> - 2.4.5-3]Ik�- Resolves: rhbz#1737884
- Resolves: rhbz#1737887

- Do not set exec permission for service file
- Fix CFLAGS definition
:���:���#c�G!Jan Friesse <jfriesse@redhat.com> 2.4.5-7.2av�@- Resolves: rhbz#2001969

- totem: Add cancel_hold_on_retransmit config option (rhbz#2001969)�[��"c�U!Jan Friesse <jfriesse@redhat.com> 2.4.5-7.1`��- Resolves: rhbz#1896311
- Resolves: rhbz#1897087

- spausedd: Fix log_perror (rhbz#1896311)
- spausedd: Add ability to move process into root cgroup (rhbz#1897087)�Y��!_�U!Jan Friesse <jfriesse@redhat.com> 2.4.5-7^�3�- Related: rhbz#1835885

- main: Make schedmiss in cmap and log equal (rhbz#1835885)
- merge upstream commit 44c1c8ea31f981bdd7856d4eb8f4ac49f95a85e3 (rhbz#1835885)�j�� _�w!Jan Friesse <jfriesse@redhat.com> 2.4.5-6^ϧ�- Resolves: rhbz#1835885

- stats: Add basic schedule-miss stats to needle (rhbz#1835885)
- merge upstream commit 274fda334a84253222e01b779349784ec552921b (rhbz#1835885)
- main: Add schedmiss timestamp into message (rhbz#1835885)
- merge upstream commit 3166a87749fa4817d90ed335f3c5843fc38e7304 (rhbz#1835885)
��,�^���t��+e�"Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��*g�"Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652v��)g�"Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��(e_"Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126j��'gq"Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��&eW"Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198`��%e_"Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��$kq"Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849
CS�S��!�Cv��3g�#Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��2e_#Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126j��1gq#Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��0eW#Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198`��/e_#Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��.kq#Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849���-k�-"Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��,e�m"Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776
*�	\�\��*j��;gq$Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��:eW$Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198`��9e_$Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��8kq$Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849���7k�-#Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��6e�m#Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776t��5e�#Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��4g�#Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652
�"�+~�~`��Ce_%Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��Bkq%Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849���Ak�-$Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��@e�m$Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776t��?e�$Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��>g�$Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652v��=g�$Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��<e_$Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126
 �2�T�]� ���Kk�-%Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��Je�m%Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776t��Ie�%Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��Hg�%Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652v��Gg�%Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��Fe_%Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126j��Egq%Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��DeW%Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198
��,�^���t��Se�&Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��Rg�&Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652v��Qg�&Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��Pe_&Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126j��Ogq&Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��NeW&Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198`��Me_&Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��Lkq&Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849
CS�S��!�Cv��[g�'Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��Ze_'Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126j��Ygq'Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��XeW'Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198`��We_'Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��Vkq'Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849���Uk�-&Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��Te�m&Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776
*�	\�\��*j��cgq(Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��beW(Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198`��ae_(Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��`kq(Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849���_k�-'Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��^e�m'Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776t��]e�'Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��\g�'Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652
�"�+~�~`��ke_)Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��jkq)Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849���ik�-(Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��he�m(Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776t��ge�(Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��fg�(Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652v��eg�(Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��de_(Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126bRA�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������A0��A1��A2��A3��A4�� A5��%A6��*A7��0A8��4A9��8A:��<A;��AA<��EA=��JA>��PA?��UA@��YAA��_AB��dAC��iAD��nAE��sAG��wAH��}AI��AJ��AK��
AL��AM��AN��AO��AP��AQ��AR��#AS��+AT��3AU��;AV��CAW��KAX��SAY��[AZ��cA[��kA]��sA_��{A`��Aa��
Ab��
Ac��Ad��Ae��Af��Ag�� Ah��$Ai��'Aj��+Ak��-Al��0Am��4An��6Ao��9Ap��=Aq��?Ar��BAs��EAt��GAu��IAv��NAw��PAx��RAy��VAz��YA{��[A|��_A}��cA~��fA��jA���mA���qA���sA���vA���zA���|A���A���A���A���A���A���
A���A���A���A���A���A���A���!A���%A���)
 �2�T�]� ���sk�-)Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��re�m)Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776t��qe�)Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��pg�)Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652v��og�)Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��ne_)Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126j��mgq)Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��leW)Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198

e�r+��V��:��eD�6�
0d57fe6a1b4c3013d7384f4d0457ff6aacdaf60ec4bcad0624f3d41fbaeb80c4D�5�
d5b8118e51ac12c714bac62344ad5e2f4caebfee78da0c525e284f1a1334bd7dD�4�
69aa633d0d57b2f5e92a58731547bb1ae2b44fa1f61b2a529c041ce27a603f2dD�3�
1ed3b35b8ed762f11879c5cfa1d97f379a6268de2ed28fb8c9b9c0cfae430cc7D�2�
7e0f590ddcedeebdbcdd4b72907bb5cb9affb7ffdc5d55c89e57dfc3eae94eb3D�1�
d71161880783b5c75a2c86c86ecd65a9b1c075f8f6ae57b1c22186db3a0e482bD�0�
d8997cf26edabd8e589ab76bac92e5421bf78eb3fde42b9e071f81183dcc3b2bD�/�
f84f146908408a42a5ca58fda595d715329febfea19773c4ce12227022c0a0feD�.�
f5ee3ffceb6d3dc9e61ef0f7f67a18dcd1934d4331e74fa1ae157538a284020dD�-�
b6bfd04cfc31afc2ac3f06d27918b98d44851172acf977da0dd12062ad342af4D�,�
8beccf052a2dbefb6d4d3598f864bc4c75f6f3a8b74ae1959275af52a7a8f4c0D�+�
33aea343791620e71f600e75789b92a84ee5b9007aaa3aa71b3cea849c8c069eD�*�
8cddf6415beefe785c3a074c6907be271292411506ead04f691c5b753a40fb9c
��,�^���t��{e�*Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��zg�*Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652v��yg�*Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��xe_*Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126j��wgq*Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��veW*Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198`��ue_*Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��tkq*Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849
CS�S��!�Cv��g�+Frediano Ziglio <fziglio@redhat.com> - 0.35-2[m~@- Fix flexible array buffer overflow
  Resolves: rhbz#1596008`��e_+Victor Toso <victortoso@redhat.com> - 0.35-1[d@- Rebase to 0.35
  Resolves: rhbz#1562126j��gq+Frediano Ziglio <fziglio@redhat.com> - 0.34-3Z;�@- Fix stride misalignment
  Resolves: rhbz#1508847\��eW+Victor Toso <victortoso@redhat.com> - 0.34-2Z
�- Enable lz4
  Resolves: rhbz#1460198`��e_+Victor Toso <victortoso@redhat.com> - 0.34-1Y��@- Rebase to 0.34
  Resolves: rhbz#1472730l��~kq+Jonathon Jongsma <jjongsma@redhat.com> - 0.33-7Yh�@- build with opus support
  Resolves: rhbz#1456849���}k�-*Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��|e�m*Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776
U�	\�W�Uh��
sa,Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-3Z�l�- Disable TLSv1.0
  Resolves: rhbz#1521053���	s�1,Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-2Y�Y@- Add streaming patches for use with spice-streaming-agent
  Related: rhbz#1478356q��ss,Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-1Y��- Rebase to 0.14.0 release
  Resolves: rhbz#1472948���k�-+Frediano Ziglio <fziglio@redhat.com> - 0.35-5.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355�(��e�m+Victor Toso <victortoso@redhat.com> - 0.35-5]���- Keepalive fix
  Resolves: rhbz#1719736
- Fix hang on migration after password expired
  Resolves: rhbz#1761776t��e�+Victor Toso <victortoso@redhat.com> - 0.35-4\���- Fix bad channel-reset on usbredir
  Resolves: rhbz#1625550{��g�+Frediano Ziglio <fziglio@redhat.com> - 0.35-3[��- Fix insufficient encoding checks for LZ
  Resolves: rhbz#1598652

��
x��
k�,Frediano Ziglio <fziglio@redhat.com> - 0.14.0-6[l,�- Fix flexible array buffer overflow
  Resolves: rhbz#1596008�H��s�,Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-5[*A�- Don't mute Record channel on client reconnection
  Resolves: rhbz#1549132
- Allow to configure TLS protocol versions and ciphers which SPICE will use for
  TLS communications
  Resolves: rhbz#1562213
- Enable ECDH ciphers with OpenSSL 1.0
  Resolves: rhbz#1566597�%��s�Y,Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-4Z��- Revert back to spice 0.12 behaviour where QXL guest resources for cursor
  commands are only released when the current cursor is replaced. This avoids
  a QEMU regression causing crashes during migration
  Resolves: rhbz#1567944
d�k�dq��ss-Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-1Y��- Rebase to 0.14.0 release
  Resolves: rhbz#1472948�
��o�-,Frediano Ziglio <fziglio@redhat.com> - 0.14.0-9.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355���k�7,Frediano Ziglio <fziglio@redhat.com> - 0.14.0-9]�- Always enable latency monitor to keep tcp connection alive
  Resolves: rhbz#1719736���k�,Frediano Ziglio <fziglio@redhat.com> - 0.14.0-8]u@- Avoid potential crash from buggy guest driver
  Resolves: rhbz#1582137�s��s�u,Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-7\�@- Fix off-by-one error during guest-to-host memory address conversion
  Resolves: CVE-2019-3813
- Add patch for upstream commit 48179332d9da0. This should help with corrupted
  spice-html5 displays
  Resolves: rhbz#1573739
- Add missing minimum openssl version Requires for patch #24
  Resolves: rhbz#1627693
�j����H��s�-Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-5[*A�- Don't mute Record channel on client reconnection
  Resolves: rhbz#1549132
- Allow to configure TLS protocol versions and ciphers which SPICE will use for
  TLS communications
  Resolves: rhbz#1562213
- Enable ECDH ciphers with OpenSSL 1.0
  Resolves: rhbz#1566597�%��s�Y-Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-4Z��- Revert back to spice 0.12 behaviour where QXL guest resources for cursor
  commands are only released when the current cursor is replaced. This avoids
  a QEMU regression causing crashes during migration
  Resolves: rhbz#1567944h��sa-Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-3Z�l�- Disable TLSv1.0
  Resolves: rhbz#1521053���s�1-Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-2Y�Y@- Add streaming patches for use with spice-streaming-agent
  Related: rhbz#1478356
]���]�
��o�--Frediano Ziglio <fziglio@redhat.com> - 0.14.0-9.1_O�@- Fix multiple buffer overflows in QUIC decoding code
  Resolves: CVE-2020-14355���k�7-Frediano Ziglio <fziglio@redhat.com> - 0.14.0-9]�- Always enable latency monitor to keep tcp connection alive
  Resolves: rhbz#1719736���k�-Frediano Ziglio <fziglio@redhat.com> - 0.14.0-8]u@- Avoid potential crash from buggy guest driver
  Resolves: rhbz#1582137�s��s�u-Christophe Fergeau <cfergeau@redhat.com> - 0.14.0-7\�@- Fix off-by-one error during guest-to-host memory address conversion
  Resolves: CVE-2019-3813
- Add patch for upstream commit 48179332d9da0. This should help with corrupted
  spice-html5 displays
  Resolves: rhbz#1573739
- Add missing minimum openssl version Requires for patch #24
  Resolves: rhbz#1627693x��k�-Frediano Ziglio <fziglio@redhat.com> - 0.14.0-6[l,�- Fix flexible array buffer overflow
  Resolves: rhbz#1596008
�L��c��q�W.Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��q�o.Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
 )� ��� u�7.Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��u�a.Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��u�1.Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
Q6��Q���$i�Q.Stepan Broz <sbroz@redhat.com> - 7:3.5.20-17.9eB=�- Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication
  (CVE-2023-46847)���#w�I.Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication���"w�A.Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��!u�.Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling
"4�"}��'s�	/Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-10X�:@- Resolves: #1445219 - [RFE] Add rock cache directive to squid���&q�)/Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-9XӸ�- Resolves: #1290404 - wrong names of components in man page, section SEE ALSO�G��%k�%.Stepan Broz <sbroz@redhat.com> - 7:3.5.20-17.10e�@- Resolves: RHEL-16779 - squid: NULL pointer dereference in the gopher protocol
  code -- Remove support for Gopher protocol (CVE-2023-46728)
- Resolves: RHEL-18176 - squid: Buffer over-read in the HTTP Message processing
  feature (CVE-2023-49285)
- Resolves: RHEL-18171 - squid: Incorrect Check of Function Return Value In
  Helper Process management (CVE-2023-49286)
- Resolves: RHEL-16758 - squid: Denial of Service in SSL Certificate validation
  (CVE-2023-46724)
- Resolves: RHEL-19557 - squid: denial of service in HTTP request parsing
  (CVE-2023-50269)
- Resolves: RHEL-26082 - squid: denial of service in HTTP header parser
  (CVE-2024-25617)
Nz��N�6��+q�}/Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��*sq/Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��)s�/Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���(s�/Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��-q�W/Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��,q�o/Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
9)�9}��0s�	0Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-10X�:@- Resolves: #1445219 - [RFE] Add rock cache directive to squid�j��/u�a/Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��.u�1/Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
Nz��N�6��4q�}0Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��3sq0Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��2s�0Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���1s�0Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��6q�W0Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��5q�o0Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
 )� ���9u�70Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��8u�a0Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��7u�10Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
Nz��N�6��=q�}1Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��<sq1Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��;s�1Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���:s�1Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��?q�W1Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��>q�o1Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
 )� ���Bu�71Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��Au�a1Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��@u�11Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
E6�Ep��Esq2Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��Ds�2Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*@- Resolves: #1471140 - Missing detailed configuration file�E��Cu�1Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling
��/��Gq�o2Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��Fq�}2Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws
����R��Iu�12Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c��Hq�W2Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
��-�p��Nsq3Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squid���Mw�A2Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��Lu�2Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���Ku�72Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��Ju�a2Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
��/��Pq�o3Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��Oq�}3Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws
����R��Ru�13Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c��Qq�W3Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
���-����Vw�A3Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��Uu�3Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���Tu�73Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��Su�a3Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
m\!m�/��Yq�o4Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��Xq�}4Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws���Ww�I3Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication
����R��[u�14Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c��Zq�W4Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
���-����_w�A4Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��^u�4Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���]u�74Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��\u�a4Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
�\���c��cq�W5Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��bq�o5Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption���ai�Q4Stepan Broz <sbroz@redhat.com> - 7:3.5.20-17.9eB=�- Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication
  (CVE-2023-46847)���`w�I4Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication
 )� ���fu�75Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��eu�a5Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��du�15Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
Q6��Q���ji�Q5Stepan Broz <sbroz@redhat.com> - 7:3.5.20-17.9eB=�- Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication
  (CVE-2023-46847)���iw�I5Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication���hw�A5Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��gu�5Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling
"4�"}��ms�	6Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-10X�:@- Resolves: #1445219 - [RFE] Add rock cache directive to squid���lq�)6Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-9XӸ�- Resolves: #1290404 - wrong names of components in man page, section SEE ALSO�G��kk�%5Stepan Broz <sbroz@redhat.com> - 7:3.5.20-17.10e�@- Resolves: RHEL-16779 - squid: NULL pointer dereference in the gopher protocol
  code -- Remove support for Gopher protocol (CVE-2023-46728)
- Resolves: RHEL-18176 - squid: Buffer over-read in the HTTP Message processing
  feature (CVE-2023-49285)
- Resolves: RHEL-18171 - squid: Incorrect Check of Function Return Value In
  Helper Process management (CVE-2023-49286)
- Resolves: RHEL-16758 - squid: Denial of Service in SSL Certificate validation
  (CVE-2023-46724)
- Resolves: RHEL-19557 - squid: denial of service in HTTP request parsing
  (CVE-2023-50269)
- Resolves: RHEL-26082 - squid: denial of service in HTTP header parser
  (CVE-2024-25617)
Nz��N�6��qq�}6Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��psq6Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��os�6Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���ns�6Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��sq�W6Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��rq�o6Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
9)�9}��vs�	7Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-10X�:@- Resolves: #1445219 - [RFE] Add rock cache directive to squid�j��uu�a6Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��tu�16Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway

e�r+��V��:��eD�C�
44f231fe5f62541a6b45943aaab6e3541465a25fd0a14bd3c846d9df73cdcd9bD�B�
a23725495610dce574aa0dd65ab70ebc49af45d253cb2c031fcb4f8050ef9174D�A�
61a8eaa6a0f98be8585a74fd7663aa37fdb6f542080f0ee3e6b96844e82564a5D�@�
af7e93ece536de48118743c25ba2dc36958cb213c049a71bf622da7992e28132D�?�
147f560470dacac3f89bc4c5cfaa3c9d32364fc302511f2bf1a13025a5875621D�>�
6cac781f27cb3127831f0723bbd81603bf1aa948ef07042576138eded250dafaD�=�
d13a43c2f72be1aac5c18bee475d4bf325e04b8cc511f75df749c29fb616adc1D�<�
8c9ca7fef03b651b6cf4439fc8f4e9406e901baac07b1d86a9d94eedeb2b84ccD�;�
263ab19ddbf99ff851e5ec348f81b1a2fd27b14a82e84c024b8df1092fff99a7D�:�
00f44bddea556d6114fd545f221ce9393e2498132e40d8c7e1ba1b4015de0671D�9�
3fe92e24b021f0064189e1c7e735a79fffdf4d33994fb8e504bcdbbd19dacb33D�8�
05b86a6126cc85e6e214a09707b886a17df5b705f5cb7dab4c86228f6b2ad4d2D�7�
f7db305710a65de9955170c92aeba72e62fb979802464b4239b0b607d6adc2a0
Nz��N�6��zq�}7Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��ysq7Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��xs�7Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���ws�7Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��|q�W7Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��{q�o7Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
 )� ���u�77Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��~u�a7Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��}u�17Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
Nz��N�6��q�}8Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��sq8Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��s�8Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���s�8Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��q�W8Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��q�o8Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
 )� ���u�78Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��u�a8Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��u�18Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
E6�Ep��sq9Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��
s�9Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*@- Resolves: #1471140 - Missing detailed configuration file�E��	u�8Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling
��/��
q�o9Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��q�}9Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws
����R��u�19Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c��q�W9Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
��-�p��sq:Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squid���w�A9Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��u�9Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���u�79Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��u�a9Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
��/��q�o:Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��q�}:Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws
����R��u�1:Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c��q�W:Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
���-����w�A:Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��u�:Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���u�7:Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��u�a:Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
m\!m�/��q�o;Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��q�};Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws���w�I:Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication
����R��!u�1;Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c�� q�W;Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
���-����%w�A;Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��$u�;Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���#u�7;Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��"u�a;Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
�\���c��)q�W<Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��(q�o<Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption���'i�Q;Stepan Broz <sbroz@redhat.com> - 7:3.5.20-17.9eB=�- Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication
  (CVE-2023-46847)���&w�I;Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication
 )� ���,u�7<Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��+u�a<Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��*u�1<Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
Q6��Q���0i�Q<Stepan Broz <sbroz@redhat.com> - 7:3.5.20-17.9eB=�- Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication
  (CVE-2023-46847)���/w�I<Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication���.w�A<Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��-u�<Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling
"4�"}��3s�	=Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-10X�:@- Resolves: #1445219 - [RFE] Add rock cache directive to squid���2q�)=Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-9XӸ�- Resolves: #1290404 - wrong names of components in man page, section SEE ALSO�G��1k�%<Stepan Broz <sbroz@redhat.com> - 7:3.5.20-17.10e�@- Resolves: RHEL-16779 - squid: NULL pointer dereference in the gopher protocol
  code -- Remove support for Gopher protocol (CVE-2023-46728)
- Resolves: RHEL-18176 - squid: Buffer over-read in the HTTP Message processing
  feature (CVE-2023-49285)
- Resolves: RHEL-18171 - squid: Incorrect Check of Function Return Value In
  Helper Process management (CVE-2023-49286)
- Resolves: RHEL-16758 - squid: Denial of Service in SSL Certificate validation
  (CVE-2023-46724)
- Resolves: RHEL-19557 - squid: denial of service in HTTP request parsing
  (CVE-2023-50269)
- Resolves: RHEL-26082 - squid: denial of service in HTTP header parser
  (CVE-2024-25617)
Nz��N�6��7q�}=Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��6sq=Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��5s�=Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���4s�=Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��9q�W=Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��8q�o=Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
9)�9}��<s�	>Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-10X�:@- Resolves: #1445219 - [RFE] Add rock cache directive to squid�j��;u�a=Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��:u�1=Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
Nz��N�6��@q�}>Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��?sq>Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��>s�>Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���=s�>Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��Bq�W>Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��Aq�o>Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
 )� ���Eu�7>Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��Du�a>Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��Cu�1>Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
Nz��N�6��Iq�}?Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flawsp��Hsq?Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��Gs�?Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*A- Resolves: #1471140 - Missing detailed configuration file���Fs�?Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-11Y�*@- Resolves: #1452200 - Include kerberos_ldap_group helper in squid
�L��c��Kq�W?Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel�/��Jq�o?Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption
 )� ���Nu�7?Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��Mu�a?Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning�R��Lu�1?Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway
E6�Ep��Qsq@Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squidy��Ps�@Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-12Y�*@- Resolves: #1471140 - Missing detailed configuration file�E��Ou�?Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling
��/��Sq�o@Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��Rq�}@Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws
����R��Uu�1@Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c��Tq�W@Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
��-�p��ZsqALuboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-13\	@- Resolves: #1620546 - migration of upstream squid���Yw�A@Luboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��Xu�@Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���Wu�7@Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��Vu�a@Lubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
��/��\q�oALubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��[q�}ALubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws
����R��^u�1ALubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c��]q�WALubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
���-����bw�AALuboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��au�ALubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���`u�7ALubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��_u�aALubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
m\!m�/��eq�oBLubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-16^}�- Resolves: #1738582 - CVE-2019-12525 squid: parsing of header 
  Proxy-Authentication leads to memory corruption�6��dq�}BLubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-15]9��- Resolves: #1690551 - Squid cache_peer DNS lookup failed when not all lower
  case
- Resolves: #1680022 - squid can't display download/upload packet size for HTTPS
  sites
- Resolves: #1717430 - Excessive memory usage when running out of descriptors
- Resolves: #1676420 - Cache siblings return wrongly cached gateway timeouts
- Resolves: #1729435 - CVE-2019-13345 squid: XSS via user_name or auth parameter
  in cachemgr.cgi
- Resolves: #1582301 - CVE-2018-1000024 CVE-2018-1000027 squid: various flaws���cw�IALuboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication
����R��gu�1BLubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.2_$�- Resolves: #1802516 - CVE-2020-8449 squid: Improper input validation issues
  in HTTP Request processing
- Resolves: #1802515 - CVE-2020-8450 squid: Buffer overflow in a Squid acting
  as reverse-proxy
- Resolves: #1853129 - CVE-2020-15049 squid: request smuggling and poisoning
  attack against the HTTP cache
- Resolves: #1802517 - CVE-2019-12528 squid: Information Disclosure issue in
  FTP Gateway�c��fq�WBLubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17^��- Resolves: #1828361 - CVE-2020-11945 squid: improper access restriction upon
  Digest Authentication nonce replay could lead to remote code execution
- Resolves: #1828362 - CVE-2019-12519 squid: improper check for new member in
  ESIExpression::Evaluate allows for stack buffer overflow [rhel
���-����kw�ABLuboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.7b��@- Resolves: #2100778 - CVE-2021-46784 squid: DoS when processing gopher server
  responses�E��ju�BLubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.6`dd@- Resolves: #1944256 - CVE-2020-25097 squid: improper input validation may allow
  a trusted client to perform HTTP Request Smuggling���iu�7BLubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.5_��@- Resolves: #1890581 - Fix for CVE 2019-13345 breaks authentication in
  cachemgr.cgi�j��hu�aBLubos Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.4_H�- Resolves: #1872349 - CVE-2020-24606 squid: Improper Input Validation could
  result in a DoS
- Resolves: #1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could
  result in cache poisoning
- Resolves: #1872342 - CVE-2020-15811 squid: HTTP Request Splitting could
  result in cache poisoning
m\��n�m���qY�)CJarod Wilson <jarod@redhat.com> 22.3-1]e@- Update to v22.3 stable release
- Unclamp IPoIP MTUs
- Resolves: rhbz#1647541x��pY�CJarod Wilson <jarod@redhat.com> 22.1-3\��- Actually apply ConnectX-6 DX device ID patch
- Related: rhbz#1687426���oY�?CJarod Wilson <jarod@redhat.com> 22.1-2\��- Refresh stable-v22 branch fixes
- Add ConnectX-6 DX device IDs
- Resolves: rhbz#1687426�8��nY�CJarod Wilson <jarod@redhat.com> 22.1-1\�e�- Update to upstream v22.1 release with stable-v22 branch fixes
- Add support for Broadcom 57500 RoCE adapter
- Resolves: rhbz#1678274���mi�QBStepan Broz <sbroz@redhat.com> - 7:3.5.20-17.9eB=�- Resolves: RHEL-14789 - squid: Denial of Service in HTTP Digest Authentication
  (CVE-2023-46847)���lw�IBLuboš Uhliarik <luhliari@redhat.com> - 7:3.5.20-17.8c47@- Resolves: #2130254 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB
  authentication
u%�0�u���w[�OCHonggang Li <honli@redhat.com> - 22.4-6`t6@- rdma-ndd: fix udev racy issue for system with multiple InfiniBand HCAs
- Resolves: rhbz#1937699���v[�CCHonggang Li <honli@redhat.com> - 22.4-5^ۅ@- libibverbs: Fix ABI_placeholder1 and ABI_placeholder2 assignment
- Resolves: rhbz#1843221�
��u[�;CHonggang Li <honli@redhat.com> - 22.4-4^��- libbnxt_re support for some new device ids and generation id
- Resolves: rhbz#1828482b��t[mCHonggang Li <honli@redhat.com> - 22.4-3^��@- Restore three patches
- Resolves: rhbz#1817412�
��s[�;CHonggang Li <honli@redhat.com> - 22.4-2^M#@- Fix ibacm segfault for dual port HCA support IB and Ethernet
- Resolves: rhbz#1793585�V��rY�UCJarod Wilson <jarod@redhat.com> 22.4-1]�|@- Update to v22.4 stable release
- Support mlx5 scatter to CQE over DCT QP
- Fix ibacm segfault on non-IB hardware
- Resolves: rhbz#1715489
- Resolves: rhbz#1712296

e�r+��V��:��eD�P�
77c36db32c50f15916ca53f42fba6ef0360314d11a2d6e929276d3f8890dcf99D�O�
ff3b468571e583e09e30108bb68b5b52e5aa7c6c634076708aa4dbbf6d6a6c7eD�N�
7f6c1ee79dd230a85336204331bee68c57e6de3879ff35719632a2132c9d3c75D�M�
0cc9ba42a15c78ffcce2049a61fd84727a2586eca9d5215f1ca32e1a24b02bfeD�L�
542aab85e68ca0ec1ae3084cd0af6195d78adc16d93c4be11b237a264eedb1bcD�K�
1fe72164363f910c775d358dbfd20b12da516c49d28c4a4388ff663a5f4291dcD�J�
3bbbdec13d548901746ce3f8e2bf282000598614b5b70523edb80f329ec935e0D�I�
152dbbf3f7f9f134af6da2865820367d78a9a9699d7a81d9166fbe3415389719D�H�
aee634ff6dd524953bce90ba54a52b06711539a2df4b6da94cd10b418b71b0adD�G�
f4b81bba6d36049eb10ff5bb2d20310de20be1048a6d3e39a65a860939563c6fD�F�
3579555a0a1408bf0ffc0c41aa84d2045a42a0fc9536c5b03f837ea3080086a2D�E�
8ada58179dcbbef50383829ff646e8482d88b3597602d1e89527ff2801adc78bD�D�
96e8afde7554bf087d7015345cb62d8833fcecf0f4165e71ec3a77681591973d
��t��zo�{DAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��yo�'DAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��xo�;DAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��|o�wDAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��{o�DAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��}o�EDAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��~o�DAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mDAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��o�'EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���q�ODAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�DAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�wEAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�EEAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mEAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���
q�OEAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���	o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�wFAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��
o�FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�EFAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mFAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OFAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�FAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�wGAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�aFAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�EGAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mGAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]bRA�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������A���0A���3A���7A���9A���<A���@A���BA���EA���IA���KA���NA���QA���SA���UA���ZA���\A���^A���bA���eA���gA���kA���qA���wA���zA���|A���}A���~A���A���A���A���A���A���A���A���A���A���A���A���A���A���A���A�Aă�AŃ� Aƃ�!Aǃ�"Aȃ�#AɃ�&Aʃ�)A˃�*Ã�+A̓�,A΃�/Aσ�2AЃ�4Aу�5A҃�8AӃ�;Aԃ�>AՃ�AAփ�CA׃�FA؃�IAك�LAڃ�OAۃ�PA܃�QA݃�SAރ�UA߃�XA�YAქZA⃥\Aュ^A䃥aA僥bA惥cA烥dA胥eA郥hAꃥjA냥kA샥lA탥mApAsA�tA�uA�vA�yA���|A���}A���~A���A���A���A���
?|�?���q�9GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OGAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2�� o�wHAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��q�	GAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�aGAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��!o�EHAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��"o�HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��#o�mHAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���&q�9HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���%q�OHAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���$o�HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��)q�QHAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��(q�	HAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��'q�aHAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��*o�EIAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��+o�IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��,o�mIAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���/q�9IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���.q�OIAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���-o�IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��2q�QIAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��1q�	IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��0q�aIAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��4o�JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��3q�IAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��5o�mJAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���8q�9JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���7q�OJAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���6o�JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��;q�QJAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��:q�	JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��9q�aJAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��>a�}KAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��=}�
JEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��<q�JAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��Aa�	KAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��@a�sKAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��?a�KAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��Cg�;KAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��Bc�]KAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��Fg�KAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��Eg�{KAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���Dg�'KAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��Ii�sLAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��Hi�LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��Gg�wKAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��Lo�;LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Kk�]LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Ji�	LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Oo�LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��No�{LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Mo�'LAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Po�wLAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Qo�ELAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Si�	MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Ri�sMAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Uo�;MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Tk�]MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Xo�MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Wo�{MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Vo�'MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Yo�wMAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Zo�EMAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��\i�	NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��[o�MAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��^o�;NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��]k�]NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��ao�NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��`o�{NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��_o�'NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��bo�wNAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��co�ENAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��do�NAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��eo�mNAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��ho�{OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��go�'OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��fo�;OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��jo�wOAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��io�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��ko�EOAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��lo�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��mo�mOAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��po�'PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���oq�OOAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���no�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��so�wPAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��ro�PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��qo�{PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��to�EPAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��uo�PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��vo�mPAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���yq�9PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���xq�OPAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���wo�PAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]

e�r+��V��:��eD�]�
44366b0b7affba7de64323741418475b4e65ac775871a7709bdc2230e592c5afD�\�
75ce644c70ec9964e32bce8017125212233496a086225b0503cf1810e717e333D�[�
fbd39d1a8897fa30ac649d4e1c6652bada403accff15f98abb244507a91a8494D�Z�
772df4394d584927dcf77fefe3909f14263b4a632dfec53f011d34b412b30d8cD�Y�
24374c0fbadcce0d6917a2e88255f302cb3f4a155216a45c8492da80d78ae47aD�X�
20693e146f5e799d72526af73b57a86d3d7d316b6f7e0678460e69cc3c684e1eD�W�
cd7a7f077489d8e2a9dd46b53fdf41995243a699f3fa2bbb47093c9bfd7d9266D�V�
5343570a081f4c1fbce42a13f928cc48ab03be8c1c68a418094e37927e1b78d5D�U�
90d24b11f08fa24d41c2102a917044b252760ee28a2d70c68a1ff4f9043c7464D�T�
b55dfb902c51c301e4075cc32658c8a11145de6ede53d43aeaf2057090a9bdcfD�S�
9fe7f82ad271dad01797d8671e72b30eaa56799b8b56946e3a6091de48af5ea7D�R�
5272882f683e83a910d603b0d6b4d2bb3031f9b793b125f6df3208740a29d2adD�Q�
9d64772c1a50450f231fb3e75179eecc94b9aa1ff2a18fe00a4322da5b873623
���2��|o�wQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��{o�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��zo�{QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��}o�EQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��~o�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�wRAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�aQAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�ERAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mRAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���
q�ORAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���	o�RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�wSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��
q�	RAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�aRAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�ESAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�QSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	SAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�aSAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�ETAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mTAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OTAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� �� q�QTAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�aTAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��"o�UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��!q�TAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��#o�mUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���&q�9UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���%q�OUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���$o�UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��)q�QUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��(q�	UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��'q�aUAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��,a�}VAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��+}�
UEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��*q�UAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��/a�	VAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��.a�sVAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��-a�VAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��1g�;VAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��0c�]VAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��4g�VAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��3g�{VAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���2g�'VAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��7i�sWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��6i�WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��5g�wVAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��:o�;WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��9k�]WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��8i�	WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��=o�WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��<o�{WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��;o�'WAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��>o�wWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��?o�EWAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Ai�	XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��@i�sXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Co�;XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Bk�]XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Fo�XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Eo�{XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Do�'XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Go�wXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Ho�EXAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��Ji�	YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��Io�XAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��Lo�;YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Kk�]YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Oo�YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��No�{YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Mo�'YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Po�wYAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Qo�EYAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ro�YAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��So�mYAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��Vo�{ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Uo�'ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��To�;ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��Xo�wZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Wo�ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��Yo�EZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Zo�ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��[o�mZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]bRBaRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������A���A���A���B��B��B��B��B��B��B��B��B��B	�� B
��"B��#B��&B
��)B��,B��/B��1B��4B��7B��:B��=B��>B��?B��AB��CB��FB��GB��HB��JB��LB��OB��PB ��QB!��RB"��SB#��VB$��XB%��YB&��ZB'��[B)��^B*��aB+��bB,��cB-��dB.��eB/��hB0��kB1��lB2��mB3��nB4��qB5��tB6��uB7��vB8��wB9��xB:��{B<��~B=��B>��B?��B@��BA��BB��BC��	BD��
BE��BF��BG��BH��BI��BJ��BK��BL��BM��BN��BO��BP��BQ��!BR��$BS��%BT��&BU��'BV��*BW��-BX��.BY��/BZ��0B[��1B\��4B]��7B^��8B_��9B`��:
|��T��^o�;[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���]q�OZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���\o�ZAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��ao�[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��`o�{[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��_o�'[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��bo�w[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��co�E[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��do�[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��eo�m[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��ho�'\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���gq�O[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���fo�[Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��ko�w\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��jo�\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��io�{\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��lo�E\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��mo�\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��no�m\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���qq�9\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���pq�O\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���oo�\Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��to�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��so�{]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��ro�']Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��uo�w]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��vo�E]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��wo�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��xo�m]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���{q�9]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���zq�O]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���yo�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]

e�r+��V��:��eD�j�
9bf2751a28e0695d59bf5c8e1ac8a371b4f65b45751daac5745c15803ecb05e8D�i�
5a7cdc99b9d090c26ee5c769f9c02bcc2598cf3c5ebb4b9e0d041e33a5f8334cD�h�
9349658aa8b7d4b836a718f62cdaf519b05370897881d1661e16c4ca039a4fcfD�g�
db24348500eb9dbf5298596dfe2e37ca3bc54a7bacc1db758d4a433d37f486a4D�f�
c3b34b85ae893b22977e8dfafa61a01dd6b4c787c7b37cab2e89df863cc94330D�e�
67464059f8d9ef6bdaaabcff4bd255af5760b16b8ca9af7c4e194e78ab73d9e9D�d�
375ebea7e1dcf98b38f838956b03b236dd23db4b665522d9268223ed9b4e8d3dD�c�
0f5a8848daead9b08962772ffcfea5205ed58cc1314cf39de5639e4757359ea6D�b�
e3da9cf446dbbd5a2b65cf4a7f59080bf53067a5b3c1c938582a6c2e7874a819D�a�
60e80bc431d4065eaaeb5d133dd160c01f64d7e9543d7cbfdc49c8799a6b079fD�`�
402c8ad0ef6726c780c90655a28c409b5f0ea3b0d5b2e1562caeb06dd9062e22D�_�
4abd16c4ab5141d33e867b7f35275398808b6ec6c8b49a01a8fe2836089ca1edD�^�
3f9b0f657dd2581e1dd7b33d31ff3179c309539c7fadc4275ca679411bbd4f7d
���2��~o�w^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��}o�^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��|o�{^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��q�a^Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��o�w_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��	o�E_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��
o�_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���
q�O_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o�`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a_Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��o�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��q�	`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a`Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��o�waAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EaAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�maAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���!q�9aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)��� q�OaAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��$o�wbAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��#q�	aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��"q�aaAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��%o�EbAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��&o�bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��'o�mbAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���*q�9bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���)q�ObAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���(o�bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��-q�QbAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��,q�	bAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��+q�abAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��.o�wcAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��/o�EcAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��0o�cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��1o�mcAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���4q�9cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���3q�OcAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���2o�cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��7q�QcAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��6q�	cAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��5q�acAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��8o�EdAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��9o�dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��:o�mdAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���=q�9dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���<q�OdAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���;o�dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��@q�QdAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��?q�	dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��>q�adAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��Aq�dAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��Bo�EeAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Co�eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Do�meAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Gq�9eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Fq�OeAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Eo�eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Jq�QeAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Iq�	eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Hq�aeAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��Lo�fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��Kq�eAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��Mo�mfAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Pq�9fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Oq�OfAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���No�fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Sq�QfAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Rq�	fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Qq�afAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��Vo�gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��U}�
fEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��Tq�fAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��Wo�mgAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Zq�9gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Yq�OgAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Xo�gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��]q�QgAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��\q�	gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��[q�agAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��`a�}hAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��_}�
gEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��^q�gAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��ca�	hAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��ba�shAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��aa�hAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��eg�;hAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��dc�]hAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��hg�hAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��gg�{hAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���fg�'hAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��ka�iAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��ja�}iAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��ig�whAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��ma�	iAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��la�siAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��og�;iAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��nc�]iAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��rg�iAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��qg�{iAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���pg�'iAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��ui�sjAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��ti�jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��sg�wiAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��xo�;jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��wk�]jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��vi�	jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��{o�jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��zo�{jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��yo�'jAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��|o�wjAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��}o�EjAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]

e�r+��V��:��eD�w�
bf742dc3dc34fd5e59a231bfb252573f70d7b5a840803d31e860e52fe35f902eD�v�
a2766b83b6a876469856708425fef7119bad6779d4b9ed448fcb9ea454b97420D�u�
bbcc65876a2808fc3b0866365675ccaee30c914a03af4a86bac11a13ac2192e1D�t�
b4f318de6ef0eb132e4123f8b5fe5520c45b79417dc124c993f2ae8570bd2ea4D�s�
58a27b52c09a126948ce6287661318459d3416d0cd51071d3b438cd6b8b6f5eaD�r�
4501c2327452af05f97c309a9269b764df7c26f9118e1c6cc2594f1660aefb89D�q�
da8db8418933d315b0ed79893d80242ae95d51f00cabe099162d09d07124d15bD�p�
b0d0a9428e29aa54f6cf8736a355da73553cc5c4e20f0795d6faf0e6cab0ce49D�o�
84338ef31ca6974b5061ab6de6f266737dfa9cd9bfd5636c91498adb8d422130D�n�
9030c370aec5edcb0723952a2989c5012de7aea238458f7f55ec1a6b9a24962aD�m�
6574b4b68f18c25488f8d81b6428bc0c2d58438c98a5e53c49f813717763e9ecD�l�
2085e16e3688337145397ad071965596e29a2b506f9ed495de26bab6e9ad7e4eD�k�
bebf3e1f9a460eb53ffa76825f7941c604da28361997c54fd39f0224ef015391
��L�x��i�	kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�skAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��~i�kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��o�;kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'kAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wkAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EkAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��	i�	lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�slAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��o�;lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��
k�]lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��
o�{lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wlAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�ElAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��i�smAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��o�lAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��o�;mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wmAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EmAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]bRB�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������Bb��@Bc��ABd��BBe��CBf��DBg��GBh��JBi��LBj��MBk��PBl��SBm��VBn��WBo��ZBp��]Bq��`Br��cBs��eBt��hBu��kBv��mBw��oBx��rBy��uBz��xB{��{B|��|B}��}B��B���B���B���B���B���	B���B���B���B���B���B���B���B���B���B���B���B���!B���"B���#B���$B���&B���(B���+B���,B���-B���.B���/B���2B���4B���5B���6B���7B���:B���=B���>B���?B���@B���CB���FB���GB���HB���IB���LB���OB���PB���QB���RB���UB���XB���YB���ZB���[B���^B���aB���bB���cB���dB���gB���jB���lB���mB���pB���sB���vB���yB�{BÃ�~Bă�Bƃ�
�:�x��i�	nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��o�;nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��!o�nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t�� o�{nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��"o�wnAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��#o�EnAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��$o�nAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��&i�	oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��%o�mnAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��(o�;oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��'k�]oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��+o�oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��*o�{oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��)o�'oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��,o�woAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��-o�EoAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��.o�oAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��/o�moAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��2o�{pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��1o�'pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��0o�;pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��4o�wpAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��3o�pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��5o�EpAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��6o�pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��7o�mpAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��:o�'qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���9q�OpAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���8o�pAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��=o�wqAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��<o�qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��;o�{qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��>o�EqAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��?o�qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��@o�mqAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Cq�9qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Bq�OqAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ao�qAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Fo�wrAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Eo�rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Do�{rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Go�ErAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ho�rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Io�mrAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Lq�9rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Kq�OrAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Jo�rAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Oo�wsAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��No�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��Mq�arAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Po�EsAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Qo�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Ro�msAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Uq�9sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Tq�OsAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���So�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Xo�wtAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Wq�	sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Vq�asAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Yo�EtAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Zo�tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��[o�mtAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���^q�9tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���]q�OtAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���\o�tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��aq�QtAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��`q�	tAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��_q�atAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��bo�EuAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��co�uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��do�muAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���gq�9uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���fq�OuAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���eo�uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��jq�QuAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��iq�	uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��hq�auAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��lo�vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��kq�uAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��mo�mvAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���pq�9vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���oq�OvAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���no�vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��sq�QvAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��rq�	vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��qq�avAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��va�}wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��u}�
vEduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��tq�vAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��ya�	wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��xa�swAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��wa�wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��{g�;wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��zc�]wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��~g�wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��}g�{wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���|g�'wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��i�sxAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�wwAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target

e�r+��V��:��eD��
6b5e660e5d0921510f1a69a4692a914101958749fe11fe52afc2dfb4f09213c4D��
c14a2c1aedcaa3d699f1c72757981d99ea27868828762056492a78d9705d6011D��
ef4964d104e49faae860fc6c639d7d643ba1785fc33508588d20d8486431c33fD��
d13238ab1217026e026ff8cdb5a027315b909e6962176287bb83b326f33c5f80D��
f9676ddcb0d16744e15c0dea1da0d19db48f65f8b002b815347953e2a4f2bed8D��
bacfb2cae8fa0a136505d13d9ba4f457a70110c92d232123563b0978aace5648D�~�
dbbd36394253b7a5eeea86bfcbbe4f0ab7aa133c3e762b34f7a4b0e3d3b138f4D�}�
00685f713fa548fd7e60ef95a370789739c4ef8bf55c1102f6d251548a251ed2D�|�
4cf77513a445cacd9183e8004a68488a4038ea670b7d8afe41da213c440c508aD�{�
826c87462956fa022a02326f271d542600fd73a7be32feb4eb7108cbc8b45eeeD�z�
1b2a2bdcb8f8539c6b2c875f6eb99acd1ce16f662f02b83d2dc3dd8e3408c5f6D�y�
d7438560c82cb351cd0c021c2a6a0dc12a8235905b6ad52fac1aa4dfa0cb347fD�x�
6f44954e7559753b1cb37504f1b6070062ebd03b2055d1a1becc6179569b8472
C��C�T��o�;xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o�xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'xAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wxAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��	o�ExAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��i�	yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��
i�syAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��
o�;yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wyAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EyAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��i�	zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o�yAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��o�;zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o�zAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�mzAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t�� o�{{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��o�;{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��"o�w{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��!o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��#o�E{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��$o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��%o�m{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��(o�'|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���'q�O{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���&o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��+o�w|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��*o�|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��)o�{|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��,o�E|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��-o�|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��.o�m|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���1q�9|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���0q�O|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���/o�|Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��4o�w}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��3o�}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��2o�{}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��5o�E}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��6o�}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��7o�m}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���:q�9}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���9q�O}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���8o�}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��=o�w~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��<o�~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��;q�a}Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��>o�E~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��?o�~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��@o�m~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Cq�9~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Bq�O~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ao�~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Fo�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Eq�	~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Dq�a~Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Go�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ho�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Io�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Lq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Kq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Jo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Oq�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Nq�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Mq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Po�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Qo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]bRC,RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������Bȃ�BɃ�	Bʃ�B˃�
B̃�B̓�B΃�Bσ�BЃ�Bу�B҃�BӃ�Bԃ�BՃ�Bփ� B׃�"B؃�#Bك�$Bڃ�%Bۃ�(B܃�+B݃�,Bރ�-B߃�.B�1Bჩ4B⃩5Bラ6B䃩7B僩:B惩=B烩>B胩?B郩@BꃩCB냩FB샩GB탩HBIBLB�OB�PB�QB�RB���UB���XB���ZB���[B���^B���aB���dB���gB���iB���lB���oC��rC��uC��vC��wC��yC��{C��~C��C��C	��C��C��C
��C��	C��
C��C��C��C��C��C��C��C��C��C��C��C��C��"C��#C��$C��%C ��(C!��+C"��,C#��-C$��.C%��1C&��4C'��5C(��6C)��7C*��:C+��=
NN�-��Ro�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Uq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Tq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���So��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Xq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Wq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Vq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��Zo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��Yq��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��[o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���^q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���]q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���\o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��aq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��`q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��_q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��da�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��c}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��bq��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��ga�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��fa�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��ea��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��ig�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��hc�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��lg��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��kg�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���jg�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��oi�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��ni��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��mg�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��ro�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��qk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��pi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��to�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��so�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��vo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��wo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��yi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��xi�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��{o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��zk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��~o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��}o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��|o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]

e�r+��V��:��eD��
ddd921add46e38c9947a1be713846fcb866f41a25bf6671f3a81e65cc5ae6906D��
c7826779aa132803da82be7ea0e99d8799ff4ebc7f93d26dee0731d8c1c9f25fD��
f9b5b8e607b0475317be118a94288240012fe680504fba887596246d7173029fD��
c4cc0146e823c14ccfdfc6e0d5991b3b44a23d81a1bc4c2e84d9dd55bed96730D�
�
6764ea39a74b1ccba4e77eeb2236358817368cb8f0b3064e3a6fda6da289f363D��
70d4d64cd1a4bf0b8b9ccc8e2cb0e8bc239ffd0632a796d2c869f55b6626defeD��
7aa980726f441dcbdcee2948aec3a75da1f5fef953faeb2e9aa52c3d5818a4e8D�
�
27381d0aaac8bd4271fb0d07366118b74445a7c2e330a29bed462dcbe88fad16D�	�
f0af2e9f5541fb785da048e6b6711cfb336457efd4dbe07344c3ed34aaacbea7D��
8a5fd0b970dc3eb282790ae8ea380ab02a73599a63846085865e041e8624d19bD��
1df29b4610f51702868338437a84151544ec5f149b1abd3299bec1abd9aebb57D��
65a42ec733799dc8d274d0582c47380210b9ba82d7d6c4e9bb2f2cc9e93e54aeD��
80846d26d36affb3de74ab705faf20f1ccf2d552bf0f63a19314ff38efed5522
���T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��	o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��
o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��
o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��"o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��!o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t�� o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��#o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��$o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��%o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���(q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���'q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���&o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��+o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��*o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��)q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��,o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��-o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��.o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���1q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���0q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���/o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��4o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��3q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��2q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��5o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��6o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��7o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���:q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���9q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���8o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��=q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��<q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��;q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��>o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��?o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��@o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Cq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Bq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Ao��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Fq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Eq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Dq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��Ho��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��Gq��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��Io�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Lq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Kq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Jo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Oq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Nq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Mq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��Ra�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��Q}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��Pq��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��Ua�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��Ta�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��Sa��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��Wg�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��Vc�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��Zg��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��Yg�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���Xg�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��]i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��\i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��[g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��`o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��_k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��^i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��co��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��bo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��ao�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��do�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��eo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��gi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��fi�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��io�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��hk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��lo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��ko�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��jo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��mo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��no�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��pi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��oo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��ro�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��qk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��to�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��so�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��vo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��wo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��xo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��yo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��|o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��{o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��zo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��~o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��}o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]

e�r+��V��:��eD��
f30bed050378d0ff2aec7c2fe523d1b6505bc116cce61a59687efe5e1d2a0014D��
75d06c1bd614e9afb5bb7ee3df0687c26dd805b2c3b4430087f9db6565d30371D��
62e79c444efc16b710b9f1e149bb3fee5abb2dea036b57e363ce6cc8d48b4c6dD��
86216059235592e65e7652d91f110d715907836ae9f6759187c8cf877a851e69D��
05ca51bffce88a4ceee7e70a17f2e81e550cbe1f0573836e157840cea3610e88D��
979c4dddfa5465daad9544c21ea318624da5d9cd9873a573d52cbdeaaa74d14dD��
0f278d26606d17a63d5e0da05a7bd5983a694993f71d76ab6409e00238f2d71bD��
ab5ba7db71da82b8f11f7725428c46b6cf857fa74755c8a4626182781ec2a388D��
7a8603cbba23f0fcd47e61e17dd4bc37f62141da71555814f5e89555fe2eb8f3D��
26f837f65c41f6f8f28c88fd6f276825f409b924d8a0007694a7b9c158cc8d83D��
3dc3c0c7d9f3c7865360c72790fdc0bb19b96e9e07fe98300e5e7443b0c5eec8D��
f1543bd7c42d040f29b768234c950b37aba8c48f0e6347079bc3d83cd152f2b5D��
efeaab4045eee3dabd94e6ae1b90d46bc4bc41180b4e0b8ceec3e018edace11d
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��	o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��
o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���
q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]bRC�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������C-��?C.��@C/��CC0��FC1��HC2��IC3��LC4��OC5��RC6��UC7��WC8��ZC9��]C:��`C;��cC<��dC=��eC>��gC?��iC@��lCA��mCB��nCC��pCD��rCE��uCF��vCG��wCH��xCI��yCJ��|CK��~CL��CM��CN��CO��CQ��CR��CS��	CT��
CU��
CV��CW��CX��CZ��C[��C\��C]��C^��C_��C`��Ca��"Cb��#Cc��$Cd��%Ce��(Cf��+Cg��,Ch��-Ci��.Cj��1Ck��4Cl��6Cm��7Cn��:Co��=Cp��@Cq��CCr��ECs��HCt��KCu��NCv��QCw��RCx��SCy��UCz��WC{��ZC|��[C}��\C~��^C��`C���cC���dC���eC���fC���gC���jC���lC���mC���nC���oC���rC���uC���vC���wC���xC���{C���~
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��"o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��!q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h�� q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��#o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��$o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��%o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���(q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���'q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���&o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��+q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��*q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��)q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��,o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��-o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��.o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���1q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���0q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���/o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��4q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��3q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��2q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��6o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��5q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��7o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���:q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���9q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���8o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��=q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��<q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��;q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��@a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��?}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��>q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��Ca�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��Ba�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��Aa��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��Eg�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��Dc�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��Hg��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��Gg�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���Fg�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��Ki�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��Ji��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��Ig�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��No�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Mk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Li�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Qo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Po�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Oo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ro�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��So�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Ui�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Ti�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Wo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Vk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Zo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Yo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Xo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��[o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��\o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��^i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��]o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��`o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��_k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��co��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��bo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��ao�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��do�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��eo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��fo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��go�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��jo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��io�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��ho�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��lo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��ko��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��mo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��no��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��oo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��ro�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���qq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��uo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��to��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��so�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��vo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��wo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��xo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���{q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���zq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��~o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��}o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��|o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update

e�r+��V��:��eD�+�
f3232baca2103d254d79671daddcba0c012aa020484304adc85d7cceaa00fab4D�*�
952a5dbe4255ec430a5d16b0eaadd30ef55d670c83a068d7b76ddc39ab2fd146D�)�
9a755fccab500090f9f294ce722c9245f42f0f67ffbc27667a08f8c94f0e706bD�(�
32c5eb73c64b93d71f0a965e4b0d4b50cc2363ac261d96c97b1440fb668e3e0fD�'�
a488570f9d11e747c97f57e3754398d4b317a95c8b12a89765afa51f7a8d5b3cD�&�
59316b28cf9e6cac60f1962177c09c08777c01cdecf6df02042c2f6d1ec3b15eD�%�
9c872d363d18d15dca6ce6002298b5b4812a2ca3a8743939cc98972ed12f7051D�$�
562d2ea97d59915b01db3a45495b50c8986b34604a13ff652057a9548b0b8c30D�#�
e4e12b73d5732eaf8ad672f5c847ce8d4099eb0f3f222ea7785a84bbb5c28f75D�"�
7c35e147b314a2db86256a9a76e58c2eb54bc2c62f2acdbcc0dafe986f0caff8D�!�
b8f63d0b7b046b2e21566cd9b7a99d818dc33c5c9b5f6176fcdeb296a99ad731D� �
a33439122e1d6221585c619440d965d09ad0e9e2269f086ead9ef7cf4b84aaaaD��
50933b6c70f520be21299ca43c2f9714dd3359dc1c4ac8f96290b572eea4c093
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��	o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��
o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���
q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��"q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��!q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h�� q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��$o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��#q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��%o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���(q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���'q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���&o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��+q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��*q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��)q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��.a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��-}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��,q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��1a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��0a�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��/a��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��3g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��2c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��6g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��5g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���4g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��9i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��8i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��7g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��<o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��;k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��:i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��?o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��>o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��=o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��@o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Ao�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Ci�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Bi�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Eo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Dk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Ho��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Go�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Fo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Io�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Jo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��Li�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��Ko��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��No�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Mk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Qo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Po�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Oo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ro�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��So�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��To��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]bRC�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������C���C���C���C���C���C���	C���
C���
C���C���C���C���C���C���C���C���C���C���C���"C���$C���%C���(C���+C���.C���1C���3C���6C���9C���<C���?C���@C���AC���CC���EC���HC���IC���JC���LC���NC���QC���RC���SC���TC���UC���XC���ZC�[CÃ�\Că�]CŃ�`Cƃ�cCǃ�dCȃ�eCɃ�fCʃ�iC˃�lC̃�mC̓�nC΃�oCσ�rCЃ�uCу�vC҃�wCӃ�xCԃ�{CՃ�~Cփ�C׃�C؃�Cك�Cڃ�C܃�C݃�	Cރ�
C߃�
C�CჭC⃭CロC䃭C僭C惭C热!C胭$C郭'Cꃭ*C냭-C샭.C탭/C1C3C�6C�7C�8C�:C�<C���?C���@
NN�-��Uo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��Xo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Wo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��Vo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��Zo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��[o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��\o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��]o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��`o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���_q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���^o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��co�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��bo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��ao�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��do�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��eo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��fo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���iq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���hq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���go��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��lo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��ko��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��jo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��mo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��no��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��oo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���rq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���qq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��uo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��to��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��sq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��vo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��wo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��xo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���{q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���zq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��~o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��}q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��|q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update

e�r+��V��:��eD�8�
af95b47579ae105bbe84721bd483e536b8a004d3301c4efd6dc43296bb5dc441D�7�
8f47718dafddfb7d6dc1a738692f3af308d282de65b923b319975a317ee602d3D�6�
c0008274bc972c590974f8fd638093aa709f6a43093fe6fba3de63f4d87c0dc9D�5�
641422dc7cee4f12cf22bee612253cc8d91ac4de59d08779329152d5b123cecfD�4�
fdc3d5723bc3c1ed88713853d0c264f40ff05adf61533cdf99fc13598c015d19D�3�
42f4a67a0204be33ee75b48a1f31717570a6e3cf9551930351d405cd614f5ecbD�2�
0e83fd6b33039ac7fda9317c440371d5e1d6e4173afb995bd498be0589efbf51D�1�
c2704f809e155e3001e594ac90307613511c21fe04bb1d9422c1476b935f42faD�0�
0e2027754d28d80891f36030409114272ec237f698e5ff38e5ab7268da1dce52D�/�
68163138ff814f89bcf82178fed4293a777a5b62ff3a006bf4f80cc95692ff51D�.�
7213d0af79ee2d01cc5036dbcf46247c7d1adf8bfe1cf77ec8fb28e3b0dcc05cD�-�
61d2fe31693bd543dd103cf15e107e060b04ebfad13d914865e704aef9a7bfbcD�,�
04c9f6e177144af377d7c3b0185efb36ce85abfaba270ab01faefaf1cfa6837b
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��	o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��
o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���
q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��a��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��!g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_�� c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��$g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��#g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���"g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��'i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��&i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��%g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��*o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��)k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��(i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��-o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��,o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��+o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��.o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��/o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��1i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��0i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��3o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��2k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��6o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��5o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��4o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��7o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��8o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��:i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��9o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��<o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��;k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��?o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��>o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��=o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��@o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Ao�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Bo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Co�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��Fo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Eo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��Do�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��Ho�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Go��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��Io�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Jo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Ko�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��No�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���Mq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Lo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Qo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Oo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Ro�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��So��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��To�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Wq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Vq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Zo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Xo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��[o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��\o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��]o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���`q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���_q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���^o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��co�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��bo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��aq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��do�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��eo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��fo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���iq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���hq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���go��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��lo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��kq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��jq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��mo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��no��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��oo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���rq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���qq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��uq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��tq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��sq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��vo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��wo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��xo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���{q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���zq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��~q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��}q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��|q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��
a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��	}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD�E�
4da4812c211785ed6403e9aa77dbffbe1dd3d4a923d331a118e097ee72e34831D�D�
eed9c32dd42309910cb6b2852ea885380fc1241a6f30a2cfe2b358fb417a433aD�C�
82cc32e8088438f5d4fc7f78b91aff778d193cc5d296a1afeec04f69ee1134a3D�B�
3e3655960230e1c13e294b6c96c6ba573e155deb76a3ee8c62d3d2ff7b5bbc06D�A�
e7909f526d0702267a79ed10cb3c92dbaf4f95ac7cfc1fed8313c4c13a955925D�@�
69c508f0e20fb539180c31753dac2b1ea06cc63302811dd4f870628b72cc3f78D�?�
a8405254acf23fb0843ab4e7c57f3684eb7ec1a6feb932b5dd00185927c7d7adD�>�
ccec65f2954ca1f6ef27f02d35bd7687f0c4b6e784e48233282a82c2e5f53b7aD�=�
e65eedfb0130d1f3e59f5a4547b25b0e1994042c06fb9833816fdb384c062165D�<�
69af040152db8a48f4976d9b63fb954fae461308585661d36105e126da985f47D�;�
4b5b55c14d140a53eea4285b441202dc50e0ea78ec297bd568befaf65e5582faD�:�
cfa48cdc2568095e4f3d0e92a8d3efdec6838bb0b3f6920c55320674e7a2a3e3D�9�
7fceeee6972a71bd87c407e8be73b29da2cb7fdd6f2197b3e49fe3be552b0f0d
�T�t��
a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��a��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper targetbRD\RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������C���BC���CC���FC���HC���IC���JC���KC���ND��QD��RD��SD��TD��WD��ZD��[D��\D��]D	��`D
��cD��dD��eD
��fD��iD��lD��mD��nD��oD��rD��uD��vD��wD��xD��{D��~D��D��D��D��D��
D ��
D!��D"��D#��D%��D&��D'��D(��D)��D*��!D+��$D,��%D-��&D.��(D/��*D0��-D1��.D2��/D3��0D4��1D5��4D6��6D7��7D8��8D9��9D:��<D;��?D<��@D=��AD>��BD?��ED@��HDA��IDB��JDC��KDD��NDE��QDF��RDG��SDH��TDI��WDJ��ZDK��[DL��\DM��]DN��`DO��cDP��dDQ��eDR��fDS��iDT��lDU��nDV��oDW��rDX��uDY��xDZ��{D[��}
C��C�T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��!o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c�� k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��$o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��#o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��"o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��%o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��&o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��(i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��'o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��*o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��)k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��-o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��,o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��+o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��.o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��/o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��0o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��1o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��4o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��3o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��2o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��6o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��5o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��7o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��8o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��9o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��<o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���;q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���:o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��?o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��>o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��=o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��@o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ao��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Bo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Eq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Dq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Co��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Ho�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Go��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Fo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Io�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Jo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Ko�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Nq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Mq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Lo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Qo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��Oq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Ro�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��So��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��To�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Wq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Vq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Zo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Yq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Xq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��[o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��\o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��]o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���`q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���_q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���^o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��cq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��bq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��aq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��do�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��eo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��fo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���iq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���hq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���go��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��lq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��kq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��jq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��no��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��mq��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��oo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���rq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���qq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��uq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��tq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��sq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��xa�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��w}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��vq��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��{a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��za�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��ya��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��}g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��|c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���~g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��	o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��
o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]

e�r+��V��:��eD�R�
14c340f0dd683525dbfa9cc780253e123ac8b40391caeeaf7b12d5f35f96d7c0D�Q�
08fbafcced5e9e1b471e4e7dfdaf102a8d2a4b77e5322e88d818828f064c5242D�P�
30d6b8cd40a40000166c63a1a2cf163a33883ee83f065a500e90f56de33f8e1aD�O�
7733397737d974f9005123481470b631bef4144d428a07acd29c461f8073d83eD�N�
21f326e5f1282a6a5e71862e6a10e53257b80f7942532b86fc740c5060bd5d66D�M�
5a78d8d35284262a7fc70c262cad28716a7f9f4557e122fef43cf18904efeec0D�L�
874d8d26f7b80bc0f9296f56fd0bce77ced84db38f8562499930d8c065c0c040D�K�
6f9f0808ad0d78d8f4557bb41258ee0a449509e5f0cd09b1ef99660661d29109D�J�
5a97b7da594519145c772a191ec16781f3e65f7befa1cb1697ae9bae09c6be3eD�I�
d06dbbf76b8b169c1b023c46e3216cb5da8af23e885d61da4c9547057c30c45cD�H�
d12ea2121d6e19b9305bc2887e981903b907ef5b7969c1672e397a125e33f070D�G�
844cd40a498923147207285c6be1f1005d82c0c81ce3d61538110f24c99a8732D�F�
2d56375cfa3857fe31113c74ef70da90917d1f03086e295520df01f2c0424fcb
�N�x��
i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��"o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��!o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T�� o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��$o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��#o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��%o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��&o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��'o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��*o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���)q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���(o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��-o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��,o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��+o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��.o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��/o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��0o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���3q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���2q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���1o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��6o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��5o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��4o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��7o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��8o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��9o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���<q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���;q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���:o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��?o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��>o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��=q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��@o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Ao��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Bo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Eq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Dq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Co��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Ho�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Gq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Fq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Io�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Jo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Ko�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Nq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Mq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Lo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]bRD�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������D]��D^��D_��	D`��
Da��Dc��
Dd��De��Df��Dg��Dh��Di��Dj��Dk��Dl��Dm��Dn��Do��"Dp��$Dq��%Dr��&Ds��'Dt��*Du��-Dv��.Dw��/Dx��0Dy��3Dz��6D{��7D|��8D}��9D~��<D��?D���@D���AD���BD���ED���HD���ID���JD���KD���ND���QD���RD���SD���TD���WD���ZD���\D���]D���`D���cD���fD���iD���kD���nD���qD���tD���wD���xD���yD���{D���}D���D���D���D���D���D���	D���
D���D���D���
D���D���D���D���D���D���D���D���D���D���D���D���"D���%D���&D���'D���(D���+D���.D���/D���0D���1D���2D���5D���8
m��m� ��Qq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Pq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Oq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Ro�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��So��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��To�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Wq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Vq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��Zq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��Yq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Xq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��\o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��[q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��]o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���`q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���_q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���^o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��cq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��bq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��aq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��fa�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��e}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��dq��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��ia�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��ha�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��ga��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��kg�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��jc�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��ng��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��mg�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���lg�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��qi�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��pi��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��og�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��to�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��sk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��ri�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��wo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��vo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��uo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��xo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��yo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��{i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��zi�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��}o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��|k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��~o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��	o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��
o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��
o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]

e�r+��V��:��eD�_�
39eda1390e30c1d89d4a235798a2680748e9b2b95ad2b6a7c76d547977b8afa3D�^�
9e05956f580c985a939dbd279aa13ca665ba62cb3985fe2751b38a299b82115dD�]�
5cbbd37d7f37600583b60a26e2cd6b0287db9cbef15816447152aa601ab00a32D�\�
6461bbe99176941777ad3a8221e32a189aa802b7e481a45accd4ea4f5b8b1377D�[�
aa3af962872bcc364488d71c63463081dff2f68de76fd90b78d2d47d65c9f42aD�Z�
fbc77f001aab9462525aa44d833841b0d3687718322240a9c0df2ea113689697D�Y�
2cece1860f84d0ba0608689920352f54328bbb5bd72c2369c2023db772c8d3b5D�X�
ecfb16cf527793f6ec8118a181cf88df17babbdd3805563e4cd5e75bfa4846d1D�W�
250a28dac3da0fc3f250e7d3e7690254c46a1dd5d2663f2573ba5efdae5e0909D�V�
79f38750b9d405228c1da2c38370aaa60d7421ed5671c4a1dbd4e0c5308606b7D�U�
d382251ecdf030132bcf5b89fcc80c1ec3dfeb1e41cca0d840d735c44e371ed4D�T�
b554c183bd7760a4c29b178039f5b3746c8549c6a6d40686cd8b4f7a5314ba26D�S�
c72baaba3b68e23ad5857f22697380908c1ca9201e4bbe875f13601fc99a9465
��t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
|��T��o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��"o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���!q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down��� o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��%o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��$o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��#o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��&o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��'o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��(o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���+q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���*q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���)o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
wqxw�|��.o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��-o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��,o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��/o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��0o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��1o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��2o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���5q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���4q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���3o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��8o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��7o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��6o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��9o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��:o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��;o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���>q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���=q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���<o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��Ao��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��@o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�h��?q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��Bo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Co�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Do��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Eo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Hq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Gq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Fo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��Ko�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Jo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��Iq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��Lo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Mo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��No�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Qq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Pq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Oo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
�����|��To��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�|��Sq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Rq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��Uo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Vo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Wo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Xo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���[q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Zq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��^o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��]q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��\q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��_o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��`o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ao�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���dq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���cq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���bo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��gq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��fq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��eq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���2��ho�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��io�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��jo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ko�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���nq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���mq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���lo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��qq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��pq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��oq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��ro�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��so��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��to�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���wq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���vq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��zq�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��yq�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��xq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
���=��{q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
""�Y��|o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��}o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��~o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest updatebRE'RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������DÃ�:Dă�;DŃ�>Dƃ�ADǃ�BDȃ�CDɃ�DDʃ�ED˃�HD̃�KD̓�LD΃�MDσ�NDЃ�QDу�TD҃�UDӃ�VDԃ�WDՃ�XDփ�[D׃�^D؃�_Dك�`Dڃ�aDۃ�dD܃�gD݃�hDރ�iD߃�jD�kDჰnD⃰qDヰrD䃰sD僰tD惰wD烰zD胰{D郰|Dꃰ}D냰~D샱D탱DD�D�
D�
D�D���D���D���D���D���D���D���"D���%D���'D���)D���,E��/E��2E��5E��6E��7E��:E��<E��?E��@E	��AE
��CE��EE��HE
��IE��JE��LE��OE��RE��SE��TE��VE��XE��[E��\E��]E��^E��`E��bE��eE��fE��gE��hE ��iE!��lE"��nE#��oE$��pE%��qE&��t
����A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���
q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���	q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��
q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
/��/�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�D��}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD�l�
d7513536c9026fa249a909d4498e9e94991fd98da6b1a4b02d60b054ce605018D�k�
90ee404ae7f217e125818a3a078d8727a3d722574a1fe488df803a8e74e702b8D�j�
a7fd672c3ffb0bf842870e9f89f527fa381c0095f942e64501bc861b9e8f3d67D�i�
cbe559a32b73c61ade8a92a3d95bf1f0a39b70082feed6bbf79aaff46a5ddf19D�h�
4daf83f9424e98f68f851994a49d811bd5721394db482d92ed7f2062337bafd9D�g�
4e67706fef5e2721101385bb71163dd6a70a46cdc7b46ca2c10b2007847ad2f0D�f�
c6779b89961037e58b7567513d65d8d4840f1a7a23bade7e22a9b02e8b3af7b6D�e�
c1655691384373ba1d496ebdba513f6a4f1ad2c2e6ffd5b7985a6702890f6d58D�d�
f03348b00055f767dc054a8e674751bceb513c92df57c9bdfdd52dbc987da25aD�c�
ff9511b80fc18b09e37c9c11c984d322a95ec84172a9fafabc4b068d7d854bc4D�b�
413133e05ac7cf1be0030800e9f11f9f92b4cfd832e8cd453bf6a9b75994fe86D�a�
c1cd4eb34426e59fd5e537c63a1cf87b0239c01779661465731ea826a0cbe7d8D�`�
bea336c1c8f050927b1a639ba83b0ad350d97d65f1c37c25a38e1418af07f9e4
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��a��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��"g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��!g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)��� g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
�����y��%a��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��$a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�.��#g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
�R�t��'a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��&a�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���P��)g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��(c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��,g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��+g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���*g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��/i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��.i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��-g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��2o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��1k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��0i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��5o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��4o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��3o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��6o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��7o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
��L�x��:i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��9i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��8i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���T��<o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��;k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��?o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��>o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��=o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��@o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Ao�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Ci�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Bi�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Eo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Dk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Ho��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Go�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Fo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Io�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Jo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:��-��Li�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�A��Ko��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
C��C�T��Oo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Nk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��Mi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Ro��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Qo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Po�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��So�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��To�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��Vi�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��Uo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��Xo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Wk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��[o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Zo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Yo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��\o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��]o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��^o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
�N�x��`i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��_o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���T��bo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��ak�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��eo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��do�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��co�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��fo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��go�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��ho��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��io�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��lo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��ko�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��jo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��no�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��mo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��oo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��qo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��to�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���sq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ro��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��wo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��vo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��uo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��xo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��zo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���}q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���|q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���{o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��~o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��	o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��
o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���
o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update

e�r+��V��:��eD�y�
bd8a86b08520baae3c12fc08ce56e105878e1607594deb88f00c1675d75ef7d1D�x�
53566f9e1bd64ce95963cf88dab607767e896835057ff6634b9a8518b3310365D�w�
33d941826eff0dae2edb97052b2bc115956b725729096f5428d558679c2c50b1D�v�
67a0b1ce4f650123760a584297eade73a87e8a5cd69ee80b0de1e46c6734c7e0D�u�
bf168312334f60bf2d480510b014eddac0d80a449ec219c38682ae29ad20259dD�t�
4d57a9eb757639f05691dc0a674b6cde76770c459608cab6a9a6bc054d091f7fD�s�
c86d5aac322f831336236ac7648dc4aad9c1aba665e21ec635d36c1ca14d7092D�r�
3e3ebfa1eb1b1cf926276a074c1b8bf839ea1353d1334f5304dbd50d4721979fD�q�
81ccbdfa61dd66d66bcfc3a8b2aa34c860aeeca888655db0c4a47cfc4855210cD�p�
05a0c90006b42933811046c1278ba1584b25ae8404694f0d692582422b132360D�o�
48a43cbf24e5cc56899ebdd66e5c0f3d2fe213629ce3c7debc96435077102d8dD�n�
e027d56a8d05e8044b59f1f1d0ff564fabaec69db38c5a78c6eedad992bd0ca0D�m�
d38b342552cd6a20a2dfc066035f36eb0359a01a38100cddf5da31c8b7880c92
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���!q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)��� q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��$q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��#q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��"q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��&o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��%q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��'o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���*q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���)q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���(o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��-q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��,q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��+q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��0a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��/}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��.q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��3a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��2a�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��1a��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��5g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��4c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��8g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��7g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���6g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��;i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��:i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��9g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��>o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��=k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��<i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��Ao��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��@o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��?o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Bo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Co�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��Ei�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��Di�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��Go�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Fk�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Jo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Io�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Ho�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Ko�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Lo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]bRE�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������E(��xE)��yE*��zE+��}E,��E-��E.��E/��E0��E1��	E2��
E3��E4��E5��E6��E8��E9��E:��E;��E<��E=��E>��E?��E@��!EA��$EB��&EC��'ED��*EE��-EF��0EG��3EH��5EI��8EJ��;EK��>EL��AEM��BEN��CEO��EEP��GEQ��JER��KES��LEU��NEV��PEW��SEX��TEY��UEZ��VE[��WE\��ZE]��\E^��]E_��^E`��_Ea��bEb��eEc��fEd��gEe��hEf��kEg��nEh��oEi��pEj��qEk��tEl��wEm��xEn��yEo��zEp��}Eq��Er��Es��Et��Eu��Ev��	Ew��
Ex��Ey��Ez��E{��E|��E~��E��E���E���E���!E���#E���&E���)E���,E���/E���0E���1E���3E���5E���8
�:�x��Ni�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��Mo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��Po�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��Ok�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��So��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Ro�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Qo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��To�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Uo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Vo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Wo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��Zo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Yo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��Xo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��\o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��[o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��]o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��^o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��_o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��bo�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���aq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���`o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��eo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��do��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��co�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��fo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��go��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ho�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���kq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���jq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���io��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��no�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��mo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��lo�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��oo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��po��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��qo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���tq�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���sq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ro��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��wo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��vo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��uq�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��xo�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��yo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��zo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���}q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���|q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���{o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��~q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��	q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��
o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���
o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

e�r+��V��:��eD��
4e8a4eb320294b8d3f17b50efaf7163b718c714032a6266f8778c53722127d3cD��
0e9f601a50df8e60748b538e0a74fbb3fe326ce3a54a551b7a254c64afcf272fD��
4f3a3cf03d964bc88b6358c7506edcacfae9e90eca37a578abe76cb85f497a8eD��
08863f9fce74c908ee529b7d6877678e4993d6800fa0e1f5ee19afd4c79373a6D��
d5777f8c7d443792e6a87299514e3e7da9cb0ffc7ebac5512e40867a84aa7427D��
bac160608046f1b8a53fee2478c1cf5eacbd98780405257d17db4aa0e88221e9D��
8ab724702b39a664d2114819b5f3c29149c945a1f5443d7e7e4672d694b15c90D��
d1505aaf07075307e949adfd5133dbffded6e90d371bddf5dd1e04c913a8a7b7D�~�
da5e7ca2931d95eff55acb5a19e8a5281ca44689ee64bfee2a30b12163c91f83D�}�
879103353158ba94017ff99828895da2eeec60fae6276746aa90627aa3867891D�|�
aca852521c8ca141634a0215e5e3383f36ca6fe54031a695fd5bae627b1891ecD�{�
3a2ad8e88cf0956c1a2c89acc48514e79526a2cfa14023dee71a714c83ea1779D�z�
fa23e5ba8d9b56049a550f17e94cd3178b35786e85c7098ea8f409f9cd1bd8c2
NN�-��o�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�Q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�a�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��a�}�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��}�
�Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��q��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��!a�	�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)�� a�s�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��a��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��#g�;�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��"c�]�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��&g��Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��%g�{�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���$g�'�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��)i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��(i��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��'g�w�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��,o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��+k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��*i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��/o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��.o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��-o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��0o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��1o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��3i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��2i�s�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��5o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��4k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��8o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��7o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��6o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��9o�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��:o�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��<i�	�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��;o��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��>o�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��=k�]�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��Ao��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��@o�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��?o�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��Bo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��Co�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Do��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Eo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��Ho�{�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��Go�'�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��Fo�;�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��Jo�w�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Io��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��Ko�E�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Lo��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Mo�m�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��Po�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���Oq�O�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���No��Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��So�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Ro�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Qo�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��To�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Uo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Vo�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Yq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Xq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Wo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��\o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��[o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Zo�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��]o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��^o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��_o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���bq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���aq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���`o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��eo�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��do�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��cq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��fo�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��go�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ho�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���kq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���jq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���io�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��no�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��mq�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��lq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��oo�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��po�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��qo�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���tq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���sq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ro�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��wq�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��vq�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��uq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��xo�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��yo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��zo�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���}q�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���|q�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���{o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��q�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��~q�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���q�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���q�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]bRE�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������E���:E���<E���>E���AE���BE���CE���DE���EE���HE���JE���KE���LE���ME���PE���SE���TE���UE���VE���YE���\E���]E���^E���_E���bE���eE���fE���gE���hE���kE���nE���oE���pE���qE���tE���wE���xE���yE���zE���}E���E���E���E���E���	E���E���E���E���E���E���E�EÃ�Eă�EŃ�!Eƃ�#Eǃ�&Eȃ�'EɃ�(Eʃ�*E˃�,Ẽ�/E̓�0E΃�1Eσ�2EЃ�3Eу�6E҃�8EӃ�9Eԃ�:EՃ�;Eփ�>E׃�AE؃�BEك�CEڃ�DEۃ�GE܃�JE݃�KEރ�LE߃�ME�PEჴSE⃴TEヴUE䃴VE僴YE惴\E烴]E胴^E郴_EꃴbE냴eE샴fE탴gEhEkE�nE�p
m��m� ��	q�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��q�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��q�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��a�}Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��}�
Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��
q�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��a�	Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��a�sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��
a�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��g�;Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��c�]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��i�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target

e�r+��V��:��eD��
5df1c4a4149790ce8d3fed738d0a047014ad764f90ad0dcf2d4fb022afde1ac4D��
39c2715a2db8a65b7a5d313ddb5b14fd5c9c71fa1a03989786099e82c0e41522D��
8d3bcb06b72e062aa3717dc899aa7260d669eb53ff0fc27e1090f66617498a96D��
8eb970d9067e83d78cc7fabc26ab7bd356ac7bdd924f37cc65f1880942065026D��
9f7d0b1438c902e19bff1151a338f2bc62e101701aa2cc4c684d09ef8a941fe7D��
6cd845a6c8f106877b1240c8be24cc3b931a354a08536833f36917d64f2c3a8aD�
�
85419f90d3d3f07662a30384cc8ac45f87402b540d725dd0f8c9705d2c814733D��
31a00a78690dbd25c399c0d6dc257233ed9c90313969f69bafac3ab599e0a3f5D��
76ef31892a454a03675c6f23a831bedd4e585942eccd9b529c271b8ad2e600dbD�
�
9e34155e9955877814c45bc4c249bf6c38112821f536ccc4baefe4ed42298b48D�	�
e6594c28667d65623967ed4dcb33fb0e473593cd3c65b2b17b0828490986f908D��
20f4ac29a67806ff93314f45fbaeb1158df4cfcdc8bcedf26aa23f8d8449da24D��
56bf7e797eed9d37f2dce5d87422a5e569612928a7a5e9eebbca059550ad9245
C��C�T��o�;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��!i�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-�� i�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��#o�;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��"k�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��&o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��%o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��$o�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��'o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��(o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��*i�		Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��)o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
���T��,o�;	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��+k�]	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��/o�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��.o�{	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��-o�'	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��0o�w	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��1o�E	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��2o�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��3o�m	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
��t��6o�{
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��5o�'
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target�T��4o�;
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
����2��8o�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��7o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
""�Y��9o�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��:o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��;o�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
I|�I�
��>o�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target���=q�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���<o�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Ao�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��@o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��?o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Bo�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Co�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Do�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Gq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Fq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Eo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
���2��Jo�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Io�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��Ho�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)
""�Y��Ko�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Lo�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Mo�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Pq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Oq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���No�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��So�w
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��Ro�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�h��Qq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��To�E
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��Uo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��Vo�m
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���Yq�9
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���Xq�O
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���Wo�
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
[��[�2��\o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target�|��[q�	
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��Zq�a
Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��]o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��^o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��_o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���bq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���aq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���`o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��eq�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��dq�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��cq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
""�Y��fo�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A��go�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
NN�-��ho�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���kq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���jq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���io�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��nq�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��mq�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��lq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
����A��po�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]�=��oq�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
NN�-��qo�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
?|�?���tq�9Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.11a�(@- Resolves: rhbz#1968316 - SSSD: User authentication failing after server reboot.
- Resolves: rhbz#2000238 - disabled root ad domain causes subdomains to be marked offline
- Resolves: rhbz#1984591 - After sssd update to 1.16.5-10.el7_9.8.x86_64 the customer is facing slow connection/authentication (due to discovery of unexpected AD domains)���sq�OAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.10a��- Resolves: rhbz#1973796 - SSSD is NOT able to contact the Global Catalog when local site is down���ro�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.9a�- Resolves: rhbz#1988463 - Missing search index for `originalADgidNumber` [rhel-7.9.z]
- Resolves: rhbz#1968330 - id lookup is failing intermittently
- Resolves: rhbz#1964415 - Memory leak in the simple access provider
- Resolves: rhbz#1985457 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-7.9.z]
m��m� ��wq�QAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.14cs@- Resolves: rhbz#2097014 - SSSD -> sssd_be and sssd_ifp coredump [rhel-7.9.z]
- Resolves: rhbz#2107380 - sssd timezone issues sudonotafter [rhel-7.9.z]
- Resolves: rhbz#2116207 - SSSD starting offline after reboot [rhel-7.9.z]�|��vq�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.13b�2@- Resolves: rhbz#2079441 - SSSD update prompts for smartcard pin twice - After update to 7.9 [rhel-7.9.z]
- Resolves: rhbz#2073352 - Use right sdap_domain in ad_domain_info_send [rhel-7.9.z]�h��uq�aAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.12a��@- Resolves: rhbz#2006382 - IPA Intermittence fetching groups
- Resolves: rhbz#2006866 - sssd_be segfault due to empty forest root name
- Resolves: rhbz#2031729 - IPA clients fail to resolve override group names.
- Resolves: rhbz#2032867 - AD Domain in the AD Forest Missing after sssd latest update
�����.��za�}Alexey Tikhonov <Alexey Tikhonov> 1.16.5-6^��- Resolves: rhbz#1819013 - pam_sss reports PAM_CRED_ERR when providing wrong password for an existing IPA user, but this error's description is misleading
- Resolves: rhbz#1800571 - Multiples Kerberos ticket on RHEL 7.7 after lock and unlock screen�D��y}�
Eduardo Lima (Etrunko) <etrunko@redhat.com> 1.16.5-10.16eV@- Resolves: RHEL-16003 - sssd : AD user login problem when modify ldap_user_name= name and restricted by GPO Policy [rhel-7.9.z]�=��xq�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.15c�
@- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]
�T�t��}a�	Alexey Tikhonov <Alexey Tikhonov> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�)��|a�sAlexey Tikhonov <Alexey Tikhonov> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�y��{a�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.
���P��g�;Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�_��~c�]Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
�u���x��g�Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�p��g�{Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)���g�'Alexey Tikhonov <Alexey Tikhonov> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���-��i�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).�}��i�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-7^�m@- Resolves: rhbz#1835813 - sssd boots offline if symlink for /etc/resolv.conf is broken/missing
- Resolves: rhbz#1837545 - Users must be informed better when internal WATCHDOG terminates process.�.��g�wAlexey Tikhonov <Alexey Tikhonov> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
C��C�T��o�;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is Falsex��i�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization
wqxw�|��o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��
o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��	o�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��
o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�N�x��i�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�-��i�sAlexey Tikhonov <atikhono@redhat.com> 1.16.5-8^�V@- Resolves: rhbz#1553784 - Document how to prevent invalid selinux context for default home directories in SSSD-AD direct integration.
- Resolves: rhbz#1836910 - Rhel7.7 server have an issue regarding dyndns update for PTR-records which is done by sssd on active directory DNS servers.
                           It is done in two steps (two different nsupdate messages).
���T��o�;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
�:�x��i�	Alexey Tikhonov <atikhono@redhat.com> 1.16.5-9^�@- Resolves: rhbz#1796873 - [sssd] RHEL 7.9 Tier 0 Localization�A��o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]

e�r+��V��:��eD� �
7506ca728020b82295ffed2418c27fbcdc236ff1ef18d4ad5b231beae0f3defeD��
42d201c11113e97e1033dde57dbe80c43d0b96fe2894ca9d7448018fc605c871D��
c97d7ef5a7b53916750b597fabf99dee5bcb2c1e382ef0e3d179ca285ccaefd7D��
ffb599a2b9c5f8a8a237f321581e0fdbab30bb4d57604ff0a504dd1222938ebfD��
e73fb6987d2e8000602d878eae68fcb1f8b4dce3a67fe1e988767ef5a8c5677cD��
cb0dd1d2921d86e3d93f0eded02f6d9dd60ff0961589b65e59561cf10654d493D��
5fe799d217f2dcf27b8e40b81b8417542ff242f26f79a7436f2f1834b7ed2461D��
efe92dccaf584ac534e20c985a62a2b2030dbbc1cac6586eb9de81ac5dcc7acdD��
f2c9f87c9483b4181bdafd6a1753e97a9f5dcfc18ea6c72e9295ea06d7048933D��
55c1b8836656a45aac1437e8175add10dff725b5c7b26b850730b4562282349cD��
ad45990c26c50265b45cd64260502befba1696f09e6e431e28ae011baab8f4abD��
7c03b652e1b0cb7c5ebe1d7b4c4e230bff7b2cc8cb68a40c51541d017458d4acD��
708afa796fdb709f3e98d685f94be58af8cefd4ff05ab6d0a215d63d47cff237
���T��o�;Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.1_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]�c��k�]Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10^�3�- Resolves: rhbz#1804005 - sssd doesn't follow the link order of AD Group Policy Management
- Resolves: rhbz#1773409 - sssd is failing to discover other subdomains in the forest if LDAP entries do not contain AD forest root information
- Resolves: rhbz#1551077 - GDM failure loop when no user mapped for smart card
- Resolves: rhbz#1507683 - GDM password prompt when cert mapped to multiple users and promptusername is False
wqxw�|��o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.4_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))�t��o�{Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.3_=@- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete)�
��o�'Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.2_;�- Resolves: rhbz#1854317 - sssd crashes after last update to sssd-common-1.16.4-37.el7_8.1 with servers configured with multiple domains [rhel-7.9.z]
- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
- just bumping the version to build for proper target
���2��o�wAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.5_H�- Resolves: rhbz#1859554 - Secondary LDAP group go missing from 'id' command on RHEL 7.8 with sssd-1.16.2-37.el7_8.1 [rhel-7.9.z]
  (Previous attempt to fix this issue was incomplete (again))
- just bumping the version to build for proper target
""�Y��o�EAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.6_�G@- Resolves: rhbz#1899593 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr() [rhel-7.9.z]
- Resolves: rhbz#1888409 - sssd component logging is now too generic in syslog/journal [rhel-7.9.z]
- Resolves: rhbz#1852659 - sssd service is starting even though it is disabled state [rhel-7.9.z]
- Resolves: rhbz#1893443 - User lookups over the InfoPipe responder fail intermittently [rhel-7.9.z]
- Resolves: rhbz#1871288 - krb5_child denies ssh users when pki device detected [rhel-7.9.z]
- Resolves: rhbz#1853703 - Unexpected behavior and issue with filter_users/filter_groups option [rhel-7.9.z]
- Resolves: rhbz#1756240 - [RfE] Implement a new sssd.conf option to disable the filter for AD domain local groups from trusted domains [rhel-7.9.z]
- Resolves: rhbz#1851112 - LDAP bind can fail due to unconfigurable DNS server timeouts that inhibit SSSD failover [rhel-7.9.z]
::�A�� o�Alexey Tikhonov <atikhono@redhat.com> 1.16.5-10.7_�
�- Resolves: rhbz#1875514 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [rhel-7.9.z]
- Resolves: rhbz#1772513 - SSSD is generating lot of LDAP queries in a very large environment [rhel-7.9.z]
- Resolves: rhbz#1736845 - [RFE] Backporting certificate matching rules for files, AD and LDAP provider [rhel-7.9.z]
]N�]c��#k_Eugene Syromiatnikov <esyr@redhat.com> - 4.12-8[P}@- Update membarrier constants. (#1600210)���"k�!Eugene Syromiatnikov <esyr@redhat.com> - 4.12-7Z�@- Return non-zero exit code if no processes have been attached. (#1573034)�-��!o�mAlexey Tikhonov <atikhono@redhat.com> 1.16.5-10.8`��@- Resolves: rhbz#1910131 - sssd throwing error " Unable to parse name test' [1432158283]: The internal name format cannot be parsed" at debug_level 2 [rhel-7.9.z]
- Resolves: rhbz#1922244 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0. [rhel-7.9.z]
- Resolves: rhbz#1935685 - SSSD not detecting subdomain from AD forest (7.9z)
- Resolves: rhbz#1945552 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-7.9.z]
- Resolves: rhbz#1839972 - Authentication handshake (ldap_install_tls()) fails due to underlying openssl operation failing with EINTR [rhel-7.9.z]
���7����'k�;Eugene Syromiatnikov <esyr@redhat.com> - 4.24-3]i�- Include commit v4.26~65 "s390x: beautify sthyi data tail prints"
- Resolves: #1747475�4��&k�Eugene Syromiatnikov <esyr@redhat.com> - 4.24-2]g�@- Copy over changes in tests/ioctl_evdev-success.c (from cdd8206a
  "tests: test evdev bitset decoding more thoroughly")
  to tests-m32/ioctl_evdev-success.c and tests-mx32/ioctl_evdev-success.c
- Copy over changes in tests/ioctl_evdev.c (from 5ee385e2
  "evdev: fix decoding of EVIOCGBIT(0, ...)") to tests-m32/ioctl_evdev.c
  and tests-mx32/ioctl_evdev.c
- Resolves: #1746478���%k�5Eugene Syromiatnikov <esyr@redhat.com> - 4.24-1]B�@- Rebase to strace 4.24. (#1659983)
- Enable stack unwinding (-k option). (#1655856)x��$k�Eugene Syromiatnikov <esyr@redhat.com> - 4.12-9[S @- Patch files in tests-m32 and tests-mx32 as well. (#1600210)
M�<M�j��*k�kEugene Syromiatnikov <esyr@redhat.com> - 4.24-6^�H�- Fix expected alignment for IPC tests (#1795261):
  4377e3a1 "tests: fix expected output for some ipc tests", and
  a75c7c4b "tests: fix -a argument in ipc_msgbuf-Xraw test".�_��)k�UEugene Syromiatnikov <esyr@redhat.com> - 4.24-5^�H�- Fix printing stack traces for early syscalls on process attach (#1790052):
  69b2c33a "unwind-libdw: fix initialization of libdwfl cache" and
  8e515c74 "tests: add strace-k-p test".
- Add commit v5.4~97 "xlat: use unsgined type for mount_flags fallback values"
  (A leftover for #1747524).�[��(k�MEugene Syromiatnikov <esyr@redhat.com> - 4.24-4]i�- Include upstream patches that fix issues reported by covscan:
  91281fec "v4l2: avoid shifting left a signed number by 31 bit",
  522ad3a0 "syscall.c: avoid infinite loop in subcalls parsing", and
  9446038e "kvm: avoid bogus vcpu_info assignment in vcpu_register".
- Resolves: #1747524
L}�n��.g�wWilliam Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��-g�uWilliam Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)�J��,g�/William Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�/��+k�uEugene Syromiatnikov <esyr@redhat.com> - 4.24-7aՈ@- Fix incorrect ifname printing buffer size (#2028146):
  e27b0677 "print_ifindex: fix IFNAME_QUOTED_SZ definition".
��>a��9��2o�Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��1g�KWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��0o�Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��/o�Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
>� �>�@��6o�Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���5g�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���4g�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��3o�Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
������C��:o�Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��9o�Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��8g�KWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��7o�Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
�h��j�}��?o�
Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���>o�!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��=o�3Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���<g�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���;g�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�#e����Cg�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��Bo�Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��Ao�Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��@g�KWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)
c������Io�CChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Ho�Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Go�
Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���Fo�!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Eo�3Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Dg�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�B�b����Mg�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���Lg�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��Ko�Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��Jo�Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�S����Ro�CChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Qo�Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Po�
Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���Oo�!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��No�3Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�7����Ug�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��To�Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�|��So�Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)
c������[o�CChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Zo�Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Yo�
Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���Xo�!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Wo�3Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Vg�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��\o�Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����_g�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���^g�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��]e�kPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF
�+�S����do�CChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��co�Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��bo�
Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���ao�!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��`o�3Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��eo�Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���hg�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��gamJiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��fe�kPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF
c������no�CChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��mo�Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��lo�
Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���ko�!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��jo�3Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���ig�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��oo�Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)bRFeRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������E�tE�wE���zE���}E���E���E���E���E���E���E���
E���E���F��F��F��F��F��F��F��F��F	�� F
��#F��'F��*F
��.F��2F��6F��:F��?F��CF��IF��MF��RF��UF��[F��\F��_F��dF��eF��hF��nF ��oF#��pF$��tF%��xF'��yF(��|F)��F*��F+��F,��F-��F.��F/��F1��F2��#F3��(F4��,F6��/F7��4F8��5F:��8F;��>F<��?F>��@F?��DF@��HFB��IFC��LFD��OFE��SFF��XFG��\FH��aFI��fFJ��jFK��oFL��sFM��xFN��|FP��FQ��FR��FT��FU��FV��FX��FY��FZ��F\��F]��F_��F`��#Fa��(Fb��,Fc��1Fd��6@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��pe�kPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF"
�������to�!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��so�3Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���rg�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��qe�}Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��xo�Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���wo�CChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��vo�Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��uo�
Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��ye�kPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF&
t�Ct�J��|g�/William Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�C��{Q�7Pino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��ze�}Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
V��V�@��o�Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�n��~g�wWilliam Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��}g�uWilliam Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)
������C��o�Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��o�Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��g�KWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��o�Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
,h��	,�X��g�KWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��o�Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��o�Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���g�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�B�b����g�KWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�AWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��
o�Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��	o�Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�A��9��o� Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��g�K William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)}��o�
Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��
o�3Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
"� ��"���o�! Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3 Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o� Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
Y�Y�9��o�!Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���o�C Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o� Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
 Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)

e�r+��V��:��eD�-�
0894834781a35f76e011fd41d9cf3bae6d4a47dcb32589aea06d68f2b07ad20eD�,�
9fd5c36a0b8c70c04630c8224b3fcace1a47b80691c908ee62b4bcabac65bf5fD�+�
d062a6b1a3c9142376097e0924927205723ac2f41ee8c930c3758a81a1d31221D�*�
14ceaab30f17021789efedfc14f87608192f961f1318dd5bdb9c1278c54aad96D�)�
3a214c9b7993ff445157cc339c9a34103eea57c31ad42b15dba0db83b51bcda9D�(�
06cf0f65aa64e614d4aa2f4b52af2b2c2e8e6420e1a748807f9d326ed353d4b6D�'�
08c0606b2ec5ba2bb66a3ee30f97a269ff8da7cdfc8a081d621411fc68286e09D�&�
f84205da14142e8d12abc39e3d5796ac7bb70e93f90df0226c6de1e7ee119da1D�%�
da38341360f5d41b718df71ed8a4ab57fe1fb09ba331c4f1da5fd6729ab4d567D�$�
7ffb232f1c8d11186c79f3208453ffcfe309aa5cb3a09181ea598fc82f582228D�#�
18ced00cd6c1f923fc88ba96abb6a1ffa4ccb1baa01b41e22d2c729310d6def7D�"�
e6780d4f50b1f42151e1c147e42bdba85660cca20eb7f459aa271886818f9058D�!�
fa313558117870b2ad9b85826be67b6ecce53baa6ddcbf99024428840d38fba7
"� ��"���o�!!Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3!Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K!William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A!William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�!Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��#o�!Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���"o�C!Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��!o�!Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}�� o�
!Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���(o�!"Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��'o�3"Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���&g�K"William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���%g�A"William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��$o�"Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��,o�"Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���+o�C"Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��*o�"Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��)o�
"Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����/g�K#William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���.g�A#William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��-e�k"Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF5
�+�S����4o�C#Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��3o�#Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��2o�
#Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���1o�!#Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��0o�3#Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��5o�#Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���8g�A$William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��7am#Jiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��6e�k#Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF9
c������>o�C$Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��=o�$Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��<o�
$Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���;o�!$Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��:o�3$Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���9g�K$William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��?o�$Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��@e�k$Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF=
�������Do�!%Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Co�3%Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Bg�K%William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��Ae�}$Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��Ho�%Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���Go�C%Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Fo�%Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Eo�
%Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��Ie�k%Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekFA
t�Ct�J��Lg�/&William Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�C��KQ�7%Pino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��Je�}%Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
V��V�@��Oo�&Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�n��Ng�w&William Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��Mg�u&William Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)
������C��So�&Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��Ro�&Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��Qg�K&William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��Po�&Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
,h��	,�X��Xg�K'William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��Wo�'Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��Vo�'Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���Ug�K&William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���Tg�A&William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�B�b����\g�K'William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���[g�A'William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��Zo�'Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��Yo�'Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�A��9��ao�(Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��`g�K(William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)}��_o�
'Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���^o�!'Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��]o�3'Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
"� ��"���fo�!(Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��eo�3(Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���dg�K(William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���cg�A(William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��bo�(Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
Y�Y�9��jo�)Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���io�C(Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��ho�(Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��go�
(Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���oo�!)Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��no�3)Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���mg�K)William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���lg�A)William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��ko�)Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��so�)Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���ro�C)Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��qo�)Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��po�
)Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���xo�!*Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��wo�3*Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���vg�K*William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���ug�A*William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��to�*Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��|o�*Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���{o�C*Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��zo�*Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��yo�
*Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����g�K+William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���~g�A+William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��}e�k*Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekFO
�+�S����o�C+Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�+Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
+Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!+Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3+Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��o�+Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���g�A,William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��am+Jiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��e�k+Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekFS
c������o�C,Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��
o�,Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
,Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!,Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��
o�3,Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���	g�K,William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��o�,Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��e�k,Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekFW
�������o�!-Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3-Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K-William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��e�},Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��o�-Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���o�C-Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�-Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
-Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��e�k-Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF[
t�Ct�J��g�/.William Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�C��Q�7-Pino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��e�}-Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)

e�r+��V��:��eD�:�
3120b8ac49c833eac5d65d84950dd53543736014e6974e6d7d1939f63c988544D�9�
81962e4767ff3bdd232b266847805d5a9914ba7ee1f405ee6212d3e9a2ea45d0D�8�
7712f39d03fe27ce44ff48e5aea72a3011bc46509644b864641c2f3fd7d54e15D�7�
d684dd221be8f63b6422400e18992182df125fe9108dd93f3afba9a92561c1ecD�6�
ce1840da43b758b433ff86f3ea7b59008e2d64a9f66fed798463409de17511c4D�5�
0de8a90ff171bad788a3e83dfb9e880aedf1440a7e0e201037073ea3c6af5caeD�4�
5ecc9b46e51b23acaedd89900ee220b11e9dfca92b98fe38fe0234b8ff122142D�3�
7c74b103220013bb9c00f724937c12e143a5ce16e2b00ff71a37c5201ed308e0D�2�
b3c76329ae932f3e67af5a1fe06c2e761c855d1039dd424d7c441f8c548f297eD�1�
758b00bfddac1117f7a640983316c5c512053334e60eb19cc2b8b9bd616cc341D�0�
d5d036f0277fc2ae76a968b607924ea30394398f7a0e5d8a355d14f7c35960f5D�/�
92d0aa22a8ae445d70ea7fb4531c9e4056b5c852123fd61e665f8a3007539408D�.�
709d5075348bcccbd422a85b699ee6d907bff4255b77146b10e04b6ed5924e09
V��V�@��o�.Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�n��g�w.William Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��g�u.William Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)
������C��#o�.Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��"o�.Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��!g�K.William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y�� o�.Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
,h��	,�X��(g�K/William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��'o�/Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��&o�/Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���%g�K.William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���$g�A.William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�B�b����,g�K/William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���+g�A/William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��*o�/Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��)o�/Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�A��9��1o�0Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��0g�K0William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)}��/o�
/Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���.o�!/Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��-o�3/Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
"� ��"���6o�!0Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��5o�30Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���4g�K0William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���3g�A0William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��2o�0Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
Y�Y�9��:o�1Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���9o�C0Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��8o�0Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��7o�
0Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���?o�!1Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��>o�31Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���=g�K1William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���<g�A1William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��;o�1Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��Co�1Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���Bo�C1Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Ao�1Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��@o�
1Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���Ho�!2Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Go�32Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Fg�K2William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���Eg�A2William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��Do�2Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��Lo�2Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���Ko�C2Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Jo�2Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Io�
2Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����Og�K3William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���Ng�A3William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��Me�k2Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekFj
�+�S����To�C3Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��So�3Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Ro�
3Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���Qo�!3Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Po�33Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��Uo�3Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���Xg�A4William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��Wam3Jiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��Ve�k3Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekFn
c������^o�C4Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��]o�4Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��\o�
4Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���[o�!4Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Zo�34Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Yg�K4William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��_o�4Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��`e�k4Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekFr
�������do�!5Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��co�35Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���bg�K5William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��ae�}4Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��ho�5Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���go�C5Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��fo�5Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��eo�
5Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��ie�k5Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekFv
t�Ct�J��lg�/6William Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�C��kQ�75Pino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��je�}5Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
V��V�@��oo�6Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�n��ng�w6William Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��mg�u6William Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)
������C��so�6Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��ro�6Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��qg�K6William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��po�6Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
,h��	,�X��xg�K7William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��wo�7Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��vo�7Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���ug�K6William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���tg�A6William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�B�b����|g�K7William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���{g�A7William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��zo�7Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��yo�7Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�A��9��o�8Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��g�K8William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)}��o�
7Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���~o�!7Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��}o�37Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
"� ��"���o�!8Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�38Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K8William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A8William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�8Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
Y�Y�9��
o�9Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���	o�C8Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�8Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
8Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���o�!9Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�39Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���
g�K9William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A9William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�9Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��o�9Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���o�C9Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�9Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
9Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���o�!:Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3:Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�K:William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A:William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�:Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��o�:Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���o�C:Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�:Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
:Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����g�K;William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�A;William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��e�k:Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�

e�r+��V��:��eD�G�
f83ef096b0d758bfec621ecd1c7467134e6ea814c4941955dcba2bb7e59529a7D�F�
8c2f38d98708ff0e8889fa8f45f759f08f4ec491e20d77dfbd8b7ad4a6bc79b2D�E�
cc45c070a71c4c4e81aafc430379ec90092af6bb68d3db667d3bc265f3e79eceD�D�
b0a46bb86e33be0981c1f64d814536e0aa1b9fde2bf106fea068c4252e33e8a7D�C�
5fbc333de175a0adcac5bba533d0d772ecd8d8c92ec3a872c294bc9c25c7dae2D�B�
30f3aba3a19b56a1f1c066cc1e427359fec9c66a1a27eac68b33d9e207a2c25bD�A�
7213e6e2bfdc556860c8f1e0dbd57dcd1201fe9556912fc6ed9c972b00af8306D�@�
2be7029195f42dbcdd8ba97e167624b401660f10618f61457b3a4c7a18a0add5D�?�
dbf4ca6d02e1dc4d99cd9b7dd3a4c943d4209115d0f33ec526d0e4338623bfe3D�>�
ddcdf775af5a3b6b701817a264a8052171cb2eeb71ee4ee1901bffcb91e5d74bD�=�
45e140c5fc3aa4f6210be1b434e86df569f40a99aa8d64401a5ee00649f3b677D�<�
9cdcbe724241177f459023cb17fbe80d807010b1ab85f44514ed06b6a1a0abc3D�;�
18fbc0b4bb2aefb2e3524107d2daa21178d1d96eeb51a3421ac5e3aaae21aaa6
�+�S����$o�C;Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��#o�;Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��"o�
;Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���!o�!;Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P�� o�3;Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��%o�;Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���(g�A<William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��'am;Jiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��&e�k;Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
c������.o�C<Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��-o�<Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��,o�
<Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���+o�!<Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��*o�3<Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���)g�K<William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��/o�<Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��0e�k<Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
�������4o�!=Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��3o�3=Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���2g�K=William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��1e�}<Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��8o�=Christopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���7o�C=Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��6o�=Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��5o�
=Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��9e�k=Pino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
t�Ct�J��<g�/>William Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�C��;Q�7=Pino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��:e�}=Pino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
V��V�@��?o�>Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�n��>g�w>William Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��=g�u>William Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)
������C��Co�>Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��Bo�>Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��Ag�K>William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��@o�>Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
,h��	,�X��Hg�K?William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��Go�?Christopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��Fo�?Christopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���Eg�K>William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���Dg�A>William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�B�b����Lg�K?William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���Kg�A?William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��Jo�?Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��Io�?Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�A��9��Qo�@Christopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��Pg�K@William Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)}��Oo�
?Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���No�!?Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Mo�3?Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
"� ��"���Vo�!@Christopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Uo�3@Christopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Tg�K@William Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���Sg�A@William Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��Ro�@Christopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)bRF�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������Ff��?Fg��CFh��HFi��LFk��OFl��TFm��UFo��XFp��^Fq��_Fs��`Ft��dFu��hFw��iFx��lFy��oFz��sF{��xF|��|F}��F~��F��
F���F���F���F���F���F���$F���%F���(F���.F���/F���0F���4F���8F���9F���<F���?F���CF���HF���LF���QF���VF���ZF���_F���cF���hF���lF���oF���tF���uF���xF���~F���F���F���F���F���	F���F���F���F���F���F���!F���&F���*F���/F���3F���8F���<F���?F���DF���EF���HF���NF�OFă�PFŃ�TFƃ�XFȃ�YFɃ�\Fʃ�_F˃�cF̃�hF̓�lF΃�qFσ�vFЃ�zFу�F҃�FӃ�Fԃ�Fփ�F׃�F؃�Fڃ�Fۃ�F܃�
Y�Y�9��Zo�AChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���Yo�C@Christopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Xo�@Christopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Wo�
@Christopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���_o�!AChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��^o�3AChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���]g�KAWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���\g�AAWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��[o�AChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��co�AChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���bo�CAChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��ao�AChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��`o�
AChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���ho�!BChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��go�3BChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���fg�KBWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���eg�ABWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��do�BChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��lo�BChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���ko�CBChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��jo�BChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��io�
BChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����og�KCWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���ng�ACWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��me�kBPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
�+�S����to�CCChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��so�CChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��ro�
CChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���qo�!CChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��po�3CChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��uo�CChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���xg�ADWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��wamCJiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��ve�kCPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
c������~o�CDChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��}o�DChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��|o�
DChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���{o�!DChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��zo�3DChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���yg�KDWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��o�DChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��e�kDPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
�������o�!EChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3EChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�KEWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��e�}DPino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��o�EChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���o�CEChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�EChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
EChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��	e�kEPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
t�Ct�J��g�/FWilliam Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�C��Q�7EPino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��
e�}EPino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
V��V�@��o�FChristopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�n��g�wFWilliam Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��
g�uFWilliam Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)
������C��o�FChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��o�FChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��g�KFWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��o�FChristopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
,h��	,�X��g�KGWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��o�GChristopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��o�GChristopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���g�KFWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�AFWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�B�b����g�KGWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�AGWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�GChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��o�GChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�A��9��!o�HChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X�� g�KHWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)}��o�
GChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!GChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3GChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)

e�r+��V��:��eD�T�
6f66883f6d03f79791c375ff0cdc81d646922c4276e97e30803dff62b55b566dD�S�
6a0c97cc57949a9e0b7e374e73c9631bdb4a96d91de5560c68e054144df60d8aD�R�
746af4568fbd4f2bb6981f2e903fd2f1917f331b5c6fc90f7504882525070fa4D�Q�
f97d96977b7b2e8e4ab1dfcae63bf6275503575c3a994ebfdf713ecee262b899D�P�
854eda8da3ba3e3e7ccc94e40250bb1351aa11df12f57ddce1e307ae0bf448e9D�O�
f24ecb14a77ec32e37ced96fada59ef24d4cd88eb3684963738eff6c0f73f73cD�N�
a8910c1e5eb6bae266e091a6d736d6d9cf6ee0d2019caf753c767a0798425bb4D�M�
0e5624fbb0590aa72e8ae21556cd6ed2655b7a7955c181db303cdd39320028f1D�L�
1e8f86c76054032814d84435dbde30e74557bf6a1f7136131394674bde65ad63D�K�
421c0198c864523a8a97b579662dd5f24971d1c8a60d7b2146b913582652afa9D�J�
8ffaad6b295a49f6f99b79f05ff9da300f9ed61b1611dbc6384efd5e0d7384d0D�I�
0d2891caee1b493f9b544af0495b535e91b27d243df3f653a39ffeafe3e16dbeD�H�
11c70debdf0d39261740ffb0a5c8d3cfb7a03d7eb9be61a0ab8b83fec450f182
"� ��"���&o�!HChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��%o�3HChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���$g�KHWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���#g�AHWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��"o�HChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
Y�Y�9��*o�IChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���)o�CHChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��(o�HChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��'o�
HChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���/o�!IChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��.o�3IChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���-g�KIWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���,g�AIWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��+o�IChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��3o�IChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���2o�CIChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��1o�IChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��0o�
IChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���8o�!JChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��7o�3JChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���6g�KJWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���5g�AJWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��4o�JChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��<o�JChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���;o�CJChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��:o�JChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��9o�
JChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����?g�KKWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���>g�AKWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��=e�kJPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
�+�S����Do�CKChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Co�KChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Bo�
KChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���Ao�!KChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��@o�3KChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��Eo�KChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���Hg�ALWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��GamKJiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��Fe�kKPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
c������No�CLChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Mo�LChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Lo�
LChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���Ko�!LChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��Jo�3LChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Ig�KLWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��Oo�LChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��Pe�kLPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
�������To�!MChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��So�3MChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���Rg�KMWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��Qe�}LPino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
����|��Xo�MChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���Wo�CMChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��Vo�MChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��Uo�
MChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��Ye�kMPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
t�Ct�J��\g�/NWilliam Poteat <wpoteat@redhat.com> 1.24.36-1^�U@- 1831104: When in Simple Content Access mode, subscription-manager should not
  complain that subscriptions aren't attached (wpoteat@redhat.com)�C��[Q�7MPino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��Ze�}MPino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
V��V�@��_o�NChristopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�n��^g�wNWilliam Poteat <wpoteat@redhat.com> 1.24.38-1^�V@- 1837244: Fix wrong version provided by subscription-manager version; ENT-2388
  (jhnidek@redhat.com)
- 1834792: Try to terminate rhsmd after timeout; ENT-2368 (jhnidek@redhat.com)�m��]g�uNWilliam Poteat <wpoteat@redhat.com> 1.24.37-1^�I�- 1830994: Fix warning messages in dnf/yum (jhnidek@redhat.com)
- 1823523: Detect rhsm-icon running without psutil (csnyder@redhat.com)
- 1771921: Package profiles sends too early when registering a client
  (wpoteat@redhat.com)
- 1688702: Generate redhat.repo in off-line mode; ENT-2302 (jhnidek@redhat.com)
������C��co�NChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��bo�NChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��ag�KNWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��`o�NChristopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)
,h��	,�X��hg�KOWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)y��go�OChristopher Snyder <csnyder@redhat.com> 1.24.40-1^�?A- 1725525: Update keys for translations (csnyder@redhat.com)�@��fo�OChristopher Snyder <csnyder@redhat.com> 1.24.39-1^�?@- 1789457: Syspurpose exception message parsing (wpoteat@redhat.com)
- 1725525: Mark one string for translation; ENT-1680 (jhnidek@redhat.com)
- 1796833: Fix a few broken fr translations (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���eg�KNWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���dg�ANWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)
�B�b����lg�KOWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���kg�AOWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��jo�OChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)�9��io�OChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)
�+�A��9��qo�PChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)�X��pg�KPWilliam Poteat <wpoteat@redhat.com> 1.24.41-1^�W@- 1842474: Update local and cache file during sync(); ENT-2433
  (jhnidek@redhat.com)
- 1838012: prevent redundant remote syspurpose sync (pmoravec@redhat.com)}��oo�
OChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���no�!OChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��mo�3OChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
"� ��"���vo�!PChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��uo�3PChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���tg�KPWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���sg�APWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��ro�PChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
Y�Y�9��zo�QChristopher Snyder <csnyder@redhat.com> 1.24.42-1^�- 1848636, 1849074: Update insights machine-id path (csnyder@redhat.com)
- 1796833: Update translations (csnyder@redhat.com)���yo�CPChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��xo�PChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��wo�
PChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���o�!QChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��~o�3QChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���}g�KQWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���|g�AQWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��{o�QChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��o�QChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���o�CQChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�QChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
QChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)
"� ��"���o�!RChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3RChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�KRWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�ARWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�C��o�RChristopher Snyder <csnyder@redhat.com> 1.24.43-1_��@- 1826300: Ignore auto-attach, when SCA mode is used
  (jhnidek@redhat.com)
- 1850919: False positive log "rhsmd process exceeded runtime and was killed."
  (wpoteat@redhat.com)
- 1868936: Do not print traceback, when profile upload failed
  (wpoteat@redhat.com)
����|��o�RChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���o�CRChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��
o�RChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��	o�
RChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
L����g�KSWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)���g�ASWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)�'��
e�kRPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
�+�S����o�CSChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�SChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
SChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!SChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3SChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)
�|��o�SChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
KL�K���g�ATWilliam Poteat <wpoteat@redhat.com> 1.24.44-1_��@- 1826300: Better messages for attach --auto for SCA mode; ENT-3175
  (jhnidek@redhat.com)e��amSJiri Hnidek <jhnidek@redhat.com> 1.24.52-2d�.@- 2229752: Fix D-Bus policy (jhnidek@redhat.com)�'��e�kSPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
c������o�CTChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��o�TChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��o�
TChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)���o�!TChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��o�3TChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���g�KTWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)
�|��o�TChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'�� e�kTPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
�������$o�!UChristopher Snyder <csnyder@redhat.com> 1.24.47-1`v�@- 1886772: Clear content access mode cache on refresh (csnyder@redhat.com)�P��#o�3UChristopher Snyder <csnyder@redhat.com> 1.24.46-1`lM@- 1896715: Set proper read permissions on certs (#2466) (wpoteat@redhat.com)
- 1935592: Fix getting releases, when SCA is used (jhnidek@redhat.com)���"g�KUWilliam Poteat <wpoteat@redhat.com> 1.24.45-1_���- 1890080: Handle IOErrors and Exceptions when looking for process names
  (csnyder@redhat.com)�p��!e�}TPino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)

e�r+��V��:��eD�a�
e786b3b03097afeace07b7db363528e3c435b3fe280d06c8e864a93b15a8448fD�`�
8862347f9d7582ff00f24363fe2ec9973c30d8b3a4bb2acbaffe35de8e6b6dc0D�_�
2c799ceaa86c1f7b721be3e99bb1bb146d316ec6fb045e1a75d03e2bd335a85eD�^�
e841a2a32725b0c2d0447c0dda8ba50326219acf4722bc6f864e23dd416cd272D�]�
1e46c617c397ebf4bddf22b24fc3c9121739db329c756295e2c7fac068c4aab1D�\�
0d39c362f6c9f3279419ed4315d754b3944058bc88a48263152b512ed67f0ddaD�[�
a2f8ab9e5767d2ec29dc6571b88d28e1d256bd0aaf2b7a447de4187709d699faD�Z�
03e57a64f56503f6e79a1fc2c5923cb7b7c844a98479ed62503b92933057832dD�Y�
d60d364eab2fcbe5b73378922674c904aa0843d27145c8b5ab2bc29462a3ddc0D�X�
ca324724b8cd304f2f0526d1276c77c5ee70b667d98887859d364faeda98e532D�W�
d877319028506f8c2fdc203339535f7dc588bc67e02079adf6bb0e73b4690c97D�V�
78721775026f8ae9ad659054bb6aa8c453a791cc260f66e1ea959649a8f8d922D�U�
2ccb9266c84a96525ac6a03cd1a8a0e14b45062bede6bb3bfe7c4e72a5b63280
����|��(o�UChristopher Snyder <csnyder@redhat.com> 1.24.51-1b]R�- 1.24 Add gcp_license_codes to system facts. (jhnidek@redhat.com)
- 1.24 Fix of automatic registration (jhnidek@redhat.com)
- [1.24] Backport support for GCP marketplace ID (jhnidek@redhat.com)
- [1.24] Backported automatic registration (jhnidek@redhat.com)
- Back-ported cloud-what for Python 2.7 (jhnidek@redhat.com)���'o�CUChristopher Snyder <csnyder@redhat.com> 1.24.50-1aqV@- 2010137: Newer versions of the rpm tooling expect __python defined
  (csnyder@redhat.com)�F��&o�UChristopher Snyder <csnyder@redhat.com> 1.24.49-1ap�- 2010137: Fix redundant API calls to Candlepin (hyu@redhat.com)
- [1.24] Added support for marketplace ID on RHEL7. (jhnidek@redhat.com)}��%o�
UChristopher Snyder <csnyder@redhat.com> 1.24.48-1`x*�- 1886772: check is_consumer_cert_key_valid (csnyder@redhat.com)@redhat.com)
- cache: fix typo in debug message (ptoscano@redhat.com)
- 2182768: Disallowed attaching using D-Bus in SCA mode (jhnidek@redhat.com)
- 2182768: Disallowed attaching pool in SCA mode: (jhnidek@redhat.com)
- 1928072: Print warning message and don't do auto-attach (jhnidek@redhat.com)
- managercli: add a local get_current_owner() helper (ptoscano@redhat.com)
- [1.24] Fix issue with locale and D-Bus method GetStatus; (jhnidek@redhat.com)
- Make code Python 2 compatible. (jhnidek@redhat.com)
- 2060101: [1.24] Print correct status, when access mode has changed
  (jhnidek@redhat.com)
- ENT-5542: Build package using GitHub Actions (mhorky@redhat.com)
- Fix failing tests (mhorky@redhat.com)
- tests: drop test_po_files.py (ptoscano@redhat.com)
- Ignore failing tests (mhorky@redhat.com)
- ENT-3759: Test on GitHub Actions (mhorky@redhat.com)
- Alter import of rhsm.config functions (mhorky@redhat.com)
- Add dependency constraints (mhorky@redhat.com)
- Handle tests in containers better (mhorky@redhat.com)
LL�'��)e�kUPino Toscano <ptoscano@redhat.com> 1.24.52-1d��@- tito: update rhel-7.9 releaser (ptoscano@redhat.com)
- managercli: fix RestlibException reporting for get_current_owner()
  (ptoscano@redhat.com)
- refresh: avoid ExceptionMapper in case of RestlibException
  (ptoscano@redhat.com)
- tests: repair attach cases in SCA mode (ptoscano@redhat.com)
- 2097672: Fixed expected message for manual attach case (jajerome@redhat.com)
- 2097672: [1.28] Improve warning message (auto-attach in SCA mode)
  (jhnidek@redhat.com)
- 2097672: [RFE][1.28] Improve the message, when SCA is enabled
  (jhnidek@redhat.com)
- Reverting disabling AutoAttach() and PoolAttach() in SCA mode
  (jhnidekF�
C�C�C��+Q�7UPino Toscano <ptoscano@redhat.com>e�@- tito: drop bz requirement (ptoscano@redhat.com)
- fix: 1.24 Add python-requests to the list of required RPMs
  (jhnidek@redhat.com)
- fix: Pin lxml to last version supporting Python 2 (mhorky@redhat.com)
- fix: Add missing package intltool to test script (jhnidek@redhat.com)�p��*e�}UPino Toscano <ptoscano@redhat.com> 1.24.53-1e
��- 2229752: [1.24] Hotfix of D-Bus policy (jhnidek@redhat.com)
- Collect GCP Project information as cloud facts (chambrid@redhat.com)
- Collect Azure Subscription ID as a cloud fact (#3285) (chambrid@redhat.com)
- Stop requiring M2crypto (ptoscano@redhat.com)
- tests: make M2Crypto optional (ptoscano@redhat.com)
��<��.��/k�sVMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries�R��.a�EVRadovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'���-g�CVDaniel Kopecek <dkopecek@redhat.com> 1.8.23-3[��- RHEL-7.6 erratum
  Resolves: rhbz#1547974 - Rebase sudo to latest stable upstream version�O��,g�9VDaniel Kopecek <dkopecek@redhat.com> 1.8.23-2[��@- RHEL-7.6 erratum
  Resolves: rhbz#1533964 - sudo skips PAM account module in case NOPASSWD is used in sudoers
  Resolves: rhbz#1506025 - Latest update broke sudo for ldap users.
  Resolves: rhbz#1502630 - inclusion of system-auth for session hooks missing in sudo PAM snippets
)R�D�<�)���6g�CWDaniel Kopecek <dkopecek@redhat.com> 1.8.23-3[��- RHEL-7.6 erratum
  Resolves: rhbz#1547974 - Rebase sudo to latest stable upstream versionv��5k�VRadovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729���4g�CVRadovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196k��3euVRadovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��2k�VMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695���1k�7VMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit�)��0k�iVMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations
K)v�3�Kk��<euWRadovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��;k�WMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695���:k�7WMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit�)��9k�iWMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations�.��8k�sWMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries�R��7a�EWRadovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'
�g�5^��.��Ak�sXMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries�R��@a�EXRadovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'�3��?k�}WRadovan Sroka <rsroka@redhat.com> - 1.8.23-10.2`�:@- RHEL 7.9.Z ERRATUM
- defaults use_pty plus SELinux ROLE in user specification breaks terminal
  Resolves: rhbz#1972820v��>k�WRadovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729���=g�CWRadovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196
�R�D�<�v��Gk�XRadovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729���Fg�CXRadovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196k��EeuXRadovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��Dk�XMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695���Ck�7XMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit�)��Bk�iXMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations
�H�=����Kg�CYDaniel Kopecek <dkopecek@redhat.com> 1.8.23-3[��- RHEL-7.6 erratum
  Resolves: rhbz#1547974 - Rebase sudo to latest stable upstream version�O��Jg�9YDaniel Kopecek <dkopecek@redhat.com> 1.8.23-2[��@- RHEL-7.6 erratum
  Resolves: rhbz#1533964 - sudo skips PAM account module in case NOPASSWD is used in sudoers
  Resolves: rhbz#1506025 - Latest update broke sudo for ldap users.
  Resolves: rhbz#1502630 - inclusion of system-auth for session hooks missing in sudo PAM snippets�2��Ik�{XRadovan Sroka <rsroka@redhat.com> - 1.8.23-10.3c���RHEL 7.9.Z ERRATUM
- CVE-2023-22809 sudo: arbitrary file write with privileges of the RunAs user
Resolves: rhbz#2161222�3��Hk�}XRadovan Sroka <rsroka@redhat.com> - 1.8.23-10.2`�:@- RHEL 7.9.Z ERRATUM
- defaults use_pty plus SELinux ROLE in user specification breaks terminal
  Resolves: rhbz#1972820
K)v�3�Kk��QeuYRadovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��Pk�YMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695���Ok�7YMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit�)��Nk�iYMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations�.��Mk�sYMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries�R��La�EYRadovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'
)g��)�R��Va�EZRadovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'���Ug�CZDaniel Kopecek <dkopecek@redhat.com> 1.8.23-3[��- RHEL-7.6 erratum
  Resolves: rhbz#1547974 - Rebase sudo to latest stable upstream version�O��Tg�9ZDaniel Kopecek <dkopecek@redhat.com> 1.8.23-2[��@- RHEL-7.6 erratum
  Resolves: rhbz#1533964 - sudo skips PAM account module in case NOPASSWD is used in sudoers
  Resolves: rhbz#1506025 - Latest update broke sudo for ldap users.
  Resolves: rhbz#1502630 - inclusion of system-auth for session hooks missing in sudo PAM snippetsv��Sk�YRadovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729���Rg�CYRadovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196
�M�
�"����\g�CZRadovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196k��[euZRadovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��Zk�ZMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695���Yk�7ZMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit�)��Xk�iZMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations�.��Wk�sZMarek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries
 ��c� ���bk�7[Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit�)��ak�i[Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations�.��`k�s[Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries�R��_a�E[Radovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'���^g�C[Daniel Kopecek <dkopecek@redhat.com> 1.8.23-3[��- RHEL-7.6 erratum
  Resolves: rhbz#1547974 - Rebase sudo to latest stable upstream versionv��]k�ZRadovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729
��M����hg�C\Daniel Kopecek <dkopecek@redhat.com> 1.8.23-3[��- RHEL-7.6 erratum
  Resolves: rhbz#1547974 - Rebase sudo to latest stable upstream version�3��gk�}[Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.2`�:@- RHEL 7.9.Z ERRATUM
- defaults use_pty plus SELinux ROLE in user specification breaks terminal
  Resolves: rhbz#1972820v��fk�[Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729���eg�C[Radovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196k��deu[Radovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��ck�[Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695
K)v�3�Kk��neu\Radovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��mk�\Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695���lk�7\Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit�)��kk�i\Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations�.��jk�s\Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries�R��ia�E\Radovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'
�g�5^��.��sk�s]Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries�R��ra�E]Radovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'�3��qk�}\Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.2`�:@- RHEL 7.9.Z ERRATUM
- defaults use_pty plus SELinux ROLE in user specification breaks terminal
  Resolves: rhbz#1972820v��pk�\Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729���og�C\Radovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196
�R�D�<�v��yk�]Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729���xg�C]Radovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196k��weu]Radovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��vk�]Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695���uk�7]Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit�)��tk�i]Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations
YH��Y�)��~k�i^Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-6]Z�@- RHEL-7.8 erratum
  Resolves: rhbz#1647678 sudo access denied with pam_access and pts terminal configurations�.��}k�s^Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-5]QT�- RHEL-7.8 erratum
  Resolves: rhbz#1711997 sudo is super slow when /etc/security/limits.conf contains many entries�R��|a�E^Radovan Sroka <rsroka@redhat.com> 1.8.23-4\mA@- RHEL-7.7 erratum
  Resolves: rhbz#1672876 - Backporting sudo bug with expired passwords
  Resolves: rhbz#1665285 - Problem with sudo-1.8.23 and 'who am i'�2��{k�{]Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.3c���RHEL 7.9.Z ERRATUM
- CVE-2023-22809 sudo: arbitrary file write with privileges of the RunAs user
Resolves: rhbz#2161222�3��zk�}]Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.2`�:@- RHEL 7.9.Z ERRATUM
- defaults use_pty plus SELinux ROLE in user specification breaks terminal
  Resolves: rhbz#1972820
�k���p��3��k�}^Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.2`�:@- RHEL 7.9.Z ERRATUM
- defaults use_pty plus SELinux ROLE in user specification breaks terminal
  Resolves: rhbz#1972820v��k�^Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.1`@- RHEL 7.9.Z ERRATUM
- CVE-2021-3156
Resolves: rhbz#1917729���g�C^Radovan Sroka <rsroka@redhat.com> - 1.8.23-10^{G�- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196k��eu^Radovan Sroka <rsroka@redhat.com> - 1.8.23-9^:�@- RHEL-7.8
- CVE-2019-18634
  Resolves: rhbz#1798095u��k�^Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-8]�W�- RHEL-7.8
- fixed CVE-2019-14287
  Resolves: rhbz#1760695���k�7^Marek Tamaskovic <mtamasko@redhat.com> 1.8.23-7]^��- RHEL-7.8 erratum
  Resolves: rhbz#1738841 Crash in do_syslog() while doing sudoedit
3I�P��3g��oc_Michal Sekletar <msekleta@redhat.com> - 10.1.5-16[,�- apply previously added patches (#1543238)}��
o�
_Michal Sekletar <msekleta@redhat.com> - 10.1.5-15[,�- backport some more follow-up bugfixes related to -F (#1543238)�	��	o�%_Michal Sekletar <msekleta@redhat.com> - 10.1.5-14[+�@- backport -F switch for monitoring currently mounted filesystems (#1543238)���o�O_Michal Sekletar <msekleta@redhat.com> - 10.1.5-13Z�- fix output of pidstat -p $PID (#1448489)
- improve reading of /proc/cpuinfo on Power (#1440000)���o�_Michal Sekletar <msekleta@redhat.com> - 10.1.5-12Xۡ�- sar: output timestamps when running with ko_KR.UTF-8 locale (#1381128)k��mm_Peter Schiffer <pschiffe@redhat.com> - 10.1.5-11WN�@- related: #1332662
  fixed more coverity issues�2��k�{^Radovan Sroka <rsroka@redhat.com> - 1.8.23-10.3c���RHEL 7.9.Z ERRATUM
- CVE-2023-22809 sudo: arbitrary file write with privileges of the RunAs user
Resolves: rhbz#2161222
N~�|��NF��c-`Nils Philippsen <nils@redhat.com> - 1.3.1-1P���- tighten policyQ��cC`Nils Philippsen <nils@redhat.com> - 1.3.0-1P���- pull updated translations�
��k�+_Lukáš Zaoral <lzaoral@redhat.com> - 10.1.5-20cn9@- do not cap %usr to 100% in `pidstat -I` for multithreaded programs (#1763579)|��q�	_Michal Sekletár <msekleta@redhat.com> - 10.1.5-19^%�@- fix possible segfault when appending to data file (#1774590)�}��
q�_Michal Sekletár <msekleta@redhat.com> - 10.1.5-18\��@- add -f flag to force fdatasync() after sa file update (#1662094)
- don't call filesystem count functions when we are not collecting fs statistics (#1670060)
- skip autofs when gathering filesystem statistics (#1670060)
- fix use of incorrect preposition in sar man page (#1624410)
- fix CPU usage reporting (#1618688)~��o�_Michal Sekletar <msekleta@redhat.com> - 10.1.5-17[0�@- fix potential buffer overflow identified by cppcheck (#1543238)
��6�P��B��U3`Than Ngo <than@redhat.com> - 1.3.5-4[`O@- Related: #1502438n��U�	`Than Ngo <than@redhat.com> - 1.3.5-3ZЛ�- Resolves: #1563896 - don't use exec in pkexec wrapper scriptL��]?`Daniel Mach <dmach@redhat.com> - 1.3.5-2R�k�- Mass rebuild 2013-12-27���c�A`Nils Philippsen <nils@redhat.com> - 1.3.5-1R
�- cope with changes handling empty shadow fields in libuser (patches by
  Miloslav Trmač)�F��c�+`Nils Philippsen <nils@redhat.com> - 1.3.4-1QJ�@- don't ask libuser to create a home directory over an existing one (#908852,
  patch by Miloslav Trmač)
- correct check if SELinux is enabled���c�%`Nils Philippsen <nils@redhat.com> - 1.3.3-1P� @- fix editing group properties (#885147)
- pull updated and new translationss��c�`Nils Philippsen <nils@redhat.com> - 1.3.2-1P���- avoid deleting primary groups of remaining users (#881022)
}q�}����	�/asystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?���	�uasystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��e�1aLukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)�
��U�A`Than Ngo <than@redhat.com> - 1.3.5-5_u�- Resolves: #1825765, dialog appears when minimizing system-config-users window on Apr 1stF�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9�� ��masystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����asystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���Wasystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;����qasystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17F�
.��.���#�	�asystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��"�	�'asystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��!�Iasystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)

e�r+��V��:��eD�n�
d62663db9bfe5188b678168ce54fbc9a25029291dad7f25e911dca2b4745ad8fD�m�
a450c1170181a3ff18ece403ab9cd454a3f2fbe440d5f9b595bd3f0de9b1dd08D�l�
5490d928d2dc55d285caa5eaf9606be884605bf43d81604819679bc307219d29D�k�
e18ea59775bba4c1bd311fdb9225cf287d5862c29e8b3199c4ad3bf57a00b83eD�j�
dd83fab8ff66edc9c2eb4cce6304324d64c9a9f43b6f394c7886c2bbb9f6c689D�i�
a529f2b782f1a8ac2c40f6c193c7b680debbe16131700642d20f5c3c7792165fD�h�
aa2d737429489d52bcd0751bd1e48ba6c8f71eb071120236b9ab47a5ae3b3ebdD�g�
4d766c79e706152df781ac169a04106c6cc571faea5ad9beef0fcae6481c3a5cD�f�
12c5efd45c7ef298bfb73822c8f3f30c767fb03f40e504e94e3519f825ce6216D�e�
518634909b8077578379878100a6cc50c82ef6ffa0726ef538f628609f07e436D�d�
b3629bade8ef787d20012f38cc73971fd4d755469722b2aa65b093f247fe10ccD�c�
40f5419ef2f5f5628caafd1966853e3ed258c5f6cb1984c8471c853323bd793bD�b�
555f6ee454fa312fb09d6fafbe3c2aa2f876b4599c73856eff9aa4d9f1b2f06c
�<����%�	�/bsystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��$�	�ubsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��)��mbsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��(��bsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��'�Wbsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��&��qbsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17F�
���.��
��-�	�bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���,�	�bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��+�	�'bsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��*�Ibsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)G57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��1��mcsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��0��csystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��/�Wcsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��.��qcsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G
���.��
��5�	�csystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���4�	�csystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��3�	�'csystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��2�Icsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
*�(R�*f��:�Idsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��9��mdsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��8��dsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.��7�	�Scsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��6�	�7csystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��=�	�dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���<�	�dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��;�	�'dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f��B�Iesystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
��A�	�dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���@�	�
dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��?�	�Sdsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��>�	�7dsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��E�	�esystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���D�	�esystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��C�	�'esystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���J�	�esystemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
��I�	�esystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���H�	�
esystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��G�	�Sesystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��F�	�7esystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
nb�n���N�	�/fsystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��M�	�ufsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��Le�1fLukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���K�	�)esystemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)G57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��R��mfsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��Q��fsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��P�Wfsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��O��qfsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G

���.��
��Ve�1gLukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���U�	�fsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��T�	�'fsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��S�Ifsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����X�	�/gsystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��W�	�ugsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��\��mgsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��[��gsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��Z�Wgsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��Y��qgsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G
.��.���_�	�gsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��^�	�'gsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��]�Igsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����a�	�/hsystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��`�	�uhsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)bRGkRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������F߃�$Fჺ(Fヺ)F䃺+F僺/F惺6F烺<F胺AF郺GFꃺKF냺QF샺VF탺\FbFhF�nF�sF�yF�~F�F���F���F���F���F��� F���#F���%G��)G��-G��1G��5G��:G��=G	��BG
��EG��JG��NG��RG��VG��XG��\G��_G��aG��eG��iG��kG��oG ��sG#��wG$��{G%��~G(��G)��G*��G+��G,��G-��G.��G/��G0��$G1��(G3��-G4��1G5��5G8��9G9��;G<��?G=��CG@��GGA��KGB��PGC��SGD��XGE��[GF��`GG��dGJ��hGK��lGL��nGO��rGP��uGQ��wGT��{GU��GV��GY��GZ��	G]��
G^��G_��Gb��Gc��Gd��!Ge��$Gf��*Gh��-Gi��2Gj��5G57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��e��mhsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��d��hsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��c�Whsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��b��qhsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G
���.��
��i�	�hsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���h�	�hsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��g�	�'hsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��f�Ihsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����k�	�/isystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��j�	�uisystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��o��misystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��n��isystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��m�Wisystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��l��qisystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G
���.��
��s�	�isystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���r�	�isystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��q�	�'isystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��p�Iisystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)G"57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��w��mjsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��v��jsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��u�Wjsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��t��qjsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G!
���.��
��{�	�jsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���z�	�jsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��y�	�'jsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��x�Ijsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
\�(\�;��~��qksystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G&�.��}�	�Sjsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��|�	�7jsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)G'57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
�������X���	�'ksystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���Iksystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����mksystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����ksystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���Wksystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)
�u��� ���	�7ksystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
���	�ksystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�ksystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
rMw�Or�X���	�'lsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��
�Ilsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��	��mlsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����lsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.���	�Sksystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)
�u��� ���	�7lsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��
�	�lsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�lsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
0M�.X�0f���Imsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����mmsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����msystemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�
���	�lsystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)����	�
lsystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.���	�Slsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)
#��
���	�msystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�msystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'msystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f���Insystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
���	�msystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)����	�
msystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.���	�Smsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ���	�7msystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
���	�nsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�nsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'nsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���$�	�nsystemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
��#�	�nsystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���"�	�
nsystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��!�	�Snsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� �� �	�7nsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
�b�����(�	�osystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��'�	�'osystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��&�Iosystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)���%�	�)nsystemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)

e�r+��V��:��eD�{�
43b09300e3cae57123f6afdd23ac7e88411c687be6f131ff215ea718f5933e1cD�z�
c39c2b1f50d0ee1b0b3edd4f05c23ffa2f7d0cf847b1f78fc6f36f9f4bb83c8fD�y�
89ba59bcc18f02cf622a16a2b4485ddbebf2c0e577d2b9cc5b891f7f18b2b729D�x�
01fb3a26a807a59931faaaabe295041a8fa40561ac74f13c180818145c68eae4D�w�
22f6e0dc0621a93077ed64c276366eb9c44393ec755722b64a175a9ef296b112D�v�
4b1fd0ab7ed6265d09954241b71684d0db26d624318d6cbb227909a3ca804bfcD�u�
82b1d1dfa51bb5a8958691fdfa3bcacef757cb4afe47f1a082dab853cf9650d3D�t�
bcfb391f7881055ca608ff7eb04d4957ec6829b99a6cf0fad156e59165558f0bD�s�
1aa7058dfddcf6000119e4d89f90da91d35b7562587f5a8c91a2db80781c6303D�r�
bea5901fa1364aca49ab785c08b8debad25fab28cdc3793bf3925cb1cd91f136D�q�
920dd1baf1fd31b9436ff47d0be39b0142c33dfb36ef0255aaf0e2c529756a9bD�p�
34ce748bf1845ac8f646607f3776e2995f16c3c1b8ed68775327e24981f1c217D�o�
3ba273d4314760eb122b0661daa6126b87cb2ccfa2ee5813199419415261ca9f
wnI�w�
��-�	�osystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���,�	�
osystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��+�	�Sosystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��*�	�7osystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��)�	�osystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)
{l�?{�?��1�	�upsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��0e�1pLukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���/�	�)osystemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)���.�	�osystemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)
L_�"L�Q��5��psystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��4�Wpsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��3��qpsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G6���2�	�/psystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)G757704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
pB��p���9�	�psystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��8�	�'psystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��7�Ipsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��6��mpsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)
�<����;�	�/qsystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��:�	�uqsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G;57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��?��mqsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��>��qsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��=�Wqsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��<��qqsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G:
���.��
��C�	�qsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���B�	�qsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��A�	�'qsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��@�Iqsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)G?57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��G��mrsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��F��rsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��E�Wrsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��D��qrsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G>
���.��
��K�	�rsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���J�	�rsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��I�	�'rsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��H�Irsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
*�(R�*f��P�Issystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��O��mssystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��N��ssystemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.��M�	�Srsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��L�	�7rsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��S�	�ssystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���R�	�ssystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��Q�	�'ssystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f��X�Itsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
��W�	�ssystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���V�	�
ssystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��U�	�Sssystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��T�	�7ssystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��[�	�tsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���Z�	�tsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��Y�	�'tsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���`�	�tsystemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
��_�	�tsystemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���^�	�
tsystemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��]�	�Stsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��\�	�7tsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
nb�n���d�	�/usystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��c�	�uusystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��be�1uLukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���a�	�)tsystemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)GI57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��h��musystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��g��usystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��f�Wusystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��e��qusystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17GH
���.��
��le�1vLukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���k�	�usystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��j�	�'usystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��i�Iusystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����n�	�/vsystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��m�	�uvsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)GN57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��r��mvsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��q��vsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��p�Wvsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��o��qvsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17GM
.��.���u�	�vsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��t�	�'vsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��s�Ivsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����w�	�/wsystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��v�	�uwsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)GS57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��{��mwsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��z��wsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��y�Wwsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��x��qwsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17GR
���.��
���	�wsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���~�	�wsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��}�	�'wsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��|�Iwsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<�����	�/xsystemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?���	�uxsystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)GX57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9����mxsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����xsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���Wxsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;����qxsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17GW
���.��
��	�	�xsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�xsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'xsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���Ixsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)G\57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��
��mysystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����ysystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���Wysystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��
��qysystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G[
���.��
���	�ysystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�ysystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'ysystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���Iysystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
\�(\�;����qzsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G`�.���	�Sysystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ���	�7ysystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)Ga57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
�������X���	�'zsystemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���Izsystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����mzsystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����zsystemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���Wzsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)
�u��� ���	�7zsystemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
���	�zsystemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	�zsystemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
rMw�Or�X��!�	�'{systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f�� �I{systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����m{systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q����{systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.���	�Szsystemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)
�u��� ��$�	�7{systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��#�	�{systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���"�	�{systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
0M�.X�0f��*�I|systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��)��m|systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��(��|systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�
��'�	�{systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���&�	�
{systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��%�	�S{systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)

e�r+��V��:��eD��
3bbea9323c322a5179cd1dc270e81ca0b7012086d4d12c606d5f71993e272e7eD��
eb5d1459a1ed3b55d3a45f58f61633509ffca8700fc3dc3f1935cde74eb204c0D��
de628f3727cacb859cd8375cb35493f4ee9c74aeb3751c1ba0c049341d84eb2eD��
c3df19c15f8ddba5346c826fd07ba66f82958ff47801b4b8f2b8842525aec713D��
b22820dc39c9c681f704d5e7b608b6d1aecc2fb1a4181df605e69e8a30e70237D��
c84bd4cd2d437d984953f25e00196fba34b6d1f25cb29da168b9469d4969236eD��
c3df4151777a268106f45f068f7a6e09e974ef1222fd6ccbafd4fd2f7307e011D��
7a957336373214b86e031556081bbbfea7f560af4a8ad2dbd60475b20bc824d2D��
0ed523747db652e84c5b5a87d2207d7410229587204a4fbc5f477091cf0e9706D��
efd9d7f9ca4a7ab583fb075ecf7b7abda7fa92b4657a5d14c6e3ea7f67c30608D�~�
65584369e0052524a4788078e14f671f1ab55c3f0e2f3ea69702c77b5242d309D�}�
179672f8c8746404f915bf9e8645d88839973a7f5e024e6b7c6a3e00ce2c6f98D�|�
a6d9b567ef1b06e195132a506e27e02e6e7b6768d0d22c13cd692ffbbc8acec3
#��
��-�	�|systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���,�	�|systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��+�	�'|systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f��2�I}systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
��1�	�|systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���0�	�
|systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��/�	�S|systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��.�	�7|systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��5�	�}systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���4�	�}systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��3�	�'}systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���:�	�}systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
��9�	�}systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���8�	�
}systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��7�	�S}systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��6�	�7}systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
�b�����>�	�~systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��=�	�'~systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��<�I~systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)���;�	�)}systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)
wnI�w�
��C�	�~systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���B�	�
~systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��A�	�S~systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��@�	�7~systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��?�	�~systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)
{l�?{�?��G�	�usystemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��Fe�1Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���E�	�)~systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)���D�	�~systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)
L_�"L�Q��K��systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��J�Wsystemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��I��qsystemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17Gp���H�	�/systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)Gq57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
pB��p���O�	�systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��N�	�'systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��M�Isystemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��L��msystemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)
�<����Q�	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��P�	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)Gu57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��U��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��T���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��S�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��R��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17Gt
���.��
��Y�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���X�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��W�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��V�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)Gy57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��]��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��\���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��[�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��Z��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17Gx
���.��
��a�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���`�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��_�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��^�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
*�(R�*f��f�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��e��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��d���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.��c�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��b�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��i�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���h�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��g�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f��n�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
��m�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���l�	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��k�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��j�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��q�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���p�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��o�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���v�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
��u�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���t�	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��s�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��r�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
nb�n���z�	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��y�	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��xe�1�Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���w�	�)�systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��~��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��}���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��|�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��{��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
.��.����	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<�����	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?���	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9����m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q�����systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;����q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
���.��
���	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���
�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��	�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9����m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q�����systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��
�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;����q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
���.��
���	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
*�(R�*f���I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q�����systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.���	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ���	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
���	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)����	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f�� �I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
���	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)����	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.���	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ���	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��#�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���"�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��!�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���(�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
��'�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���&�	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��%�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��$�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
nb�n���,�	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��+�	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��*e�1�Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���)�	�)�systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)

e�r+��V��:��eD��
5597c86554e7f88c701acbd24766aa87c93c449673c10e38cbd74b8bbf5e84faD��
58f957357894f41ea8dce27b4768e570d26ebe184ba29202236806ebd3286af2D��
45e4431fa6444a15d0292df48fe285761bee76d70d5eda0b7e810f4052b8ed92D��
49113267f534c7bd5e707eaf237fd29c16d11aae9ee70d8a16d8dd33edb75084D��
fbdd5b5415f56af9b9ab84c65d8ccf11fa14c3f554904f46a117fa7e039d2a92D��
badc986837eca92a61c46a7beb9bd700e04af6d84681d4ca53417eb37b7eeac4D��
6f7cd47756fa8dfb7b6cb88b9a65c779de1981cf1b2707b6326ba27ddea5138dD��
45631c9c56e97ad1c34577b8df4c774f108693f67b52f45cfe6915a3e3f40208D�
�
53f19e6a64582f844301bdf853863da54891f234bc44dc77426164612697903dD��
bfbaa306ef62a274da0c3a7df6f2c28ed78243d6d6b8fc3c909b90fec19c16baD��
1cf3973fb3523d1d1a511479268703611131014d54aec79f628f19fb4b486117D�
�
99d7ab7cf207e1519d1bc9faa0e9cce19f934bf8db21f3946902e8b76737c8a7D�	�
147bc1295714b7317e539c11b0c800234b512dc4c8c7c1a62598b5f4204f4d68G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��0��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��/���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��.�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��-��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
���.��
��4e�1�Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���3�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��2�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��1�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����6�	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��5�	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��:��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��9���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��8�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��7��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
.��.���=�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��<�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��;�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����?�	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��>�	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��C��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��B���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��A�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��@��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
���.��
��G�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���F�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��E�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��D�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
�<����I�	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?��H�	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��M��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��L���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��K�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��J��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
���.��
��Q�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���P�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��O�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��N�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��U��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��T���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��S�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��R��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
���.��
��Y�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���X�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��W�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��V�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
\�(\�;��\��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G��.��[�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��Z�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)bRG�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������Gl��>Gm��CGn��GGo��KGr��OGs��QGv��UGw��YGz��]G{��aG|��fG}��iG~��nG��qG���vG���zG���~G���G���G���G���G���G���G���G���G��� G���#G���(G���,G���0G���4G���6G���:G���=G���?G���CG���GG���IG���MG���QG���UG���YG���\G���aG���dG���iG���lG���rG���uG���zG���}G���G���G���G���G���G���G���Gă�GŃ�!Gȃ�%GɃ�)Gʃ�.G̃�1G̓�6G΃�9Gσ�>GЃ�CGу�IG҃�LGӃ�RGԃ�YGՃ�_Gփ�eG׃�oG؃�zGك�Gڃ�Gۃ�G܃�&G݃�1G߃�;G�EG�PG�[G�fG�pG�zG�G�G�G�(G�4G�@G�KG�VG�aG�lG�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
�������X��a�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��`�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��_��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��^���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��]�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)
�u��� ��d�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��c�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���b�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
rMw�Or�X��i�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��h�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��g��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��f���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.��e�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)
�u��� ��l�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
��k�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���j�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)
0M�.X�0f��r�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��q��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��p���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�
��o�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���n�	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��m�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)
#��
��u�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���t�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��s�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f��z�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
��y�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���x�	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��w�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��v�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��}�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���|�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��{�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u����	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
���	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)����	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.���	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��~�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
�b������	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)����	�)�systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)
wnI�w�
���	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���
�	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��	�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ���	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)�
���	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)
{l�?{�?���	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)�
��e�1�Lukas Nykryn <lnykryn@redhat.com> - 219-73.1]�@- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)���
�	�)�systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)����	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)
L_�"L�Q�����systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;����q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�����	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
pB��p����	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9����m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)
�<�����	�/�systemd maintenance team <systemd-maint@redhat.com> - 219-73.3^`�- journal: do not trigger assertion when journal_file_close() get NULL (#1807798)�?���	�u�systemd maintenance team <systemd-maint@redhat.com> - 219-73.2^K�- core: when restarting services, don't close fds (#1803802)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1803802)
- tests: add basic journal test (#1803802)
- tests: add regression test for `systemctl restart systemd-journald` (#1803802)
- tests: add test that journald keeps fds over termination by signal (#1803802)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9����m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q�����systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m���W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;����q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
���.��
��!�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)��� �	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X���	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f���I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)G�57704)
- tests: add regression test for `systemctl restart systemd-journald` (#1757704)
- tests: add test that journald keeps fds over termination by signal (#1757704)
- nss-util: silence warning about deprecated RES_USE_INET6 (#1799002)
- journal: do not trigger assertion when journal_file_close() get NULL (#1786046)
- mount: don't propagate errors from mount_setup_unit() further up (#1804757)
- mount: when allocating a Mount object based on /proc/self/mountinfo mark it so (#1804757)
- fix the fix for #1691511 (#1804757)
- v3: Properly parsing SCSI Hyperv devices (#8509) (#1809053)
- Consider smb3 as remote filesystem (#1811700)
- mount: don't add Requires for tmp.mount (#1813270)
- sd-bus: when attached to an sd-event loop, disconnect on processing errors (#1769928)
- sd-journal: close journal files that were deleted by journald before we've setup inotify watch (#1812889)
- sd-journal: remove the dead code and actually fix #14695 (#1812889)
- swap: adjust swap.c in a similar way to what we just did to mount.c (#1749621)
- swap: finish the secondary swap units' jobs if deactivation of the primary swap unit fails (#1749621)
- core: add a new unit file setting CollectMode= for tweaking the GC logic (#1817576)
- run: add "-G" as shortcut for "--property=CollectMode=inactive-or-failed" (#1817576)
- core: clarify that the CollectMode bus property is constant (#1817576)
- udev-rules: make tape-changers also apprear in /dev/tape/by-path/ (#1814028)
- logind: check PolicyKit before allowing VT switch (#1797672)
- timer: don't use persietent file timestamps from the future (#6823) (#1769923)
- core: transition to FINAL_SIGTERM state after ExecStopPost= (#1766477)
- bus_open leak sd_event_source when udevadm trigger。 (#1798503)
- journal-remote: split-mode=host, remove port from journal filename (#1244691)
- core: downgrade log message about inability to propagate cgroup release message (#1679934)
- units: move Before deps for quota services to remote-fs.target (#5627) (#1693374)
- set kptr_restrict=1 (#1689344)
/4��/�9��%��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��$���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�lA- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)m��#�W�systemd maintenance team <systemd-maint@redhat.com> - 219-75^�l@- journal: break recursion (#1778744)�;��"��q�systemd maintenance team <systemd-maint@redhat.com> - 219-74^��- sd-bus: bump message queue size again (#1770158)
- unit: fix potential use of cgroup_path after free() when freeing unit (#1760149)
- add test for ExecStopPost (#1733998)
- core: when restarting services, don't close fds (#1757704)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (#1757704)
- tests: add basic journal test (#17G�
���.��
��)�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���(�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��'�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)f��&�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)
*�(R�*f��.�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�9��-��m�systemd maintenance team <systemd-maint@redhat.com> - 219-77^���- core: coldplug possible nop_job (#1829754)
- core: make sure to restore the control command id, too (#1828953)�Q��,���systemd maintenance team <systemd-maint@redhat.com> - 219-76^�l@- core: enforce a ratelimiter when stopping units due to StopWhenUnneeded=1 (#1775291)
- core: rework StopWhenUnneeded= logic (#1775291)�.��+�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��*�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)

e�r+��V��:��eD�"�
24039275da54c6bead07277fc20529befb42b1c310557cb1598abc0ae73b37f4D�!�
2438f52168e5bd5317e5aae571902a59d445fde074f9fe592ad04c60e7fb4d82D� �
365bf20a36b4781a7a21bb79b446907366fe135f7e5616c550b20d174cc96d1dD��
ac89e7436d5ce48c8bfe654ce6d2c7aa605cdb568aaad5d7088f3e36ffc915e9D��
61357d6eb9ca6e939f89412cfa01e3e26beeb6e28a3f90998db4cd5808430a6dD��
fe63730a873042e3f6763ad2922d8d1c714e93fe81d223bc2ae7454b4803f1fdD��
18d655d9234417eb4a995a66801cb9c7ac35362aadaa734d8674f8e744986b8fD��
94d47b782d9d01f589874cfe848688d584d291d216cca5e37b467e4d747dd75eD��
100f1234d4c5782b5913aa69ba66a3d90098ad06808fb39b4433d80beb94075dD��
280bc79dccb9b2223e4216b8dc257b35f8686cebd950a724747d1722af5d8582D��
a5909e444b1d27c443afbbb9a2c128c3ee271e86aed9bea120cceb657e7bc326D��
87bd7b630c33f8be6348fd87af02cdb167d891fac4dc956b41cfd5911def169aD��
27d4858f1741f00448f919a33388f3a4ce77d65c758523ac1aaa6845fcf67c97
#��
��1�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���0�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��/�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
��(�	�f��6�I�systemd maintenance team <systemd-maint@redhat.com> - 219-78^���- avoid double free (#1832816)�
��5�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���4�	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��3�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��2�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
#��
��9�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.3`��- core: Detect initial timer state from serialized data (#1764908)���8�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.2_��- core: don't update unit description if it is already set to the same value (#1793527)
- unit: don't emit PropertiesChanged signal if adding a dependency to a unit is a no-op (#1793527)
- core: fix unnecessary fallback to the rescue mode caused by initrd-switch-root.service's exit status judgment error (#1825232)�X��7�	�'�systemd maintenance team <systemd-maint@redhat.com> - 219-78.1_3�- device: make sure we emit PropertiesChanged signal once we set sysfs (#1793527)
- device: don't emit PropetiesChanged needlessly (#1793527)
u�(�	u���>�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.8e�- fstab-generator: Chase symlinks where possible (#6293) (RHEL-6223)�
��=�	��systemd maintenance team <systemd-maint@redhat.com> - 219-78.7b�- resolve: introduce reference counting on DnsStream (#2110544)���<�	�
�systemd maintenance team <systemd-maint@redhat.com> - 219-78.6b��- resolved: pin stream while calling callbacks for it (#2110544)�.��;�	�S�systemd maintenance team <systemd-maint@redhat.com> - 219-78.5a��@- install: fix a potential crash (#1828758)
- acl-util: only set the mask if not present (#2026361)� ��:�	�7�systemd maintenance team <systemd-maint@redhat.com> - 219-78.4a���- test: add a test/reproducer for BZ#1989245 (#1989245)
- strv: fix buffer size calculation in strv_join_quoted() (#1989245)
- install: refactor find_symlinks() and don't search for symlinks recursively (#1828758)
?b�4�?���Cu��Maurizio Lombardi <mlombard@redhat.com> - 2.1.fb46-7[j�@- Respin a new release of targetcli to avoid problems with TPS tests.g��Bu]�Maurizio Lombardi <mlombard@redhat.com> - 2.1.fb46-6[!@- handle backups with block-level deletez��Au��Maurizio Lombardi <mlombard@redhat.com> - 2.1.fb46-5[)�- saveconfig: way for block-level save with delete command�+��@u�c�Maurizio Lombardi <mlombard@redhat.com> - 2.1.fb46-4Z��- Properly detect errors when writing backup files. (Closes: #80) (#81)
- Read number of backup files to keep from file
- config: defend on '/etc/target/backup' directory
- config: backup when current config is different from recent backup copy
- config: rename key 'kept_backups' as 'max_backup_files'
- backup: global option to tune max no. of backup conf files���?�	�)�systemd maintenance team <systemd-maint@redhat.com> - 219-78.9e]�@- Revert "fstab-generator: Chase symlinks where possible (#6293)" (RHEL-17164)
d��F�dx��Iq��Maurizio Lombardi <mlombard@redhat.com> - 2.1.53-1_�P�- Rebase the targetcli package to fix some security issuesb��HqW�Maurizio Lombardi <mlombard@redhat.com> - 2.1.51-2^��- Add the interactive daemon console.a��GuQ�Maurizio Lombardi <mlombard@redhat.com> - 2.1.fb51-1^�%@- Update to a new upstream versionc��FuU�Maurizio Lombardi <mlombard@redhat.com> - 2.1.fb49-3^{G�- Respin a new release of targetcli.���Eu��Maurizio Lombardi <mlombard@redhat.com> - 2.1.fb49-2]v>�- Get a lock to avoid the issues with concurrent backstore creationb��DuS�Maurizio Lombardi <mlombard@redhat.com> - 2.1.fb49-1\P@@- Rebase to latest upstream version
��G��$��L}�M�David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 6.18.01-11W9�@- Fix regression introduced in tcsh-6.18.01-quote-backslashes-properly.patch
  Related: #1319816���K}�)�David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 6.18.01-10WK�- Handle the ^C interrupt correctly when using the 'eval' built-in. (#1273500)���J}�?�David Kaspar [Dee'Kej] <dkaspar@redhat.com> -  6.18.01-9V�n@- 'if statement' parsing fixed when the space is missing after ')'. (#1273892)
- Quote backslashes properly to preserve them in `...` expressions. (#1319816)
- Fix for tcsh being interruptible while waiting for child process. (#1269370)
- Fix of memory leak when using the 'source' built-in command.      (#1273513)
- Print error message on stderr (instead of stdout).                (#1273498)
- Use GLIBC's malloc instead of builtin malloc.                     (#1315713)
^�/����Rc�=�Jan Macku <jamacku@redhat.com> - 6.18.01-17^�y�- fix regression caused by backported patch, command var is now set as before (#1842722)���Qc��Jan Macku <jamacku@redhat.com> - 6.18.01-16]��- fix for rapid memory consumption caused by corrupted history (#1598502)���P}�!�David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 6.18.01-15X��@- fix for memory leak when cdpath fails to find a matching path (#1325346)���O}�3�David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 6.18.01-14X���- fix hanging of tcsh when .history file is located on remote filesystem (#1388426)�%��N}�O�David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 6.18.01-13W�~�- Fix yet another regression in tcsh-6.18.01-quote-backslashes-properly.patch
  Related: #1334751�s��M}�k�David Kaspar [Dee'Kej] <dkaspar@redhat.com> - 6.18.01-12WF�@- Fix another regression in tcsh-6.18.01-quote-backslashes-properly.patch
  Related: #1334751

- Fix regression in tcsh-6.18.01-use-stderr-upon-error.patch
  Related: #1273498
qt��?�q���Ym�+�Michal Ruprich <mruprich@redhat.com> - 1:0.17-62X��@- Related: #1367415 - No option to specify IPv6 or IPv4 explicitly must be used���Xm�-�Michal Ruprich <mruprich@redhat.com> - 1:0.17-61XX�- Resolves: #1367415 - No option to specify IPv6 or IPv4 explicitly must be used�(��Wq�a�Martin Sehnoutka <msehnout@redhat.com> - 1:0.17-60Wv[@- Introduce new -i switch
- ip addresses will be logged into utmp instead of hostname
- Resolves: #1323094N��Va?�Daniel Mach <dmach@redhat.com> - 1:0.17-59R�U�- Mass rebuild 2014-01-24N��Ua?�Daniel Mach <dmach@redhat.com> - 1:0.17-58R�k�- Mass rebuild 2013-12-27���To�+�Michal Sekletar <msekleta@redhat.com> - 1:0.17-57Q�@- enable hardened build
- fix dates in changelog
- add systemd to BuildRequires���So�!�Jan Macku <jamacku@redhat.com> - 6.18.01-17.el7.1_
�@- fix regression caused by corrupted history (#1846271)
- fix typo in spec
I9]�,�IN��_a?�Daniel Mach <dmach@redhat.com> - 1:0.17-58R�k�- Mass rebuild 2013-12-27���^o�+�Michal Sekletar <msekleta@redhat.com> - 1:0.17-57Q�@- enable hardened build
- fix dates in changelog
- add systemd to BuildRequires���]m��Michal Ruprich <mruprich@redhat.com> - 1:0.17-66_i�@- Resolves: #1853102 - in.telnetd needs to tolerate temporary EIO errors�#��\u�S�Michal Ruprich <michalruprich@gmail.com> - 1:0.17-65^|�@- Resolves: #1814476 - Arbitrary remote code execution in utility.c via short writes or urgent data�W��[A�o�Michal Ruprich - 1:0.17-64X�QA- Related: #1367415 - No option to specify IPv6 or IPv4 explicitly must be used
                    - more clear formulation of man page note - previous note was a bit ambiguous�B��Zm��Michal Ruprich <mruprich@redhat.com> - 1:0.17-63X�Q@- Related: #1367415 - No option to specify IPv6 or IPv4 explicitly must be used
                    - additional info added to manpage
=�p�=�W��eA�o�Michal Ruprich - 1:0.17-64X�QA- Related: #1367415 - No option to specify IPv6 or IPv4 explicitly must be used
                    - more clear formulation of man page note - previous note was a bit ambiguous�B��dm��Michal Ruprich <mruprich@redhat.com> - 1:0.17-63X�Q@- Related: #1367415 - No option to specify IPv6 or IPv4 explicitly must be used
                    - additional info added to manpage���cm�+�Michal Ruprich <mruprich@redhat.com> - 1:0.17-62X��@- Related: #1367415 - No option to specify IPv6 or IPv4 explicitly must be used���bm�-�Michal Ruprich <mruprich@redhat.com> - 1:0.17-61XX�- Resolves: #1367415 - No option to specify IPv6 or IPv4 explicitly must be used�(��aq�a�Martin Sehnoutka <msehnout@redhat.com> - 1:0.17-60Wv[@- Introduce new -i switch
- ip addresses will be logged into utmp instead of hostname
- Resolves: #1323094N��`a?�Daniel Mach <dmach@redhat.com> - 1:0.17-59R�U�- Mass rebuild 2014-01-24

5X�|)��0��5Q��ocC�Eike Rathke <erack@redhat.com> - 102.10.0-1d.�@- Update to 102.10.0 build1O��naA�Eike Rathke <erack@redhat.com> - 102.9.0-2d@- Update to 102.9.0 build1O��maA�Eike Rathke <erack@redhat.com> - 102.8.0-2c��@- Update to 102.8.0 build2O��laA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�1�- Update to 102.8.0 build1O��kaA�Eike Rathke <erack@redhat.com> - 102.7.1-2c��- Update to 102.7.1 build2O��jaA�Eike Rathke <erack@redhat.com> - 102.7.1-1c��@- Update to 102.7.1 build1O��iaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�<@- Update to 102.7.0 build1O��haA�Eike Rathke <erack@redhat.com> - 102.6.0-2c�i@- Update to 102.6.0 build2���gm��Michal Ruprich <mruprich@redhat.com> - 1:0.17-66_i�@- Resolves: #1853102 - in.telnetd needs to tolerate temporary EIO errors�#��fu�S�Michal Ruprich <michalruprich@gmail.com> - 1:0.17-65^|�@- Resolves: #1814476 - Arbitrary remote code execution in utility.c via short writes or urgent data
\�M��T�[�\Q��zcC�Eike Rathke <erack@redhat.com> - 102.11.0-1dS�@- Update to 102.11.0 build1Q��ycC�Eike Rathke <erack@redhat.com> - 102.10.0-2d5K�- Update to 102.10.0 build2Q��xcC�Eike Rathke <erack@redhat.com> - 102.10.0-1d.�@- Update to 102.10.0 build1O��waA�Eike Rathke <erack@redhat.com> - 102.9.0-2d@- Update to 102.9.0 build1O��vaA�Eike Rathke <erack@redhat.com> - 102.8.0-2c��@- Update to 102.8.0 build2O��uaA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�1�- Update to 102.8.0 build1O��taA�Eike Rathke <erack@redhat.com> - 102.7.1-2c��- Update to 102.7.1 build2O��saA�Eike Rathke <erack@redhat.com> - 102.7.1-1c��@- Update to 102.7.1 build1O��raA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�<@- Update to 102.7.0 build1Z��q};�CentOS Sources <bugs@centos.org> - 102.10.0-2.el7.centosd=4�- rebrand default prefsQ��pcC�Eike Rathke <erack@redhat.com> - 102.10.0-2d5K�- Update to 102.10.0 build2
Q�O��V�Y�QZ��};�CentOS Sources <bugs@centos.org> - 102.12.0-1.el7.centosd��- rebrand default prefsQ��cC�Eike Rathke <erack@redhat.com> - 102.12.0-1d}�@- Update to 102.12.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dS�@- Update to 102.11.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.10.0-2d5K�- Update to 102.10.0 build2Q��cC�Eike Rathke <erack@redhat.com> - 102.10.0-1d.�@- Update to 102.10.0 build1O��aA�Eike Rathke <erack@redhat.com> - 102.9.0-2d@- Update to 102.9.0 build1O��aA�Eike Rathke <erack@redhat.com> - 102.8.0-2c��@- Update to 102.8.0 build2O��~aA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�1�- Update to 102.8.0 build1O��}aA�Eike Rathke <erack@redhat.com> - 102.7.1-2c��- Update to 102.7.1 build2O��|aA�Eike Rathke <erack@redhat.com> - 102.7.1-1c��@- Update to 102.7.1 build1Z��{};�CentOS Sources <bugs@centos.org> - 102.11.0-1.el7.centosdcp@- rebrand default prefs
V�Z�]�^	�VQ��cC�Eike Rathke <erack@redhat.com> - 102.10.0-1d.�@- Update to 102.10.0 build1Z��};�CentOS Sources <bugs@centos.org> - 102.13.0-2.el7.centosd��@- rebrand default prefsQ��cC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��@- Update to 102.13.0 build2Q��
cC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�[@- Update to 102.13.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.12.0-1d}�@- Update to 102.12.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dS�@- Update to 102.11.0 build1Q��
cC�Eike Rathke <erack@redhat.com> - 102.10.0-2d5K�- Update to 102.10.0 build2Q��	cC�Eike Rathke <erack@redhat.com> - 102.10.0-1d.�@- Update to 102.10.0 build1O��aA�Eike Rathke <erack@redhat.com> - 102.9.0-2d@- Update to 102.9.0 build1O��aA�Eike Rathke <erack@redhat.com> - 102.8.0-2c��@- Update to 102.8.0 build2O��aA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�1�- Update to 102.8.0 build1
U�V�W�]��UQ��cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dS�@- Update to 102.11.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.10.0-2d5K�- Update to 102.10.0 build2Z��};�CentOS Sources <bugs@centos.org> - 102.14.0-3.el7.centosd��- rebrand default prefsK��c7�Eike Rathke <erack@redhat.com> - 102.14.0-3d��- Bump NVR to rebuildR��aG�Jan Horak <jhorak@redhat.com> - 102.14.0-2d��- Rebuild due to rhbz#2228948Q��cC�Eike Rathke <erack@redhat.com> - 102.14.0-1d��- Update to 102.14.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��@- Update to 102.13.0 build2Q��cC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�[@- Update to 102.13.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.12.0-1d}�@- Update to 102.12.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dS�@- Update to 102.11.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.10.0-2d5K�- Update to 102.10.0 build2
[�V�V�T�[O��&aA�Eike Rathke <erack@redhat.com> - 91.12.0-1bޅ�- Update to 91.12.0 build1O��%aA�Eike Rathke <erack@redhat.com> - 91.11.0-2b��@- Update to 91.11.0 build2O��$aA�Eike Rathke <erack@redhat.com> - 91.11.0-1b�U�- Update to 91.11.0 build1Z��#};�CentOS Sources <bugs@centos.org> - 102.15.0-1.el7.centosd��- rebrand default prefsQ��"cC�Eike Rathke <erack@redhat.com> - 102.15.0-1d�@- Update to 102.15.0 build1K��!c7�Eike Rathke <erack@redhat.com> - 102.14.0-3d��- Bump NVR to rebuildR�� aG�Jan Horak <jhorak@redhat.com> - 102.14.0-2d��- Rebuild due to rhbz#2228948Q��cC�Eike Rathke <erack@redhat.com> - 102.14.0-1d��- Update to 102.14.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.13.0-2d��@- Update to 102.13.0 build2Q��cC�Eike Rathke <erack@redhat.com> - 102.13.0-1d�[@- Update to 102.13.0 build1Q��cC�Eike Rathke <erack@redhat.com> - 102.12.0-1d}�@- Update to 102.12.0 build1
a�[�_�\
�aO��1aA�Eike Rathke <erack@redhat.com> - 102.4.0-1cMC�- Update to 102.4.0 build1R��0_I�Jan Horak <jhorak@redhat.com> - 102.3.0-4cF�@- Fix for expat CVE-2022-40674N��/_A�Jan Horak <jhorak@redhat.com> - 102.3.0-3c$e@- Update to 102.3.0 build1O��.aA�Eike Rathke <erack@redhat.com> - 91.13.0-1b�{@- Update to 91.13.0 build1Y��-{;�CentOS Sources <bugs@centos.org> - 102.5.0-2.el7.centosc{h@- rebrand default prefsO��,aA�Eike Rathke <erack@redhat.com> - 102.5.0-2cs@- Update to 102.5.0 build2O��+aA�Eike Rathke <erack@redhat.com> - 102.5.0-1cn9@- Update to 102.5.0 build1O��*aA�Eike Rathke <erack@redhat.com> - 102.4.0-1cMC�- Update to 102.4.0 build1R��)_I�Jan Horak <jhorak@redhat.com> - 102.3.0-4cF�@- Fix for expat CVE-2022-40674N��(_A�Jan Horak <jhorak@redhat.com> - 102.3.0-3c$e@- Update to 102.3.0 build1O��'aA�Eike Rathke <erack@redhat.com> - 91.13.0-1b�{@- Update to 91.13.0 build1

e�r+��V��:��eD�/�
bb7eaa756f5d42c513cfe946f0f1ba45130c482c2f40200c3e68e01181b80fedD�.�
de56cf10dbbabd9a55f388bacf02eb1f5bb04b430bbad9a217d6dc57141aaeb5D�-�
852bab23cc3bdff5b4cdf1f101f36a4d1fd4e8d3e570d399b4ef0b06e0e29536D�,�
4c0ef9ca78331cc0b0d030d525a258c4b4b7b48e388c2a3e3c8cf104d2f410efD�+�
b218ab101b70c9d78787a08804e407030dfd24d15979db45116e871686e88c92D�*�
70fef3e281063a882efee9c52f35d342cd008f1417571c2af4e4f52c5a4439acD�)�
f6e16caafd938158d5d693a73fc21601fae109452acfff7e3b9ed72d940a89b7D�(�
3edc5c8d5cf1dd51b987f3178aa2e996847bacf9b48d9d5f96f0831a21c48b97D�'�
2ea9b64c6b87755ded68455e09101ffd22979b77f06e55588e58f91c9a0155d1D�&�
5a404e4d0261a2aa45188a169969665640124c8587bfaff7eaa4706a5f16727dD�%�
d56ae1d4e0d4b0be63156bddcdb2f72700d55124efafecb654bbb436fd36eca5D�$�
a5589b3ed616bfece0771799ef3774cb33d200e987dba38dc365b6df40958657D�#�
6cc9689dc7dfe51e1de149a22559946854b93c2f46f3d9f68ea4bc070cc665ae

��Z��.�{(��O��;aA�Eike Rathke <erack@redhat.com> - 102.5.0-2cs@- Update to 102.5.0 build2O��:aA�Eike Rathke <erack@redhat.com> - 102.5.0-1cn9@- Update to 102.5.0 build1O��9aA�Eike Rathke <erack@redhat.com> - 102.4.0-1cMC�- Update to 102.4.0 build1R��8_I�Jan Horak <jhorak@redhat.com> - 102.3.0-4cF�@- Fix for expat CVE-2022-40674Y��7{;�CentOS Sources <bugs@centos.org> - 102.6.0-2.el7.centosc�@- rebrand default prefsO��6aA�Eike Rathke <erack@redhat.com> - 102.6.0-2c�i@- Update to 102.6.0 build2O��5aA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�#@- Update to 102.6.0 build1���4_�%�Jan Horak <jhorak@redhat.com> - 102.5.0-3c��@- Use openssl for the librnp crypto backend to enable the openpgp encryptionO��3aA�Eike Rathke <erack@redhat.com> - 102.5.0-2cs@- Update to 102.5.0 build2O��2aA�Eike Rathke <erack@redhat.com> - 102.5.0-1cn9@- Update to 102.5.0 build1

Rz'��.�~+�R���E_�%�Jan Horak <jhorak@redhat.com> - 102.5.0-3c��@- Use openssl for the librnp crypto backend to enable the openpgp encryptionO��DaA�Eike Rathke <erack@redhat.com> - 102.5.0-2cs@- Update to 102.5.0 build2O��CaA�Eike Rathke <erack@redhat.com> - 102.5.0-1cn9@- Update to 102.5.0 build1O��BaA�Eike Rathke <erack@redhat.com> - 102.4.0-1cMC�- Update to 102.4.0 build1Y��A{;�CentOS Sources <bugs@centos.org> - 102.7.1-1.el7.centosc��- rebrand default prefsO��@aA�Eike Rathke <erack@redhat.com> - 102.7.1-1c��@- Update to 102.7.1 build1O��?aA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�<@- Update to 102.7.0 build1O��>aA�Eike Rathke <erack@redhat.com> - 102.6.0-2c�i@- Update to 102.6.0 build2O��=aA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�#@- Update to 102.6.0 build1���<_�%�Jan Horak <jhorak@redhat.com> - 102.5.0-3c��@- Use openssl for the librnp crypto backend to enable the openpgp encryption
2�Z�a�+��2O��PaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�<@- Update to 102.7.0 build1O��OaA�Eike Rathke <erack@redhat.com> - 102.6.0-2c�i@- Update to 102.6.0 build2O��NaA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�#@- Update to 102.6.0 build1���M_�%�Jan Horak <jhorak@redhat.com> - 102.5.0-3c��@- Use openssl for the librnp crypto backend to enable the openpgp encryptionO��LaA�Eike Rathke <erack@redhat.com> - 102.5.0-2cs@- Update to 102.5.0 build2Y��K{;�CentOS Sources <bugs@centos.org> - 102.7.1-2.el7.centosc��- rebrand default prefsO��JaA�Eike Rathke <erack@redhat.com> - 102.7.1-2c��- Update to 102.7.1 build2O��IaA�Eike Rathke <erack@redhat.com> - 102.7.1-1c��@- Update to 102.7.1 build1O��HaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�<@- Update to 102.7.0 build1O��GaA�Eike Rathke <erack@redhat.com> - 102.6.0-2c�i@- Update to 102.6.0 build2O��FaA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�#@- Update to 102.6.0 build1
2�Z�W�~+��2O��[aA�Eike Rathke <erack@redhat.com> - 102.7.1-2c��- Update to 102.7.1 build2O��ZaA�Eike Rathke <erack@redhat.com> - 102.7.1-1c��@- Update to 102.7.1 build1O��YaA�Eike Rathke <erack@redhat.com> - 102.7.0-1c�<@- Update to 102.7.0 build1O��XaA�Eike Rathke <erack@redhat.com> - 102.6.0-2c�i@- Update to 102.6.0 build2O��WaA�Eike Rathke <erack@redhat.com> - 102.6.0-1c�#@- Update to 102.6.0 build1���V_�%�Jan Horak <jhorak@redhat.com> - 102.5.0-3c��@- Use openssl for the librnp crypto backend to enable the openpgp encryptionY��U{;�CentOS Sources <bugs@centos.org> - 102.8.0-2.el7.centosc�`�- rebrand default prefsO��TaA�Eike Rathke <erack@redhat.com> - 102.8.0-2c��@- Update to 102.8.0 build2O��SaA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�1�- Update to 102.8.0 build1O��RaA�Eike Rathke <erack@redhat.com> - 102.7.1-2c��- Update to 102.7.1 build2O��QaA�Eike Rathke <erack@redhat.com> - 102.7.1-1c��@- Update to 102.7.1 build1
b�Z�W�[�bO��faA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�B�- Update to 115.8.0 build1O��eaA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�X�- Update to 115.7.0 build1O��daA�Eike Rathke <erack@redhat.com> - 115.6.0-1e�4@- Update to 115.6.0 build2O��caA�Eike Rathke <erack@redhat.com> - 115.5.0-1e\��- Update to 115.5.0 build1O��baA�Eike Rathke <erack@redhat.com> - 115.4.1-1e9@- Update to 115.4.1 build1R��agA�Anton Bobrov <abobrov@redhat.com> - 115.4.0-3e7��- Update to 115.4.0 build3O��`aA�Eike Rathke <erack@redhat.com> - 115.4.0-2e3�@- Update to 115.4.0 build2Y��_{;�CentOS Sources <bugs@centos.org> - 102.9.0-1.el7.centosd�- rebrand default prefsO��^aA�Eike Rathke <erack@redhat.com> - 102.9.0-1d@- Update to 102.9.0 build1O��]aA�Eike Rathke <erack@redhat.com> - 102.8.0-2c��@- Update to 102.8.0 build2O��\aA�Eike Rathke <erack@redhat.com> - 102.8.0-1c�1�- Update to 102.8.0 build1

b��o�v#�bj��paw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�,�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O��oaA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�B�- Update to 115.8.0 build1O��naA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�X�- Update to 115.7.0 build1O��maA�Eike Rathke <erack@redhat.com> - 115.6.0-1e�4@- Update to 115.6.0 build2O��laA�Eike Rathke <erack@redhat.com> - 115.5.0-1e\��- Update to 115.5.0 build1O��kaA�Eike Rathke <erack@redhat.com> - 115.4.1-1e9@- Update to 115.4.1 build1R��jgA�Anton Bobrov <abobrov@redhat.com> - 115.4.0-3e7��- Update to 115.4.0 build3Q��icC�Eike Rathke <erack@redhat.com> - 115.10.0-2f�- Update to 115.10.0 build2t��hc��Eike Rathke <erack@redhat.com> - 115.10.0-1f"@- Update to 115.10.0 build1
- Revert expat CVE-2023-52425 fixj��gaw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�,�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425

U�3��8�w��UQ��zcC�Eike Rathke <erack@redhat.com> - 115.11.0-1fB�- Update to 115.11.0 build2Q��ycC�Eike Rathke <erack@redhat.com> - 115.10.0-2f�- Update to 115.10.0 build2t��xc��Eike Rathke <erack@redhat.com> - 115.10.0-1f"@- Update to 115.10.0 build1
- Revert expat CVE-2023-52425 fixj��waw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�,�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O��vaA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�B�- Update to 115.8.0 build1O��uaA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�X�- Update to 115.7.0 build1O��taA�Eike Rathke <erack@redhat.com> - 115.6.0-1e�4@- Update to 115.6.0 build2Q��scC�Eike Rathke <erack@redhat.com> - 115.11.0-1fB�- Update to 115.11.0 build2Q��rcC�Eike Rathke <erack@redhat.com> - 115.10.0-2f�- Update to 115.10.0 build2t��qc��Eike Rathke <erack@redhat.com> - 115.10.0-1f"@- Update to 115.10.0 build1
- Revert expat CVE-2023-52425 fix
 �V�a�o�s O��aA�Eike Rathke <erack@redhat.com> - 115.5.0-1e\��- Update to 115.5.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.4.1-1e9@- Update to 115.4.1 build1R��gA�Anton Bobrov <abobrov@redhat.com> - 115.4.0-3e7��- Update to 115.4.0 build3O��aA�Eike Rathke <erack@redhat.com> - 115.4.0-2e3�@- Update to 115.4.0 build2O��aA�Eike Rathke <erack@redhat.com> - 115.4.0-1e2k�- Update to 115.4.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1 build1H��a3�Eike Rathke <erack@redhat.com> - 115.3.0-1e@- Update to 115.3.0G��_3�Jan Horak <jhorak@redhat.com> - 115.2.1-5d��- Update to 115.2.1Q��~cC�Eike Rathke <erack@redhat.com> - 102.11.0-1dS�@- Update to 102.11.0 build1Q��}cC�Eike Rathke <erack@redhat.com> - 115.12.1-1fqv�- Update to 115.12.1 build1Q��|cC�Eike Rathke <erack@redhat.com> - 115.12.0-2fh<@- Update to 115.12.0 build2Q��{cC�Eike Rathke <erack@redhat.com> - 115.12.0-1ff�- Update to 115.12.0 build1
/�b�p�t!�{/H��a3�Eike Rathke <erack@redhat.com> - 115.3.0-1e@- Update to 115.3.0O��aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�X�- Update to 115.7.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.6.0-1e�4@- Update to 115.6.0 build2O��aA�Eike Rathke <erack@redhat.com> - 115.5.0-1e\��- Update to 115.5.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.4.1-1e9@- Update to 115.4.1 build1R��
gA�Anton Bobrov <abobrov@redhat.com> - 115.4.0-3e7��- Update to 115.4.0 build3O��aA�Eike Rathke <erack@redhat.com> - 115.4.0-2e3�@- Update to 115.4.0 build2O��aA�Eike Rathke <erack@redhat.com> - 115.4.0-1e2k�- Update to 115.4.0 build1O��
aA�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1 build1H��	a3�Eike Rathke <erack@redhat.com> - 115.3.0-1e@- Update to 115.3.0G��_3�Jan Horak <jhorak@redhat.com> - 115.2.1-5d��- Update to 115.2.1O��aA�Eike Rathke <erack@redhat.com> - 115.6.0-1e�4@- Update to 115.6.0 build2
l�Z�^�e�lO��aA�Eike Rathke <erack@redhat.com> - 115.4.0-1e2k�- Update to 115.4.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1 build1O��aA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�B�- Update to 115.8.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�X�- Update to 115.7.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.6.0-1e�4@- Update to 115.6.0 build2O��aA�Eike Rathke <erack@redhat.com> - 115.5.0-1e\��- Update to 115.5.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.4.1-1e9@- Update to 115.4.1 build1R��gA�Anton Bobrov <abobrov@redhat.com> - 115.4.0-3e7��- Update to 115.4.0 build3O��aA�Eike Rathke <erack@redhat.com> - 115.4.0-2e3�@- Update to 115.4.0 build2O��aA�Eike Rathke <erack@redhat.com> - 115.4.0-1e2k�- Update to 115.4.0 build1O��aA�Eike Rathke <erack@redhat.com> - 115.3.1-1e�@- Update to 115.3.1 build1
f�W�^�J��fF��(_1�Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1F��'_1�Eike Rathke <erack@redhat.com> - 78.6.0-1_إ@- Update to 78.6.0L��&]?�Jan Horak <jhorak@redhat.com> - 78.5.1-1_�$�- Update to 78.5.1 build1j��%aw�Eike Rathke <erack@redhat.com> - 115.9.0-1e�,�- Update to 115.9.0 build1
- Fix expat CVE-2023-52425O��$aA�Eike Rathke <erack@redhat.com> - 115.8.0-1e�B�- Update to 115.8.0 build1O��#aA�Eike Rathke <erack@redhat.com> - 115.7.0-1e�X�- Update to 115.7.0 build1O��"aA�Eike Rathke <erack@redhat.com> - 115.6.0-1e�4@- Update to 115.6.0 build2O��!aA�Eike Rathke <erack@redhat.com> - 115.5.0-1e\��- Update to 115.5.0 build1O�� aA�Eike Rathke <erack@redhat.com> - 115.4.1-1e9@- Update to 115.4.1 build1R��gA�Anton Bobrov <abobrov@redhat.com> - 115.4.0-3e7��- Update to 115.4.0 build3O��aA�Eike Rathke <erack@redhat.com> - 115.4.0-2e3�@- Update to 115.4.0 build2
I�e�_�5��IM��4_?�Eike Rathke <erack@redhat.com> - 78.9.0-1`X��- Update to 78.9.0 build1M��3_?�Eike Rathke <erack@redhat.com> - 78.8.0-1`/�@- Update to 78.8.0 build1F��2_1�Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0F��1_1�Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1F��0_1�Eike Rathke <erack@redhat.com> - 78.6.0-1_إ@- Update to 78.6.0H��/a3�Eike Rathke <erack@redhat.com> - 78.10.0-1`��- Update to 78.10.0F��._1�Eike Rathke <erack@redhat.com> - 78.9.1-1`t6@- Update to 78.9.1`��-_e�Eike Rathke <erack@redhat.com> - 78.9.0-3`Y�@- Update to 78.9.0 build2, updated langpacksM��,_?�Eike Rathke <erack@redhat.com> - 78.9.0-2`X��- Update to 78.9.0 build2M��+_?�Eike Rathke <erack@redhat.com> - 78.9.0-1`X��- Update to 78.9.0 build1M��*_?�Eike Rathke <erack@redhat.com> - 78.8.0-1`/�@- Update to 78.8.0 build1F��)_1�Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0

e�r+��V��:��eD�<�
70147742c172a9a706e38cf38eb04c08145498f9822bed40df6a19a4dd171abfD�;�
89b015eb0d04659b187b7cae8d68fd38cdfd6ebc31ef6a4cc9432e777fe5c452D�:�
412317b2522f388f60a8b9846d99020fa2c884e8557b0552ad09b4218e97803dD�9�
2079fcbe2c07aa0485612a667be1c81504654629f2931e7110664db306550787D�8�
111c3beab8a3058046e42edddf8655dcd4e30d6e71bf5aa80d2a92dac1df6951D�7�
9d6dba1f2b69d9a60186e25386f8b45c69cd3fc28e58774151905a0edfac5a82D�6�
de7c7cd5bd6465116843083e7515695b436a00a145d6c705355b3e74a55e2b6bD�5�
f57d7074e8e50a23c9a10a230c6edbd1f48bc3130046704525be72e10c371656D�4�
228b8ee7bdee5b627106d8959417f2a8b8b2a44b8b631203b220ccb5bf160b83D�3�
6576a71997c6b88e455bd9405164a03375ea03ef6dfbfc8c070d29e8de1f5324D�2�
d358a86339e24e16bfcc77c61f6f12dea5c1485847a4bd5eee6a6e06c3634ff2D�1�
8739cf31df198902b5c4e96ff918fdcbce1f988373e266baf0f5836a83776919D�0�
4fb95ce0e3bb960c9c63b40c2398ead5b921b09764ee630c5e15c83ef4569e24
+�K�b�v%�w+H��@a3�Eike Rathke <erack@redhat.com> - 78.10.0-1`��- Update to 78.10.0F��?_1�Eike Rathke <erack@redhat.com> - 78.9.1-1`t6@- Update to 78.9.1`��>_e�Eike Rathke <erack@redhat.com> - 78.9.0-3`Y�@- Update to 78.9.0 build2, updated langpacksM��=_?�Eike Rathke <erack@redhat.com> - 78.9.0-2`X��- Update to 78.9.0 build2M��<_?�Eike Rathke <erack@redhat.com> - 78.9.0-1`X��- Update to 78.9.0 build1M��;_?�Eike Rathke <erack@redhat.com> - 78.8.0-1`/�@- Update to 78.8.0 build1F��:_1�Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0O��9aA�Eike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H��8a3�Eike Rathke <erack@redhat.com> - 78.10.0-1`��- Update to 78.10.0F��7_1�Eike Rathke <erack@redhat.com> - 78.9.1-1`t6@- Update to 78.9.1`��6_e�Eike Rathke <erack@redhat.com> - 78.9.0-3`Y�@- Update to 78.9.0 build2, updated langpacksM��5_?�Eike Rathke <erack@redhat.com> - 78.9.0-2`X��- Update to 78.9.0 build2
r�Z�e�k�rO��KaA�Eike Rathke <erack@redhat.com> - 78.12.0-2`�.�- Update to 78.12.0 build2O��JaA�Eike Rathke <erack@redhat.com> - 78.12.0-1`��- Update to 78.12.0 build1O��IaA�Eike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H��Ha3�Eike Rathke <erack@redhat.com> - 78.10.0-1`��- Update to 78.10.0F��G_1�Eike Rathke <erack@redhat.com> - 78.9.1-1`t6@- Update to 78.9.1`��F_e�Eike Rathke <erack@redhat.com> - 78.9.0-3`Y�@- Update to 78.9.0 build2, updated langpacksM��E_?�Eike Rathke <erack@redhat.com> - 78.9.0-2`X��- Update to 78.9.0 build2M��D_?�Eike Rathke <erack@redhat.com> - 78.9.0-1`X��- Update to 78.9.0 build1O��CaA�Eike Rathke <erack@redhat.com> - 78.12.0-2`�.�- Update to 78.12.0 build2O��BaA�Eike Rathke <erack@redhat.com> - 78.12.0-1`��- Update to 78.12.0 build1O��AaA�Eike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1
Z�X��^�e�Z_��V_c�Jan Horak <jhorak@redhat.com> - 78.13.0-2aS@- Use the right name for the appstream fileO��UaA�Eike Rathke <erack@redhat.com> - 78.13.0-1a
�@- Update to 78.13.0 build1Q��T_G�Jan Horak <jhorak@redhat.com> - 78.12.0-3`�t�- Rebuild to pickup older nssO��SaA�Eike Rathke <erack@redhat.com> - 78.12.0-2`�.�- Update to 78.12.0 build2O��RaA�Eike Rathke <erack@redhat.com> - 78.12.0-1`��- Update to 78.12.0 build1O��QaA�Eike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1H��Pa3�Eike Rathke <erack@redhat.com> - 78.10.0-1`��- Update to 78.10.0F��O_1�Eike Rathke <erack@redhat.com> - 78.9.1-1`t6@- Update to 78.9.1`��N_e�Eike Rathke <erack@redhat.com> - 78.9.0-3`Y�@- Update to 78.9.0 build2, updated langpacksO��MaA�Eike Rathke <erack@redhat.com> - 78.13.0-1a
�@- Update to 78.13.0 build1Q��L_G�Jan Horak <jhorak@redhat.com> - 78.12.0-3`�t�- Rebuild to pickup older nss
7�]
�k�w��7b��a_i�Eike Rathke <erack@redhat.com> - 78.4.0-1_�"�- Update to 78.4.0 build1
- Disabled telemetryL��`]?�Jan Horak <jhorak@redhat.com> - 78.3.1-1_s!�- Update to 78.3.1 build1���_]�/�Jan Horak <jhorak@redhat.com> - 78.3.0-3_e�- Update to 78.3.0 build1
- Remove librdp.so as long as we cannot ship it in RHELL��^]?�Jan Horak <jhorak@redhat.com> - 78.2.1-1_Wr@- Update to 78.2.1 build1N��]_A�Jan Horak <jhorak@redhat.com> - 68.12.0-1_O�@- Update to 68.12.0 build1N��\_A�Jan Horak <jhorak@redhat.com> - 68.11.0-1_)M�- Update to 68.11.0 build1N��[_A�Jan Horak <jhorak@redhat.com> - 68.10.0-1_�@- Update to 68.10.0 build1L��Z]?�Jan Horak <jhorak@redhat.com> - 68.9.0-1^�3�- Update to 68.9.0 build1L��Y]?�Jan Horak <jhorak@redhat.com> - 68.8.0-1^�U@- Update to 68.8.0 build2L��X]?�Jan Horak <jhorak@redhat.com> - 68.7.0-1^���- Update to 68.7.0 build1O��WaA�Eike Rathke <erack@redhat.com> - 78.14.0-1a0��- Update to 78.14.0 build1
=�^�j��*��=N��l_A�Jan Horak <jhorak@redhat.com> - 68.11.0-1_)M�- Update to 68.11.0 build1M��k_?�Eike Rathke <erack@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build3F��j_1�Eike Rathke <erack@redhat.com> - 78.4.3-1_�#�- Update to 78.4.3b��i_i�Eike Rathke <erack@redhat.com> - 78.4.0-1_�"�- Update to 78.4.0 build1
- Disabled telemetryL��h]?�Jan Horak <jhorak@redhat.com> - 78.3.1-1_s!�- Update to 78.3.1 build1���g]�/�Jan Horak <jhorak@redhat.com> - 78.3.0-3_e�- Update to 78.3.0 build1
- Remove librdp.so as long as we cannot ship it in RHELL��f]?�Jan Horak <jhorak@redhat.com> - 78.2.1-1_Wr@- Update to 78.2.1 build1N��e_A�Jan Horak <jhorak@redhat.com> - 68.12.0-1_O�@- Update to 68.12.0 build1N��d_A�Jan Horak <jhorak@redhat.com> - 68.11.0-1_)M�- Update to 68.11.0 build1N��c_A�Jan Horak <jhorak@redhat.com> - 68.10.0-1_�@- Update to 68.10.0 build1L��b]?�Jan Horak <jhorak@redhat.com> - 68.9.0-1^�3�- Update to 68.9.0 build1
G�^����3��GL��w]?�Jan Horak <jhorak@redhat.com> - 78.2.1-1_Wr@- Update to 78.2.1 build1N��v_A�Jan Horak <jhorak@redhat.com> - 68.12.0-1_O�@- Update to 68.12.0 build1F��u_1�Eike Rathke <erack@redhat.com> - 78.6.0-1_إ@- Update to 78.6.0L��t]?�Jan Horak <jhorak@redhat.com> - 78.5.1-1_�$�- Update to 78.5.1 build1M��s_?�Eike Rathke <erack@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build3F��r_1�Eike Rathke <erack@redhat.com> - 78.4.3-1_�#�- Update to 78.4.3b��q_i�Eike Rathke <erack@redhat.com> - 78.4.0-1_�"�- Update to 78.4.0 build1
- Disabled telemetryL��p]?�Jan Horak <jhorak@redhat.com> - 78.3.1-1_s!�- Update to 78.3.1 build1���o]�/�Jan Horak <jhorak@redhat.com> - 78.3.0-3_e�- Update to 78.3.0 build1
- Remove librdp.so as long as we cannot ship it in RHELL��n]?�Jan Horak <jhorak@redhat.com> - 78.2.1-1_Wr@- Update to 78.2.1 build1N��m_A�Jan Horak <jhorak@redhat.com> - 68.12.0-1_O�@- Update to 68.12.0 build1

gv&�v%��A�g���]�/�Jan Horak <jhorak@redhat.com> - 78.3.0-3_e�- Update to 78.3.0 build1
- Remove librdp.so as long as we cannot ship it in RHELL��]?�Jan Horak <jhorak@redhat.com> - 78.2.1-1_Wr@- Update to 78.2.1 build1F��_1�Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1F��~_1�Eike Rathke <erack@redhat.com> - 78.6.0-1_إ@- Update to 78.6.0L��}]?�Jan Horak <jhorak@redhat.com> - 78.5.1-1_�$�- Update to 78.5.1 build1M��|_?�Eike Rathke <erack@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build3F��{_1�Eike Rathke <erack@redhat.com> - 78.4.3-1_�#�- Update to 78.4.3b��z_i�Eike Rathke <erack@redhat.com> - 78.4.0-1_�"�- Update to 78.4.0 build1
- Disabled telemetryL��y]?�Jan Horak <jhorak@redhat.com> - 78.3.1-1_s!�- Update to 78.3.1 build1���x]�/�Jan Horak <jhorak@redhat.com> - 78.3.0-3_e�- Update to 78.3.0 build1
- Remove librdp.so as long as we cannot ship it in RHEL
A�J�_����Ab��_i�Eike Rathke <erack@redhat.com> - 78.4.0-1_�"�- Update to 78.4.0 build1
- Disabled telemetryL��]?�Jan Horak <jhorak@redhat.com> - 78.3.1-1_s!�- Update to 78.3.1 build1���
]�/�Jan Horak <jhorak@redhat.com> - 78.3.0-3_e�- Update to 78.3.0 build1
- Remove librdp.so as long as we cannot ship it in RHELF��	_1�Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0F��_1�Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1F��_1�Eike Rathke <erack@redhat.com> - 78.6.0-1_إ@- Update to 78.6.0L��]?�Jan Horak <jhorak@redhat.com> - 78.5.1-1_�$�- Update to 78.5.1 build1M��_?�Eike Rathke <erack@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build3F��_1�Eike Rathke <erack@redhat.com> - 78.4.3-1_�#�- Update to 78.4.3b��_i�Eike Rathke <erack@redhat.com> - 78.4.0-1_�"�- Update to 78.4.0 build1
- Disabled telemetryL��]?�Jan Horak <jhorak@redhat.com> - 78.3.1-1_s!�- Update to 78.3.1 build1
g�e��7��K��gF��_1�Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1F��_1�Eike Rathke <erack@redhat.com> - 78.6.0-1_إ@- Update to 78.6.0L��]?�Jan Horak <jhorak@redhat.com> - 78.5.1-1_�$�- Update to 78.5.1 build1M��_?�Eike Rathke <erack@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build3F��_1�Eike Rathke <erack@redhat.com> - 78.4.3-1_�#�- Update to 78.4.3M��_?�Eike Rathke <erack@redhat.com> - 78.8.0-1`/�@- Update to 78.8.0 build1F��_1�Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0F��_1�Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1F��_1�Eike Rathke <erack@redhat.com> - 78.6.0-1_إ@- Update to 78.6.0L��]?�Jan Horak <jhorak@redhat.com> - 78.5.1-1_�$�- Update to 78.5.1 build1M��_?�Eike Rathke <erack@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build3F��
_1�Eike Rathke <erack@redhat.com> - 78.4.3-1_�#�- Update to 78.4.3
>�e�_�t*��>M��$_?�Eike Rathke <erack@redhat.com> - 78.9.0-1`X��- Update to 78.9.0 build1M��#_?�Eike Rathke <erack@redhat.com> - 78.8.0-1`/�@- Update to 78.8.0 build1F��"_1�Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0F��!_1�Eike Rathke <erack@redhat.com> - 78.6.1-1_��@- Update to 78.6.1F�� _1�Eike Rathke <erack@redhat.com> - 78.6.0-1_إ@- Update to 78.6.0L��]?�Jan Horak <jhorak@redhat.com> - 78.5.1-1_�$�- Update to 78.5.1 build1M��_?�Eike Rathke <erack@redhat.com> - 78.5.0-1_��- Update to 78.5.0 build3`��_e�Eike Rathke <erack@redhat.com> - 78.9.0-3`Y�@- Update to 78.9.0 build2, updated langpacksM��_?�Eike Rathke <erack@redhat.com> - 78.9.0-2`X��- Update to 78.9.0 build2M��_?�Eike Rathke <erack@redhat.com> - 78.9.0-1`X��- Update to 78.9.0 build1M��_?�Eike Rathke <erack@redhat.com> - 78.8.0-1`/�@- Update to 78.8.0 build1F��_1�Eike Rathke <erack@redhat.com> - 78.7.0-1`@- Update to 78.7.0
7�K�_�s)��7L��0]?�Jan Horak <jhorak@redhat.com> - 91.9.1-1b�w@- Update to 91.9.1 build1M��/_?�Eike Rathke <erack@redhat.com> - 91.9.0-3bq@- Update to 91.9.0 build3M��._?�Eike Rathke <erack@redhat.com> - 91.9.0-2bo�- Update to 91.9.0 build2F��-_1�Eike Rathke <erack@redhat.com> - 91.9.0-1bj��- Update to 91.9.0F��,_1�Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M��+_?�Eike Rathke <erack@redhat.com> - 91.7.0-2b'E@- Update to 91.7.0 build2M��*_?�Eike Rathke <erack@redhat.com> - 91.7.0-1b ��- Update to 91.7.0 build1M��)_?�Eike Rathke <erack@redhat.com> - 91.6.0-1b	�- Update to 91.6.0 build1M��(_?�Eike Rathke <erack@redhat.com> - 91.5.0-1a�+@- Update to 91.5.0 build1F��'_1�Eike Rathke <erack@redhat.com> - 78.9.1-1`t6@- Update to 78.9.1`��&_e�Eike Rathke <erack@redhat.com> - 78.9.0-3`Y�@- Update to 78.9.0 build2, updated langpacksM��%_?�Eike Rathke <erack@redhat.com> - 78.9.0-2`X��- Update to 78.9.0 build2
;�\�w&��2��;M��<_?�Eike Rathke <erack@redhat.com> - 91.7.0-2b'E@- Update to 91.7.0 build2O��;aA�Eike Rathke <erack@redhat.com> - 91.11.0-2b��@- Update to 91.11.0 build2O��:aA�Eike Rathke <erack@redhat.com> - 91.11.0-1b�U�- Update to 91.11.0 build1O��9aA�Eike Rathke <erack@redhat.com> - 91.10.0-1b���- Update to 91.10.0 build1L��8]?�Jan Horak <jhorak@redhat.com> - 91.9.1-1b�w@- Update to 91.9.1 build1M��7_?�Eike Rathke <erack@redhat.com> - 91.9.0-3bq@- Update to 91.9.0 build3M��6_?�Eike Rathke <erack@redhat.com> - 91.9.0-2bo�- Update to 91.9.0 build2F��5_1�Eike Rathke <erack@redhat.com> - 91.9.0-1bj��- Update to 91.9.0F��4_1�Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M��3_?�Eike Rathke <erack@redhat.com> - 91.7.0-2b'E@- Update to 91.7.0 build2M��2_?�Eike Rathke <erack@redhat.com> - 91.7.0-1b ��- Update to 91.7.0 build1O��1aA�Eike Rathke <erack@redhat.com> - 91.10.0-1b���- Update to 91.10.0 build1

e�r+��V��:��eD�I�
2949f6a1f906f0892e15a8ee8c20f69ae5d4957c01b49b14336b97a39682d8d2D�H�
7c759545a38cb6f7d1990533a397e63777b0f5056c0fdbb807b6d6972e8512adD�G�
b8af2291b240e6adee1241ffbbc596bcb08dc54cfa7eec97883a3840e21871caD�F�
fe536bc26d329494e0702e1ea45051bf8d51d2c5bd6f3d8f4810b32b738f7d54D�E�
d75ace9160c666f8c11b19909fd788117c9134c9ec1c12c636f6a45ee642ed18D�D�
079057e8ac08393331b2846ec1d9b56021f2e524cf0eb682c033f6348fcf31daD�C�
151bddd3018c3cf341e45301fea7e855900839a749c197c0037edde602eaef35D�B�
0b185730ee6a43395cfa0f8cd6a7a6749386e567da85ed56e884df2ca709923fD�A�
36259b436231dc4bfc0fb0c9db4b4bcb6693260e26b5c858fed3e11c71a5be0aD�@�
69ae41a6c3ac23339ec68078341f79bf409340725c4349483ba59ace78f79028D�?�
1c34f59825eecb09675665b804b5fed5cfba3340912d9fd887d39770e7d0ae60D�>�
f009c9c18a2c60a9c998051c6c0a08500ac08b6f4d0b3e130aec02f0bac6afe5D�=�
097675babe2d377b7544507d5d63c4df6766f7bfa3508a1288be59444b79ef19
I�l�z'��.��IM��H_?�Eike Rathke <erack@redhat.com> - 91.9.0-2bo�- Update to 91.9.0 build2F��G_1�Eike Rathke <erack@redhat.com> - 91.9.0-1bj��- Update to 91.9.0F��F_1�Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0O��EaA�Eike Rathke <erack@redhat.com> - 91.12.0-1bޅ�- Update to 91.12.0 build1O��DaA�Eike Rathke <erack@redhat.com> - 91.11.0-2b��@- Update to 91.11.0 build2O��CaA�Eike Rathke <erack@redhat.com> - 91.11.0-1b�U�- Update to 91.11.0 build1O��BaA�Eike Rathke <erack@redhat.com> - 91.10.0-1b���- Update to 91.10.0 build1L��A]?�Jan Horak <jhorak@redhat.com> - 91.9.1-1b�w@- Update to 91.9.1 build1M��@_?�Eike Rathke <erack@redhat.com> - 91.9.0-3bq@- Update to 91.9.0 build3M��?_?�Eike Rathke <erack@redhat.com> - 91.9.0-2bo�- Update to 91.9.0 build2F��>_1�Eike Rathke <erack@redhat.com> - 91.9.0-1bj��- Update to 91.9.0F��=_1�Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0
r�_�f�m�rQ��S_G�Jan Horak <jhorak@redhat.com> - 78.12.0-3`�t�- Rebuild to pickup older nssO��RaA�Eike Rathke <erack@redhat.com> - 78.12.0-2`�.�- Update to 78.12.0 build2O��QaA�Eike Rathke <erack@redhat.com> - 78.12.0-1`��- Update to 78.12.0 build1O��PaA�Eike Rathke <erack@redhat.com> - 78.11.0-1`��- Update to 78.11.0 build1O��OaA�Eike Rathke <erack@redhat.com> - 91.13.0-1b�{@- Update to 91.13.0 build1O��NaA�Eike Rathke <erack@redhat.com> - 91.12.0-1bޅ�- Update to 91.12.0 build1O��MaA�Eike Rathke <erack@redhat.com> - 91.11.0-2b��@- Update to 91.11.0 build2O��LaA�Eike Rathke <erack@redhat.com> - 91.11.0-1b�U�- Update to 91.11.0 build1O��KaA�Eike Rathke <erack@redhat.com> - 91.10.0-1b���- Update to 91.10.0 build1L��J]?�Jan Horak <jhorak@redhat.com> - 91.9.1-1b�w@- Update to 91.9.1 build1M��I_?�Eike Rathke <erack@redhat.com> - 91.9.0-3bq@- Update to 91.9.0 build3
U�J��W�^�UO��^aA�Eike Rathke <erack@redhat.com> - 78.14.0-1a0��- Update to 78.14.0 build1_��]_c�Jan Horak <jhorak@redhat.com> - 78.13.0-2aS@- Use the right name for the appstream fileO��\aA�Eike Rathke <erack@redhat.com> - 78.13.0-1a
�@- Update to 78.13.0 build1Q��[_G�Jan Horak <jhorak@redhat.com> - 78.12.0-3`�t�- Rebuild to pickup older nssO��ZaA�Eike Rathke <erack@redhat.com> - 78.12.0-2`�.�- Update to 78.12.0 build2M��Y_?�Eike Rathke <erack@redhat.com> - 91.2.0-1aZ�- Update to 91.2.0 build1L��X]?�Jan Horak <jhorak@redhat.com> - 91.1.2-1aTU@- Update to 91.1.2 build1L��W]?�Jan Horak <jhorak@redhat.com> - 91.1.0-1a7T@- Update to 91.1.0 build2O��VaA�Eike Rathke <erack@redhat.com> - 78.14.0-1a0��- Update to 78.14.0 build1_��U_c�Jan Horak <jhorak@redhat.com> - 78.13.0-2aS@- Use the right name for the appstream fileO��TaA�Eike Rathke <erack@redhat.com> - 78.13.0-1a
�@- Update to 78.13.0 build1
$�`�m
�g�u$M��j_?�Eike Rathke <erack@redhat.com> - 91.3.0-2a�(@- Update to 91.3.0 build2M��i_?�Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1M��h_?�Eike Rathke <erack@redhat.com> - 91.2.0-1aZ�- Update to 91.2.0 build1L��g]?�Jan Horak <jhorak@redhat.com> - 91.1.2-1aTU@- Update to 91.1.2 build1L��f]?�Jan Horak <jhorak@redhat.com> - 91.1.0-1a7T@- Update to 91.1.0 build2O��eaA�Eike Rathke <erack@redhat.com> - 78.14.0-1a0��- Update to 78.14.0 build1_��d_c�Jan Horak <jhorak@redhat.com> - 78.13.0-2aS@- Use the right name for the appstream fileM��c_?�Eike Rathke <erack@redhat.com> - 91.3.0-2a�(@- Update to 19.3.0 build2M��b_?�Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1M��a_?�Eike Rathke <erack@redhat.com> - 91.2.0-1aZ�- Update to 91.2.0 build1L��`]?�Jan Horak <jhorak@redhat.com> - 91.1.2-1aTU@- Update to 91.1.2 build1L��_]?�Jan Horak <jhorak@redhat.com> - 91.1.0-1a7T@- Update to 91.1.0 build2
2�^�i�w&��2N��v_A�Eike Rathke <erack@redhat.com> - 91.4.0-3a�L�- Bump NVR for ppc64 buildM��u_?�Eike Rathke <erack@redhat.com> - 91.4.0-2a��@- Update to 91.4.0 build2M��t_?�Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M��s_?�Eike Rathke <erack@redhat.com> - 91.3.0-2a�(@- Update to 91.3.0 build2M��r_?�Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1M��q_?�Eike Rathke <erack@redhat.com> - 91.2.0-1aZ�- Update to 91.2.0 build1L��p]?�Jan Horak <jhorak@redhat.com> - 91.1.2-1aTU@- Update to 91.1.2 build1L��o]?�Jan Horak <jhorak@redhat.com> - 91.1.0-1a7T@- Update to 91.1.0 build2O��naA�Eike Rathke <erack@redhat.com> - 78.14.0-1a0��- Update to 78.14.0 build1N��m_A�Eike Rathke <erack@redhat.com> - 91.4.0-3a�L�- Bump NVR for ppc64 buildM��l_?�Eike Rathke <erack@redhat.com> - 91.4.0-2a��@- Update to 91.4.0 build2M��k_?�Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1
5�_�m�z(��5M��_?�Eike Rathke <erack@redhat.com> - 91.2.0-1aZ�- Update to 91.2.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.6.0-1b	�- Update to 91.6.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.5.0-1a�+@- Update to 91.5.0 build1N��_A�Eike Rathke <erack@redhat.com> - 91.4.0-3a�L�- Bump NVR for ppc64 buildM��~_?�Eike Rathke <erack@redhat.com> - 91.4.0-2a��@- Update to 91.4.0 build2M��}_?�Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M��|_?�Eike Rathke <erack@redhat.com> - 91.3.0-2a�(@- Update to 91.3.0 build2M��{_?�Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1M��z_?�Eike Rathke <erack@redhat.com> - 91.2.0-1aZ�- Update to 91.2.0 build1L��y]?�Jan Horak <jhorak@redhat.com> - 91.1.2-1aTU@- Update to 91.1.2 build1L��x]?�Jan Horak <jhorak@redhat.com> - 91.1.0-1a7T@- Update to 91.1.0 build2M��w_?�Eike Rathke <erack@redhat.com> - 91.5.0-1a�+@- Update to 91.5.0 build1
3�^
�j�w&��3M��_?�Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M��
_?�Eike Rathke <erack@redhat.com> - 91.3.0-2a�(@- Update to 91.3.0 build2M��_?�Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.7.0-2b'E@- Update to 91.7.0 build2M��
_?�Eike Rathke <erack@redhat.com> - 91.7.0-1b ��- Update to 91.7.0 build1M��	_?�Eike Rathke <erack@redhat.com> - 91.6.0-1b	�- Update to 91.6.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.5.0-1a�+@- Update to 91.5.0 build1N��_A�Eike Rathke <erack@redhat.com> - 91.4.0-3a�L�- Bump NVR for ppc64 buildM��_?�Eike Rathke <erack@redhat.com> - 91.4.0-2a��@- Update to 91.4.0 build2M��_?�Eike Rathke <erack@redhat.com> - 91.4.0-1a�c�- Update to 91.4.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.3.0-2a�(@- Update to 91.3.0 build2M��_?�Eike Rathke <erack@redhat.com> - 91.3.0-1a�- Update to 91.3.0 build1
9�]�j�~,��9M��_?�Eike Rathke <erack@redhat.com> - 91.7.0-1b ��- Update to 91.7.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.6.0-1b	�- Update to 91.6.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.5.0-1a�+@- Update to 91.5.0 build1N��_A�Eike Rathke <erack@redhat.com> - 91.4.0-3a�L�- Bump NVR for ppc64 buildM��_?�Eike Rathke <erack@redhat.com> - 91.4.0-2a��@- Update to 91.4.0 build2F��_1�Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M��_?�Eike Rathke <erack@redhat.com> - 91.7.0-2b'E@- Update to 91.7.0 build2M��_?�Eike Rathke <erack@redhat.com> - 91.7.0-1b ��- Update to 91.7.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.6.0-1b	�- Update to 91.6.0 build1M��_?�Eike Rathke <erack@redhat.com> - 91.5.0-1a�+@- Update to 91.5.0 build1N��_A�Eike Rathke <erack@redhat.com> - 91.4.0-3a�L�- Bump NVR for ppc64 buildM��_?�Eike Rathke <erack@redhat.com> - 91.4.0-2a��@- Update to 91.4.0 build2
P�e�y(��5��PF��&_1�Eike Rathke <erack@redhat.com> - 91.9.0-1bj��- Update to 91.9.0F��%_1�Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M��$_?�Eike Rathke <erack@redhat.com> - 91.7.0-2b'E@- Update to 91.7.0 build2M��#_?�Eike Rathke <erack@redhat.com> - 91.7.0-1b ��- Update to 91.7.0 build1M��"_?�Eike Rathke <erack@redhat.com> - 91.6.0-1b	�- Update to 91.6.0 build1M��!_?�Eike Rathke <erack@redhat.com> - 91.5.0-1a�+@- Update to 91.5.0 build1M�� _?�Eike Rathke <erack@redhat.com> - 91.4.0-2a��@- Update to 91.4.0 build2M��_?�Eike Rathke <erack@redhat.com> - 91.9.0-3bq@- Update to 91.9.0 build3M��_?�Eike Rathke <erack@redhat.com> - 91.9.0-2bo�- Update to 91.9.0 build2F��_1�Eike Rathke <erack@redhat.com> - 91.9.0-1bj��- Update to 91.9.0F��_1�Eike Rathke <erack@redhat.com> - 91.8.0-1bL/@- Update to 91.8.0M��_?�Eike Rathke <erack@redhat.com> - 91.7.0-2b'E@- Update to 91.7.0 build2
Q�^��h�Q��.e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���-e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��,e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��+e�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889y��*e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-13[���- Add one remaining option to Xvnc manpage
  Resolves: bz#1601880L��)]?�Jan Horak <jhorak@redhat.com> - 91.9.1-1b�w@- Update to 91.9.1 build1M��(_?�Eike Rathke <erack@redhat.com> - 91.9.0-3bq@- Update to 91.9.0 build3M��'_?�Eike Rathke <erack@redhat.com> - 91.9.0-2bo�- Update to 91.9.0 build2
�j���L��1e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��0e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���/_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342
-nN�F�-���8_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��7e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���6e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��5e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��4e�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889g��3em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��2e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822

e�r+��V��:��eD�V�
1b79cf7e51fdd270ad47abaf4877bf5ef54856e2842af27bf476d4129bf130cbD�U�
52f37df997426edd5eb1185b3069bb6f0cbf59be802e98607beb40e5a32434f3D�T�
2716e4ffcbb6db566a73fd0c27d1df83f2082b07e88c85e2e3382e086a9d8294D�S�
3da02ed3dc4e5e3639e3507426c68050a9d7e1896480c46dd9016e2bfde917a8D�R�
e56d1ffa341be20d595bbecff5b341080ab023c5d8420ce4a03813df47621344D�Q�
626a2e289d1c398ebfec878eca2a5a697890c2e6865f803db0f2579642b2b421D�P�
e1197686e2dde2402bf2c97fffaafc2a53e90a49b640a6fa6272c09b15d1bcb7D�O�
0e15a4084dc2ccf63f0b0ad4073f81fdd2a5a9137184d9fd3f72e558dadcb56eD�N�
8b700371dc8370c8630ae79ceb9e1fea3cdcdc691595db63eb30d8a874968077D�M�
46bb7deb87e89f41a59af551779c4df4a4f0afad8e7966438568b1534c02fc3bD�L�
d8331a6dfd4b2d434a4ff55b8287d92617ce478e81f9d0efed00c4b7fea39196D�K�
c8b6abc5626065638f17e289f7fb74fa496ecaff7832cc8ba0a863022187702fD�J�
d1d5c6c9105983f9ee30842fcf4a13fb9df2c9ee2104e6df95600984d8d0c9ed
#q �#g��<em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��;e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��:e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��9e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
��>�'����A_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��@e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���?e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��>e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�I��=e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��Eem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��De�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Ce�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��Be�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
��D�-����J_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��Ie��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���He�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889j��Ges�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��Fe�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��Nem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��Me�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Le�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��Ke�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
G�D�G�
��Re�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191j��Qes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��Pes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��Oe�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
���g��Uem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��Te�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Se�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��D���,��Ye�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��Xes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��Wes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��Ve�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
4���4�I��]e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)g��\em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�A��[e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��Ze�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
��$���H��ae�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427�,��`e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��_es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��^es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532
Z:�Z���de�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��ce��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212�A��be��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
*7�[*�,��he�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��ges�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��fes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�D��ee�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587
����A��je��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��ie�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
W� W�D��me�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587���le�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��ke��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212
)N�R�)p��re�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��qe�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889y��pe��Jan Grulich <jgrulich@redhat.com> - 1.8.0-13[���- Add one remaining option to Xvnc manpage
  Resolves: bz#1601880{��oe��Jan Grulich <jgrulich@redhat.com> - 1.8.0-33f�A- Fix crash caused by fix for CVE-2024-31083
  Resolves: RHEL-30976�-��ne�w�Jan Grulich <jgrulich@redhat.com> - 1.8.0-32f�@- Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
  Resolves: RHEL-31006
- Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
  Resolves: RHEL-30976
- Fix CVE-2024-31081 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
  Resolves: RHEL-30993
�l�S��
��ve�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���u_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��te��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���se�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889
���g��yem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��xe�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��we�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
�K�C�*��
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���~_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��}e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���|e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��{e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��ze�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889
���g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��>�'����_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�I��e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��
e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��	e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
��D�-����_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889j��
es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
G�D�G�
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
���g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996bRHYRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������G��G��G��G���$G���0G���<G���HG���SG���^G���jG���vG���G���H��H��&H��.H��1H��8H��<H��AH��EH	��JH
��NH��RH��UH
��YH��]H��aH��dH��hH��jH��mH��rH��vH��yH��H��H��H��H��H��H��H��H ��H!��#H"��'H#��*H$��.H%��0H&��3H'��8H)��<H*��?H+��EH,��HH-��MH.��QH/��VH0��ZH1��^H2��aH3��eH4��iH5��mH6��pH7��tH8��vH9��yH:��~H;��H<��H=��H>��H?��H@��HA��HB�� HC��$HD��'HE��+HF��/HG��3HH��6HI��:HK��<HL��?HM��DHN��HHO��KHP��QHQ��THR��YHS��]HT��bHU��fHV��jHW��mHX��q
��D���,��e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
4���4�I��#e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)g��"em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�A��!e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H�� e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
��$���H��'e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427�,��&e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��%es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��$es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532
Z:�Z���*e�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��)e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212�A��(e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
*7�[*�,��.e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��-es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��,es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�D��+e�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587
����A��0e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��/e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
W� W�D��3e�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587���2e�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��1e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212
)N�R�)p��8e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��7e�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889y��6e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-13[���- Add one remaining option to Xvnc manpage
  Resolves: bz#1601880{��5e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-33f�A- Fix crash caused by fix for CVE-2024-31083
  Resolves: RHEL-30976�-��4e�w�Jan Grulich <jgrulich@redhat.com> - 1.8.0-32f�@- Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
  Resolves: RHEL-31006
- Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
  Resolves: RHEL-30976
- Fix CVE-2024-31081 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
  Resolves: RHEL-30993

e�r+��V��:��eD�c�
63b1ab146204798dae708a4ea6d4d6f395bf1e1c9926c9fa14e4498aa40b071dD�b�
2524b4985525aeeba914c2536aa270d378e6159677fc4a6e6c2d0f5e10cf03b7D�a�
87841863f56822350511aa76203106e84213cbf0f0d73dbadb356aac7fe91054D�`�
5a75bd391a4b8675246d8051d4d1a0e28e7ba932456d922c9e6dfe78320bf4ddD�_�
73aa4d41c028013891614d9b96e424d2511ce51af87ead1125bd84075eba4b04D�^�
8a45d170c2b696356237faac6e20f84a8fe83b9b0d0990de4c51df8c043ae548D�]�
e33353c1f5c8cd09778ece298733e91964fae61ddc04af20b7b6eec95035236cD�\�
ce1ab686b3cc8d98f3fa3f3c27de632d04b3076d3a9573953d36d0cc337b62c3D�[�
d7991efb2314af20970eb2c8f5ccbf757b66f3b4443f904f07638d6729d87951D�Z�
97b7678d75ee215e9c9c2485e486af9ec549e3cc4a432b3c7070cd8b737ab439D�Y�
acf66eaf4814c700b8d03668188f2b09be1df06f54e8dfc7159e8377313b08d1D�X�
472c45bad9fc5ff6c17193d9dfb942a7291f6edc650f2c9c6c14dbd3dbd515b0D�W�
1a53c3292a73f1254003ddafa161c57842ace3830adbe515eebac0b44ee7d99a
�l�S��
��<e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���;_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��:e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���9e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889
���g��?em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��>e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��=e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
�K�C�*��
��Ee�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���D_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��Ce��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���Be�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��Ae�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��@e�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889
���g��Hem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��Ge�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Fe�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��>�'����M_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��Le��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���Ke�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��Je�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�I��Ie�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��Qem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��Pe�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Oe�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��Ne�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
��D�-����V_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��Ue��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���Te�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889j��Ses�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��Re�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��Zem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��Ye�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Xe�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��We�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
G�D�G�
��^e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191j��]es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��\es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��[e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
���g��aem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��`e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��_e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��D���,��ee�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��des�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��ces�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��be�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
4���4�I��ie�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)g��hem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�A��ge��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��fe�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
��$���H��me�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427�,��le�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��kes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��jes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532
Z:�Z���pe�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��oe��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212�A��ne��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
*7�[*�,��te�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��ses�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��res�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�D��qe�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587
����A��ve��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��ue�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
W� W�D��ye�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587���xe�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��we��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212
)N�R�)p��~e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��}e�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889y��|e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-13[���- Add one remaining option to Xvnc manpage
  Resolves: bz#1601880{��{e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-33f�A- Fix crash caused by fix for CVE-2024-31083
  Resolves: RHEL-30976�-��ze�w�Jan Grulich <jgrulich@redhat.com> - 1.8.0-32f�@- Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
  Resolves: RHEL-31006
- Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
  Resolves: RHEL-30976
- Fix CVE-2024-31081 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
  Resolves: RHEL-30993
�l�S��
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889
���g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
�K�C�*��
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���
_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��	e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��e�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889
���g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��
e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��>�'����_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�I��e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
��D�-����_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g�� em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
G�D�G�
��$e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191j��#es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��"es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��!e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
���g��'em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��&e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��%e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��D���,��+e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��*es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��)es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��(e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
4���4�I��/e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)g��.em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�A��-e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��,e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
��$���H��3e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427�,��2e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��1es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��0es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532
Z:�Z���6e�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��5e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212�A��4e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
*7�[*�,��:e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��9es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��8es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�D��7e�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587

e�r+��V��:��eD�p�
4e89a2934346fd031ae25135a0e99fcabcba01ba6e6d9efece1eaa54d9929e59D�o�
075385572952a26db77d6708c6b4866e1a5b4e1fcef8f0f9e2ff1918b13c4439D�n�
24769d4968eb49e6106e6ccec86baf5eeb3e053dfd03158fb385fd0bfd8b3cd7D�m�
81ec5721e33cf86aa5a19edb4af8269a95b79b41d2afc6f593319894b7fd8cf4D�l�
5f044c5e59d547e3073ad6d5da425845c091f6e24a072716c7f61b3ecc5688b6D�k�
2ad5877d7f45633aac8fe2c12d2a6f3490fa224374fff1161e930b4f55896467D�j�
f689ef5286607afcfe9eb7c26a9d7f07776b7313883081a2f3da3e14867271b4D�i�
c0eafbce155d39e1994ca8d23ba73f0a3e34259c7ce6e24278493c4f837c0075D�h�
0b33ebe4a47333d7d3cfb619025360776f080666c4ca5b9dd7a539591cc58c9aD�g�
f7d0605e20c9b7a067014b7687865aa1141217958d73b9b8d83a71b4da504dafD�f�
ca2161cc3876646306f0db5c0e9ef5cbff21e55e209ba8bb3bea3329c4748d0aD�e�
55a90d093b44adee52d01531fa0e512335d53d71c5d5b988d4bc903982900cd6D�d�
6ca8c118a949900b7ee2de435dfa29344feecf178d19d4852cfd3f958da2ac14
����A��<e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��;e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
W� W�D��?e�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587���>e�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��=e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212
)N�R�)p��De�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��Ce�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889y��Be��Jan Grulich <jgrulich@redhat.com> - 1.8.0-13[���- Add one remaining option to Xvnc manpage
  Resolves: bz#1601880{��Ae��Jan Grulich <jgrulich@redhat.com> - 1.8.0-33f�A- Fix crash caused by fix for CVE-2024-31083
  Resolves: RHEL-30976�-��@e�w�Jan Grulich <jgrulich@redhat.com> - 1.8.0-32f�@- Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
  Resolves: RHEL-31006
- Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
  Resolves: RHEL-30976
- Fix CVE-2024-31081 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
  Resolves: RHEL-30993
�l�S��
��He�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���G_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��Fe��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���Ee�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889
���g��Kem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��Je�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Ie�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
�K�C�*��
��Qe�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���P_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��Oe��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���Ne�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��Me�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��Le�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889
���g��Tem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��Se�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Re�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��>�'����Y_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��Xe��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���We�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��Ve�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�I��Ue�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��]em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��\e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��[e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��Ze�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
��D�-����b_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��ae��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���`e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889j��_es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��^e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��fem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��ee�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��de�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��ce�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
G�D�G�
��je�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191j��ies�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��hes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��ge�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
���g��mem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��le�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��ke�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��D���,��qe�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��pes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��oes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��ne�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
4���4�I��ue�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)g��tem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�A��se��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��re�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
��$���H��ye�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427�,��xe�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��wes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��ves�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532
Z:�Z���|e�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��{e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212�A��ze��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
*7�[*�,��e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��~es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�D��}e�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587
����A��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
W� W�D��e�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587���e�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212
)N�R�)p��
e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��	e�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889y��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-13[���- Add one remaining option to Xvnc manpage
  Resolves: bz#1601880{��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-33f�A- Fix crash caused by fix for CVE-2024-31083
  Resolves: RHEL-30976�-��e�w�Jan Grulich <jgrulich@redhat.com> - 1.8.0-32f�@- Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
  Resolves: RHEL-31006
- Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
  Resolves: RHEL-30976
- Fix CVE-2024-31081 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
  Resolves: RHEL-30993
�l�S��
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���
_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889
���g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
�K�C�*��
��e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��e�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889
���g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��>�'����_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��e�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�I��e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��#em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��"e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��!e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
�� e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
��D�-����(_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��'e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���&e�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889j��%es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��$e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��,em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��+e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��*e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��)e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
G�D�G�
��0e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191j��/es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��.es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��-e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
���g��3em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��2e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��1e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��D���,��7e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��6es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��5es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��4e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
4���4�I��;e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)g��:em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�A��9e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��8e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427

e�r+��V��:��eD�}�
3f7e486965cffc49635b45bdebd92b770f1cf0549894d2014fa5b8ac030c214cD�|�
4ac5393de035d7805106e39277a7b7b6ab0713a00553bee6342fb42b71e80ac3D�{�
16cbd958b4cd93617722d3eda68b3a078e46f235e47a40ceca9a90151e5ee683D�z�
2a26d447506a770f081b5fb28e25fb0f7666bbfffc7c5f065c200fda418823eaD�y�
7fd90181b9a3e062d087509d186c4ef8394aec39ce24e0670b0a4c7b21d8c381D�x�
ee75c5b0a2710a2f96753bcdc8e8b106f33c7eb00f1997b39950eff703900bf2D�w�
f86c6c90299668354041eda67783846766ed3c5050562845c55de4a2ebe33c85D�v�
05ff5981a0c8f962a35dd854d2cf3aabccd82881efc4d700b5add509d6f0f289D�u�
7af082c81c1d06e353c77f01f35f6d3cd695a765a542d309f406079af5f14000D�t�
d4212ad62f054bb8defbdd91f8b8be6d7cd36ab2c646d79f0ec7c7e36b8a2409D�s�
bccabcae0cba84cc84cbbe98ef845532c6d35b342a05aa650c421cfcecc269acD�r�
37ac533da616e343432c0f1378f9e585ef3a6d8ad632bf56c45e59e7cbb1076aD�q�
beb197d7c2f90fd69f5bfa094f8d100c9477cf8f5bee05d5d87ab41cff92c6fe
��$���H��?e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427�,��>e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��=es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��<es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532
Z:�Z���Be�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��Ae��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212�A��@e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
*7�[*�,��Fe�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��Ees�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��Des�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�D��Ce�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587
����A��He��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��Ge�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
W� W�D��Ke�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587���Je�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��Ie��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212
)N�R�)p��Pe�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��Oe�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889y��Ne��Jan Grulich <jgrulich@redhat.com> - 1.8.0-13[���- Add one remaining option to Xvnc manpage
  Resolves: bz#1601880{��Me��Jan Grulich <jgrulich@redhat.com> - 1.8.0-33f�A- Fix crash caused by fix for CVE-2024-31083
  Resolves: RHEL-30976�-��Le�w�Jan Grulich <jgrulich@redhat.com> - 1.8.0-32f�@- Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
  Resolves: RHEL-31006
- Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
  Resolves: RHEL-30976
- Fix CVE-2024-31081 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
  Resolves: RHEL-30993
�l�S��
��Te�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���S_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��Re��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���Qe�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889
���g��Wem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��Ve�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��Ue�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
�K�C�*��
��]e�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191���\_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��[e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���Ze�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��Ye�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�0��Xe�}�Jan Grulich <jgrulich@redhat.com> - 1.8.0-14\<y�- Fix rendering on big endian system
  Resolves: bz#1618777

  Do not automatically kill sessions
  Resolves: bz#1646889
���g��`em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��_e�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��^e�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��>�'����e_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��de��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���ce�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889p��be�Jan Grulich <jgrulich@redhat.com> - 1.8.0-15\<y�- Reduce size of context menu hint
  Resolves: bz#1491608�I��ae�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��iem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��he�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��ge�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��fe�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
��D�-����n_�E�Adam Jackson <ajax@redhat.com> - 1.8.0-18]R�@- Rebuild against newer X server to pick up backing store crash fixes
  Resolves: bz#1670342��me��Jan Grulich <jgrulich@redhat.com> - 1.8.0-17\j�@- Release pointer grab when cursor leaves window
  Resolves: bz#1664801���le�;�Jan Grulich <jgrulich@redhat.com> - 1.8.0-16\E�@- Automatically kill session only when gnome or kde is installed
  Resolves: bz#1646889j��kes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��je�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
#q �#g��rem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��qe�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��pe�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996�
��oe�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191
G�D�G�
��ve�1�Jan Grulich <jgrulich@redhat.com> - 1.8.0-19]�@- Use vncserver wrapper script to workaround systemd issues
  Resolves: bz#1747191j��ues�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��tes�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��se�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
���g��yem�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�
��xe�7�Jan Grulich <jgrulich@redhat.com> - 1.8.0-21^�1�- Add upstream patch needed because of previous security fixes
  Resolves: bz#1826822�L��we�5�Jan Grulich <jgrulich@redhat.com> - 1.8.0-20^O�@- Fix stack buffer overflow in CMsgReader::readSetCursor
  Resolves: bz#1791773

- Fix heap buffer overflow in DecodeManager::decodeRect
  Resolves: bz#1791768

- Fix heap buffer overflow in TightDecoder::FilterGradient
  Resolves: bz#1791763

- Fix heap-based buffer overflow triggered from CopyRectDecoder
  Resolves: bz#1791747

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
  Resolves: bz#1791759

- Add option to fallback to empty port when the specified one is taken
  Resolves: bz#1791996
��D���,��}e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��|es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��{es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�I��ze�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)
4���4�I��e�/�Jan Grulich <jgrulich@redhat.com> - 1.8.0-23c�]�- Rebuild for xorg-x11-server CVEs
  Resolves: CVE-2022-4283 (bz#2154267)
  Resolves: CVE-2022-46340 (bz#2154261)
  Resolves: CVE-2022-46341 (bz#2154264)
  Resolves: CVE-2022-46342 (bz#2154262)
  Resolves: CVE-2022-46343 (bz#2154265)
  Resolves: CVE-2022-46344 (bz#2154266)g��em�Jan Grulich <jgrulich@redhat.com> - 1.8.0-22_�- Region handling refresh
  Resolves: bz#1753158�A��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��~e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
��$���H��e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427�,��e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532
Z:�Z���e�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212�A��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
*7�[*�,��e�u�Jan Grulich <jgrulich@redhat.com> - 1.8.0-26eB=�- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
  Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
  Resolves: RHEL-15223j��es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-25d!�@- CVE fix for: CVE-2023-1393
  Resolves: bz#2180291j��
es�Jan Grulich <jgrulich@redhat.com> - 1.8.0-24c�@- CVE fix for: CVE-2023-0494
  Resolves: bz#2166532�D��	e�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587
����A��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-28ey��- Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415�H��
e�-�Jan Grulich <jgrulich@redhat.com> - 1.8.0-27es@- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions
  Resolves: RHEL-18415
- CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty
  Resolves: RHEL-18427
W� W�D��e�%�Jan Grulich <jgrulich@redhat.com> - 1.8.0-31e�M@- Fix use after free related to CVE-2024-21886
  Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20587���e�W�Jan Grulich <jgrulich@redhat.com> - 1.8.0-30e�d@- Don't try to get pointer position when the pointer becomes a floating device
  Resolves: RHEL-20436�9��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-29e�)�- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21212
^N�S�^v��yw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600w��yy�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-82\�-@- Updated fix for CVE-2019-9636
Resolves: rhbz#1689317x��y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-81\�@- Security fix for CVE-2019-9636
Resolves: rhbz#1689317{��e��Jan Grulich <jgrulich@redhat.com> - 1.8.0-33f�A- Fix crash caused by fix for CVE-2024-31083
  Resolves: RHEL-30976�-��e�w�Jan Grulich <jgrulich@redhat.com> - 1.8.0-32f�@- Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
  Resolves: RHEL-31006
- Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
  Resolves: RHEL-30976
- Fix CVE-2024-31081 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
  Resolves: RHEL-30993
4D�K�^�4�(��y�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��yc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��y�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530bRH�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������HZ��yH[��|H\��H]��H^��H_��
H`��Ha��Hb��Hc��Hd��He��#Hf��(Hg��,Hh��0Hi��3Hj��7Hk��;Hm��?Hn��BHo��FHp��HHq��KHr��PHs��THt��WHu��]Hv��`Hw��eHx��iHy��nHz��rH{��vH|��yH}��}H~��H��H���H���H���H���H���H���H���$H���)H���/H���6H���<H���=H���>H���BH���GH���HH���LH���QH���RH���VH���[H���\H���`H���eH���fH���jH���oH���pH���tH���yH���zH���~H���H���H���H���
H���H���H���H���H���H��� H���&H���*H���0H���4H���9H���=H���BH���FH���LH���PH���VH���ZH���_H���cH���gH���lH���pH���uH���y
g��N�a�gy��$y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��#y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��"yc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��!y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x�� y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��y�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530v��yw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-83\�@- Remove unversioned obsoletes
Resolves: rhbz#1703600
jS��jx��)y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174�7��(y�w�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-84\�@- Disallow control chars in http URLs
- Fixes CVE-2019-9740 and CVE-2019-9947
Resolves: rhbz#1704362 and rhbz#1703530x��'y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��&y�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��%y�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481
7��l7�0��/y�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��.y�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481y��-y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��,y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��+yc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��*y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388
��� �3�y��6y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-89^t�@- Security fix for CVE-2019-16935
Resolves: rhbz#1797998y��5y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-88]�V�- Security fix for CVE-2019-16056
Resolves: rhbz#1750773l��4yc�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-87]e@- Fix CVE-2018-20852
Resolves: rhbz#1741551y��3y}�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-86\���- Security fix for CVE-2019-10160
Resolves: rhbz#1718388x��2y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-85\�"�- Security fix for CVE-2019-9948
Resolves: rhbz#1704174g��1gk�Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��0y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168
/S�7�/�	��<q�#�Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing sessionv��;yw�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-94e@- Security fix for CVE-2023-40217
Resolves: RHEL-9615g��:gk�Lumír Balhar <lbalhar@redhat.com> - 2.7.5-93doM�- Fix for CVE-2023-24329
Resolves: rhbz#2173917x��9y{�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-92b��- Security fix for CVE-2021-3177
Resolves: rhbz#1918168�0��8y�i�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-91b��@- Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391
- Test fixes for the latest expat security release
- Update the certificates utilized in the test suite
Resolves: rhbz#1883014, rhbz#1883632, rhbz#2047376, rhbz#1896494�(��7y�Y�Charalampos Stratakis <cstratak@redhat.com> - 2.7.5-90_$�- Avoid infinite loop when reading specially crafted TAR files (CVE-2019-20907)
Resolves: rhbz#1856481

e�r+��V��:��eD�
�
996fe95f2ff819a29dac70f925ca8ea28c9dd6245d7ec72ffd1ea497c1ac2225D�	�
564f2d36422f90238f6c163afa40b0bd03b7f8ed4505e447cc0161f41b6507d5D��
314863a27a19049fe9480f37f1d931ad115a3966777cfe9685ce45f0eaf763a2D��
7c0a15ef78a1950328029433601564ae9606ccc8e17e7470a5e84088ce0cd908D��
b7b726f83f6133f92e0037c54e043aa50a4cdcd0b17600cdcd827769833b0ae2D��
4f2b6dd685c3fa625585b5fe41f9b3277cb8925b675a3b8add0c89efb81b9de9D��
7013395de5d70b992ff1cb20c5fcc916c7f545ed46a9021f6f2105e575039bfcD��
821d095b31cdbab402488cd14bacefa75cb451e7fbd956f61a6bc92a68d59f68D��
199014d97d9be442d1dce91e30112d132e8c5ac82003d8631976c1607ad2e159D��
93d3b99f0fd9bf0940325c81b2d8cadba8f402c03b3b36117a666eb53a39d4aeD��
94003135dce2fc46854f2202251cb46b096bbabd25f6b98e55704280bf4d77d8D��
a1a79207d7fe88ceb95e5e7c1c63bd1c59cb5a98169680429a87fdd1ee285abaD�~�
3d1a72d4d1f896acb82915d2121ccc8032a2e15e43ba9390abbf0c6e1ddfdb81
ff���=m�?�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS
``���>m�K�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��Bo�-�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��Ao�	�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���@o�#�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��?os�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���Gm�?�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��Fq�#�Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��E]�}�Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��Do�{�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��Co�u�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���Hm�K�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��Lo�-�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��Ko�	�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���Jo�#�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��Ios�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���Qm�?Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��Pq�#Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��O]�}�Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��No�{�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��Mo�u�Coty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���Rm�KCoty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��Vo�-Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��Uo�	Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���To�#Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��SosCoty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���[m�?Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��Zq�#Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��Y]�}Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��Xo�{Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��Wo�uCoty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���\m�KCoty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��`o�-Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��_o�	Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���^o�#Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��]osCoty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���em�?Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��dq�#Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��c]�}Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��bo�{Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��ao�uCoty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���fm�KCoty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��jo�-Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��io�	Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���ho�#Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��gosCoty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���om�?Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��nq�#Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��m]�}Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��lo�{Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��ko�uCoty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���pm�KCoty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��to�-Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��so�	Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���ro�#Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��qosCoty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���ym�?Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��xq�#Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��w]�}Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��vo�{Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��uo�uCoty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���zm�KCoty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��~o�-Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��}o�	Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���|o�#Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��{osCoty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���m�?Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��q�#Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��]�}Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��o�{Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��o�uCoty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���m�KCoty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��o�-Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��o�	Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���o�#Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��osCoty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���
m�?Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��q�#Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��]�}Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��
o�{Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��	o�uCoty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���m�KCoty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��o�-Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��o�	Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���o�#Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��osCoty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
x
Q�x���m�?Coty Sutherland <csutherl@redhat.com> 0:7.0.76-8[���- Resolves: rhbz#1608607 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS�	��q�#Jean-Frederic Clere <jclere@redhat.com> 0:7.0.76-7[W�- Resolves: rhbz#1602060 Deadlock occurs while sending to a closing session�,��]�}Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��o�{Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��o�uCoty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
``���m�KCoty Sutherland <csutherl@redhat.com> 0:7.0.76-9\b�@- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources
- Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users
- Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters "<" and ">" to the possible whitelist values
.��.�
��o�-Coty Sutherland <csutherl@redhat.com> 0:7.0.76-13^���- Revert rhbz#1367492 because it caused issues with ipa-server, see rhbz#1831127�;��o�	Coty Sutherland <csutherl@redhat.com> 0:7.0.76-12^��- Resolves: rhbz#1367492 harden package permissions
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1629162 tomcat-dbcp.jar is missing from tomcat package
- Resolves: rhbz#1822453 Tomcat parses a request having an absolute URI path incorrectly and returns 404 Not Found
- Resolves: rhbz#1795645 connection leak with StatementCache, SlowQueryReport or StatementDecoratorInterceptor
- Resolves: CVE-2019-17563 tomcat: session fixation when using FORM authentication���o�#Coty Sutherland <csutherl@redhat.com> 0:7.0.76-11^^F�- CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerabilityo��osCoty Sutherland <csutherl@redhat.com> 0:7.0.76-10]nU�- Resolves: rhbz#1748541 Bump tomcat release number
s
Q�s�(�� s�_Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397�,��]�}Hui Wang <huwang@redhat.com> 0:7.0.76-16_k8�- Resolves: rhbz#1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling�4��o�{Coty Sutherland <csutherl@redhat.com> 0:7.0.76-15_��- Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS�q��o�uCoty Sutherland <csutherl@redhat.com> 0:7.0.76-14^�m@- Revert rhbz#1814315 because it caused other issues with ipa-server, see rhbz#1831127
- Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence
1n�<�'1�q��&s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��%s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���$o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���#o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���"o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��!o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375
�g�2��
��*o�-	Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��)u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��(s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���'s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016
*l�:��*���0s�7	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��/s�q	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��.s�		Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���-o�1	Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���,o�E	Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���+o�1	Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171
���'����4o�1
Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���3u�K	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��2u�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��1s�]	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW����9s�7
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��8s�q
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��7s�	
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���6o�1
Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���5o�E
Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����=u�
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618���<u�K
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��;u�
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��:s�]
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664

e�r+��V��:��eD��
662cd360391f504282c0f422539c52fe0554845bd065148bec2cc7ca32f09fceD��
488bba15bc1daaf393fe105bb25934f4e99b57cd9d0774beeb3fb7bcd72df936D��
a5a85314f27feb920e411ab6a9683cb3e8fd4b1ecc404906653cd728abed4bcbD��
0479d5709839258211df37f5f528182b35422b740c858e9fee588961f3067033D��
e0e135c635d6d7b7cc130fbb412e09c42992d3447f2a5ee0356a07ef5d6489a9D��
17bb69c6badb60ea50ca06dd905f5cf912769e8d8394ed0f28e46698ce95540eD��
53dc295cff436bce362e2f1ff515b0cf2e97a55b54554ce10fcc04a18e480028D��
aee92b7dc0fa366fb7dc58ba38778eaa69c633a74ec730c35144be5c00ad5baeD��
b8fb9ea2d60a9b5cadcc413c18b5359c3c36bee78234865951f0d9441fcd344aD��
960bfdc3d9c1208a97afc3a7f003cb7b1890daa08e77d317bc572d4b563e272eD�
�
3f5e731ad10b48db0b27227b5dc172665bd2f7df987c4805e234a12851c320faD��
bc48b6efaada693fbc4334eb4916585c339309ea27b400a73cdea90049477bf7D��
6ee3e1f10e89d75ee121580fdd4238d1a9c783a16450d6b30b08f4dae782c4b6
{�A�{���Bo�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���Ao�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���@o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��?o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�(��>s�_Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397
�����g��Fs�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���Es�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��Ds�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��Cs�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213
^7�s�^}��Ls�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���Ko�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���Jo�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���Io�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��Ho�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��Gu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253
<
q<�D��Pu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��Os�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���Ns�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��Ms�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418
\�*��q��Vs�q
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��Us�	
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���To�1
Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���So�E
Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���Ro�1
Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���Qu�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984
�g�2����Zu�K
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��Yu�
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��Xs�]
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���Ws�7
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016
�xK�%����_o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���^o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��]o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�(��\s�_Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397���[u�
Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618
\l��\���cs�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��bs�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��as�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���`o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595
���9����go�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��fo�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��eu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��ds�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW����ls�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��ks�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��js�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���io�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���ho�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����po�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���ou�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��nu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��ms�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW����us�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��ts�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��ss�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���ro�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���qo�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����yu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618���xu�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��wu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��vs�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
{�A�{���~o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���}o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���|o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��{o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�(��zs�_Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397
�����g��s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213
^7�s�^}��s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253
<
q<�D��u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���
s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��	s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418
\�*��q��s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���
u�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984
�g�2����u�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016
�xK�%����o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�(��s�_Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397���u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618
\l��\���s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595
���9����#o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��"o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��!u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g�� s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW����(s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��'s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��&s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���%o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���$o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����,o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���+u�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��*u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��)s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW����1s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��0s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��/s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���.o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���-o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����5u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618���4u�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��3u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��2s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
{�A�{���:o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���9o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���8o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��7o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�(��6s�_Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397
�����g��>s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���=s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��<s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��;s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213
^7�s�^}��Ds�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���Co�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���Bo�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���Ao�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��@o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��?u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253

e�r+��V��:��eD�$�
d43f51759f659c79abdf2a56831458fa8cf1af488cfda2fae914b1dd04bbaba0D�#�
7e3d2b8310ef0375992c9db512db676147c1e9c655d571aff4a18539c7617b44D�"�
3345891d8547aab466be25914ccc742f1c11210c09ab84648527d4d266971c3cD�!�
72a96620c19fb6a9a585ba00fc0f399375dda07b85a42c151bddb6c1323b81c9D� �
197c0516912c709ff341d1764b675758fd47d18d35c0f69234271e78366dbad5D��
df3f0112c83d6ec1425240197c85476b62397067d6ac0c7e5040adae2a01ff93D��
0226602f67b7037375bd2d1258c099113d59cdda599052241225ce267656959fD��
268b5774f4a3a55f845738bad78c64c2e69fcd2089e893ce164ec299ecf563caD��
2d969a1909d01ab5b4127c7c6dd5f7523026eadbe9500b658c5c3749db47612dD��
9a14b340b2f3db002dcaa100cc68ebbcef4cd379500165da1b2fe3276e963ea6D��
ece1ae02259706cdcec7364ec892760537f5ace9a72c3942a8fe38bc4c185099D��
93ba9f06a5d98fa7404897fad897da748076dbca3329d102d3792d9b20bf8c4dD��
cde329dfeb5e14ef8d11d694202b0c974945910ba3f73f3790e665927fce7c52
<
q<�D��Hu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��Gs�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���Fs�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��Es�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418
\�*��q��Ns�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��Ms�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���Lo�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���Ko�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���Jo�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���Iu�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984
�g�2����Ru�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��Qu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��Ps�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���Os�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016
�xK�%����Wo�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���Vo�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��Uo�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�(��Ts�_Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397���Su�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618
\l��\���[s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��Zs�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��Ys�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���Xo�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595
���9����_o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��^o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��]u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��\s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW����ds�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��cs�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��bs�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���ao�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���`o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����ho�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���gu�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��fu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��es�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW����ms�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��ls�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��ks�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���jo�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���io�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����qu�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618���pu�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��ou�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��ns�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
{�A�{���vo�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���uo�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���to�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��so�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�(��rs�_Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397
�����g��zs�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���ys�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��xs�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��ws�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213
^7�s�^}��s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���~o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���}o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��|o�-Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��{u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253
<
q<�D��u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418
\�*��q��
s�qJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��	s�	Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���o�EOndřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���o�1Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���u�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984
�g�2����u�KJaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��
u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��s�]Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664���s�7Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016
�xK�%����o�E Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230���o�1 Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��o�- Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�(��s�_ Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-1\�|�- new release
  - rebased tuned to latest upstream
    related: rhbz#1643654
  - used dmidecode only on x86 architectures
    resolves: rhbz#1688371
  - recommend: fixed to work without tuned daemon running
    resolves: rhbz#1687397���u�Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618
\l��\���s�7 Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��s�q Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��s�	 Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���o�1 Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595
���9����o�1!Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171�
��o�-!Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-2\��@- Fix setting force_latency in the virtual-host profile
- Resolves: rhbz#1569375�D��u� Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��s�] Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW���� s�7!Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��s�q!Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��s�	!Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���o�1!Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���o�E!Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����$o�1"Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-3\ڭ�- Fixed assertion that isolated_cores contain online CPUs
- Resolves: rhbz#1706171���#u�K!Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��"u�!Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��!s�]!Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
�b�MW����)s�7"Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-8]S��- realtime-virtual-guest/host: enabled ktimer-lockless-check
  Resolves: rhbz#1730016�q��(s�q"Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-7]M`@- plugin_sysctl: fixed traceback when assignments modifiers ('<', '>')
  are used with sysctl and the current sysctl value is the same as
  the new value
  Resolves: rhbz#1739418}��'s�	"Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-6]@1@- sap-hana-vmware: deprecated profile
  Resolves: rhbz#1672213���&o�1"Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-5\�Q�- Ignore non-existent settings from system sysctl configs
- Resolves: rhbz#1714595���%o�E"Ondřej Lysoněk <olysonek@redhat.com> - 2.11.0-4\ޢ@- Fixed verification of sysctl parameters whose values contain tabs
- Resolves: rhbz#1711230
���'����-u�"Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-12b�z@- disk: added support for the nvme devices
  Resolves: rhbz#1981618���,u�K"Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-11_�S�- sap-netweaver: Use static values for kernel.shmall and kernel.shmmax
  Resolves: rhbz#1904984�D��+u�"Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-10_3�- realtime-virtual-host: remove lapic advancement calculation and
  related qemu-kvm-tools-rhev requirement
  Resolves: rhbz#1852253�g��*s�]"Jaroslav Škarvada <jskarvad@redhat.com> - 2.11.0-9^`�- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
4�4�S��0a�G#Patsy Griffin <patsy@redhat.com> - 2019c-1]x�- Rebase to tzdata-2019c
  - Fiji will observe DST from 2019-11-10 to 2020-01-12.
  - Norfolk Island will begin observing Australian-style DST on 2019-10-06.�K��/a�7#Patsy Griffin <patsy@redhat.com> - 2019b-1]��- Rebase to tzdata-2019b
  - Brazil will no longer observe DST going forward.
  - The 2019 spring transition for Palestine occurred 03-29, not 03-30.���.s�M#Patsy Griffin Franklin <patsy@redhat.com> - 2019a-1\�@- Rebase to tzdata-2019a
  - Palestine will start DST on 2019-03-30, rather than 2019-03-23 as
    previously predicted.
  - Metlakatla rejoined Alaska time on 2019-01-20, ending its observances
    of Pacific standard time.
����Y��3aU#Patsy Griffin <patsy@redhat.com> - 2020b-2_�P�- Need to rebuild, bump the release.�V��2a�M#Patsy Griffin <patsy@redhat.com> - 2020b-1_}��- Rebase to tzdata-2020b
  - Yukon timezones represented by America/Whitehorse and
    America/Dawson will change time zone rules from -08/-07 to
    permanent -07 on 2020-11-01, not on 2020-03-08 as 2020a had it.
  - The most recent winter(+08)/summer(+11) transition for Casey Station,
    Antarctica was 2020-10-04 00:01.
  - Remove obsolete files pacificnew, systemv, and yearistype.sh
    from the distribution.�0��1a�#Patsy Griffin <patsy@redhat.com> - 2020a-1^��- Rebase to tzdata-2020a
  - Morocco will spring forward on 2020-05-31 rather than
    previously predicted 2020-05-24.
  - Canada's Yukon region changed to year round UTC -07
    effective 2020-03-08.
  - America/Godthab was renamed to America/Nuuk.
~@P�N~�K��8a�7$Patsy Griffin <patsy@redhat.com> - 2019b-1]��- Rebase to tzdata-2019b
  - Brazil will no longer observe DST going forward.
  - The 2019 spring transition for Palestine occurred 03-29, not 03-30.R��7aG#Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��6a�o#Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�k��5a�w#Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�;��4a�#Patsy Griffin <patsy@redhat.com> - 2020b-3_���- Include the upstream patch to support pacificnew for java tzupdater.
- Set POSIXRULES macro to continue installing posixrules file.
(��V��;a�M$Patsy Griffin <patsy@redhat.com> - 2020b-1_}��- Rebase to tzdata-2020b
  - Yukon timezones represented by America/Whitehorse and
    America/Dawson will change time zone rules from -08/-07 to
    permanent -07 on 2020-11-01, not on 2020-03-08 as 2020a had it.
  - The most recent winter(+08)/summer(+11) transition for Casey Station,
    Antarctica was 2020-10-04 00:01.
  - Remove obsolete files pacificnew, systemv, and yearistype.sh
    from the distribution.�0��:a�$Patsy Griffin <patsy@redhat.com> - 2020a-1^��- Rebase to tzdata-2020a
  - Morocco will spring forward on 2020-05-31 rather than
    previously predicted 2020-05-24.
  - Canada's Yukon region changed to year round UTC -07
    effective 2020-03-08.
  - America/Godthab was renamed to America/Nuuk.�S��9a�G$Patsy Griffin <patsy@redhat.com> - 2019c-1]x�- Rebase to tzdata-2019c
  - Fiji will observe DST from 2019-11-10 to 2020-01-12.
  - Norfolk Island will begin observing Australian-style DST on 2019-10-06.
����G�R��@aG$Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��?a�o$Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�k��>a�w$Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�;��=a�$Patsy Griffin <patsy@redhat.com> - 2020b-3_���- Include the upstream patch to support pacificnew for java tzupdater.
- Set POSIXRULES macro to continue installing posixrules file.Y��<aU$Patsy Griffin <patsy@redhat.com> - 2020b-2_�P�- Need to rebuild, bump the release.bRI'RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������H���H�HÃ�Hă�HŃ�Hƃ�Hǃ�Hȃ�#HɃ�(Hʃ�,H˃�1H̃�5H̓�:H΃�>Hσ�DHу�HH҃�NHӃ�RHԃ�WHՃ�[Hփ�_H׃�dH؃�hHك�mHڃ�qHۃ�vH܃�zH݃�Hރ�H߃�
H��H��H��H��H�� H��$H��)H��-H��0H��3H��8H��;H��@H��CH��GH��LH��PH��RH��TH���XH���ZH���\H���`H���cH���eH���iH���kH���mH���qH���tI��vI��zI��}I��I��I��I��I��I��I	��I
��I��I�� I
��$I��(I��-I��1I��4I��:I��=I��BI��EI��II��NI��RI��TI��VI��ZI��\I��^I��bI ��eI!��gI"��kI#��mI$��oI%��sI&��v
0=e0�0��Ca�%Patsy Griffin <patsy@redhat.com> - 2020a-1^��- Rebase to tzdata-2020a
  - Morocco will spring forward on 2020-05-31 rather than
    previously predicted 2020-05-24.
  - Canada's Yukon region changed to year round UTC -07
    effective 2020-03-08.
  - America/Godthab was renamed to America/Nuuk.�S��Ba�G%Patsy Griffin <patsy@redhat.com> - 2019c-1]x�- Rebase to tzdata-2019c
  - Fiji will observe DST from 2019-11-10 to 2020-01-12.
  - Norfolk Island will begin observing Australian-style DST on 2019-10-06.�>��Aa�$Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.

e�r+��V��:��eD�1�
3598bf42bdc531b55ad9bbe89ca716bd42b7f2e4ff19fa4082235369c9a26303D�0�
2729d48cb21bb132a7a1c8ea58f36f1994b4d757d2752e75e27d2266774a0de0D�/�
84b67246d4b4d43e8127de0275d0f6e2904295a58a879e7d64b8a9d7890561e9D�.�
94f2a00b93b3f897df457012da67dd3358c6c280b2c7b40b81b965f4420ce5b1D�-�
4af524ef4c3174e29991b9c0e236ba3d89b8d2c935d9359910aca965ba5001caD�,�
82eb45d206c4798cbb97d743814081a5b2e5621151b5d0be9cb94ebcdb32447aD�+�
77f8b56d670e17fdf230395120c7cac1c190ab7df682f7afe91f4299ef0e0357D�*�
0f63545c1582739bc1542a1eaf0c5dce4c4ef0527df85045f95f6e3e58f7dc1aD�)�
249f14138ea4a9e978acfe243db005efa9310dc87776a7c89364e9d0332dc70bD�(�
ef535692955e3b9dc14a633b487f86ba36720866a39c354e86275b7f23d6adbaD�'�
62fb9bed135072100886d8af661320bffe7159a6a42c55a6edc43a35171437d3D�&�
717d93d915b4145b601363d9eea5ba57a7d532d16a4390f52cb99c069c612c19D�%�
4b0430168f86ed2d3205e156f91cb895de8e9f80a08f08355aaaed21286d7be5
%��k��Ga�w%Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�;��Fa�%Patsy Griffin <patsy@redhat.com> - 2020b-3_���- Include the upstream patch to support pacificnew for java tzupdater.
- Set POSIXRULES macro to continue installing posixrules file.Y��EaU%Patsy Griffin <patsy@redhat.com> - 2020b-2_�P�- Need to rebuild, bump the release.�V��Da�M%Patsy Griffin <patsy@redhat.com> - 2020b-1_}��- Rebase to tzdata-2020b
  - Yukon timezones represented by America/Whitehorse and
    America/Dawson will change time zone rules from -08/-07 to
    permanent -07 on 2020-11-01, not on 2020-03-08 as 2020a had it.
  - The most recent winter(+08)/summer(+11) transition for Casey Station,
    Antarctica was 2020-10-04 00:01.
  - Remove obsolete files pacificnew, systemv, and yearistype.sh
    from the distribution.
PT�;�PY��LaU&Patsy Griffin <patsy@redhat.com> - 2020b-2_�P�- Need to rebuild, bump the release.�	��Ka�3%Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��Ja�%Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.R��IaG%Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��Ha�o%Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.
N@P�NR��PaG&Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��Oa�o&Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�k��Na�w&Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�;��Ma�&Patsy Griffin <patsy@redhat.com> - 2020b-3_���- Include the upstream patch to support pacificnew for java tzupdater.
- Set POSIXRULES macro to continue installing posixrules file.
�=��	��Ra�3&Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��Qa�&Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.
Q�QT��TaK&Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��Sa�E&Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
 tR��XaG'Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��Wa�o'Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�k��Va�w'Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�k��Ua�w&Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
�=��	��Za�3'Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��Ya�'Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.
Q�QT��\aK'Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��[a�E'Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
bJb�'��`a�o(Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�7��_a�'Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��^a�#'Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��]a�w'Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
Y��Y�	��ca�3(Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��ba�(Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.R��aaG(Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.
Q�QT��eaK(Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��da�E(Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
J�m��ia�{(Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��ha�(Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��ga�#(Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��fa�w(Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
�=��	��ka�3)Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��ja�)Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.
Q�QT��maK)Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��la�E)Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
J�m��qa�{)Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��pa�)Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��oa�#)Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��na�w)Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
I��I�	��ta�3*Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�b��sa�e)Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��ra�)Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
Q�QT��vaK*Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��ua�E*Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
J�m��za�{*Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��ya�*Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��xa�#*Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��wa�w*Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
�����g��}a�o*Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.�b��|a�e*Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��{a�*Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
Q�QT��aK+Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��~a�E+Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
J�m��a�{+Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��a�+Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��a�#+Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��a�w+Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
,���,�:��a�+Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��a�o+Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.�b��a�e+Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��a�+Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
������7��a�,Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��
a�#,Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��	a�w,Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.T��aK,Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.
����b��a�e,Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��
a�,Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.�m��a�{,Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data
uUeu�k��a�w-Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.�k��a�w,Patsy Griffin <patsy@redhat.com> - 2022f-1c_��- Rebase to tzdata-2022f
  - Mexico will stop observing DST except near the US border.
  - Chihuahua moved to -06 year round starting on 2022-10-30.
  - Fiji no longer observes DST.�:��a�,Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��a�o,Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.
:��m��a�{-Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��a�-Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��a�#-Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
,���,�:��a�-Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��a�o-Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.�b��a�e-Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��a�-Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
����m��a�{.Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�&��a�m-Patsy Griffin <patsy@redhat.com> - 2022g-1c��@- Rebase to tzdata-2022g
  - The northern edge of the Mexican state of Chihuahua will
    change time zone to agree with nearby US locations on
    2022-11-30.
  - Added a new Zone America/Ciudad_Juarez that splits from
    America/Ojinaga.�k��a�w-Patsy Griffin <patsy@redhat.com> - 2022f-1c_��- Rebase to tzdata-2022f
  - Mexico will stop observing DST except near the US border.
  - Chihuahua moved to -06 year round starting on 2022-10-30.
  - Fiji no longer observes DST.
,���,�:�� a�.Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��a�o.Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.�b��a�e.Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��a�.Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
]��]���$a�E.Patsy Griffin <patsy@redhat.com> - 2023b-1d��- Rebase to tzdata-2023b
  - Lebanon will transition to DST on April 20/21, not March 25/26.�l��#a�y.Patsy Griffin <patsy@redhat.com> - 2023a-1d�- Rebase to tzdata-2023a
  - Egypt reintroduced DST, from April through October.
  - Morocco springs forward April 23, not April 30.
  - Palestine delayed the start of DST this year.�&��"a�m.Patsy Griffin <patsy@redhat.com> - 2022g-1c��@- Rebase to tzdata-2022g
  - The northern edge of the Mexican state of Chihuahua will
    change time zone to agree with nearby US locations on
    2022-11-30.
  - Added a new Zone America/Ciudad_Juarez that splits from
    America/Ojinaga.�k��!a�w.Patsy Griffin <patsy@redhat.com> - 2022f-1c_��- Rebase to tzdata-2022f
  - Mexico will stop observing DST except near the US border.
  - Chihuahua moved to -06 year round starting on 2022-10-30.
  - Fiji no longer observes DST.
�v����k��(a�w/Patsy Griffin <patsy@redhat.com> - 2022f-1c_��- Rebase to tzdata-2022f
  - Mexico will stop observing DST except near the US border.
  - Chihuahua moved to -06 year round starting on 2022-10-30.
  - Fiji no longer observes DST.�:��'a�/Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��&a�o/Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.���%a�+.Patsy Griffin <patsy@redhat.com> - 2023c-1d"�- Rebase to tzdata-2023c
  - Lebanon reversed the change added in tzdata-2023b.
O��M�Op��-a�/Patsy Griffin <patsy@redhat.com> - 2023c-2d�@- Bump release to test recent process changes. (RHEL-1328)���,a�+/Patsy Griffin <patsy@redhat.com> - 2023c-1d"�- Rebase to tzdata-2023c
  - Lebanon reversed the change added in tzdata-2023b.���+a�E/Patsy Griffin <patsy@redhat.com> - 2023b-1d��- Rebase to tzdata-2023b
  - Lebanon will transition to DST on April 20/21, not March 25/26.�l��*a�y/Patsy Griffin <patsy@redhat.com> - 2023a-1d�- Rebase to tzdata-2023a
  - Egypt reintroduced DST, from April through October.
  - Morocco springs forward April 23, not April 30.
  - Palestine delayed the start of DST this year.�&��)a�m/Patsy Griffin <patsy@redhat.com> - 2022g-1c��@- Rebase to tzdata-2022g
  - The northern edge of the Mexican state of Chihuahua will
    change time zone to agree with nearby US locations on
    2022-11-30.
  - Added a new Zone America/Ciudad_Juarez that splits from
    America/Ojinaga.
�
��K��1a�70Patsy Griffin <patsy@redhat.com> - 2019b-1]��- Rebase to tzdata-2019b
  - Brazil will no longer observe DST going forward.
  - The 2019 spring transition for Palestine occurred 03-29, not 03-30.���0s�M0Patsy Griffin Franklin <patsy@redhat.com> - 2019a-1\�@- Rebase to tzdata-2019a
  - Palestine will start DST on 2019-03-30, rather than 2019-03-23 as
    previously predicted.
  - Metlakatla rejoined Alaska time on 2019-01-20, ending its observances
    of Pacific standard time.�^��/a�]/Patsy Griffin <patsy@redhat.com> - 2024a-1e���- Rebase to tzdata-2024a
  - Kazakhstan will transition from UTC+6 to UTC+5 on 2024-03-01.
  - Palestine will spring forward a week later than previously
    predicted.���.a�7/Patsy Griffin <patsy@redhat.com> - 2023d-1e��@- Rebase to tzdata-2023d
  - Include time zone changes for Ittoqqortoormiit, Greenland
    and Vostok, Antarctica.
  - Update the expiration date for the leap-seconds.list file.
    No new leap seconds were added.
(��V��4a�M0Patsy Griffin <patsy@redhat.com> - 2020b-1_}��- Rebase to tzdata-2020b
  - Yukon timezones represented by America/Whitehorse and
    America/Dawson will change time zone rules from -08/-07 to
    permanent -07 on 2020-11-01, not on 2020-03-08 as 2020a had it.
  - The most recent winter(+08)/summer(+11) transition for Casey Station,
    Antarctica was 2020-10-04 00:01.
  - Remove obsolete files pacificnew, systemv, and yearistype.sh
    from the distribution.�0��3a�0Patsy Griffin <patsy@redhat.com> - 2020a-1^��- Rebase to tzdata-2020a
  - Morocco will spring forward on 2020-05-31 rather than
    previously predicted 2020-05-24.
  - Canada's Yukon region changed to year round UTC -07
    effective 2020-03-08.
  - America/Godthab was renamed to America/Nuuk.�S��2a�G0Patsy Griffin <patsy@redhat.com> - 2019c-1]x�- Rebase to tzdata-2019c
  - Fiji will observe DST from 2019-11-10 to 2020-01-12.
  - Norfolk Island will begin observing Australian-style DST on 2019-10-06.
!���G�!�K��:a�71Patsy Griffin <patsy@redhat.com> - 2019b-1]��- Rebase to tzdata-2019b
  - Brazil will no longer observe DST going forward.
  - The 2019 spring transition for Palestine occurred 03-29, not 03-30.R��9aG0Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��8a�o0Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�k��7a�w0Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�;��6a�0Patsy Griffin <patsy@redhat.com> - 2020b-3_���- Include the upstream patch to support pacificnew for java tzupdater.
- Set POSIXRULES macro to continue installing posixrules file.Y��5aU0Patsy Griffin <patsy@redhat.com> - 2020b-2_�P�- Need to rebuild, bump the release.
(��V��=a�M1Patsy Griffin <patsy@redhat.com> - 2020b-1_}��- Rebase to tzdata-2020b
  - Yukon timezones represented by America/Whitehorse and
    America/Dawson will change time zone rules from -08/-07 to
    permanent -07 on 2020-11-01, not on 2020-03-08 as 2020a had it.
  - The most recent winter(+08)/summer(+11) transition for Casey Station,
    Antarctica was 2020-10-04 00:01.
  - Remove obsolete files pacificnew, systemv, and yearistype.sh
    from the distribution.�0��<a�1Patsy Griffin <patsy@redhat.com> - 2020a-1^��- Rebase to tzdata-2020a
  - Morocco will spring forward on 2020-05-31 rather than
    previously predicted 2020-05-24.
  - Canada's Yukon region changed to year round UTC -07
    effective 2020-03-08.
  - America/Godthab was renamed to America/Nuuk.�S��;a�G1Patsy Griffin <patsy@redhat.com> - 2019c-1]x�- Rebase to tzdata-2019c
  - Fiji will observe DST from 2019-11-10 to 2020-01-12.
  - Norfolk Island will begin observing Australian-style DST on 2019-10-06.
����G�R��BaG1Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��Aa�o1Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�k��@a�w1Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�;��?a�1Patsy Griffin <patsy@redhat.com> - 2020b-3_���- Include the upstream patch to support pacificnew for java tzupdater.
- Set POSIXRULES macro to continue installing posixrules file.Y��>aU1Patsy Griffin <patsy@redhat.com> - 2020b-2_�P�- Need to rebuild, bump the release.
0=e0�0��Ea�2Patsy Griffin <patsy@redhat.com> - 2020a-1^��- Rebase to tzdata-2020a
  - Morocco will spring forward on 2020-05-31 rather than
    previously predicted 2020-05-24.
  - Canada's Yukon region changed to year round UTC -07
    effective 2020-03-08.
  - America/Godthab was renamed to America/Nuuk.�S��Da�G2Patsy Griffin <patsy@redhat.com> - 2019c-1]x�- Rebase to tzdata-2019c
  - Fiji will observe DST from 2019-11-10 to 2020-01-12.
  - Norfolk Island will begin observing Australian-style DST on 2019-10-06.�>��Ca�1Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.

e�r+��V��:��eD�>�
317a76559462ea9c4e676627bc07ad51cdeabb16ed71de9e1006e9136d921666D�=�
edcb7daa302df852d996cca8fd843525c686219264ba83f606c7566c191682c4D�<�
10bf18711ec31e124e08d12cfe9942edc9e512ce03fb9b9ab9a4a20d6d665b83D�;�
98918dc25b41bec2b5ac51e8782f6207f2389722d5bceec6f30c41eaeb02e336D�:�
d9de662df6b2d06baba19d02a89453bc264c7daa9c6fefb8214e3a084eca6e1bD�9�
7f22cccc77b46b6d72fc3cd7f68664be248f5c21b739751c0122fc7846687306D�8�
b39d7efe820971e3e85469fa528f6b8608b9fc3e46fd50fbfb19bf2bd8ca1a0bD�7�
948dadcdb6a107784d457eb7291106200038a0a93fe476580a9a43cd45652b47D�6�
05190e91801f134ec5c33d7636671a93327e2f26dc018ed5ef24541b0c91c9feD�5�
69bfe28a120aa3364ed2beefdae50126ff4e6b20ea1caf0f1054904964676724D�4�
738674ab7d423fde7ddc0d251b0d8c8447088a4f7f39ef36b39ba26c41f4a83eD�3�
6dce221414fb5a6fc2d69f0e321ab26390708d0c5ae297b2b4a9886bc5ba834cD�2�
f89e78370bd25ce90933cc003b71d1a2bcb2d53f73c8919389825731abc97807
%��k��Ia�w2Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�;��Ha�2Patsy Griffin <patsy@redhat.com> - 2020b-3_���- Include the upstream patch to support pacificnew for java tzupdater.
- Set POSIXRULES macro to continue installing posixrules file.Y��GaU2Patsy Griffin <patsy@redhat.com> - 2020b-2_�P�- Need to rebuild, bump the release.�V��Fa�M2Patsy Griffin <patsy@redhat.com> - 2020b-1_}��- Rebase to tzdata-2020b
  - Yukon timezones represented by America/Whitehorse and
    America/Dawson will change time zone rules from -08/-07 to
    permanent -07 on 2020-11-01, not on 2020-03-08 as 2020a had it.
  - The most recent winter(+08)/summer(+11) transition for Casey Station,
    Antarctica was 2020-10-04 00:01.
  - Remove obsolete files pacificnew, systemv, and yearistype.sh
    from the distribution.
PT�;�PY��NaU3Patsy Griffin <patsy@redhat.com> - 2020b-2_�P�- Need to rebuild, bump the release.�	��Ma�32Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��La�2Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.R��KaG2Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��Ja�o2Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.
N@P�NR��RaG3Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��Qa�o3Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�k��Pa�w3Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�;��Oa�3Patsy Griffin <patsy@redhat.com> - 2020b-3_���- Include the upstream patch to support pacificnew for java tzupdater.
- Set POSIXRULES macro to continue installing posixrules file.
�=��	��Ta�33Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��Sa�3Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.
Q�QT��VaK3Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��Ua�E3Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
 tR��ZaG4Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.�'��Ya�o4Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�k��Xa�w4Patsy Griffin <patsy@redhat.com> - 2020c-1_��- Rebase to tzdata-2020c
  - Fiji starts DST later than usual, on 2020-12-20.
  - Rearguard now provides an empty file pacificnew to support
    downstream software that expects it.�k��Wa�w3Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
�=��	��\a�34Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��[a�4Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.
Q�QT��^aK4Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��]a�E4Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
bJb�'��ba�o5Patsy Griffin <patsy@redhat.com> - 2020d-1_�"�- Rebase to tzdata-2020d
 - Palestine will end summer time on 2020-10-24 rather than the
   predicted 2020-10-31.�7��aa�4Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��`a�#4Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��_a�w4Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
Y��Y�	��ea�35Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��da�5Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.R��caG5Patsy Griffin <patsy@redhat.com> - 2020d-2_�"�- Update release and rebuild.
Q�QT��gaK5Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��fa�E5Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
J�m��ka�{5Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��ja�5Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��ia�#5Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��ha�w5Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
�=��	��ma�36Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�>��la�6Patsy Griffin <patsy@redhat.com> - 2020f-1_�@- Rebase to tzdata-2020f including changes for tzdata-2020e
  - tzdata-2020f fixes a bug in tzdata-2020e that caused an
    invalid zi file in rearguard format
  - Volgograd changes time zone from UTC+04 to UTC+03 on 2020-12-27.
  - Australia/Currie is identical to Australia/Hobart for all
    timestamps since 1970 and was therefore created by mistake,
    now moved to the "backward" file.
Q�QT��oaK6Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��na�E6Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
J�m��sa�{6Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��ra�6Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��qa�#6Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��pa�w6Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
I��I�	��va�37Patsy Griffin <patsy@redhat.com> - 2021a-1`
a@- Rebase to tzdata-2021a
  - South Sudan will change from +03 to +02 on 2021-02-01.�b��ua�e6Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��ta�6Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
Q�QT��xaK7Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��wa�E7Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
J�m��|a�{7Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��{a�7Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��za�#7Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��ya�w7Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
�����g��a�o7Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.�b��~a�e7Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��}a�7Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
Q�QT��aK8Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.�R��a�E8Patsy Griffin <patsy@redhat.com> - 2021b-1aO@- Rebase to tzdata-2021b
  - Innclude patch for Mayen
  - Jordan now starts DST on February's last Thursday.
  - Samoa no longer observes DST.
  - Merge more location-based Zones whose timestamps agree since 1970.
  - Move some backward-compatibility links to 'backward'.
  - Rename Pacific/Enderbury to Pacific/Kanton.
  - Correct many pre-1993 transitions in Malawi, Portugal, etc.
  - zic now creates each output file or link atomically.
  - zic -L no longer omits the POSIX TZ string in its output.
  - zic fixes for truncation and leap second table expiration.
  - zic now follows POSIX for TZ strings using all-year DST.
  - Fix some localtime crashes and bugs in obscure cases.
  - zdump -v now outputs more-useful boundary cases.
  - tzfile.5 better matches a draft successor to RFC 8536.
J�m��a�{8Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��a�8Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��a�#8Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��a�w8Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.
,���,�:��	a�8Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��a�o8Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.�b��a�e8Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��a�8Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
������7��
a�9Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��a�#9Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".�k��a�w9Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.T��
aK9Patsy Griffin <patsy@redhat.com> - 2021b-2aTU@- Bump the release and rebuild.
����b��a�e9Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��a�9Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.�m��a�{9Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data
uUeu�k��a�w:Patsy Griffin <patsy@redhat.com> - 2021c-1aZ�- Rebase to tzdata-2021c
  - Revert most of 2021b changes to 'backward'.
  - Fix 'zic -b fat' bug in pre-1970 32-bit data.
  - Fix two Link line typos.
  - Distribute SECURITY file.�k��a�w9Patsy Griffin <patsy@redhat.com> - 2022f-1c_��- Rebase to tzdata-2022f
  - Mexico will stop observing DST except near the US border.
  - Chihuahua moved to -06 year round starting on 2022-10-30.
  - Fiji no longer observes DST.�:��a�9Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��a�o9Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.
:��m��a�{:Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�7��a�:Patsy Griffin <patsy@redhat.com> - 2021e-1ar��- Rebase to tzdata-2021e - supersedes tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
  - Palestine will fall back 2021-10-29 at 01:00, rather
    than the predicted 2021-10-30.�A��a�#:Patsy Griffin <patsy@redhat.com> - 2021d-1ama�- Rebase to tzdata-2021d
  - Pacific/Fiji suspended DST for the 2021/2022 season.
  - 'zic -r' now marks unspecified timestamps with "-00".
,���,�:��a�:Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��a�o:Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.�b��a�e:Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��a�:Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
����m��a�{;Patsy Griffin <patsy@redhat.com> - 2022a-1b1�@- Rebase to tzdata-2022a
  - Palestine springs forward on 2022-03-27, not -03-26.
  - zdump -v now outputs better failure information
  - fixes for code that reads corrupted TZif data�&��a�m:Patsy Griffin <patsy@redhat.com> - 2022g-1c��@- Rebase to tzdata-2022g
  - The northern edge of the Mexican state of Chihuahua will
    change time zone to agree with nearby US locations on
    2022-11-30.
  - Added a new Zone America/Ciudad_Juarez that splits from
    America/Ojinaga.�k��a�w:Patsy Griffin <patsy@redhat.com> - 2022f-1c_��- Rebase to tzdata-2022f
  - Mexico will stop observing DST except near the US border.
  - Chihuahua moved to -06 year round starting on 2022-10-30.
  - Fiji no longer observes DST.
,���,�:��"a�;Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��!a�o;Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.�b�� a�e;Patsy Griffin <patsy@redhat.com> - 2022c-1b���- Rebase to tzdata-2022c - supersedes tzdata-2022b
  - Add a work-around for an awk bug in FreeBSD, macOS, etc.
  - Improve tzselect with respect to intercontinental Zones.�=��a�;Patsy Griffin <patsy@redhat.com> - 2022b-1b�- Rebase to tzdata-2022b
  - Chile transitions to DST on 2022-09-11, not 2022-09-04
  - 'make install' now defaults LOCALTIME to Factory rather than GMT
  - More zones that are the same since 1970 have been moved to backzone.
  - Include patch for awk workaround.
]��]���&a�E;Patsy Griffin <patsy@redhat.com> - 2023b-1d��- Rebase to tzdata-2023b
  - Lebanon will transition to DST on April 20/21, not March 25/26.�l��%a�y;Patsy Griffin <patsy@redhat.com> - 2023a-1d�- Rebase to tzdata-2023a
  - Egypt reintroduced DST, from April through October.
  - Morocco springs forward April 23, not April 30.
  - Palestine delayed the start of DST this year.�&��$a�m;Patsy Griffin <patsy@redhat.com> - 2022g-1c��@- Rebase to tzdata-2022g
  - The northern edge of the Mexican state of Chihuahua will
    change time zone to agree with nearby US locations on
    2022-11-30.
  - Added a new Zone America/Ciudad_Juarez that splits from
    America/Ojinaga.�k��#a�w;Patsy Griffin <patsy@redhat.com> - 2022f-1c_��- Rebase to tzdata-2022f
  - Mexico will stop observing DST except near the US border.
  - Chihuahua moved to -06 year round starting on 2022-10-30.
  - Fiji no longer observes DST.
�v����k��*a�w<Patsy Griffin <patsy@redhat.com> - 2022f-1c_��- Rebase to tzdata-2022f
  - Mexico will stop observing DST except near the US border.
  - Chihuahua moved to -06 year round starting on 2022-10-30.
  - Fiji no longer observes DST.�:��)a�<Patsy Griffin <patsy@redhat.com> - 2022e-1cF�@- Rebase to tzdata-2022e
  - Jordan and Syria cancelled the DST transition planned
    for 2022-10-28, remaining at +03 permanently.�g��(a�o<Patsy Griffin <patsy@redhat.com> - 2022d-1c1�@- Rebase to tzdata-2022d
  - Palestine's DST transition will be on October 29, 2022,
    not October 28, 2022.
  - Europe/Uzhgorod and Europe/Zaporozhye are moved to 'backzone'.���'a�+;Patsy Griffin <patsy@redhat.com> - 2023c-1d"�- Rebase to tzdata-2023c
  - Lebanon reversed the change added in tzdata-2023b.
O��M�Op��/a�<Patsy Griffin <patsy@redhat.com> - 2023c-2d�@- Bump release to test recent process changes. (RHEL-1328)���.a�+<Patsy Griffin <patsy@redhat.com> - 2023c-1d"�- Rebase to tzdata-2023c
  - Lebanon reversed the change added in tzdata-2023b.���-a�E<Patsy Griffin <patsy@redhat.com> - 2023b-1d��- Rebase to tzdata-2023b
  - Lebanon will transition to DST on April 20/21, not March 25/26.�l��,a�y<Patsy Griffin <patsy@redhat.com> - 2023a-1d�- Rebase to tzdata-2023a
  - Egypt reintroduced DST, from April through October.
  - Morocco springs forward April 23, not April 30.
  - Palestine delayed the start of DST this year.�&��+a�m<Patsy Griffin <patsy@redhat.com> - 2022g-1c��@- Rebase to tzdata-2022g
  - The northern edge of the Mexican state of Chihuahua will
    change time zone to agree with nearby US locations on
    2022-11-30.
  - Added a new Zone America/Ciudad_Juarez that splits from
    America/Ojinaga.
��
�U��%��4e�g=Petr Stodulka <pstodulk@redhat.com> - 6.0-15T�@- Fix CVE-2014-9636 CVE-2014-8139 CVE-2014-8140 CVE-2014-8141
  Resolves: #1196134 #1196122 #1196126 #1196130e��3ei=Petr Stodulka <pstodulk@redhat.com> - 6.0-14S�R@- Fix caseinsensitive bug
  Resolves: #1104018K��2[?=Daniel Mach <dmach@redhat.com> - 6.0-13R�U�- Mass rebuild 2014-01-24�^��1a�]<Patsy Griffin <patsy@redhat.com> - 2024a-1e���- Rebase to tzdata-2024a
  - Kazakhstan will transition from UTC+6 to UTC+5 on 2024-03-01.
  - Palestine will spring forward a week later than previously
    predicted.���0a�7<Patsy Griffin <patsy@redhat.com> - 2023d-1e��@- Rebase to tzdata-2023d
  - Include time zone changes for Ittoqqortoormiit, Greenland
    and Vostok, Antarctica.
  - Update the expiration date for the leap-seconds.list file.
    No new leap seconds were added.
9�:��9g��9gk=Jakub Martisko <jamartis@redhat.com> - 6.0-20\s�- Fix CVE-2018-18384
  Resolves: CVE-2018-18384�q��8g�}=Jakub Martisko <jamartis@redhat.com> - 6.0-19ZT��- rename patch unzip-6.0-nostrip.patch to unzip-6.0-configure.patch
- make linking flags configurable from the specc file
- set linking flags to use relro hardening
  Related: #1531116���7g�Q=Jakub Martisko <jamartis@redhat.com> - 6.0-18ZT��- Add -DNOLCHMOD build option, since lchmod is not availabel on Linux
  Anyway
  Related: #1531116�	��6g�-=Jakub Martisko <jamartis@redhat.com> - 6.0-17ZN@- Fix error with wrong CRC checks by adding -DNOMEMCPY flag
  Resolves: #1525636�3��5e�=Petr Stodulka <pstodulk@redhat.com> - 6.0-16VU��- Added patch for build option "-Werror=format-security"
- Added support of non-unicode non-latin charset
- Fix print of non-ascii filenames
- Fix troubles with symlinks for archives with many files
  Resolves: rhbz#1276746, rhbz#1286165, rhbz#1276744
��l4��	��>g�->Jakub Martisko <jamartis@redhat.com> - 6.0-17ZN@- Fix error with wrong CRC checks by adding -DNOMEMCPY flag
  Resolves: #1525636�3��=e�>Petr Stodulka <pstodulk@redhat.com> - 6.0-16VU��- Added patch for build option "-Werror=format-security"
- Added support of non-unicode non-latin charset
- Fix print of non-ascii filenames
- Fix troubles with symlinks for archives with many files
  Resolves: rhbz#1276746, rhbz#1286165, rhbz#1276744�%��<e�g>Petr Stodulka <pstodulk@redhat.com> - 6.0-15T�@- Fix CVE-2014-9636 CVE-2014-8139 CVE-2014-8140 CVE-2014-8141
  Resolves: #1196134 #1196122 #1196126 #1196130{��;g�=Jakub Martisko <jamartis@redhat.com> - 6.0-22`\{@- Fix a false positive in a zip bomb detection
- Resolves: 1920632g��:gk=Jakub Martisko <jamartis@redhat.com> - 6.0-21]��- Fix CVE-2019-13232
- Resolves: CVE-2019-13232
5`j��5�[��Dg�Q>Jakub Martisko <jamartis@redhat.com> - 6.0-23a��- Disable the zipbomb detection patches
- There were too many false positives for now, will reenable this later with an option to opt-out
- Resolves: rhbz#2020318{��Cg�>Jakub Martisko <jamartis@redhat.com> - 6.0-22`\{@- Fix a false positive in a zip bomb detection
- Resolves: 1920632g��Bgk>Jakub Martisko <jamartis@redhat.com> - 6.0-21]��- Fix CVE-2019-13232
- Resolves: CVE-2019-13232g��Agk>Jakub Martisko <jamartis@redhat.com> - 6.0-20\s�- Fix CVE-2018-18384
  Resolves: CVE-2018-18384�q��@g�}>Jakub Martisko <jamartis@redhat.com> - 6.0-19ZT��- rename patch unzip-6.0-nostrip.patch to unzip-6.0-configure.patch
- make linking flags configurable from the specc file
- set linking flags to use relro hardening
  Related: #1531116���?g�Q>Jakub Martisko <jamartis@redhat.com> - 6.0-18ZT��- Add -DNOLCHMOD build option, since lchmod is not availabel on Linux
  Anyway
  Related: #1531116
B�p��(��IW�{?Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��HW�%?Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��GW�?Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��FWk?Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�9��Eg�
>Jakub Martisko <jamartis@redhat.com> - 6.0-24a�L�- Reenable the zipbomb detection patches
- Add environment variable that disables the zipbomb detection
- Resolves: rhbz#2020318

e�r+��V��:��eD�K�
31f5687f8cf2efb346cfb7c6db63dd20099ae55c53df37eace7337114a7ab96bD�J�
05362c7e6d4437e600de7d1470e9fe6c2f6f27c1292646ff6a86a8a72ae75c9fD�I�
6992344b5a8b6f8518b34b8b6f7488ab9d8930c89df8401bbe760046a494d720D�H�
4bcba3242efbe299d1cca855971a52ac841ce3d6656543283cb9ff8dfd08b70dD�G�
f6645c7cbc24d07e153f2c8892cf815d6c7edf416985b8afe81d4a7af9562adcD�F�
0fa907c7a6165ea080e9b32810b7f06b8576ef3ab9fe6df734c98ca91fd4ff1cD�E�
e79f036d785295613332bcd3cf90576996a5ccf4caf4279ccd2519d51ec04845D�D�
b629a630cf9bcbefa47414156640cb216d8f887d9dae33819d9e0461c4c0119eD�C�
1900e396d24a404c2bdc5dd7198c7a0a6a08171c7ea6e2c4eff77792f3f335edD�B�
706b5941777a2e74d84643c364c9bf33de8003c8ccbac339a0fdb62fbcc0e38dD�A�
3619f7bf9f3566d19d7252cebb96f571e998412d785249dc7108dc067b00c751D�@�
ba087a07d4834f084f6c1c67dd0871b4faec0852cdda6a66f64c6203f78ef56cD�?�
f00c1a71ef838f6972f7559129c30772cf908879baef300c1d4d8fe9b449c0a9
E�E���LW�I?Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��KW�-?Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��JW�c?Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��NW�m?Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��MW�_?Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��SW�{@Karel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��RW�%@Karel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��QW�@Karel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��PWk@Karel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��Og�#?Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���VW�I@Karel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��UW�-@Karel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��TW�c@Karel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��XW�m@Karel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��WW�_@Karel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
v�T�#v�(��]W�{AKarel Zak <kzak@redhat.com> 2.23.2-60\R�@- fix #1664752 - Bull (Atos) server lands up in invalid stty settings on the serial console after boot preventing login�=��\W�%AKarel Zak <kzak@redhat.com> 2.23.2-59[z�@- fix #1618711 - exec option in mount unable to override the implicit noexec in user option
- fix #1616264 - Login to emergency shell failedk��[W�AKarel Zak <kzak@redhat.com> 2.23.2-58[<��- fix #1594681 - [RHEL7.2] blkid does not output swap area_��ZWkAKarel Zak <kzak@redhat.com> 2.23.2-57["X�- add another ppc aliases to setarch (#1562125)�D��Yg�#@Karel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
E�E���`W�IAKarel Zak <kzak@redhat.com> 2.23.2-63]]2@- fix #1740572 - libmount ignores empty domain field due to which plain domain option is sent.�A��_W�-AKarel Zak <kzak@redhat.com> 2.23.2-62]Ik�- fix #1734545 - blkid_get_dev() leak file descriptor to underlying block device
- fix #1712768 - lsmem segfaults on ppc64 wih -o
- fix #1690102 - setarch(8) does not check error return values properly.
- fix #1734261 - lscpu not showing Physical socket, chips information�\��^W�cAKarel Zak <kzak@redhat.com> 2.23.2-61\��@- #1203378 - Cannot use swapon with fallocated XFS swapfile
- #1632944 - blkid/lsblk does not recognize exfat filesystem without a label
- #1633657 - mount -a always tries to mount CIFS share subdir despite being already mounted
- #1639465 - Bad formatting in agetty.8 man page
- #1667942 - libsmartcols: scols_print_table_to_string() doesn't work
- #1678451 - Unable to mount to a directory that matches a dm device under /dev
;!;�a��bW�mAKarel Zak <kzak@redhat.com> 2.23.2-65^��@- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory�Z��aW�_AKarel Zak <kzak@redhat.com> 2.23.2-64^�k@- fix #1788896 - Internal testsuite: libmount tests failed
- fix #1802240 - systemd-udev segmentation fault in crc32() at lib/crc32.c (libblkid)
- fix #1816183 - "mount -a" should ignore already mounted bind mounts.
- fix #1747710 - please backport the "uid=forget" and "gid=forget" UDF mount options to libmount
- fix #1784579 - RHEL-7: col struct char_str c_column field should be of unsigned type and/or larger than 16 bit
M�.�Mi��gmiBZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-5['��- 1490927 - vim dumps core when system rebootsp��fmwBZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-4Y���- fixed upstream tests, which failed after last build�^��em�QBZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-3Y�n@- 1267826 - Include c++11 syntax highlighting in vim
- 1319760 - [RFE] Vim should support blowfish2, plus ensure that RHEL6 encrypted files can be opened in RHEL7�!��dm�WBZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-2X���- 1383902 - CPU spikes to 100% and timeouts observed in strace when opening yaml extensions using vim�D��cg�#AKarel Zak <kzak@redhat.com> 2.23.2-65.el7_9.1_м@- fix #1905956 - RHEL-7: chrt regression: unwanted 'nice' value reset on sched_setattr() [rhel-7.9.z]
- fix #1905954 - RHEL-7: chrt regression: unexpected default scheduler [rhel-7.9.z]
- fix #1883013 - RHEL-7: chrt command does not support the -R option [rhel-7.9.z]
�,���t��mmBZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-8_ts@- 1833186 - gvim consums 100% cpu under certain conditions��lm}BZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-7^&�- 1743070 - manpage of vim is garbled in Japanese locale�
��km�/BZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-6]�A- increment release enough to get CVE fix 1719964 for clients migrated from RHEL6�
��jm�)BZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-3]�@- 1719964 - CVE-2019-12735 arbitrary command execution in getchar.c [rhel-7.7]z��im�	BZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-2\E�@- adding several additional changes for #1377316 from upstream�O��hm�3BZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-1\?�- 1563419 - Vim in RHEL 7 is older than VIM in RHEL 6 (Rebase)
- 1377316 - [RFE] make _remote_ vim doing the right decisions about 'set background'
DZw��Dz��sm�	CZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-2\E�@- adding several additional changes for #1377316 from upstream�O��rm�3CZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-1\?�- 1563419 - Vim in RHEL 7 is older than VIM in RHEL 6 (Rebase)
- 1377316 - [RFE] make _remote_ vim doing the right decisions about 'set background'i��qmiCZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-5['��- 1490927 - vim dumps core when system rebootsp��pmwCZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-4Y���- fixed upstream tests, which failed after last build�^��om�QCZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-3Y�n@- 1267826 - Include c++11 syntax highlighting in vim
- 1319760 - [RFE] Vim should support blowfish2, plus ensure that RHEL6 encrypted files can be opened in RHEL7�!��nm�WCZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-2X���- 1383902 - CPU spikes to 100% and timeouts observed in strace when opening yaml extensions using vim
gq�h�Jg�^��ym�QDZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-3Y�n@- 1267826 - Include c++11 syntax highlighting in vim
- 1319760 - [RFE] Vim should support blowfish2, plus ensure that RHEL6 encrypted files can be opened in RHEL7�!��xm�WDZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-2X���- 1383902 - CPU spikes to 100% and timeouts observed in strace when opening yaml extensions using vimt��wmCZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-8_ts@- 1833186 - gvim consums 100% cpu under certain conditions��vm}CZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-7^&�- 1743070 - manpage of vim is garbled in Japanese locale�
��um�/CZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-6]�A- increment release enough to get CVE fix 1719964 for clients migrated from RHEL6�
��tm�)CZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-3]�@- 1719964 - CVE-2019-12735 arbitrary command execution in getchar.c [rhel-7.7]
5�K�>�5s��m}DZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-7^&�- 1743070 - manpage of vim is garbled in Japanese locale�
��m�/DZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-6]�A- increment release enough to get CVE fix 1719964 for clients migrated from RHEL6�
��~m�)DZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-3]�@- 1719964 - CVE-2019-12735 arbitrary command execution in getchar.c [rhel-7.7]z��}m�	DZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-2\E�@- adding several additional changes for #1377316 from upstream�O��|m�3DZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-1\?�- 1563419 - Vim in RHEL 7 is older than VIM in RHEL 6 (Rebase)
- 1377316 - [RFE] make _remote_ vim doing the right decisions about 'set background'i��{miDZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-5['��- 1490927 - vim dumps core when system rebootsp��zmwDZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-4Y���- fixed upstream tests, which failed after last build
J����J�O��m�3EZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-1\?�- 1563419 - Vim in RHEL 7 is older than VIM in RHEL 6 (Rebase)
- 1377316 - [RFE] make _remote_ vim doing the right decisions about 'set background'i��miEZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-5['��- 1490927 - vim dumps core when system rebootsp��mwEZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-4Y���- fixed upstream tests, which failed after last build�^��m�QEZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-3Y�n@- 1267826 - Include c++11 syntax highlighting in vim
- 1319760 - [RFE] Vim should support blowfish2, plus ensure that RHEL6 encrypted files can be opened in RHEL7�!��m�WEZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-2X���- 1383902 - CPU spikes to 100% and timeouts observed in strace when opening yaml extensions using vimt��mDZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-8_ts@- 1833186 - gvim consums 100% cpu under certain condition
���a�r��!��m�WFZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-2X���- 1383902 - CPU spikes to 100% and timeouts observed in strace when opening yaml extensions using vimt��mEZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-8_ts@- 1833186 - gvim consums 100% cpu under certain conditions��
m}EZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-7^&�- 1743070 - manpage of vim is garbled in Japanese locale�
��	m�/EZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-6]�A- increment release enough to get CVE fix 1719964 for clients migrated from RHEL6�
��m�)EZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-3]�@- 1719964 - CVE-2019-12735 arbitrary command execution in getchar.c [rhel-7.7]z��m�	EZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-2\E�@- adding several additional changes for #1377316 from upstream
[�<h�[�
��m�)FZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-3]�@- 1719964 - CVE-2019-12735 arbitrary command execution in getchar.c [rhel-7.7]z��m�	FZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-2\E�@- adding several additional changes for #1377316 from upstream�O��m�3FZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-1\?�- 1563419 - Vim in RHEL 7 is older than VIM in RHEL 6 (Rebase)
- 1377316 - [RFE] make _remote_ vim doing the right decisions about 'set background'i��miFZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-5['��- 1490927 - vim dumps core when system rebootsp��mwFZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-4Y���- fixed upstream tests, which failed after last build�^��
m�QFZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.160-3Y�n@- 1267826 - Include c++11 syntax highlighting in vim
- 1319760 - [RFE] Vim should support blowfish2, plus ensure that RHEL6 encrypted files can be opened in RHEL7
*n�0�K*���k�OGRichard W.M. Jones <rjones@redhat.com> - 1.13-7Wg�- Add support for detecting POWER KVM and LPAR
  resolves: rhbz#1147876
- Detect RHEV/oVirt
  resolves: rhbz#1249438
- Detect ACPI boot aarch64 guest
  resolves: rhbz#1275349
- Fix typo in manual page
  resolves: rhbz#1099289���k�9GRichard W.M. Jones <rjones@redhat.com> - 1.13-6U6;�- Fix detection of aarch64
  resolves: rhbz#1201845
  Add all commits to version 1.15.K��[?GDaniel Mach <dmach@redhat.com> - 1.13-5R�U�- Mass rebuild 2014-01-24K��[?GDaniel Mach <dmach@redhat.com> - 1.13-4R�k�- Mass rebuild 2013-12-27t��mFZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-8_ts@- 1833186 - gvim consums 100% cpu under certain conditions��m}FZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-7^&�- 1743070 - manpage of vim is garbled in Japanese locale�
��m�/FZdenek Dohnal <zdohnal@redhat.com> - 2:7.4.629-6]�A- increment release enough to get CVE fix 1719964 for clients migrated from RHEL6
����]�j��oiGRichard W.M. Jones <rjones@redhat.com> - 1.18-4.1`���- Add Nutanix AHV support
  resolves: rhbz#xxx���k�GRichard W.M. Jones <rjones@redhat.com> - 1.18-4Y��- Add patch to recognize ppc64le virtualization.
  resolves: rhbz#1147876�6��k�GRichard W.M. Jones <rjones@redhat.com> - 1.18-2Y��- Rebase to Fedora Rawhide / upstream version.
- Include upstream patches since 1.18 was released.
  resolves: rhbz#1476878m��mqGRichard W.M. Jones <rjones@redhat.com> - 1.13-10X�P@- Require 'which' program
  resolves: rhbz#1433005s��kGRichard W.M. Jones <rjones@redhat.com> - 1.13-9X��@- Detect RHEV/oVirt (second fix)
  resolves: rhbz#1249438s��kGRichard W.M. Jones <rjones@redhat.com> - 1.13-8W��@- Depend on dmidecode on aarch64
  resolves: rhbz#1360699
t�O��to��$e}HWilliam Poteat <wpoteat@redhat.com> 0.28.5-1^�@- 1748677: Improved timeout for esx (wpoteat@redhat.com)�!��#e�_HWilliam Poteat <wpoteat@redhat.com> 0.28.4-1^��@- 1806572: virt-who using V3 APIs for communication with RHEVM which is
  deprecated (wpoteat@redhat.com)�=��"e�HWilliam Poteat <wpoteat@redhat.com> 0.28.3-1^s^�- 1775535: config option to override api version (piotr.kliczewski@gmail.com)
- Update releasers for new version (wpoteat@redhat.com)���!e�'HWilliam Poteat <wpoteat@redhat.com> 0.28.2-1^U@- 1760161: Command line arguments need to be in man page (wpoteat@redhat.com)�"�� e�aHWilliam Poteat <wpoteat@redhat.com> 0.28.1-1^E:@- 1780467: Validate rhevm password when unicode is not allowed
  (wpoteat@redhat.com)
- 1751441: Add command line path parameter (piotr.kliczewski@gmail.com)
- 1762780: fix bug, when reporter_id is empty; ENT-1706 (jhnidek@redhat.com)
`4�C�`�7��*o�IMartin Sehnoutka <msehnout@redhat.com> - 3.0.2-20WK�- Resolves: #1147551 - Missing isolate_* options, incorrect default values of
  max_clients, max_per_ip in man vsftpd.conf���)g�)HWilliam Poteat <wpoteat@redhat.com> 0.28.10-1_�/@- 1872477: virt-who fails to parse output from hypervisor (wpoteat@redhat.com)���(e�IHWilliam Poteat <wpoteat@redhat.com> 0.28.9-1^�- 1809098: Convert UUID to big-endian for certain esx hardware versions
  (wpoteat@redhat.com)z��'e�HWilliam Poteat <wpoteat@redhat.com> 0.28.8-1^��- 1844364: better behavior of --config option (jhnidek@redhat.com)o��&e}HWilliam Poteat <wpoteat@redhat.com> 0.28.7-1^�V@- 1835132: support milicpus (piotr.kliczewski@gmail.com)�G��%e�+HWilliam Poteat <wpoteat@redhat.com> 0.28.6-1^�m@- 1806572: RHEVM should only use version 4 (wpoteat@redhat.com)
- Update to tests to match changes in Subscription Manager (jhnidek@redhat.com)
�y��}��.o�
IOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-24Z�@- Fix reverse hostname lookup with IPv6
- Resolves: rhbz#1576705�7��-o�IOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-23Z��- Redefine VSFTP_COMMAND_FD to 1
- Resolves: rhbz#1443055
- Document the relationship of text_userdb_names and chroot_local_user
- Resolves: rhbz#1508021
- Document allow_writeable_chroot in the man page
- Resolves: rhbz#1508022
- Improve documentation of ascii_* options
- Resolves: rhbz#1517227
- Add new filename generation algorithm for STOU command
- Resolves: rhbz#1479237���,g�WIZdenek Dohnal <zdohnal@redhat.com> - 3.0.2-22XӸ�- Resolves: #1432054 - secure ftp stopped working with default TLS settings in the new vsftpd package���+o�IMartin Sehnoutka <msehnout@redhat.com> - 3.0.2-21WP�- Resolves: #1318947 vsftpd should permit specified TLS versions only
u�T�;u�A��3m�IArtem Egorenkov <aegorenk@redhat.com> - 3.0.2-29`n�@- Enable support for wide-character strings in logs
- Replace unprintables with HEX code, not question marks
- Resolves: rhbz#1922809u��2oIOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-28^`�- Fix timestamp handling in MDTM
- Resolves: rhbz#1583247���1o�IIOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-27]HA- Partially fix problem with bad utmp entries when pututxline() fails
- Resolves: rhbz#1688848���0o�IOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-26]H@- Fix segfault when listen() returns an error
- Resolves: rhbz#1666380���/o�QIOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-25[+�@- Add config option log_die allowing to pass error messages to syslog
- Add config option bind_retries allowing to change the max number
- of attempts to find a listening port for the PASV/EPSV command
- Resolves: rhbz#1318198
^D�^�7��7o�JOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-23Z��- Redefine VSFTP_COMMAND_FD to 1
- Resolves: rhbz#1443055
- Document the relationship of text_userdb_names and chroot_local_user
- Resolves: rhbz#1508021
- Document allow_writeable_chroot in the man page
- Resolves: rhbz#1508022
- Improve documentation of ascii_* options
- Resolves: rhbz#1517227
- Add new filename generation algorithm for STOU command
- Resolves: rhbz#1479237���6g�WJZdenek Dohnal <zdohnal@redhat.com> - 3.0.2-22XӸ�- Resolves: #1432054 - secure ftp stopped working with default TLS settings in the new vsftpd package���5o�JMartin Sehnoutka <msehnout@redhat.com> - 3.0.2-21WP�- Resolves: #1318947 vsftpd should permit specified TLS versions only�7��4o�JMartin Sehnoutka <msehnout@redhat.com> - 3.0.2-20WK�- Resolves: #1147551 - Missing isolate_* options, incorrect default values of
  max_clients, max_per_ip in man vsftpd.confbRI�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������I(��|I)��I*��I+��I,��	I-��
I.��I/��I0��I1��I2��I3��"I4��&I5��*I6��/I7��4I8��9I9��>I:��DI;��II=��LI>��NI?��SI@��VIA��XIB��]IC��`ID��bIE��gIF��mIG��sIH��yII��IJ��IK��IL��IM��IN��IO��$IP��*IQ��.IR��3IS��7IU��<IV��@IW��GIY��LIZ��SI[��YI\��^I]��eI^��jI_��qI`��wIa��|Ib��Ic��Id��Ie��If��Ig��!Ih��)Ii��1Ij��:Ik��BIl��IIn��PIo��XIp��^Iq��fIr��mIs��tIt��|Iu��Iv��Iw��Ix��Iy��"Iz��)I{��0I|��8I}��@I~��GI��NI���VI���^I���eI���lI���tI���|I���I���
I���I���I���!I���)I���2I���8
�[�3�u��<oJOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-28^`�- Fix timestamp handling in MDTM
- Resolves: rhbz#1583247���;o�IJOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-27]HA- Partially fix problem with bad utmp entries when pututxline() fails
- Resolves: rhbz#1688848���:o�JOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-26]H@- Fix segfault when listen() returns an error
- Resolves: rhbz#1666380���9o�QJOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-25[+�@- Add config option log_die allowing to pass error messages to syslog
- Add config option bind_retries allowing to change the max number
- of attempts to find a listening port for the PASV/EPSV command
- Resolves: rhbz#1318198}��8o�
JOndřej Lysoněk <olysonek@redhat.com> - 3.0.2-24Z�@- Fix reverse hostname lookup with IPv6
- Resolves: rhbz#1576705
\:�\�7��@e�KTomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches�+��?e�sKTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��>e{KTomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544�A��=m�JArtem Egorenkov <aegorenk@redhat.com> - 3.0.2-29`n�@- Enable support for wide-character strings in logs
- Replace unprintables with HEX code, not question marks
- Resolves: rhbz#1922809
�)�l�h��Gu_KMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��Fu}KMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390h��Eu_KMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��D_WKEike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��C_]KEike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7]��B__KEike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��Ae�KTomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544

e�r+��V��:��eD�X�
cb8ae6ec45ef9ce08ede28575bc163dd1337f4776778e13ebf08457f0470623bD�W�
3bea27ba9e28b7b2fc421da397e966e4cec0ae9373ddb86b7cee9186fcc5ec16D�V�
cef919b47e2ac46501512262000f8aa6f2804d306139f51f0a7eb8a4f8443bdaD�U�
01359f42e5c172df7cebf52260aa08b51811b3cc29728a03a93dc546ffcfd21eD�T�
274694000767f81dd075fa9b55a09e5e143824fe75c13fb69a510889a95f7f25D�S�
4fbc6610c68813e5bd6ae12f052f547dce477ce710dcf0757d49212f8415fe33D�R�
d06eef6e09b25151ae88be0acd91ea6c0eebd9c3a619ef2de948701f44307288D�Q�
d8e9e473880f01fe4af7cbd16870f030f0c4d3b35cd00bcd3813a8c472c2eea3D�P�
ec1f41bbc53f78290aa486eef749003264f457b41442f93d5ea5e629c64bbe1fD�O�
3daba1d2ee59a3abcf9723759cf79cb532243682a4ffdbfc3dd7f5b29a3c046cD�N�
ea320050b773b3095645df0c61516e8030958f578d9daf62822c281104949a7cD�M�
fc8c80035602313a7b83027140e8b3e5895c85d6fbce04b2d73a53976a616e73D�L�
ca3865c7f4066896a26c6e00f973c8f6edbfb58dee7538f4795b8c102ec8dbf1
K��"�K]��L__LEike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��Ke�LTomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544�7��Je�LTomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches�+��Ie�sLTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��He{LTomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544
��C�\�~��+��Se�sMTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��Re{MTomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544h��Qu_LMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��Pu}LMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390h��Ou_LMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��N_WLEike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��M_]LEike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7
DD�m
�Dh��Yu_MMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��X_WMEike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��W_]MEike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7]��V__MEike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��Ue�MTomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544�7��Te�MTomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches
;���;�7��^e�NTomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches�+��]e�sNTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��\e{NTomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544h��[u_MMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��Zu}MMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390
�)�l�h��eu_NMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��du}NMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390h��cu_NMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��b_WNEike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��a_]NEike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7]��`__NEike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��_e�NTomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544
K��"�K]��j__OEike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��ie�OTomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544�7��he�OTomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches�+��ge�sOTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��fe{OTomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544
��C�\�~��+��qe�sPTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��pe{PTomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544h��ou_OMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��nu}OMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390h��mu_OMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��l_WOEike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��k_]OEike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7
DD�m
�Dh��wu_PMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��v_WPEike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��u_]PEike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7]��t__PEike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��se�PTomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544�7��re�PTomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches
;���;�7��|e�QTomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches�+��{e�sQTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��ze{QTomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544h��yu_PMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��xu}PMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390
�)�l�h��u_QMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��u}QMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390h��u_QMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��_WQEike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��_]QEike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7]��~__QEike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��}e�QTomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544
K��"�K]��__REike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��e�RTomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544�7��e�RTomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches�+��e�sRTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��e{RTomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544
��C�\�~��+��e�sSTomas Popela <tpopela@redhat.com> - 2.20.4-1[h8@- Update to 2.20.4
- Resolves: rhbz#1576544
- WebKitWebProcess crashes when a11y is active
- Resolves: rhbz#1591638n��e{STomas Popela <tpopela@redhat.com> - 2.20.3-5[3|@- Add GStreamer coverity fixes
- Resolves: rhbz#1576544h��
u_RMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��u}RMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390h��u_RMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��
_WREike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��	_]REike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7
DD�m
�Dh��u_SMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-1^�m@- Resolves: rhbz#1817144 Rebase to 2.28.2Y��_WSEike Rathke <erack@redhat.com> - 2.22.7-2\��- Related: rhbz#1669482 covscan fixes\��_]SEike Rathke <erack@redhat.com> - 2.22.7-1\��- Related: rhbz#1669482 Update to 2.22.7]��__SEike Rathke <erack@redhat.com> - 2.22.6-1\b�@- Resolves: rhbz#1669482 Rebase to 2.22.6�q��e�STomas Popela <tpopela@redhat.com> - 2.20.5-1[r�@- Update to 2.20.5 - technically it was not necessary as the only difference
  between 2.20.4 and .5 was the revert of one change, that we already reverted
  while building 2.20.4. But it's better to stay with upstream.
- Update the labels patch with the version that was pushed upstream.
- Resolves: rhbz#1576544�7��e�STomas Popela <tpopela@redhat.com> - 2.20.4-2[l,�- webkitgtk4: Crash on Google login page when a11y is active
- Resolves: rhbz#1503624
- Revert patch causing rendering glitches
l���Zl�i��i�kTDavide Caratti <dcaratti@redhat.com> - 1:2.6-7Y�B@- avoid key reinstallation (CVE-2017-13077, CVE-2017-13078, CVE-2017-13079,
  CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086,
  CVE-2017-13087, CVE-2017-13088)���i�'TDavide Caratti <dcaratti@redhat.com> - 1:2.6-6Y��- Fix segmentation fault on EAPOL RX if macsec.ko is not loaded (rh #1489919)�L��i�1TDavide Caratti <dcaratti@redhat.com> - 1:2.6-5Y;@- macsec: Fix segmentation fault in case macsec.ko is not loaded (rh #1440646)
- nl80211: Fix race condition in detecting MAC change (rh #1447073)^��gYTLubomir Rintel <lrintel@redhat.com> - 1:2.6-4X�9@- Include MACsec headers (rh #1438007)h��u_SMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-3aS�- Fix CVE-2021-30858
- Resolves: #2006421w��u}SMichael Catanzaro <mcatanzaro@redhat.com> - 2.28.2-2^�@- Resolves: rhbz#1817144 Rebuild to support ppc and s390
�.�*����!o�)TDavide Caratti <dcaratti@redhat.com> - 1:2.6-12.1`F�- P2P: Fix a corner case in peer addition based on PD Request (CVE-2021-27803)}�� k�TDavide Caratti <dcaratti@redhat.com> - 1:2.6-12[�9@- Ignore unauthenticated encrypted EAPOL-Key data (CVE-2018-14526)p��kyTDavide Caratti <dcaratti@redhat.com> - 1:2.6-11[5@- Better handling of /run/wpa_supplicant (rh #1507919)���k�-TDavide Caratti <dcaratti@redhat.com> - 1:2.6-10Z��@- Fix memory leak when macsec MKA/PSK is used (rh #1500442)
- Fix authentication failure when the MAC is updated externally (rh #1490885)
- Let the kernel discard EAPOL if packet type is PACKET_OTHERHOST (rh #1434434)
- Don't restart wpa_supplicant.service on package upgrade (rh #1505404)
- Don't own a directory in /run/ (rh #1507919)d��icTDavide Caratti <dcaratti@redhat.com> - 1:2.6-9ZS]@- Fix RPMDiff failures on ppc (rh #1532320)f��igTDavide Caratti <dcaratti@redhat.com> - 1:2.6-8ZOh�- Fix build issue on kernel-alt (rh #1531254)
B�O����BQ��)g?UDaniel Mach <dmach@redhat.com> - 3.3.12ga12-3R�k�- Mass rebuild 2013-12-27f��({UUSamantha N. Bueno <sbueno[at]redhat.com> - 3.3.12ga12-2QP<A- Rebuilt to include fix for #926737�7��'{�uUSamantha N. Bueno <sbueno[at]redhat.com> - 3.3.12ga12-1QP<@- updated to 3.3.12ga12
- fixes CVE-2012-5662 (#889373, #924228)
- add support for aarch64 to build system (#926737)�]��&��3UParag Nemade <paragn AT fedoraproject DOT org> - 3.3.12ga11-5Q��- Remove vendor tag from desktop file as per https://fedorahosted.org/fesco/ticket/1077
- Cleanup spec as per recently changed packaging guidelinesX��%cQUDan Horák <dan[at]danny.cz> - 3.3.12ga11-4P��- fix license (BSD instead of MIT)P��$cAUDan Horák <dan[at]danny.cz> - 3.3.12ga11-3Pd?�- cleanup of BuildRequires\��#cYUDan Horák <dan[at]danny.cz> - 3.3.12ga11-2P\V�- enable DBCS character sets (#801139)M��"c;UDan Horák <dan[at]danny.cz> - 3.3.12ga11-1PI�- updated to 3.3.12ga11
B�A��<��B�7��1{�uVSamantha N. Bueno <sbueno[at]redhat.com> - 3.3.12ga12-1QP<@- updated to 3.3.12ga12
- fixes CVE-2012-5662 (#889373, #924228)
- add support for aarch64 to build system (#926737)�]��0��3VParag Nemade <paragn AT fedoraproject DOT org> - 3.3.12ga11-5Q��- Remove vendor tag from desktop file as per https://fedorahosted.org/fesco/ticket/1077
- Cleanup spec as per recently changed packaging guidelinesX��/cQVDan Horák <dan[at]danny.cz> - 3.3.12ga11-4P��- fix license (BSD instead of MIT)P��.cAVDan Horák <dan[at]danny.cz> - 3.3.12ga11-3Pd?�- cleanup of BuildRequires\��-cYVDan Horák <dan[at]danny.cz> - 3.3.12ga11-2P\V�- enable DBCS character sets (#801139)M��,c;VDan Horák <dan[at]danny.cz> - 3.3.12ga11-1PI�- updated to 3.3.12ga11f��+keUJakub Čajka <jcajka@redhat.com> - 3.3.12ga12-5a�(@- Fix sigill in c3270
- Resolves: BZ#2012913Q��*g?UDaniel Mach <dmach@redhat.com> - 3.3.12ga12-4R�U�- Mass rebuild 2014-01-24
	?�A��1�}!?�]��:��3WParag Nemade <paragn AT fedoraproject DOT org> - 3.3.12ga11-5Q��- Remove vendor tag from desktop file as per https://fedorahosted.org/fesco/ticket/1077
- Cleanup spec as per recently changed packaging guidelinesX��9cQWDan Horák <dan[at]danny.cz> - 3.3.12ga11-4P��- fix license (BSD instead of MIT)P��8cAWDan Horák <dan[at]danny.cz> - 3.3.12ga11-3Pd?�- cleanup of BuildRequires\��7cYWDan Horák <dan[at]danny.cz> - 3.3.12ga11-2P\V�- enable DBCS character sets (#801139)M��6c;WDan Horák <dan[at]danny.cz> - 3.3.12ga11-1PI�- updated to 3.3.12ga11f��5keVJakub Čajka <jcajka@redhat.com> - 3.3.12ga12-5a�(@- Fix sigill in c3270
- Resolves: BZ#2012913Q��4g?VDaniel Mach <dmach@redhat.com> - 3.3.12ga12-4R�U�- Mass rebuild 2014-01-24Q��3g?VDaniel Mach <dmach@redhat.com> - 3.3.12ga12-3R�k�- Mass rebuild 2013-12-27f��2{UVSamantha N. Bueno <sbueno[at]redhat.com> - 3.3.12ga12-2QP<A- Rebuilt to include fix for #926737
hD��0�_�hX��B_UXEric Sandeen <sandeen@redhat.com> 3.1.3-1RR�@- Update to version 3.1.3 (#1016306)���A��XFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.1.2-2Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildc��@_kXEric Sandeen <sandeen@redhat.com> 3.1.2-1P��@- New upstream release, with non-broken tarballf��?keWJakub Čajka <jcajka@redhat.com> - 3.3.12ga12-5a�(@- Fix sigill in c3270
- Resolves: BZ#2012913Q��>g?WDaniel Mach <dmach@redhat.com> - 3.3.12ga12-4R�U�- Mass rebuild 2014-01-24Q��=g?WDaniel Mach <dmach@redhat.com> - 3.3.12ga12-3R�k�- Mass rebuild 2013-12-27f��<{UWSamantha N. Bueno <sbueno[at]redhat.com> - 3.3.12ga12-2QP<A- Rebuilt to include fix for #926737�7��;{�uWSamantha N. Bueno <sbueno[at]redhat.com> - 3.3.12ga12-1QP<@- updated to 3.3.12ga12
- fixes CVE-2012-5662 (#889373, #924228)
- add support for aarch64 to build system (#926737)
�P�?���f��I_qXEric Sandeen <sandeen@redhat.com> 3.1.7-2Y�ZA- Fix bind mount vs root inode problems (#1698057)�0��H_�XEric Sandeen <sandeen@redhat.com> 3.1.7-1Y�Z@- Rebase to build against current RHEL7 xfsprogs headers
- Fix race condition between lseek() and read()/write() (#1086532)�	��G_�5XEric Sandeen <sandeen@redhat.com> 3.1.4-1S��- Fix aarch64 build (#1028131)
- Rebase to 3.1.4 to roll up prior individual patchesm��F_XEric Sandeen <sandeen@redhat.com> 3.1.3-5S��- Preserve file capabilities during xfsrestore (#1013345)L��E]?XDaniel Mach <dmach@redhat.com> - 3.1.3-4R�U�- Mass rebuild 2014-01-24L��D]?XDaniel Mach <dmach@redhat.com> - 3.1.3-3R�k�- Mass rebuild 2013-12-27�+��C_�yXEric Sandeen <sandeen@redhat.com> 3.1.3-2R�;�- Preserve xattrs on multi-part stream restores (#1034014)
- Prevent segfault on multi-part stream restores (#1034015)

e�r+��V��:��eD�e�
7f007138d6b8afc352f1f7423577591e6c1dddd316b6bad15657662274470ad8D�d�
cc9a0f5a5c96b17d6168b3f922ccac3f1d0d73520ab3386c2b40ca2263835c11D�c�
5d32bb64c9e38540fbd1eacb34c8a893d190ec02b8c21d9b8c07c84d9afbeea0D�b�
fc779dd3d8c318abfbcddbc7accbbfc6b6690b7989ac005f12a76ade071b6d13D�a�
2ee3a5da16c04faa9c4d68e73e214570e6b2a709f6222ff6e93b468a2b79f084D�`�
4df06b794b26d27579781dfbefc5c00b87d84844c334da58b364f3484b878593D�_�
421f399d269c4af9f6ea67eef863e122a920ba76ba5b890c4591f7adc604c2bcD�^�
c225d678d3f32eba7cf04174d8cf0eeb9ab41ca91d2b6ab7e323881eb77970d1D�]�
f175256e0db000797ef4332af954004e00e6e2e00f33db843eee3edb4eddc61eD�\�
e6771230fa6e197c3187538f6fa13d73b7350fb996824194127c1ad59a8fee30D�[�
8baa36fb50bc4850b5ac66dac93cb27812550ac6f755518bb37973c3a49e25e0D�Z�
ac76b51bd9f736a23ca9ba8c09321e9756cbe003031b58be353bdf21e4cc8f62D�Y�
b87014ec721416e0cf97d51775ad4670f9e657f37f27c2287900efbdf9361423
�e	Y	�H��	��P_�5YEric Sandeen <sandeen@redhat.com> 3.1.4-1S��- Fix aarch64 build (#1028131)
- Rebase to 3.1.4 to roll up prior individual patchesm��O_YEric Sandeen <sandeen@redhat.com> 3.1.3-5S��- Preserve file capabilities during xfsrestore (#1013345)L��N]?YDaniel Mach <dmach@redhat.com> - 3.1.3-4R�U�- Mass rebuild 2014-01-24L��M]?YDaniel Mach <dmach@redhat.com> - 3.1.3-3R�k�- Mass rebuild 2013-12-27�+��L_�yYEric Sandeen <sandeen@redhat.com> 3.1.3-2R�;�- Preserve xattrs on multi-part stream restores (#1034014)
- Prevent segfault on multi-part stream restores (#1034015)X��K_UYEric Sandeen <sandeen@redhat.com> 3.1.3-1RR�@- Update to version 3.1.3 (#1016306)���J��YFedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.1.2-2Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
[K�xl�[m��X_ZEric Sandeen <sandeen@redhat.com> 3.1.3-5S��- Preserve file capabilities during xfsrestore (#1013345)L��W]?ZDaniel Mach <dmach@redhat.com> - 3.1.3-4R�U�- Mass rebuild 2014-01-24L��V]?ZDaniel Mach <dmach@redhat.com> - 3.1.3-3R�k�- Mass rebuild 2013-12-27�+��U_�yZEric Sandeen <sandeen@redhat.com> 3.1.3-2R�;�- Preserve xattrs on multi-part stream restores (#1034014)
- Prevent segfault on multi-part stream restores (#1034015)X��T_UZEric Sandeen <sandeen@redhat.com> 3.1.3-1RR�@- Update to version 3.1.3 (#1016306)e��SeiYDonald Douwsma <ddouwsma@redhat.com> 3.1.7-3c��- Fix restoring inventory from tape (#2054511)f��R_qYEric Sandeen <sandeen@redhat.com> 3.1.7-2b��@- Fix bind mount vs root inode problems (#1698057)�0��Q_�YEric Sandeen <sandeen@redhat.com> 3.1.7-1Y�Z@- Rebase to build against current RHEL7 xfsprogs headers
- Fix race condition between lseek() and read()/write() (#1086532)
?r�S��?u��^[�[Simo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6�-��]c�yZPavel Reichl <preichl@redhat.com> - 3.1.7-4e6`@- Batch fixing several issues
- xfsrestore: Files from the backup go to orphanage dir because of xfsdump
-      issue, Related: RHEL-10529
- xfsdump/xfsrestore: suggest recovery for false roots may be possible using -x,
-      Related: RHEL-14912e��\eiZDonald Douwsma <ddouwsma@redhat.com> 3.1.7-3c��- Fix restoring inventory from tape (#2054511)f��[_qZEric Sandeen <sandeen@redhat.com> 3.1.7-2b��@- Fix bind mount vs root inode problems (#1698057)�0��Z_�ZEric Sandeen <sandeen@redhat.com> 3.1.7-1Y�Z@- Rebase to build against current RHEL7 xfsprogs headers
- Fix race condition between lseek() and read()/write() (#1086532)�	��Y_�5ZEric Sandeen <sandeen@redhat.com> 3.1.4-1S��- Fix aarch64 build (#1028131)
- Rebase to 3.1.4 to roll up prior individual patches
2�����2���f[�=[Simo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��e[[[Simo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��d[c[Simo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��c[�9[Simo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��b[�[Simo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��a[k[Simo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��`[�7[Simo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��_[9[Simo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patch
b[���d�b�	��m[�9\Simo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��l[�\Simo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��k[k\Simo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��j[�7\Simo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��i[9\Simo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��h[�\Simo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��ge�][Tomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337
{�B�
�H{�H��t[�7]Simo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��s[9]Simo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��r[�]Simo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��qe�]\Tomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���p[�=\Simo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��o[[\Simo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��n[c\Simo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038
-�'�8�K�-u��|[�^Simo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��{e�]]Tomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���z[�=]Simo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��y[[]Simo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��x[c]Simo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��w[�9]Simo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��v[�]Simo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��u[k]Simo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz
2�����2���[�=^Simo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��[[^Simo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��[c^Simo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��[�9^Simo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��[�^Simo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��[k^Simo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��~[�7^Simo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��}[9^Simo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patch
b[���d�b�	��[�9_Simo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��
[�_Simo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��	[k_Simo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��[�7_Simo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��[9_Simo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��[�_Simo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��e�]^Tomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337
{�B�
�H{�H��[�7`Simo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��[9`Simo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��[�`Simo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��e�]_Tomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���[�=_Simo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��
[[_Simo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��[c_Simo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038
-�'�8�K�-u��[�aSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��e�]`Tomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���[�=`Simo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��[[`Simo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��[c`Simo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��[�9`Simo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��[�`Simo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��[k`Simo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz
2�����2���"[�=aSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��![[aSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]�� [caSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��[�9aSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��[�aSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��[kaSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��[�7aSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��[9aSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patch
b[���d�b�	��)[�9bSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��([�bSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��'[kbSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��&[�7bSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��%[9bSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��$[�bSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��#e�]aTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337
{�B�
�H{�H��0[�7cSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��/[9cSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��.[�cSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��-e�]bTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���,[�=bSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��+[[bSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��*[cbSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038
-�'�8�K�-u��8[�dSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��7e�]cTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���6[�=cSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��5[[cSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��4[ccSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��3[�9cSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��2[�cSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��1[kcSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz
2�����2���@[�=dSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��?[[dSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��>[cdSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��=[�9dSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��<[�dSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��;[kdSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��:[�7dSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��9[9dSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patch
b[���d�b�	��G[�9eSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��F[�eSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��E[keSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��D[�7eSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��C[9eSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��B[�eSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��Ae�]dTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337
{�B�
�H{�H��N[�7fSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��M[9fSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��L[�fSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��Ke�]eTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���J[�=eSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��I[[eSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��H[ceSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038

e�r+��V��:��eD�r�
375dc1e4e253dad77a1c726888c330f2d32bfac978fb2501318c810a4fb93843D�q�
ce5ed6d89d8f493b333f990a74873904d861f5b520c9b0a8be3c6e2b614068f7D�p�
0435f345b2b188c76dbb4a538bf0f878834a41e723491df1926231020fd88efdD�o�
d761e44c332a8ff96d411a4c5c1f89e8dd4f879fdc8fcc876f24cd2683aea6aeD�n�
152e52a9fea9de88492276d62ad1f3197d8720d0caf399f23d096b827375a6b5D�m�
16e7fce47c141a06695e847b179e86c984a88ba42655eaa04388c7494d0b92fcD�l�
8ed81fb816e95c0feb27e37fdf7922b9999dfc31e8e871d968bf849bd8858bc9D�k�
009f5f995347d3b6f6491ec4dd82192efd57cf782be7741597e2a9259a1b4a3cD�j�
6dd07a33a81efe8c3709098885698f104928c810cdaa6390f1c3327bd53dfd94D�i�
92338eb8dc8e5df6c7042a8d6f53cefa02c604ac421e41331a9b6a496e4b7dd6D�h�
f3a22e24901cdfdb4cde6e3e1d5b92db9632edc9ae10810d0634340ae334a5fdD�g�
85452769364c8efbb31876c1f6d55993159c1055188c65ea7c17556d78ea87adD�f�
4920894974a22381aabd54732be72cc0879f5ab5e7584a6e9ea403da66101b5c
-�'�8�K�-u��V[�gSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��Ue�]fTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���T[�=fSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��S[[fSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��R[cfSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��Q[�9fSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��P[�fSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��O[kfSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz
2�����2���^[�=gSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��][[gSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��\[cgSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��[[�9gSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��Z[�gSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��Y[kgSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��X[�7gSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��W[9gSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patch
b[���d�b�	��e[�9hSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��d[�hSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��c[khSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��b[�7hSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��a[9hSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��`[�hSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��_e�]gTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337
{�B�
�H{�H��l[�7iSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��k[9iSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��j[�iSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��ie�]hTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���h[�=hSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��g[[hSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��f[chSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038
-�'�8�K�-u��t[�jSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��se�]iTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���r[�=iSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��q[[iSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��p[ciSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��o[�9iSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��n[�iSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��m[kiSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz
2�����2���|[�=jSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��{[[jSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��z[cjSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��y[�9jSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��x[�jSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��w[kjSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��v[�7jSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��u[9jSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patch
b[���d�b�	��[�9kSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��[�kSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��[kkSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��[�7kSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��[9kSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��~[�kSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��}e�]jTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337
{�B�
�H{�H��
[�7lSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��	[9lSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��[�lSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��e�]kTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���[�=kSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��[[kSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��[ckSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038
-�'�8�K�-u��[�mSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��e�]lTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���[�=lSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��[[lSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��[clSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��
[�9lSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��[�lSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��[klSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz
2�����2���[�=mSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��[[mSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��[cmSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038�	��[�9mSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp��[�mSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��[kmSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��[�7mSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��[9mSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patch
b[���d�b�	��![�9nSimo Sorce <simo@redhat.com> - 1.2.20-4S�[�- Add fixes from upstream
- These were sent by us after covscan checks revelead errorsp�� [�nSimo Sorce <simo@redhat.com> - 1.2.20-3S���- Make RPMDiff happy by adding a strict require on subpackagea��[knSimo Sorce <simo@redhat.com> - 1.2.20-2S��- Update pkg-config fix patch to apply w/o fuzz�H��[�7nSimo Sorce <simo@redhat.com> - 1.2.20-1S��- New upstrema version with memleaks, crl checks and other fixes
- enable make check during build
- drop ecdsa patch as it has been included upstreamH��[9nSimo Sorce <simo@redhat.com> - 1.2.19-6S8A- Fix incomplete patchu��[�nSimo Sorce <simo@redhat.com> - 1.2.19-5S8@- Add patch to deal with different behavior of pkg-config in RHEL6� ��e�]mTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337
M�B�
H��M@��)_%oAdam Jackson <ajax@redhat.com> - 7.10.0-1Y�d�- ati 7.10.0Y��(]YoAdam Jackson <ajax@redhat.com> - 7.7.1-3YG��- Validate RANDR output property atomsV��'WYoLyude Paul <lyude@redhat.com> 7.7.1-2X��@- Fix more breakage from removing DRI1�@��&c�oHans de Goede <hdegoede@redhat.com> 7.7.1-1W�- Update to latest git, this is the equivalent of 7.7.1 + fixes for use
  with xserver-1.19 (rhbz#1325613)
- Rebuild against xserver-1.19� ��%e�]nTomas Halman <thalman@redhat.com> - 1.2.20-8e&�@- xmlsec1 fails to validate XML signatures made using ECDSA algorithm in FIPS mode
- Resolves: RHEL-3337���$[�=nSimo Sorce <simo@redhat.com> - 1.2.20-7Y��@- CVE-2017-1000061
- Related: #1472092
- Resolves: #1472091
- Fix mis-applied patch hunkY��#[[nSimo Sorce <simo@redhat.com> - 1.2.20-6Ym�@- CVE-2017-1000061
- Resolves: #1472091]��"[cnSimo Sorce <simo@redhat.com> - 1.2.20-5T	��- Add package to RHEL7
- Resolves: #1118038
	��h��@�P��b��2_ipAdam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��1cgpDave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��0s�	pPeter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)k��/kooMichel Dänzer <mdaenzer@redhat.com> - 19.0.1-3^!��- Fix a regression with user-switching (#1789741)g��.meoOlivier Fourdan <ofourdan@redhat.com> - 19.0.1-2\�@- Avoid breakage on Xserver reset (#1674474)@��-_%oAdam Jackson <ajax@redhat.com> - 19.0.1-1\�|�- ati 19.0.1u��,c�	oDave Airlie <airlied@redhat.com> - 18.1.0-1[��@- ati 18.1.0 fix some regressions with new X server (#1648116)@��+_%oAdam Jackson <ajax@redhat.com> - 18.0.1-1[�A- ati 18.0.1P��*cAoAdam Jackson <ajax@redhat.com> - 7.10.0-1.1[�@- Rebuild for xserver 1.20
������9��8a�pAdam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��7aqpAdam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��6_�pAdam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��5_�pAdam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��4_�
pAdam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��3a�pRay Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120
A��+�6�Ay��?_�qAdam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��>_�qAdam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��=_�
qAdam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��<a�qRay Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��;_iqAdam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��:cgqDave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors���9m�pMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
|���q�|u��E_�
rAdam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��Da�rRay Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��CmKqMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Bm�qMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��Aa�qAdam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��@aqqAdam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
|����|Z��KmKrMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Jm�rMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��Ia�rAdam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��HaqrAdam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��G_�rAdam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��F_�rAdam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies
|��"�:|�9��Ra�sAdam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��QaqsAdam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��P_�sAdam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��O_�sAdam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��N_�
sAdam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���Mo�rOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Lo]rOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)

e�r+��V��:��eD��
ee2c790a3cd22b1261a5cde580d44da4c93c567104a3688cf2369009abb5d332D�~�
2d21d53b305e30b058ca88d8778bda67000a5d52ab320f04b35e63f6a78f2163D�}�
8e736c3e7e6197e2f51879707a4e058e188e3e707c7a986b9cfb7846c920b11bD�|�
730e3f511d99634857cb8c6d1d6a2bb0aeab30962a144cde1567228df8e3ff7cD�{�
58f7cbee25a91080d46dc3966e5de2b34323527c46cc8b78385b95e36bfd5b1fD�z�
ad104810553a3472aab26eafb9b0384c21ec463559eb1a5c594cbbac5aa5cbc5D�y�
5bd8a5d4bcf1a29dfa914ba710c6486f4e0c90ef8486e5e85044a7488b9ec75eD�x�
1e079edd2e893af3264ce1312a543eb600f7324169393765ef4fad6463caad42D�w�
7244017a6987e7001fb62931332183a4f84646b24773d5ba2acf5c799d15b1faD�v�
e2e263c938ce2c5090d810688c04ec6cd001741c076f39d1466a32d13305f123D�u�
ef867ce0d361ef3e0350fa0128a70e322998b6b6c0ed8efaf0a06ff011e132c8D�t�
2bfd2b5c14b17c0e7510240064a110b33c36b377955ad7f1245005118f4dc0aaD�s�
cf170bfe59fb4723dcf9f79d8e4e924c16926a7fa50ee45988c38123421bfff3
X��2�M�Xy��Y_�tAdam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��X_�tAdam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��Wa[sAdam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Vo�sOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Uo]sOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��TmKsMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Sm�sMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
$���q	�$\��`a[tAdam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���_o�tOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��^o]tOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��]mKtMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���\m�tMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��[a�tAdam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��ZaqtAdam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
;G�_��;Z��fmKuMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���em�uMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��da�uAdam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��caquAdam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��b_�uAdam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��ao�{tOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
!���J�!�9��ma�vAdam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��laqvAdam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��ko�iuOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��jo�{uOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��ia[uAdam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���ho�uOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��go]uOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
���2�M��4��so�{vOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��ra[vAdam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���qo�vOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��po]vOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��omKvMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���nm�vMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
iP��V�i���yo�wOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��xo]wOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��wmKwMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���vm�wMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes���uo�1vOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��to�ivOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
8��7��8n��ygwPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��~y�qwPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���}o�1wOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��|o�iwOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��{o�{wOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��za[wAdam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)
X�:�U��X���o�1xOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�ixOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{xOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[xAdam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o�xOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]xOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mKxMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
#�)�<�#�4��
o�{yOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[yAdam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o�yOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��
o]yOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��	y[xPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��ygxPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�qxPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
~P��Q�~c��o[yOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��y[yPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��ygyPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�qyPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1yOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�iyOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��y�qzPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1zOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�izOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{zOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[zAdam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o�zOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
\�"�%�\�+�� o�i{Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{{Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[{Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o�5zJosé Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��o[zOlivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��y[zPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��ygzPeter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
�ls�.����&o�5{José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��%o[{Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��$y[{Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��#yg{Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��"y�q{Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���!o�1{Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770
t#s��tn��+yg|Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��*y�q|Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���)o�1|Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��(o�i|Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�X��'o�C{José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428
��-���X��/o�C|José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���.o�5|José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��-o[|Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��,y[|Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)
'��'n��3yg}Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��2y�q}Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)j��1oi|José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��0o�	|José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
��-���X��7o�C}José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���6o�5}José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��5o[}Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��4y[}Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)
��j��9oi}José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��8o�	}José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
<{��<x��?a�~Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��>_i~Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��=cg~Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��<s�	~Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)q��;ow}José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���:o�}José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686
a��'ia���Em�~Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��Da�~Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Caq~Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��B_�~Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��A_�~Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��@_�
~Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)
 �3�>�I� �9��Ma�Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��LaqAdam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��K_�Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��J_�Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��I_�
Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��Ha�Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��G_iAdam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��FcgDave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors
E���-�Eg��Taq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��S_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��R_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��Q_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��Pa��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��OmKMichel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Nm�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes

e�r+��V��:��eD��
51fbacc2e26050a7772549f1fe16c46bd8063ea187825ad89b237c34fa9b4250D��
b7a51c89deecc8235479935646047575b00838c8e74a15aa90fd3f04dbf38d1fD�
�
e4982c6de18a9fd5a9baa26a2ae8d32a5e2474516998095e06a900fc16cecb18D�	�
5e8f26bf2d3c10f7ca2d8567b9777801f602ea250b6d32ea056853058490c39cD��
cf60217ce1218a1776d98ef45492d93967a6f10369810ef6bb833bbbc8bcb9a0D��
eade03c2757a3c0b0151aabbf535e1647f2a3c18eae55a5a975327c4c8027a4cD��
aafce5e4b381bbdcd56ca810cabc34fd9ffb40b7f49bd9cec0edce43d0f8596aD��
0607eb87b1e4a72aa8d10708247befdd19963e0ca5b2fe44d7d76eda6a408652D��
4ba6b6ddecf71dc7d8295a3fb4185fa2934f07e58716d8466b73a50137c58a53D��
db91ac87e5096fe4cf5cd292f4692633d26bdafb9ceefc8288141677f62626caD��
5ef15604ff8baa8611a443eb38e948c0561633200d60d93d6ec70aafe375876eD��
a83c7d173d50416c52930bc2a1c8a136889066cddd068990b84f0ed6f341dfacD��
fc23786485123d8fc0e167c65ecee809b1c1047c61cea465e243cf4b64b2a78e
vB:�t�vu��Z_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���Yo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Xo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��WmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Vm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��Ua��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disable
|����|Z��`mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���_m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��^a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��]aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��\_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��[_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies
���;�S��9��ga��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��faq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��e_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��d_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��ca[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���bo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��ao]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
��2�M�y��n_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��mo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��la[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���ko��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��jo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��imK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���hm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
$���q	�$\��ua[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���to��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��so]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��rmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���qm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��pa��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��oaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
fG�,nf���zm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��ya��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��xaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��wo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��vo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
X�:�U��X���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��~a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���}o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��|o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��{mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
���2�M��4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
�P��Q��d��
o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��
y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���	o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
l�"�5�l�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
Ils�.�I\��!a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)��� o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)c��o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770
,G�
�,h��'y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��&yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��%y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���$o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��#o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��"o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
����:����-o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��,o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��+o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��*a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���)o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��(o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)
O�)�,O�X��3o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���2o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��1o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��0y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��/yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��.y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
~P��Q�~c��9o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��8y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��7yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��6y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���5o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��4o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
j��j��=oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��<o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201�X��;o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���:o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424
O�)�,O�X��Co�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���Bo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��Ao[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��@y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��?yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��>y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)bRI�RY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������I���EI���KI���RI���YI���`I���fI���mI���sI���yI���I���I���
I���I���I��� I���&I���+I���/I���3I���7I���9I���?I���EI���MI���TI���ZI���`I���gI���nI���uI���zI���I���I���
I���I���I���!I���'I���-I���3I���9I���=I���CI���EI���KI���QI�YIÃ�`Iă�fIŃ�lIƃ�sIǃ�zIȃ�IɃ�Iʃ�
I˃�Ĩ�I̓�I΃�&Iσ�-IЃ�3Iу�9I҃�?IӃ�EIԃ�IIՃ�OIփ�QI׃�WIك�]Iڃ�eIۃ�lI܃�rI݃�xIރ�I߃�I��
I��I��I��I��%I��+I��2I��9I��?I��EI��KI��QI��UI��[I��]I��cI��iI��qI��xI��~I���I���I���
��j��Eoi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��Do�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
<{��<x��Ka��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��J_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��Icg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��Hs�	�Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)q��Gow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���Fo��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686
a��'ia���Qm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��Pa��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Oaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��N_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��M_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��L_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)

e�r+��V��:��eD��
f80cd4881b32dd129ece7202403ba656b6cabbaebccce97cfcacaf448e2d221fD��
c7b6417b605af3adcca501eb73c1898aa00b4691197c4567e74e721dcb034436D��
51531084503ccca2963d7cdc52e607efbbce02b1e36cb9bf5e983279ba6341b1D��
c93c7d0870295039879e0541eba827c632e03b42a8662810fca06462a79987f1D��
33aa4a6c127c0c756e8327baf78c7d6040d9adc0e92dd42d324a4b1625c99bb6D��
56ca48ac0b31c1895271b0c78a7c6fd5045f217634b908660f5d61925af71252D��
f31fd03961b259ff05fa33eb46e64b8dfb29cd1193b459d1721e424ea9616d10D��
27db2217dfdcab84a095b8363c3aaf36fd751a336577cc3de811d0a747c37febD��
98dba21e88ff7d380ddbbdde2d2aa47ccf7bc6da63c4ae460dab25788449a87eD��
822adbeedf758cb1febec29ff177d207923b6e3c24749077ca4f3a684d593d1cD��
a2f9c00b20dcf7207991f467a8714eb3d7273d424ee4dd045d1a5232da5cd797D��
a79594486e59ec5b826e79499c455a6d627baff4bdc3f3df763e5018309b5f9cD�
�
4fd4ad7ed695ea67c7d6d97ea6cc730d12e1d50fb6da365945d0f6255af4bd45
 �3�>�I� �9��Ya��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Xaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��W_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��V_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��U_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��Ta��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��S_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��Rcg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors
E���-�Eg��`aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��__��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��^_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��]_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��\a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��[mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Zm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
vB:�t�vu��f_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���eo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��do]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��cmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���bm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��aa��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disable
|����|Z��lmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���km��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��ja��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��iaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��h_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��g_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies
���;�S��9��sa��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��raq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��q_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��p_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��oa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���no��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��mo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
��2�M�y��z_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��yo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��xa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���wo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��vo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��umK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���tm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
$���q	�$\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��~mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���}m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��|a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��{aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
fG�,nf���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
X�:�U��X���
o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��
a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���	o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
���2�M��4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
�P��Q��d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
l�"�5�l�+��&o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��%o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��$a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���#o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��"o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��!y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n�� yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
Ils�.�I\��-a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���,o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)c��+o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��*y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��)yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��(y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���'o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770
,G�
�,h��3y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��2yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��1y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���0o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��/o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��.o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
����:����9o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��8o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��7o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��6a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���5o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��4o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)
O�)�,O�X��?o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���>o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��=o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��<y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��;yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��:y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
~P��Q�~c��Eo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Dy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Cyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��By�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Ao�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��@o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
j��j��Ioi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��Ho�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201�X��Go�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���Fo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424
O�)�,O�X��Oo�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���No�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��Mo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Ly[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Kyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Jy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
��j��Qoi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��Po�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
<{��<x��Wa��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��V_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��Ucg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��Ts�	�Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)q��Sow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���Ro��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686

e�r+��V��:��eD�&�
dfe2f972771603f046f22e69e38741bf6dc94baeaec867665169bb3e9b9b8eacD�%�
43424b0d689ecfd0d4282dd45e7088dafcdd16f51f968cf76021b08f5a1060e0D�$�
85cd5123793aa450727948cc2dc0222838b43e3ba8e5301199710b0f897a9f21D�#�
65cf532a0d956c5b90633a7b13857b7e3092f374d67c465f3126a5fef5cf70aeD�"�
79e43cf434b3dee8dae9d367becc2c0025c3514b0684d27a2cfe6fbf9557c019D�!�
1a57399b3dc42160f3044e768ceb0aa76dee84a8c852b6e9c99ec3568e52eeddD� �
7961a17846adb9bd4b8dc39c94b3cbe82106b9f14b61013a3b4896b7335f2e1eD��
a88474ca9c7184610d2381b4f56de6ecd823c02da9266a63a5ba57230c0ae64dD��
d222b43a6c9a83d63e9c529e8e528b248aa0f77b4b23e5e7256d32c1a64bee44D��
cf01690bbc873920b5a486d4d4e6b92160ae532f81d1ce1045c632c8c0c68aaeD��
38116fc986dbde5d1071bccc99bf83579d9cf9cfe210af409971b02a8225df2eD��
6043225f18090a8529ea90341ff21d58fd2e2a85ee1c31af68145a7c070803c4D��
eb89964d5fd40ec94ee8db97a5a14cc8dd6329b83d82ab29ee1a595653ce5223
a��'ia���]m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��\a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��[aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��Z_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��Y_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��X_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)
 �3�>�I� �9��ea��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��daq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��c_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��b_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��a_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��`a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��__i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��^cg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors
E���-�Eg��laq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��k_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��j_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��i_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��ha��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��gmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���fm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
vB:�t�vu��r_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���qo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��po]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��omK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���nm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��ma��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disable
|����|Z��xmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���wm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��va��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��uaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��t_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��s_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies
���;�S��9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��~aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��}_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��|_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��{a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���zo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��yo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
��2�M�y��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
$���q	�$\��
a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��
mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���	m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
fG�,nf���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
X�:�U��X���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
���2�M��4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
�P��Q��d��%o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��$mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11n��#yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��"y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���!o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+�� o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��+y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���*o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��)o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��(o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��'a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���&o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
l�"�5�l�+��2o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��1o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��0a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���/o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��.o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��-y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��,yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
Ils�.�I\��9a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���8o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)c��7o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��6y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��5yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��4y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���3o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770
,G�
�,h��?y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��>yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��=y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���<o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��;o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��:o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
����:����Eo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Do�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Co�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Ba[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Ao�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��@o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)
O�)�,O�X��Ko�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���Jo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��Io[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Hy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Gyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Fy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
~P��Q�~c��Qo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Py[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Oyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Ny�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Mo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Lo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
j��j��Uoi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��To�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201�X��So�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���Ro�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424

e�r+��V��:��eD�3�
f5c53c037a56c4f01f26c5e6d1a0011da7c9f759cf87074bf864708e6ce19828D�2�
7361f0c9de0e2a09eb70e5f1b83d027a808b06433ca9e73208b44184ea5cb1a8D�1�
91edff8a7e3788908e55759660855db2ac6a6ef999858dac7faafbcc6b62cb99D�0�
cf6e5c1bef9ab5c56100beb91545140ecb2ffc878294ed3cb87ee4d53c82f799D�/�
43a65f36dfe6af5466184f30652144e3c9c8793fa34ed3f819d2d654e01edac9D�.�
c2cdc7a6e9930a49880578ed60314a159c97e36dd96908f892d53e315b1c0895D�-�
bbe6a456297232dde9056eadfd3e0082764eea1606419c384a0779b6951f9ae7D�,�
de6d7edb575cf2c912b54349020bb0c64b19b18869c865f5da30ef088e3cad85D�+�
ae1aa9868c275415bf9db1de0d9e270cf72ea7011a3c350bcb6efc29acb3b953D�*�
27534a1920262b79fa35a9509e192cd19a2916bb7b11d0db13f71ae7cff375a9D�)�
e826d4748706ca4acec7f8adad39873fcd390f7a0086ace767fbf32cfc28d3b0D�(�
ea32b047fba7fd327bf943da2a18413a1ed3e245cc1b077f34d1c8f6048d9813D�'�
a513143acbf28366be9f3830ac06cb3468fbca694206826e572edafd38461ed0
O�)�,O�X��[o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���Zo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��Yo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Xy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Wyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Vy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
��j��]oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��\o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
<{��<x��ca��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��b_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��acg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��`s�	�Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)q��_ow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���^o��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686
a��'ia���im��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��ha��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��gaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��f_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��e_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��d_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)
 �3�>�I� �9��qa��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��paq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��o_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��n_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��m_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��la��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��k_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��jcg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors
E���-�Eg��xaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��w_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��v_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��u_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��ta��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��smK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���rm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
vB:�t�vu��~_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���}o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��|o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��{mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���zm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��ya��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disable
|����|Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies
���;�S��9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��
aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��	_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
��2�M�y��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��
mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
$���q	�$\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
fG�,nf���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
X�:�U��X���%o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��$o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��#o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��"a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���!o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d�� o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
���2�M��4��+o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��*a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���)o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��(o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��'mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���&m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
�P��Q��d��1o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��0mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11n��/yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��.y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���-o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��,o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��7y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���6o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��5o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��4o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��3a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���2o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
l�"�5�l�+��>o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��=o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��<a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���;o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��:o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��9y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��8yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
Ils�.�I\��Ea[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Do��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)c��Co[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��By[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Ayg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��@y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���?o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770
,G�
�,h��Ky[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Jyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Iy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Ho�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Go�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Fo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
����:����Qo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Po�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Oo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Na[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Mo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��Lo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)
O�)�,O�X��Wo�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���Vo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��Uo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Ty[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Syg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Ry�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)

e�r+��V��:��eD�@�
f83ec3658d72831d5deeee66d0ec75ae458c847847184396c345cb664bbe8d43D�?�
c24a69689734522bcd79de71a9857bfd1e1606898cc42344ee7b089da3406af0D�>�
f85fb2606d67d58d19d4784aa765bd6d383b85945372625ef606ddc20559702dD�=�
9bfa69b7940e4e41942fffc935239c974893faa573fe45c923cc53905317aad3D�<�
0579155d9d1a4a339ec6d119e12c2ecc135abd36aef7ba674704d62d18e6e6ccD�;�
ead119fe47b9382012e61124387aa69dfe644f344ccdfad3b91a64e1ab35f467D�:�
0e2842a9ef72de0a39b188244266ec36bb5efee89dbbb26d2d9b8832fdb44b78D�9�
ec5ec6e21071682dfbc3c256617c810c886af178cfc7f21a96104cf10ee6cb25D�8�
b0d7b591888b6fd49b457c15fa981112edaa1d269c881960174a8676102cad81D�7�
bee904f26bd404d9a8fbf3d71746543eca0b7761bcb562e0158d4282ef1ab8d4D�6�
4a6ffb39008edd469d4365bb3bf858f5f5f466129eb9e330d978b28866906891D�5�
dd05b77f960a6b0aed0f034b93449043a31100aec1f59ed4819b5d1ad663b83dD�4�
303a240bc1792e6c5e9c0d96992a7156a5d867e461081ec7d99fc535e81cb3a2
~P��Q�~c��]o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��\y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��[yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Zy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Yo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Xo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
j��j��aoi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��`o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201�X��_o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���^o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424
O�)�,O�X��go�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���fo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��eo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��dy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��cyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��by�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
��j��ioi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��ho�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
<{��<x��oa��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��n_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��mcg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��ls�	�Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)q��kow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���jo��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686
a��'ia���um��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��ta��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��saq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��r_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��q_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��p_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)
 �3�>�I� �9��}a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��|aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��{_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��z_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��y_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��xa��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��w_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��vcg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors
E���-�Eg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���~m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
vB:�t�vu��
_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���	o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disable
|����|Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��
aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies
���;�S��9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
��2�M�y��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
$���q	�$\��%a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���$o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��#o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��"mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���!m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9�� a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
fG�,nf���*m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��)a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��(aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��'o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��&o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
X�:�U��X���1o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��0o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��/o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��.a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���-o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��,o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��+mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
���2�M��4��7o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��6a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���5o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��4o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��3mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���2m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
�P��Q��d��=o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��<mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11n��;yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��:y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���9o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��8o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��Cy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Bo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Ao�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��@o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��?a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���>o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
l�"�5�l�+��Jo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Io�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Ha[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Go��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Fo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��Ey[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Dyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
Ils�.�I\��Qa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Po��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)c��Oo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Ny[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Myg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Ly�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Ko�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770
,G�
�,h��Wy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Vyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Uy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���To�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��So�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Ro�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
����:����]o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��\o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��[o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Za[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Yo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��Xo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)

e�r+��V��:��eD�M�
0f90f0d1b094fbfc4ba66750ee90dbf63d119647ec2239d5614a604299fe4555D�L�
079a8f1382b2cde5fc460d2bfb277e6586eeffb928b2d9ed2bb6258fdc6fc4edD�K�
50b46cc6de592b1b49fec6ba38878c1a368940c367309a46433e7015b68a5184D�J�
d009248700d9e5dfb31d429a3fc4511bf6d988ab6276af506e8279a020138c9bD�I�
9d2caa5bdf17716a2d9e2503e5e5490dd97a317659eb35ed3ee294d10b9132beD�H�
99b661c96e07cf126304451e9aa41291a49a8f3fc0d29d14dabcfb939072586fD�G�
96e84480f4e5f3ed973231a88b1834dd30e01f9cb98655b8551b7d1f382b024fD�F�
5ba93bb7af0fa5612cec66a27e5736fb8c5460ccfc0e32ff2e9e8c97c2587a3fD�E�
bf404adf3b74fc2e12fa6437b1abaaa8f327ed847a1b30602af13942c9bb57d7D�D�
339bcf68cb37a454eddff7218aff4153a36bafc0d36e2b5b6bde8311c6f3eed8D�C�
cf83179c708ff22b53ddfb306e537749dfa4ac8e8f7f820be6740d1988c8ffc8D�B�
701c51272a786e3642f50a00d1af86a89ff81297f2f58e485eecd9a7ff5bfe96D�A�
9771150045d3b5b33795e4accade6fa6112614b65b0ea938a0ee0cae6cc23ce9
O�)�,O�X��co�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���bo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��ao[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��`y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��_yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��^y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
~P��Q�~c��io[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��hy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��gyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��fy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���eo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��do�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
j��j��moi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��lo�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201�X��ko�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���jo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424
O�)�,O�X��so�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���ro�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��qo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��py[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��oyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��ny�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
��j��uoi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��to�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
<{��<x��{a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��z_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��ycg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��xs�	�Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)q��wow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���vo��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686
a��'ia���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��~_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��}_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��|_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)
 �3�>�I� �9��	a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��cg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors
E���-�Eg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��
_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���
m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
vB:�t�vu��_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disable
|����|Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesT�JR�����������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������I���I���%I���+I���1I���7I���>I���EJ��KJ��QJ��WJ��]J��aJ��gJ��iJ��oJ	��uJ
��}J��J��
J
��J��J��J��%J��*J��1J��7J��=J��CJ��JJ��QJ��WJ��]J��cJ��iJ��mJ��sJ��uJ ��{J!��J"��	J#��J$��J%��J'��#J(��*J)��1J*��6J+��=J,��CJ-��IJ.��OJ/��VJ0��]J2��cJ3��iJ4��oJ5��uJ6��yJ7��J8��J9��J:��
J;��J<��J=��!J>��)J?��0J@��6JA��<JB��DJC��KJD��QJE��WJF��^JH��dJI��jJJ��pJK��vJL��}JM��JN��	JO��JP��JQ��
���;�S��9��#a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��"aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��!_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet�� _��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
��2�M�y��*_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��)o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��(a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���'o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��&o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��%mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���$m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
$���q	�$\��1a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���0o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��/o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��.mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���-m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��,a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��+aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
fG�,nf���6m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��5a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��4aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��3o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��2o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
X�:�U��X���=o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��<o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��;o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��:a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���9o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��8o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��7mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
���2�M��4��Co�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Ba[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Ao��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��@o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��?mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���>m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
�P��Q��d��Io]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��HmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11n��Gyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Fy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Eo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Do�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��Oy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���No�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Mo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Lo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Ka[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Jo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
l�"�5�l�+��Vo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Uo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Ta[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���So��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Ro]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��Qy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Pyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
Ils�.�I\��]a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���\o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)c��[o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Zy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Yyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Xy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Wo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770

e�r+��V��:��eD�Z�
c9dc78f6c0e94a26844ea7d1aa7fbde598ea704957ae7b657c4a63c822bd9f21D�Y�
a2b140586a9cd6744d897271b92c1c28166d43a99eb058d831c0617399959558D�X�
d24805d0f00f2158a082be3fd450a90be7ca614871fb70850db6aa028a020d87D�W�
40a441051ed2bb80ba7bf16effb6ef562dc02cffbcb40be34952dcdc20a3b66cD�V�
8300c30550c66d4567d56de5063d79d5818aea066707cfcf6638dd2811bd74fcD�U�
5d1ce4fa6ac4356078869027bcaf729140f2ad908b655471ba65eb396ac94887D�T�
518a5be8d1eae8953da4a54a8b852ce6fdf3a22ed2fd22c5b4db85cd4174a5f5D�S�
e2dd0c67f3d88a9506f72fcc21ec0af786a377befabac8e1670d3e012d844b06D�R�
55e13fc8624f8a63b785b5194281c38a4670f03113b0ff2b8fc1df1ca473e1e8D�Q�
d048e9282e3eab42d5adfd632ef5cd029524100f32b305395da9da9a0371c460D�P�
878bd3f432c1a1de0ae5f44ae295f84e0ba2eb10d8864b4c35eb61a0a324b21eD�O�
c5b3418463d5359ed0d1cfb6d42a2b588d5ee49a2fcee4755d55489ae9e78860D�N�
8bdb42f75a635ac45d5c4a26f945cec79c82329639357232a0aad25797148f95
,G�
�,h��cy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��byg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��ay�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���`o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��_o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��^o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
����:����io�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��ho�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��go�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��fa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���eo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��do[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)
O�)�,O�X��oo�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���no�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��mo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��ly[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��kyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��jy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
~P��Q�~c��uo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��ty[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��syg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��ry�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���qo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��po�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
j��j��yoi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��xo�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201�X��wo�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���vo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424
O�)�,O�X��o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���~o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��}o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��|y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��{yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��zy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
��j��oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
<{��<x��a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��cg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��s�	�Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)q��ow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���o��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686
a��'ia���
m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��
_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��	_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)
]�6�E�]g��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��cg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��s�	�Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)
xB:�m�xu��_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��cg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disable
|����|Z��!mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11��� m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies
 �3�>�I� �9��)a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��(aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��'_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��&_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��%_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��$a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��#_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��"cg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors
E���-�Eg��0aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��/_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��._��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��-_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��,a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��+mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���*m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
sB:�t�sx��6a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120���5o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��4o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��3mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���2m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��1a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disable
a��'ia���<m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��;a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��:aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��9_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��8_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��7_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)
�:�<�G��9��Da��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Caq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��B_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��A_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��@_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���?o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��>o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��=mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
\��2�M�\t��K_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��J_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)\��Ia[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Ho��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Go]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��FmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Em��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
��ZR��d��Qo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��PmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Om��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��Na��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Maq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��L_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store
�{�&���9��Wa��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Vaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��U_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��T_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��Sa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Ro��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
��2�M�t��^_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies�4��]o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��\a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���[o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Zo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��YmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Xm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes

e�r+��V��:��eD�g�
5463798db8055d74e5cb4403c06751d747572157fa2188e01c3f8cb37e714148D�f�
da0ee7d0ba196b9b234e978896c8b7430980fc8e6df7cab9fabd870d89ab5bf0D�e�
202bf466967d3f4ab327e8e2dbe21c4696c4bcd058996baa9a4cc4a00c10dd03D�d�
61f9f61c18480f59ddd7ef3382cbad48896469ac9da6dcfe2e3ddd8195e737d0D�c�
c34ab6928f9fde2419804036a6bf4221cb2f3487c33bd131afad5e5573f289feD�b�
4c7d848c14e00ec553e54a225e05056fee56b5df54a71ffe45ce122d6b74625bD�a�
26770336a22190354f2629a10f4c6c2d42e78462a5b8b78e24159743658c844bD�`�
e23ad6387e0d97dd5a8214f1c20a8112b68c12124bedabc0dd60ef5e8397681aD�_�
5264ebb9f634f3266ba74ef377d0db45c52877826efb225687b1430a60c824fbD�^�
1deb2c2c595359a6d9ce1c3cbf28785cb264b03e34a46f8a05bb2c2922937dc0D�]�
1224b4daf58dc2c0d85e8536fe7e439c784d857c15e654ad9c5600780755947eD�\�
4ce199f03c4016f4eb22b3d9b8711e1cb1d9864540849b2a5a1c4df4ee5552ebD�[�
e58d4578833550c574d220588395dd2ff7fdabaa1bd5e48a04c31911a6caca8a
��ZR��d��do]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��cmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���bm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��aa��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��`aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��__��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store
�{b�z��9��ja��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��iaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��h_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��go�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��fa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���eo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
���2�M��4��po�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��oa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���no��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��mo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��lmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���km��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
DP�h��DZ��vmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���um��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��ta��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��saq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��r_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�+��qo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
!���J�!�9��}a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��|aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��{o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��zo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��ya[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���xo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��wo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
���2�M��4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���~m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
-P�Q��-Z��	mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
����J����o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��
o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��
o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
���2�M��4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
IP��QI���m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixesn��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
X�:�U��X���!o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+�� o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
1�7�J�1�4��(o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��'a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���&o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��%o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��$mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11n��#yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��"y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
P��Q��d��/o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��.mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11h��-y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��,yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��+y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���*o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��)o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��5y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���4o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��3o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��2o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��1a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���0o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
l�"�5�l�+��<o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��;o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��:a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���9o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��8o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��7y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��6yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
Als�.�A���Co��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Bo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)c��Ao[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��@y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��?yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��>y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���=o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770
8��7��8n��Iyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Hy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Go�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Fo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Eo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Da[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)
K�-�H��K���Po�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Oo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��No�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Ma[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Lo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)c��Ko[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Jy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)
G�)�,�G\��Wa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Vo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)���Uo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��To[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��Sy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��Ryg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��Qy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
,G�
�,h��]y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��\yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��[y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���Zo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��Yo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Xo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
����:����co�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��bo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��ao�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��`a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���_o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��^o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)

e�r+��V��:��eD�t�
1e92ab11dbfdb95e9151c5fc2f4ef713c7bea0d91690886bf35bb75cd70c9870D�s�
84f175bef4d2561cae46398abd9317955cdbe6a2c0352227323da35cedc29948D�r�
1c3887c7641e7d177a4556fa5d66b74cca92bdb865265509120154804c5ddeabD�q�
d893452495f6ed739d82236d307ce20f1ee7fb06ea522109fca58008ef041452D�p�
bb3864015d5c6e8d0e5f6d4ad1683af99c0b275dcf2efcaee1e4aebf6d78082dD�o�
c962e5dd6d3414983350e5da2de55b057477d165e891c9d963cb8eb49a7c6330D�n�
1baa9cb2d4f8d4300ac333fbc7bc130dce9145c67aea3bd6efa4a0354fc92b6dD�m�
cfb8fb181e4fcc069e88e40ad4838b6d53339b522603c2c188f4b7719a7547d1D�l�
b0a8eeea28a48870600033e3ed255b73b22ef84935f83e1d18f3bf72359b66d3D�k�
8ace9615be81aa1aef785201bea8d1d530ab9d51947834eb409d60ec032e56d0D�j�
df2ac268f02376356b5c4723b8c369c8593c63db05b25c52b9d0d0cfa7b0299bD�i�
ac303bf67828310850f24db08c7e288f5b122268f84782ca9efef694febcd6e3D�h�
ca0dc93240a019ed96e9975ce1f61dee6b3765eb9bc098678f11bc9e92d8f8bc
O�)�,O�X��io�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���ho�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��go[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��fy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��eyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��dy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
8��7��8n��oyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��ny�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���mo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��lo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��ko�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��ja[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)
v�-��
v���uo�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��to�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�X��so�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���ro�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��qo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��py[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)
O�)�,O�X��{o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���zo�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��yo[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��xy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��wyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��vy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
N��N���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��~o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033j��}oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��|o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
O�)�,O�X��o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
'��'n��	yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)j��oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
��-���X��
o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��
y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)
��j��oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
/{
�/h��y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)q��ow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���o��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686
&�&&�{��o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201�X��o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)
J�
��Jb��_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��cg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors}��s�	�Peter Hutterer <peter.hutterer@redhat.com> 1.20.4-2\�N�- Don't reset last.valuators on slave device switch (#1640207)q��ow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���o��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686j��oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886
������9��$a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��#aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��"_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��!_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu�� _�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120
A��+�6�Ay��+_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��*_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��)_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��(a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120b��'_i�Adam Jackson <ajax@redhat.com> - 1.20.4-5\��@- Fix a crash in RRProviderAutoConfigGpuScreenc��&cg�Dave Airlie <airlied@redhat.com> - 1.20.4-3\��@- Backport fix for 1612924 - enabled monitors���%m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
|���q�|u��1_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)x��0a��Ray Strode <rstrode@redhat.com> - 1.20.4-6\�!�- Stop VT switching when inactive server dies
  Resolves: #1680120Z��/mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���.m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��-a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��,aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
|����|Z��7mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���6m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��5a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��4aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��3_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��2_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies
|��"�:|�9��>a��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��=aq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��<_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��;_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologiesu��:_�
�Adam Jackson <ajax@redhat.com> - 1.20.4-7\�"�- Fix a segfault with non-PCI platform devices (and other cases)���9o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��8o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
X��2�M�Xy��E_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing storet��D_��Adam Jackson <ajax@redhat.com> - 1.20.4-8]
#�- Fix platform device PCI detection with complex bus topologies\��Ca[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Bo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Ao]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��@mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���?m��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
$���q	�$\��La[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���Ko��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��Jo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��ImK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Hm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��Ga��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Faq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD
;G�_��;Z��RmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Qm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes�9��Pa��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Oaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMDy��N_��Adam Jackson <ajax@redhat.com> - 1.20.4-9]R�@- Fix a crash when destroying a redirected window with backing store�4��Mo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)
!���J�!�9��Ya��Adam Jackson <ajax@redhat.com> - 1.20.4-11_���- Fix a crash when moving an animated cursor between screens
- Be case-insentive when matching extension names to enable or disableg��Xaq�Adam Jackson <ajax@redhat.com> - 1.20.4-10^�@- Set fallback DRI2 driver names for Intel and AMD�+��Wo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��Vo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��Ua[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���To��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��So]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)
���2�M��4��_o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��^a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���]o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��\o]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��[mK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���Zm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes
iP��V�i���eo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��do]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��cmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11���bm��Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-12_�@- CVE fixes for: CVE-2020-14345 (#1872389), CVE-2020-14346 (#1872393),
  CVE-2020-14361 (#1872400), CVE-2020-14362 (#1872407)
- Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes���ao�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��`o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033

e�r+��V��:��eD��
24dee6e8be939b14900bb668c0f5908df2590d8188545bd59c83122ddcd7a785D��
0848e56ffcc658be84b8dc962cfae7e6e963b28421212d04c814be04b66154b4D��
6abc3f24e051fa25828e517e1a6999a1a3612b5f97a13d8e99553cc31d24663dD�~�
0930a501a892602ab5d8c48730193fa5230e46803b8b20533482a6322014c898D�}�
2c1c518f7da653e7d7a53995c92f4baa7bf0f6fd4c51c0856182ee1c7e6d613cD�|�
f53aa25a58a78740dad5a5777ccec426834c3455b4a323c3cd264c877f39e567D�{�
a4e3cfe2ec39289ce4330038a8f3fa801449727c3b6173cf5ceabec99f36bf59D�z�
145b9d5084c2fedb67f97a86a7a34cb159ed3eb46792eea9e063b1c632fde672D�y�
77b4a6262e01a546f91e92c40dd8c101260465ac9a037ad0ea84bea77bf29201D�x�
61d16044997c74e9f5ddf1cdc61b0e3f9e8d5e4575baf1378072e0338439530bD�w�
19b1bcc147b66f7afbe531c0ce8c1100de0382c508ad062a80e80ce061782f2aD�v�
4a8694a364e768699fa73bb47949f8b4f66c047ef8c5ddc23bde156d7e70f7d5D�u�
6f027d48513d5431e3da6ea4365a8f77b28f4a40c5d6c2552a5ab6817c5a1c2f
8��7��8n��kyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��jy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���io�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��ho�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��go�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��fa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)
X�:�U��X���ro�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��qo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��po�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��oa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���no��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��mo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)Z��lmK�Michel Dänzer <mdaenzer@redhat.com> - 1.20.4-13_��- Re-apply fixes from 1.20.4-11
#�)�<�#�4��yo�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��xa[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���wo��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)d��vo]�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-14_�
�- CVE fix for: CVE-2020-14347 (#1862319)h��uy[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��tyg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��sy�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)
~P��Q�~c��o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��~y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��}yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��|y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���{o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��zo�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033
%{b�%�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���o��Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-15_�
�- CVE fix for: CVE-2020-25712 (#1904937), CVE-2020-14360 (#1904934)
\�"�%�\�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�4��o�{�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-17a���- CVE fix for: CVE-2021-4008 (#2030161), CVE-2021-4009 (#2030171),
  CVE-2021-4010 (#2030176), CVE-2021-4011 (#2030180)\��
a[�Adam Jackson <ajax@redhat.com> - 1.20.4-16`� @- CVE fix for: CVE-2021-3472 (#1944956)���	o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)
�ls�.����o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���
o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770
t#s��tn��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)���o�1�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-19ck�@- CVE fix for: CVE-2022-3550, CVE-2022-3551
  Resolves: rhbz#2140765, rhbz#2140770�+��o�i�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-18bޅ�- CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070
  Resolves: rhbz#2109031, rhbz#2109033�X��o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428
��-���X��o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h��y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)
'��'n��yg�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-21c�R@- Follow-up fix for CVE-2022-46340 (#2151775)�t��y�q�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-20c�#@- CVE fix for: CVE-2022-4283 (#2151800), CVE-2022-46340 (#2151775),
  CVE-2022-46341 (#2151780), CVE-2022-46342 (#2151787),
  CVE-2022-46343 (#2151790), CVE-2022-46344 (#2151797)j��oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
��-���X��#o�C�José Expósito <jexposit@redhat.com> - 1.20.4-25ez�@- CVE fix for: CVE-2023-6377, CVE-2023-6478
  Resolves: https://issues.redhat.com/browse/RHEL-18416
  Resolves: https://issues.redhat.com/browse/RHEL-18428���"o�5�José Expósito <jexposit@redhat.com> - 1.20.4-24e9@- CVE fix for: CVE-2023-5367
  Resolves: https://issues.redhat.com/browse/RHEL-13424c��!o[�Olivier Fourdan <ofourdan@redhat.com> - 1.20.4-23d$(@- CVE fix for: CVE-2023-1393 (#2180290)h�� y[�Peter Hutterer <peter.hutterer@redhat.com> - 1.20.4-22c�@- CVE fix for: CVE-2023-0494 (#2166513)
��j��%oi�José Expósito <jexposit@redhat.com> - 1.20.4-27e��- Fix use after free related to CVE-2024-21886�{��$o�	�José Expósito <jexposit@redhat.com> - 1.20.4-26e�o�- CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886,
  CVE-2024-0408 and CVE-2024-0409
  Resolves: https://issues.redhat.com/browse/RHEL-21205
  Resolves: https://issues.redhat.com/browse/RHEL-20578
  Resolves: https://issues.redhat.com/browse/RHEL-20426
  Resolves: https://issues.redhat.com/browse/RHEL-20437
  Resolves: https://issues.redhat.com/browse/RHEL-21192
  Resolves: https://issues.redhat.com/browse/RHEL-21201
5{k�5���*���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-5Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���)���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-4P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���(���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-3On@- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuildq��'ow�José Expósito <jexposit@redhat.com> - 1.20.4-29f@- Fix regression caused by the fix for CVE-2024-31083���&o��José Expósito <jexposit@redhat.com> - 1.20.4-28f�@- CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and
  CVE-2024-31083
  Resolves: https://issues.redhat.com/browse/RHEL-31003
  Resolves: https://issues.redhat.com/browse/RHEL-30989
  Resolves: https://issues.redhat.com/browse/RHEL-30973
- Add util-linux as a dependency of Xvfb
- Fix compilation error on i686
|}�n�o|���2���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-4P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_RebuildT��1o=�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-12_��- Rebuild with OpenJDK 7���0o��Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-11_�S�- Fix remote code execution vulnerability
- Resolves: CVE-2020-26217u��/o�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-10R��- Apply upstream security patch
- Resolves: CVE-2013-7285L��.]?�Daniel Mach <dmach@redhat.com> - 1.3.1-9R�k�- Mass rebuild 2013-12-27T��-m?�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-8RB�@- Disable support for XOMc��,m]�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-7Q��- Update to current packaging guidelines��+m��Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-6Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571
|e�{#�Z�|T��:o=�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-12_��- Rebuild with OpenJDK 7���9o��Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-11_�S�- Fix remote code execution vulnerability
- Resolves: CVE-2020-26217u��8o�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-10R��- Apply upstream security patch
- Resolves: CVE-2013-7285L��7]?�Daniel Mach <dmach@redhat.com> - 1.3.1-9R�k�- Mass rebuild 2013-12-27T��6m?�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-8RB�@- Disable support for XOMc��5m]�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-7Q��- Update to current packaging guidelines��4m��Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-6Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571���3���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-5Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
lw��5�lu��Ao�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-10R��- Apply upstream security patch
- Resolves: CVE-2013-7285L��@]?�Daniel Mach <dmach@redhat.com> - 1.3.1-9R�k�- Mass rebuild 2013-12-27T��?m?�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-8RB�@- Disable support for XOMc��>m]�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-7Q��- Update to current packaging guidelines��=m��Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-6Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571���<���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-5Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�i��;g�m�Marian Koncek <mkoncek@redhat.com> - 1.3.1-13`u��- Fix remote code execution vulnerability
- Resolves: CVE-2021-21344
- Resolves: CVE-2021-21345
- Resolves: CVE-2021-21346
- Resolves: CVE-2021-21347
- Resolves: CVE-2021-21350
}z"4�}���G���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-4P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild���F���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-3On@- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild}��Eg��Marian Koncek <mkoncek@redhat.com> - 1.3.1-14`�[�- Fix remote code execution vulnerability
- Resolves: CVE-2021-29505�i��Dg�m�Marian Koncek <mkoncek@redhat.com> - 1.3.1-13`u��- Fix remote code execution vulnerability
- Resolves: CVE-2021-21344
- Resolves: CVE-2021-21345
- Resolves: CVE-2021-21346
- Resolves: CVE-2021-21347
- Resolves: CVE-2021-21350T��Co=�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-12_��- Rebuild with OpenJDK 7���Bo��Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-11_�S�- Fix remote code execution vulnerability
- Resolves: CVE-2020-26217
|e�{#�Z�|T��Oo=�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-12_��- Rebuild with OpenJDK 7���No��Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-11_�S�- Fix remote code execution vulnerability
- Resolves: CVE-2020-26217u��Mo�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-10R��- Apply upstream security patch
- Resolves: CVE-2013-7285L��L]?�Daniel Mach <dmach@redhat.com> - 1.3.1-9R�k�- Mass rebuild 2013-12-27T��Km?�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-8RB�@- Disable support for XOMc��Jm]�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-7Q��- Update to current packaging guidelines��Im��Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-6Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571���H���Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-5Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
9e�G��8�9���Wo�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-11_�S�- Fix remote code execution vulnerability
- Resolves: CVE-2020-26217u��VoMikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-10R��- Apply upstream security patch
- Resolves: CVE-2013-7285L��U]?Daniel Mach <dmach@redhat.com> - 1.3.1-9R�k�- Mass rebuild 2013-12-27T��Tm?Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-8RB�@- Disable support for XOMc��Sm]Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-7Q��- Update to current packaging guidelines��Rm�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-6Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571���Q��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-5Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���P��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-4P�@- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
����5��L��^]?Daniel Mach <dmach@redhat.com> - 1.3.1-9R�k�- Mass rebuild 2013-12-27T��]m?Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-8RB�@- Disable support for XOMc��\m]Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-7Q��- Update to current packaging guidelines��[m�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-6Q�z�- Rebuild to regenerate API documentation
- Resolves: CVE-2013-1571���Z��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.3.1-5Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�i��Yg�mMarian Koncek <mkoncek@redhat.com> - 1.3.1-13`u��- Fix remote code execution vulnerability
- Resolves: CVE-2021-21344
- Resolves: CVE-2021-21345
- Resolves: CVE-2021-21346
- Resolves: CVE-2021-21347
- Resolves: CVE-2021-21350T��Xo=Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-12_��- Rebuild with OpenJDK 7
����:��F��ee+Miroslav Lichvar <mlichvar@redhat.com> 289-1Q�- update to 289F��de+Miroslav Lichvar <mlichvar@redhat.com> 288-1P�@- update to 288}��cg�Marian Koncek <mkoncek@redhat.com> - 1.3.1-14`�[�- Fix remote code execution vulnerability
- Resolves: CVE-2021-29505�i��bg�mMarian Koncek <mkoncek@redhat.com> - 1.3.1-13`u��- Fix remote code execution vulnerability
- Resolves: CVE-2021-21344
- Resolves: CVE-2021-21345
- Resolves: CVE-2021-21346
- Resolves: CVE-2021-21347
- Resolves: CVE-2021-21350T��ao=Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-12_��- Rebuild with OpenJDK 7���`o�Mikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-11_�S�- Fix remote code execution vulnerability
- Resolves: CVE-2020-26217u��_oMikolaj Izdebski <mizdebsk@redhat.com> - 1.3.1-10R��- Apply upstream security patch
- Resolves: CVE-2013-7285

e�r+��V��:��eD��
79b31e2851cc21f81604266da5f6560bf26df1d0f6c6015f28b51d19463bbdb1D�
�
d9429a549658c0c14acf519f07d00e2c522ae9defd82f2d4466baf627173297aD��
d351a336b4df1a8014e1c30b9d39d008bb492694a7dd3a345cdad5b169a37692D��
b5e1f251fa985a796daa60023e6589a2ba38ccb958e5fb09215538f676a01863D�
�
c16b5a1bf49c89cb3789f39c8dd6db6309830df4d3274cfa0ea3d38e38f0ebb8D�	�
4b698de5fd7e0a64306106f3018e9d00dedc1f7a46d354339f012c97d004bd0cD��
86b3087af0b5a421efcfc192824973fcedcaee28a0e78bdb52d9101ffee96ebcD��
8c62263350421e7c3081b4a531f8e15ef5bfb5e410a34687ca4a799ff23362efD��
4ddc7a2a317dc75228322785e2290c04acd3263ac771458097e5f402bb10508aD��
2cb993f044a866a8d47b449c45f92f04540a139e5b827a0b845f6c9600d83af6D��
aa0a9aa8e1958293d8bb429a513a459f4abafa838c9e217974640cfcd36c5e3aD��
775f41c9398da339ae50faf7692eb4b9de783c58e046c6c24f659c666b25eb48D��
1e384389a357083eef224ca9752df57e665959920ecfd6720d9f58d63924b0b8
	�b��:�� ����n�#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.2-3alphaQ#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildz��mc�Tomas Korbar <tkorbar@redhat.com> - 295-3.1`*b@- Backport security fix for CVE-2021-27135
- Resolves: rhbz#1927564J��lY?Daniel Mach <dmach@redhat.com> - 295-3R�U�- Mass rebuild 2014-01-24J��kY?Daniel Mach <dmach@redhat.com> - 295-2R�k�- Mass rebuild 2013-12-27F��je+Miroslav Lichvar <mlichvar@redhat.com> 295-1Q�L�- update to 295F��ie+Miroslav Lichvar <mlichvar@redhat.com> 293-1Q��- update to 293F��he+Miroslav Lichvar <mlichvar@redhat.com> 292-1Q~`�- update to 292F��ge+Miroslav Lichvar <mlichvar@redhat.com> 291-1Q/F�- update to 291���fy�;Parag Nemade <paragn AT fedoraproject DOT org> - 289-2Q��- Remove vendor tag from desktop file as per https://fedorahosted.org/fesco/ticket/1077
Z����P�Zo��vg{Pavel Raiskup <praiskup@redhat.com> - 5.2.2-1V�x�- rebase to stable release (rhbz#1190713, rhbz#1160193)��us�
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-12alphaU��- xzgrep: return 0 when at least one file matches (rhbz#1109123)q��tquPavel Raiskup <praiskup@redhat.com> - 5.1.2-9alphaS�-�- better check the version of less binary (#1082639)Q��sg?Daniel Mach <dmach@redhat.com> - 5.1.2-8alphaR�U�- Mass rebuild 2014-01-24i��rqePavel Raiskup <praiskup@redhat.com> - 5.1.2-7alphaR��- build with -O3 on ppc64 (private #1051078)Q��qg?Daniel Mach <dmach@redhat.com> - 5.1.2-6alphaR�k�- Mass rebuild 2013-12-27�1��pq�sPavel Raiskup <praiskup@redhat.com> - 5.1.2-5alphaQd�- fix manual page inconsistencies with help output (private #948533)
- enable/fix the 'xzgrep -h' (private #850898)j��oioKarsten Hopp <karsten@redhat.com> 5.1.2-4alphaQ&@- add support for ppc64p7 arch (Power7 optimized)
H�����Hq��~quPavel Raiskup <praiskup@redhat.com> - 5.1.2-9alphaS�-�- better check the version of less binary (#1082639)Q��}g?Daniel Mach <dmach@redhat.com> - 5.1.2-8alphaR�U�- Mass rebuild 2014-01-24i��|qePavel Raiskup <praiskup@redhat.com> - 5.1.2-7alphaR��- build with -O3 on ppc64 (private #1051078)Q��{g?Daniel Mach <dmach@redhat.com> - 5.1.2-6alphaR�k�- Mass rebuild 2013-12-27�1��zq�sPavel Raiskup <praiskup@redhat.com> - 5.1.2-5alphaQd�- fix manual page inconsistencies with help output (private #948533)
- enable/fix the 'xzgrep -h' (private #850898)j��yioKarsten Hopp <karsten@redhat.com> 5.1.2-4alphaQ&@- add support for ppc64p7 arch (Power7 optimized)���x�#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.2-3alphaQ#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildd��wegMatej Mužila <mmuzila@redhat.com> - 5.2.2-2b�=�- Fix CVE-2022-1271
  Resolves: CVE-2022-1271X�J�x������������������ '.5<CJQX_fmt{������������������qjc\UNG@92+$���������������J���xJ���pJ���hJ���`J���WJ���OJ���GJ���?J���7J���/J���'J���J���J���J���J���~J���vJ���nJ���fJ���^J���VJ���NJ���FJ���<J���4J���,J���%J���J���J���
J���J���~JS��(JT��/JU��5JV��<JW��CJX��IJY��PJZ��WJ[��]J\��cJ^��iJ_��oJ`��uJa��{Jb��Jc��Jd��	Je��
Jf��Jg��Jh��Ji��Jj��$Jk��+Jl��1Jm��7Jn��>Jo��EJp��LJq��RJr��YJs��_Jt��eJv��kJw��rJx��yJy��Jz��J{��J|��J}��J~��J��J���#J���%J���*J���2J���:J���AJ���GJ���OJ���WJ���^J���eJ���nJ���v
}
����i��qePavel Raiskup <praiskup@redhat.com> - 5.1.2-7alphaR��- build with -O3 on ppc64 (private #1051078)Q��g?Daniel Mach <dmach@redhat.com> - 5.1.2-6alphaR�k�- Mass rebuild 2013-12-27�1��q�sPavel Raiskup <praiskup@redhat.com> - 5.1.2-5alphaQd�- fix manual page inconsistencies with help output (private #948533)
- enable/fix the 'xzgrep -h' (private #850898)j��ioKarsten Hopp <karsten@redhat.com> 5.1.2-4alphaQ&@- add support for ppc64p7 arch (Power7 optimized)����#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.2-3alphaQ#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildd��egMatej Mužila <mmuzila@redhat.com> - 5.2.2-2b�=�- Fix CVE-2022-1271
  Resolves: CVE-2022-1271o��g{Pavel Raiskup <praiskup@redhat.com> - 5.2.2-1V�x�- rebase to stable release (rhbz#1190713, rhbz#1160193)��s�
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-12alphaU��- xzgrep: return 0 when at least one file matches (rhbz#1109123)
��6�@�8�j��
ioKarsten Hopp <karsten@redhat.com> 5.1.2-4alphaQ&@- add support for ppc64p7 arch (Power7 optimized)����#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.2-3alphaQ#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildd��egMatej Mužila <mmuzila@redhat.com> - 5.2.2-2b�=�- Fix CVE-2022-1271
  Resolves: CVE-2022-1271o��
g{Pavel Raiskup <praiskup@redhat.com> - 5.2.2-1V�x�- rebase to stable release (rhbz#1190713, rhbz#1160193)��	s�
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-12alphaU��- xzgrep: return 0 when at least one file matches (rhbz#1109123)q��quPavel Raiskup <praiskup@redhat.com> - 5.1.2-9alphaS�-�- better check the version of less binary (#1082639)Q��g?Daniel Mach <dmach@redhat.com> - 5.1.2-8alphaR�U�- Mass rebuild 2014-01-24
`J��3�;�`d��egMatej Mužila <mmuzila@redhat.com> - 5.2.2-2b�=�- Fix CVE-2022-1271
  Resolves: CVE-2022-1271o��g{Pavel Raiskup <praiskup@redhat.com> - 5.2.2-1V�x�- rebase to stable release (rhbz#1190713, rhbz#1160193)��s�
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-12alphaU��- xzgrep: return 0 when at least one file matches (rhbz#1109123)q��quPavel Raiskup <praiskup@redhat.com> - 5.1.2-9alphaS�-�- better check the version of less binary (#1082639)Q��g?Daniel Mach <dmach@redhat.com> - 5.1.2-8alphaR�U�- Mass rebuild 2014-01-24i��qePavel Raiskup <praiskup@redhat.com> - 5.1.2-7alphaR��- build with -O3 on ppc64 (private #1051078)Q��g?Daniel Mach <dmach@redhat.com> - 5.1.2-6alphaR�k�- Mass rebuild 2013-12-27�1��q�sPavel Raiskup <praiskup@redhat.com> - 5.1.2-5alphaQd�- fix manual page inconsistencies with help output (private #948533)
- enable/fix the 'xzgrep -h' (private #850898)
-`�<�z%�-��s�
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-12alphaU��- xzgrep: return 0 when at least one file matches (rhbz#1109123)q��quPavel Raiskup <praiskup@redhat.com> - 5.1.2-9alphaS�-�- better check the version of less binary (#1082639)Q��g?Daniel Mach <dmach@redhat.com> - 5.1.2-8alphaR�U�- Mass rebuild 2014-01-24i��qePavel Raiskup <praiskup@redhat.com> - 5.1.2-7alphaR��- build with -O3 on ppc64 (private #1051078)Q��g?Daniel Mach <dmach@redhat.com> - 5.1.2-6alphaR�k�- Mass rebuild 2013-12-27�1��q�sPavel Raiskup <praiskup@redhat.com> - 5.1.2-5alphaQd�- fix manual page inconsistencies with help output (private #948533)
- enable/fix the 'xzgrep -h' (private #850898)j��ioKarsten Hopp <karsten@redhat.com> 5.1.2-4alphaQ&@- add support for ppc64p7 arch (Power7 optimized)����#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.2-3alphaQ#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
J�%�a�JQ��%g?Daniel Mach <dmach@redhat.com> - 5.1.2-8alphaR�U�- Mass rebuild 2014-01-24i��$qePavel Raiskup <praiskup@redhat.com> - 5.1.2-7alphaR��- build with -O3 on ppc64 (private #1051078)Q��#g?Daniel Mach <dmach@redhat.com> - 5.1.2-6alphaR�k�- Mass rebuild 2013-12-27�1��"q�sPavel Raiskup <praiskup@redhat.com> - 5.1.2-5alphaQd�- fix manual page inconsistencies with help output (private #948533)
- enable/fix the 'xzgrep -h' (private #850898)j��!ioKarsten Hopp <karsten@redhat.com> 5.1.2-4alphaQ&@- add support for ppc64p7 arch (Power7 optimized)��� �#�Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.2-3alphaQ#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildd��egMatej Mužila <mmuzila@redhat.com> - 5.2.2-2b�=�- Fix CVE-2022-1271
  Resolves: CVE-2022-1271o��g{Pavel Raiskup <praiskup@redhat.com> - 5.2.2-1V�x�- rebase to stable release (rhbz#1190713, rhbz#1160193)
i��-�i�1��,q�s	Pavel Raiskup <praiskup@redhat.com> - 5.1.2-5alphaQd�- fix manual page inconsistencies with help output (private #948533)
- enable/fix the 'xzgrep -h' (private #850898)j��+io	Karsten Hopp <karsten@redhat.com> 5.1.2-4alphaQ&@- add support for ppc64p7 arch (Power7 optimized)���*�#�	Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.2-3alphaQ#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildd��)egMatej Mužila <mmuzila@redhat.com> - 5.2.2-2b�=�- Fix CVE-2022-1271
  Resolves: CVE-2022-1271o��(g{Pavel Raiskup <praiskup@redhat.com> - 5.2.2-1V�x�- rebase to stable release (rhbz#1190713, rhbz#1160193)��'s�
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-12alphaU��- xzgrep: return 0 when at least one file matches (rhbz#1109123)q��&quPavel Raiskup <praiskup@redhat.com> - 5.1.2-9alphaS�-�- better check the version of less binary (#1082639)
v�>�t�~v���4�#�
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.2-3alphaQ#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuildd��3eg	Matej Mužila <mmuzila@redhat.com> - 5.2.2-2b�=�- Fix CVE-2022-1271
  Resolves: CVE-2022-1271o��2g{	Pavel Raiskup <praiskup@redhat.com> - 5.2.2-1V�x�- rebase to stable release (rhbz#1190713, rhbz#1160193)��1s�
	Pavel Raiskup <praiskup@redhat.com> - 5.1.2-12alphaU��- xzgrep: return 0 when at least one file matches (rhbz#1109123)q��0qu	Pavel Raiskup <praiskup@redhat.com> - 5.1.2-9alphaS�-�- better check the version of less binary (#1082639)Q��/g?	Daniel Mach <dmach@redhat.com> - 5.1.2-8alphaR�U�- Mass rebuild 2014-01-24i��.qe	Pavel Raiskup <praiskup@redhat.com> - 5.1.2-7alphaR��- build with -O3 on ppc64 (private #1051078)Q��-g?	Daniel Mach <dmach@redhat.com> - 5.1.2-6alphaR�k�- Mass rebuild 2013-12-27
Z����P�Zo��<g{
Pavel Raiskup <praiskup@redhat.com> - 5.2.2-1V�x�- rebase to stable release (rhbz#1190713, rhbz#1160193)��;s�

Pavel Raiskup <praiskup@redhat.com> - 5.1.2-12alphaU��- xzgrep: return 0 when at least one file matches (rhbz#1109123)q��:qu
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-9alphaS�-�- better check the version of less binary (#1082639)Q��9g?
Daniel Mach <dmach@redhat.com> - 5.1.2-8alphaR�U�- Mass rebuild 2014-01-24i��8qe
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-7alphaR��- build with -O3 on ppc64 (private #1051078)Q��7g?
Daniel Mach <dmach@redhat.com> - 5.1.2-6alphaR�k�- Mass rebuild 2013-12-27�1��6q�s
Pavel Raiskup <praiskup@redhat.com> - 5.1.2-5alphaQd�- fix manual page inconsistencies with help output (private #948533)
- enable/fix the 'xzgrep -h' (private #850898)j��5io
Karsten Hopp <karsten@redhat.com> 5.1.2-4alphaQ&@- add support for ppc64p7 arch (Power7 optimized)

3�J�b�d��3`��Fi[Richard Hughes <rhughes@redhat.com> - 3.28.1-1[)�- Update to 3.28.1
- Resolves: #1569809^��Ee[Kalev Lember <klember@redhat.com> - 3.22.0-1W��- Update to 3.22.0
- Resolves: #1387068g��DiiMatthias Clasen <mclasen@redhat.com> - 3.8.0-5U�o�- Fix non-expanding lists
  Resolves: #1251137L��C]?Daniel Mach <dmach@redhat.com> - 3.8.0-4R�U�- Mass rebuild 2014-01-24L��B]?Daniel Mach <dmach@redhat.com> - 3.8.0-3R�k�- Mass rebuild 2013-12-27Z��AiOKalev Lember <kalevlember@gmail.com> - 3.8.0-2QQ��- Minor spec file updates for 3.8I��@g/Richard Hughes <rhughes@redhat.com> - 3.8.0-1QQ��- Update to 3.8.0���?��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.7.2-2Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_RebuildJ��>i/Richard Hughes <hughsient@gmail.com> - 3.7.2-1P�[�- Update to 3.7.2d��=eg
Matej Mužila <mmuzila@redhat.com> - 5.2.2-2b�=�- Fix CVE-2022-1271
  Resolves: CVE-2022-1271
u��3�iu���N_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��MkCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��L_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��K_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��Jk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��I_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���H��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild_��G]eDavid King <dking@redhat.com> - 3.28.1-2b{�@- Fix message dialog label layout (#2053529)
l�%��6�lu��V_�

jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��U_?
Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��Tk�	
Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��S_?
Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���R��
Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���Qc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��PiOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��O_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441
���1�[��M��^_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��]k�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��\_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���[c�
Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��ZiO
Pavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��Y_�
jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���X_�O
jchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��WkC
Peter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500
��.��3��M��f_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27R��egAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���dc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��ciOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��b_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���a_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��`kCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��__�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le arch

e�r+��V��:��eD��
d7742b51255b8d94dbac98ddda85c44af8fd3e086a9e97e34eaa931c19309558D��
b35155b1ceb01b0f1587514d282fbdc9fe8d837afdaf5f41c36043a5e5a43360D��
1cd66f531b9b7e67edd8521e39973708061ed0dc06e81bb64cc48a56a3115cf5D��
a3d1deaf9e376473910f9b57f2f2af63409cd1694461f15fa3888697f35dae99D��
672e68e45c4b7fe8fc13c9120dc86f63a7501b0671c31efd1bc7fca754bcce6fD��
b29312cc96f964f3acb2be38bc13b4893aeb1766954bbb95a9d214498a2e4b48D��
052bc59d48a243df22b031df97865c1dc873c28379e0ef92b51f07311401764bD��
0a22fdb0f60d3be3fd66877b980e41dfe9e76361231ab306f3eb3a98c2ef3139D��
a9e9be6b6ce553ec52656aeeb84a56fd9cc324c060fd83aeddc2a4881bd164ecD��
612794ffa4ef73358d2f49bc1d041762afc275c2285eaf7eaee6f5e3c360d415D��
2bee86d12902723756eafa82ba6cc322136c4a67a78e0104ac988e14eb7fb5a1D��
05ce97f826afdba77bdbabde3175ee402acbf40771f2af0a35ada58f14c7ecbcD��
4286ac1c3d65716ecbf4c7210b1ecc94f1f602cc91db2bab294138fe254b2621
e�2�`�H�e���nc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��miOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��l_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���k_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��jkCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��i_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��h_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��gk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 arch
��-�c
o��Z��viOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��u_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���t_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��skCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��r_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��q_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��pk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archR��ogAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032
C{%~�7�C���~_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��}kCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��|_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��{_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��zk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 arch�"��yk�[Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434R��xgAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���wc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)
9�%�J��9y��k�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild�"��k�[Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434R��gAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���c�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��iOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441
F�6�B�g�F�����Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���
c�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��iOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���
_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��	kCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24
��2�ht��Z��iOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��kCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��k�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27
r{*�\���ry��_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��kCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��k�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���c�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)
	;��v��/�;���'_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��&kCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��%_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��$_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��#k�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��"_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27R��!gAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032��� c�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��iOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELRO
��%�J�|�U��/kCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��._�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��-_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��,k�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archR��+gAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���*c�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��)iOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��(_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441
:e����:M��7_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��6k�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 arch�"��5k�[Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434R��4gAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���3c�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��2iOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��1_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���0_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330
6�.��3�6�"��?k�[Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434R��>gAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���=c�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��<iOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��;_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���:_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��9kCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��8_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le arch
[d�E�s�[y��G_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���F_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��EkCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��D_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��C_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��Bk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��A_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���@��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
���0�b��U��OkCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��N_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��M_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��Lk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��K_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���J��Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.7-10Q#@- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild���Ic�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��HiOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELRO
me���7�mu��W_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��V_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��Uk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��T_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27���Sc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��RiOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��Q_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���P_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330
	7��1�V�7M��`_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��_k�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archM��^_?Daniel Mach <dmach@redhat.com> - 1.2.7-11R�k�- Mass rebuild 2013-12-27R��]gAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���\c�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��[iOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��Z_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���Y_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��XkCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500
`�.��3�`y��hk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 archR��ggAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���fc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��eiOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��d_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���c_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��bkCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��a_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le arch
r�rD��
7d3bfa9dc6bf0bfa9484b2f3613c4816e08534e247194ef466587ccf8938e69eD��
f88c4bed9b2d9000b18a7505809eaf38777fe41fd6aeed9b928493c204e4783f
��6�B�g��R��pgAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���oc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)Z��niOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��m_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���l_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��kkCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��j_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��i_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24
CY����CZ��xiOPavel Raiskup <praiskup@redhat.com> - 1.2.7-18[CN@- Link with -z now for full RELROy��w_�jchaloup <jchaloup@redhat.com> - 1.2.7-17W=��- Fix writing empty files on gzopen()/gzclose()
  resolves: #1337441���v_�Ojchaloup <jchaloup@redhat.com> - 1.2.7-16W ��- Fix serious but very rare decompression bug in inftrees.c (upstream patch)
  resolves: #1127330U��ukCPeter Robinson <pbrobinson@redhat.com> 1.2.7-15UQ�@- Rebuild for rhbz #1123500u��t_�
jchaloup <jchaloup@redhat.com> - 1.2.7-14S�/�- resolves: #1123500
  recompiled with -O3 flag for ppc64le archM��s_?Daniel Mach <dmach@redhat.com> - 1.2.7-13R�U�- Mass rebuild 2014-01-24y��rk�	Peter Schiffer <pschiffe@redhat.com> - 1.2.7-12R��- resolves: #1051079
  recompiled with -O3 flag for ppc64 arch�"��qk�[Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434
~{%~�"��{k�[Lukas Javorsky <ljavorsk@redhat.com> - 1.2.7-21cױ@- Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c
- Resolves: CVE-2022-37434R��zgAMatej Mužila <mmuzila@redhat.com> - 1.2.7-20bUi�- Resolves: CVE-2018-25032���yc�Ondrej Dubaj <odubaj@redhat.com> - 1.2.7-19_X�- fixed accessing password-protected .zip files via libminizip (#1875700)�L���������L����Li��L$��\K����K��uHKI�X2J�;J�
�

"',16;AGMSY_ekqw}���������������������
%+17=CIOU[agmsy���������������������	!'-39?EKQW]ciou{���������������������												

 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOP	Q	R	S	T	U	V	W	X	Y	Z
[
\
]
^
_
`
a
b
c
defghijklmnopqrstuvwx
y
z
{
|
}
~

�
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������
����������������������������������������������������������������������������������������������������������������
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{�������������������������������	

 !"#$%&'()*+,-./0123456 7 8 9 : ; < = > ? @!A!B!C!D!E!F!G!H!I!J"K"L"M"N"O"P"Q"R"S"T#U#V#W#X#Y#Z#[#\#]#^$_$`$a$b
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������$d$e$f$g$h%i%j%k%l%m%n%o%p%q%r&s&t&u&v&w&x&y&z&{&|'}'~''�'�'�'�'�'�'�(�(�(�(�(�(�(�(�(�(�)�)�)�)�)�)�)�)�)�)�*�*�*�*�*�*�*�*�*�*�+�+�+�+�+�+�+�+�+�+�,�,�,�,�,�,�,�,�,�,�-�-�-�-�-�-�-�-�-�-�.�.�.�.�.�.�.�.�.�.�/�/�/�/�/�/�/�
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������/�/�0�0�0�0�0�0�0�0�0�0�1�1�1�1�1�1�1�1�1�1�2�2�2�2�2�2�2�2�2�2�3�3�3�3�3�3�3�3�3�3�4�4444444445	5
555
5555566666666667777 7!7"7#7$7%7&8'8(8)8*8+8,8-8.8/809192939495969798999::;:<:=:>:?:@:A:B:C:D
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������;F;G;H;I;J;K;L;M;N<O<P<Q<R<S<T<U<V<W<X=Y=Z=[=\=]=^=_=`=a=b>c>d>e>f>g>h>i>j>k>l?m?n?o?p?q?r?s?t?u?v@w@x@y@z@{@|@}@~@@�A�A�A�A�A�A�A�A�A�A�B�B�B�B�B�B�B�B�B�B�C�C�C�C�C�C�C�C�C�C�D�D�D�D�D�D�D�D�D�D�E�E�E�E�E�E�E�E�E�E�F�F�F�
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������F�F�F�F�F�F�G�G�G�G�G�G�G�G�G�G�H�H�H�H�H�H�H�H�H�H�I�I�I�I�I�I�I�I�I�I�J�J�J�J�J�J�J�J�J�J�K�K�K�K�K�K�K�K�K�K�L�L�L�L�L�L�L�L�L�L�M�M�M�M�M�M�M�MMMNNNNNNN	N
NNO
OOOOOOOOOPPPPPPPPPP Q!Q"Q#Q$Q%Q&
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������Q(Q)Q*R+R,R-R.R/R0R1R2R3R4S5S6S7S8S9S:S;S<S=S>T?T@TATBTCTDTETFTGTHUIUJUKULUMUNUOUPUQURVSVTVUVVVWVXVYVZV[V\W]W^W_W`WaWbWcWdWeWfXgXhXiXjXkXlXmXnXoXpYqYrYsYtYuYvYwYxYyYzZ{Z|Z}Z~ZZ�Z�Z�Z�Z�[�[�[�[�[�[�[�[�[�[�\�\�\�\�\�\�\�\�\�
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������]�]�]�]�]�]�]�]�]�]�^�^�^�^�^�^�^�^�^�^�_�_�_�_�_�_�_�_�_�_�`�`�`�`�`�`�`�`�`�`�a�a�a�a�a�a�a�a�a�a�b�b�b�b�b�b�b�b�b�b�c�c�c�c�c�c�c�c�c�c�d�d�d�d�d�d�d�d�d�d�e�e�e�e�e�e�e�e�e�e�f�f�f�f�f�f�f�f�f�f�g�g�g�ggggggghh
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������h
hhh
hhhiiiiiiiiiijjjjjj j!j"j#j$k%k&k'k(k)k*k+k,k-k.l/l0l1l2l3l4l5l6l7l8m9m:m;m<m=m>m?m@mAmBnCnDnEnFnGnHnInJnKnLoMoNoOoPoQoRoSoToUoVpWpXpYpZp[p\p]p^p_p`qaqbqcqdqeqfqgqhqiqjrkrlrmrnrorprqrrrsrtsusvswsxsy
p����!(/6=DKRY`gnu|������������������$+29@GNU\cjqx������������������ '.5<CJQX_fmt{������������������s{s|s}s~tt�t�t�t�t�t�t�t�t�u�u�u�u�u�u�u�u�u�u�v�v�v�v�v�v�v�v�v�v�w�w�w�w�w�w�w�w�w�w�x�x�x�x�x�x�x�x�x�x�y�y�y�y�y�y�y�y�y�y�z�z�z�z�z�z�z�z�z�z�{�{�{�{�{�{�{�{�{�{�|�|�|�|�|�|�|�|�|�|�}�}�}�}�}�}�}�}�}�}�~�~�~�~�~�~�~�~�
f�������!(08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������~���������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�����������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx������������������������������������������������������������������������������������������������������������������������������������������������������������������������	�
���
����������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx������������������ �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~���������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx��������������������������������������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������������������������������������������������������������������������������������������������������������������������������������������������������������������	�
���
��������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�����
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx���������������������������������������������������������������	�	�	�	�	�	�	�	�	�		�	
�	�	�	
�	�	�	�	�	�	�	�	�	�	�	�	�	�	�	�	�	�	�	 �	!�	"�	#�	$�	%�	&�	'�	(�	)�	*�	+�	,�	-�	.�	/�	0�	1�	2�	3�	4�	5�	6�	7�	8�	9�	:�	;�	<�	=�	>�	?�	@�	A�	B�	C�	D�	E�	F�	G�	H�	I�	J�	K�	L�	M
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������	O�	P�	Q�	R�	S�	T�	U�	V�	W�	X�	Y�	Z�	[�	\�	]�	^�	_�	`�	a�	b�	c�	d�	e�	f�	g�	h�	i�	j�	k�	l�	m�	n�	o�	p�	q�	r�	s�	t�	u�	v�	w�	x�	y�	z�	{�	|�	}�	~�	�	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	��	�	�	�	�	�	�	�	�	�	�









	


















e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������





 
!
"
#
$
%
&
'
(
)
*
+
,
-
.
/
0
1
2
3
4
5
6
7
8
9
:
;
<
=
>
?
@
A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P	
Q	
R	
S	
T	
U	
V	
W	
X	
Y	
Z

[

\

]

^

_

`

a

b

c

d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z
{
|
}
~

e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�	

 !"#$%&'()*+,-./0123456 7 8 9 : ; < = > ? @!A!B!C!D!E!F!G!H!I!J"K
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������"M"N"O"P"Q"R"S"T#U#V#W#X#Y#Z#[#\#]#^$_$`$a$b$c$d$e$f$g$h%i%j%k%l%m%n%o%p%q%r&s&t&u&v&w&x&y&z&{&|'}'~''�'�'�'�'�'�'�(�(�(�(�(�(�(�(�(�(�)�)�)�)�)�)�)�)�)�)�*�*�*�*�*�*�*�*�*�*�+�+�+�+�+�+�+�+�+�+�,�,�,�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������,�,�,�,�,�,�-�-�-�-�-�-�-�-�-�-�.�.�.�.�.�.�.�.�.�.�/�/�/�/�/�/�/�/�/�/�0�0�0�0�0�0�0�0�0�0�1�1�1�1�1�1�1�1�1�1�2�2�2�2�2�2�2�2�2�2�3�3�3�3�3�3�3�3�3�3�4�4444444445	5
555
5555566666
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������66667777 7!7"7#7$7%7&8'8(8)8*8+8,8-8.8/809192939495969798999::;:<:=:>:?:@:A:B:C:D;E;F;G;H;I;J;K;L;M;N<O<P<Q<R<S<T<U<V<W<X=Y=Z=[=\=]=^=_=`=a=b>c>d>e>f>g>h>i>j>k>l?m?n?o?p?q?r?s?t?u?v@w@x@y@z@{@|@}
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������@@�A�A�A�A�A�A�A�A�A�A�B�B�B�B�B�B�B�B�B�B�C�C�C�C�C�C�C�C�C�C�D�D�D�D�D�D�D�D�D�D�E�E�E�E�E�E�E�E�E�E�F�F�F�F�F�F�F�F�F�F�G�G�G�G�G�G�G�G�G�G�H�H�H�H�H�H�H�H�H�H�I�I�I�I�I�I�I�I�I�I�J�J�J�J�J�J�J�J�J�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������K�K�K�K�K�K�K�K�K�K�L�L�L�L�L�L�L�L�L�L�M�M�M�M�M�M�M�M
M
M
N
N
N
N
N
N
N
	N
N
N
O

O
O
O
O
O
O
O
O
O
P
P
P
P
P
P
P
P
P
P
 Q
!Q
"Q
#Q
$Q
%Q
&Q
'Q
(Q
)Q
*R
+R
,R
-R
.R
/R
0R
1R
2R
3R
4S
5S
6S
7S
8S
9S
:S
;S
<S
=S
>T
?T
@T
AT
BT
CT
DT
ET
FT
GT
HU
I
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������U
KU
LU
MU
NU
OU
PU
QU
RV
SV
TV
UV
VV
WV
XV
YV
ZV
[V
\W
]W
^W
_W
`W
aW
bW
cW
dW
eW
fX
gX
hX
iX
jX
kX
lX
mX
nX
oX
pY
qY
rY
sY
tY
uY
vY
wY
xY
yY
zZ
{Z
|Z
}Z
~Z
Z
�Z
�Z
�Z
�Z
�[
�[
�[
�[
�[
�[
�[
�[
�[
�[
�\
�\
�\
�\
�\
�\
�\
�\
�\
�\
�]
�]
�]
�]
�]
�]
�]
�]
�]
�]
�^
�^
�^
�^
�^
�^
�^
�^
�^
�^
�_
�_
�_
�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������_
�_
�_
�_
�_
�_
�`
�`
�`
�`
�`
�`
�`
�`
�`
�`
�a
�a
�a
�a
�a
�a
�a
�a
�a
�a
�b
�b
�b
�b
�b
�b
�b
�b
�b
�b
�c
�c
�c
�c
�c
�c
�c
�c
�c
�c
�d
�d
�d
�d
�d
�d
�d
�d
�d
�d
�e
�e
�e
�e
�e
�e
�e
�e
�e
�e
�f
�f
�f
�f
�f
�f
�f
�f
�f
�f
�g
�g
�g
�ggggggghhh	h
hhh
hhhiiiii
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������iiiijjjjjj j!j"j#j$k%k&k'k(k)k*k+k,k-k.l/l0l1l2l3l4l5l6l7l8m9m:m;m<m=m>m?m@mAmBnCnDnEnFnGnHnInJnKnLoMoNoOoPoQoRoSoToUoVpWpXpYpZp[p\p]p^p_p`qaqbqcqdqeqfqgqhqiqjrkrlrmrnrorprqrrrsrtsusvswsxsyszs{
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������s}s~tt�t�t�t�t�t�t�t�t�u�u�u�u�u�u�u�u�u�u�v�v�v�v�v�v�v�v�v�v�w�w�w�w�w�w�w�w�w�w�x�x�x�x�x�x�x�x�x�x�y�y�y�y�y�y�y�y�y�y�z�z�z�z�z�z�z�z�z�z�{�{�{�{�{�{�{�{�{�{�|�|�|�|�|�|�|�|�|�|�}�}�}�}�}�}�}�}�}�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������~�~�~�~�~�~�~�~�~�~���������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~���������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	�
���
������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx���������������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������{�|�}�~�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������������������������������������������������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�����������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	�
���
����
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx������������������������������ �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������y�z�{�|�}�~���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx��������������������������������������������������������������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	


e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx���������������� !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOP	Q	R	S	T	U	V	W	X	Y	Z
[
\
]
^
_
`
a
b
c
defghijklmnopqrstu
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������wx
y
z
{
|
}
~

�
�
������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx���������������������������������������������������	

 !"#$%&'()*+,-./0123456 7 8 9 : ; < = > ? @!A
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������!C!D!E!F!G!H!I!J"K"L"M"N"O"P"Q"R"S"T#U#V#W#X#Y#Z#[#\#]#^$_$`$a$b$c$d$e$f$g$h%i%j%k%l%m%n%o%p%q%r&s&t&u&v&w&x&y&z&{&|'}'~''�'�'�'�'�'�'�(�(�(�(�(�(�(�(�(�(�)�)�)�)�)�)�)�)�)�)�*�*�*�*�*�*�*�*�*�*�+�+�+�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������+�+�+�+�+�+�,�,�,�,�,�,�,�,�,�,�-�-�-�-�-�-�-�-�-�-�.�.�.�.�.�.�.�.�.�.�/�/�/�/�/�/�/�/�/�/�0�0�0�0�0�0�0�0�0�0�1�1�1�1�1�1�1�1�1�1�2�2�2�2�2�2�2�2�2�2�3�3�3�3�3�3�3�3�3�3�4�4444444445	5
555
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������555566666666667777 7!7"7#7$7%7&8'8(8)8*8+8,8-8.8/809192939495969798999::;:<:=:>:?:@:A:B:C:D;E;F;G;H;I;J;K;L;M;N<O<P<Q<R<S<T<U<V<W<X=Y=Z=[=\=]=^=_=`=a=b>c>d>e>f>g>h>i>j>k>l?m?n?o?p?q?r?s
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������?u?v@w@x@y@z@{@|@}@~@@�A�A�A�A�A�A�A�A�A�A�B�B�B�B�B�B�B�B�B�B�C�C�C�C�C�C�C�C�C�C�D�D�D�D�D�D�D�D�D�D�E�E�E�E�E�E�E�E�E�E�F�F�F�F�F�F�F�F�F�F�G�G�G�G�G�G�G�G�G�G�H�H�H�H�H�H�H�H�H�H�I�I�I�I�I�I�I�I�I�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������J�J�J�J�J�J�J�J�J�J�K�K�K�K�K�K�K�K�K�K�L�L�L�L�L�L�L�L�L�L�M�M�M�M�M�M�M�MMMNNNNNNN	N
NNO
OOOOOOOOOPPPPPPPPPP Q!Q"Q#Q$Q%Q&Q'Q(Q)Q*R+R,R-R.R/R0R1R2R3R4S5S6S7S8S9S:S;S<S=S>T?
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������TATBTCTDTETFTGTHUIUJUKULUMUNUOUPUQURVSVTVUVVVWVXVYVZV[V\W]W^W_W`WaWbWcWdWeWfXgXhXiXjXkXlXmXnXoXpYqYrYsYtYuYvYwYxYyYzZ{Z|Z}Z~ZZ�Z�Z�Z�Z�[�[�[�[�[�[�[�[�[�[�\�\�\�\�\�\�\�\�\�\�]�]�]�]�]�]�]�]�]�]�^�^�^�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������^�^�^�^�^�^�_�_�_�_�_�_�_�_�_�_�`�`�`�`�`�`�`�`�`�`�a�a�a�a�a�a�a�a�a�a�b�b�b�b�b�b�b�b�b�b�c�c�c�c�c�c�c�c�c�c�d�d�d�d�d�d�d�d�d�d�e�e�e�e�e�e�e�e�e�e�f�f�f�f�f�f�f�f�f�f�g�g�g�ggggggghhh	h
h
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������h
hhhiiiiiiiiiijjjjjj j!j"j#j$k%k&k'k(k)k*k+k,k-k.l/l0l1l2l3l4l5l6l7l8m9m:m;m<m=m>m?m@mAmBnCnDnEnFnGnHnInJnKnLoMoNoOoPoQoRoSoToUoVpWpXpYpZp[p\p]p^p_p`qaqbqcqdqeqfqgqhqiqjrkrlrmrnrorprq
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������rsrtsusvswsxsyszs{s|s}s~tt�t�t�t�t�t�t�t�t�u�u�u�u�u�u�u�u�u�u�v�v�v�v�v�v�v�v�v�v�w�w�w�w�w�w�w�w�w�w�x�x�x�x�x�x�x�x�x�x�y�y�y�y�y�y�y�y�y�y�z�z�z�z�z�z�z�z�z�z�{�{�{�{�{�{�{�{�{�{�|�|�|�|�|�|�|�|�|�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������}�}�}�}�}�}�}�}�}�}�~�~�~�~�~�~�~�~�~�~���������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�������������������
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������q�r�s�t�u�v�w�x�y�z�{�|�}�~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx������������������������������������������������������������������������������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~���������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������������������������������������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������������������������������������������������������������������������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�����������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	

 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOP	Q	R	S	T	U	V	W	X	Y	Z
[
\
]
^
_
`
a
b
c
defghijkI�J����������
$0<HT`lx����������� ,8DP\ht�����������(4@LXdp|����������J�
�J��J�$cJ�/�J�;EJ�F�J�Q'J�\�J�h	J�szJ�~�J��RJ���J��J���J���J��PJ���J��J���J���J��	NJ��	�J�
J�
�J�
�J�"LJ�,�J�6J�@~J�J�J�U
JJ�_
�J�iJ�s|J�}�J��HJ���J��J��zJ���J��FJ���J��J��xJ���J��DJ���J�J�vJ��J�!BJ�+�J�5J�?tJ�I�J�T@J�^�J�hJ�rrJ�|�J��>J���J��
J��pJ���J��<J���J��J��nJ���J��:J���H�KG��������$0<HT`lx����������� ,8DP\ht�����������(4@LXdp|����������J�lK�K 8K*�K4 K> jKH �KS!6K]!�Kg"K	q"hK
{"�K�#4K�#�K
�$K�$fK�$�K�%2K�%�K�%�K�&dK�&�K�'0K�'�K'�K
(bK(�K).K))�K3)�K=*`KG*�KR+,K \+�K!f+�K"x,^K#�,�K$�-*K%�-�K&�-�K'�.\K(�.�K)�/(K*�/�K+�/�K,�0ZK-�0�K.1&K/
1�K01�K12XK2)2�K333$K4=3�K5G3�K6R4VK7\4�K8f5"K9p5�K:z5�K;�6TK<�6�K=�7 K>�7�K?�7�K@�8RKA�8�KB�9KC�9�KD�9�KE�:PKF:�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������mnopqrstuvwx
y
z
{
|
}
~

�
�
��������������������������������������������������������������������������������
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�������������������������������������������������������������	

 !"#$%&'()*+,-./0123456 7
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx���������������� 9 : ; < = > ? @!A!B!C!D!E!F!G!H!I!J"K"L"M"N"O"P"Q"R"S"T#U#V#W#X#Y#Z#[#\#]#^$_$`$a$b$c$d$e$f$g$h%i%j%k%l%m%n%o%p%q%r&s&t&u&v&w&x&y&z&{&|'}'~''�'�'�'�'�'�'�(�(�(�(�(�(�(�(�(�(�)�)�)�)�)�)�)�)�)�)�*�*�*�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������*�*�*�*�*�*�+�+�+�+�+�+�+�+�+�+�,�,�,�,�,�,�,�,�,�,�-�-�-�-�-�-�-�-�-�-�.�.�.�.�.�.�.�.�.�.�/�/�/�/�/�/�/�/�/�/�0�0�0�0�0�0�0�0�0�0�1�1�1�1�1�1�1�1�1�1�2�2�2�2�2�2�2�2�2�2�3�3�3�3�3�3�3�3�3�3�4�4 4 4 4 
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������4 4 4 4 5 	5 
5 5 5 
5 5 5 5 5 6 6 6 6 6 6 6 6 6 6 7 7 7 7  7 !7 "7 #7 $7 %7 &8 '8 (8 )8 *8 +8 ,8 -8 .8 /8 09 19 29 39 49 59 69 79 89 99 :: ;: <: =: >: ?: @: A: B: C: D; E; F; G; H; I; J; K; L; M; N< O< P< Q< R< S< T< U< V< W< X= Y= Z= [= \= ]= ^= _= `= a= b> c> d> e> f> g> h> i
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������> k> l? m? n? o? p? q? r? s? t? u? v@ w@ x@ y@ z@ {@ |@ }@ ~@ @ �A �A �A �A �A �A �A �A �A �A �B �B �B �B �B �B �B �B �B �B �C �C �C �C �C �C �C �C �C �C �D �D �D �D �D �D �D �D �D �D �E �E �E �E �E �E �E �E �E �E �F �F �F �F �F �F �F �F �F �F �G �G �G �G �G �G �G �G �G �G �H �H �H �H �H �H �H �H �H �
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������I �I �I �I �I �I �I �I �I �I �J �J �J �J �J �J �J �J �J �J �K �K �K �K �K �K �K �K �K �K �L �L �L �L �L �L �L �L �L �L �M �M �M �M �M �M �M �M!M!M!N!N!N!N!N!N!N!	N!
N!N!O!
O!O!O!O!O!O!O!O!O!P!P!P!P!P!P!P!P!P!P! Q!!Q!"Q!#Q!$Q!%Q!&Q!'Q!(Q!)Q!*R!+R!,R!-R!.R!/R!0R!1R!2R!3R!4S!5
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������S!7S!8S!9S!:S!;S!<S!=S!>T!?T!@T!AT!BT!CT!DT!ET!FT!GT!HU!IU!JU!KU!LU!MU!NU!OU!PU!QU!RV!SV!TV!UV!VV!WV!XV!YV!ZV![V!\W!]W!^W!_W!`W!aW!bW!cW!dW!eW!fX!gX!hX!iX!jX!kX!lX!mX!nX!oX!pY!qY!rY!sY!tY!uY!vY!wY!xY!yY!zZ!{Z!|Z!}Z!~Z!Z!�Z!�Z!�Z!�Z!�[!�[!�[!�[!�[!�[!�[!�[!�[!�[!�\!�\!�\!�\!�\!�\!�\!�\!�\!�\!�]!�]!�]!�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������]!�]!�]!�]!�]!�]!�^!�^!�^!�^!�^!�^!�^!�^!�^!�^!�_!�_!�_!�_!�_!�_!�_!�_!�_!�_!�`!�`!�`!�`!�`!�`!�`!�`!�`!�`!�a!�a!�a!�a!�a!�a!�a!�a!�a!�a!�b!�b!�b!�b!�b!�b!�b!�b!�b!�b!�c!�c!�c!�c!�c!�c!�c!�c!�c!�c!�d!�d!�d!�d!�d!�d!�d!�d!�d!�d!�e!�e!�e!�e!�e!�e!�e!�e!�e!�e!�f!�f!�f!�f!�f!�f!�f!�f!�f!�f!�g!�g!�g!�g"g"
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������g"g"g"g"h"h"h"	h"
h"h"h"
h"h"h"i"i"i"i"i"i"i"i"i"i"j"j"j"j"j"j" j"!j""j"#j"$k"%k"&k"'k"(k")k"*k"+k",k"-k".l"/l"0l"1l"2l"3l"4l"5l"6l"7l"8m"9m":m";m"<m"=m">m"?m"@m"Am"Bn"Cn"Dn"En"Fn"Gn"Hn"In"Jn"Kn"Lo"Mo"No"Oo"Po"Qo"Ro"So"To"Uo"Vp"Wp"Xp"Yp"Zp"[p"\p"]p"^p"_p"`q"aq"bq"cq"dq"eq"fq"g
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������q"iq"jr"kr"lr"mr"nr"or"pr"qr"rr"sr"ts"us"vs"ws"xs"ys"zs"{s"|s"}s"~t"t"�t"�t"�t"�t"�t"�t"�t"�t"�u"�u"�u"�u"�u"�u"�u"�u"�u"�u"�v"�v"�v"�v"�v"�v"�v"�v"�v"�v"�w"�w"�w"�w"�w"�w"�w"�w"�w"�w"�x"�x"�x"�x"�x"�x"�x"�x"�x"�x"�y"�y"�y"�y"�y"�y"�y"�y"�y"�y"�z"�z"�z"�z"�z"�z"�z"�z"�z"�z"�{"�{"�{"�{"�{"�{"�{"�{"�{"�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������|"�|"�|"�|"�|"�|"�|"�|"�|"�|"�}"�}"�}"�}"�}"�}"�}"�}"�}"�}"�~"�~"�~"�~"�~"�~"�~"�~"�~"�~"�"�"�"�"�"�"�"�"�"�"��"��"��"��"��"��"��"��"��"��#�#�#�#�#�#�#�#�#�#	�#
�#�#�#
�#�#�#�#�#�#�#�#�#�#�#�#�#�#�#�#�#�#�# �#!�#"�##�#$�#%�#&�#'�#(�#)�#*�#+�#,�#-�#.�#/�#0�#1�#2�#3
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������#5�#6�#7�#8�#9�#:�#;�#<�#=�#>�#?�#@�#A�#B�#C�#D�#E�#F�#G�#H�#I�#J�#K�#L�#M�#N�#O�#P�#Q�#R�#S�#T�#U�#V�#W�#X�#Y�#Z�#[�#\�#]�#^�#_�#`�#a�#b�#c�#d�#e�#f�#g�#h�#i�#j�#k�#l�#m�#n�#o�#p�#q�#r�#s�#t�#u�#v�#w�#x�#y�#z�#{�#|�#}�#~�#�#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#��#�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������$�$�$�$�$�$�$�$�$	�$
�$�$�$
�$�$�$�$�$�$�$�$�$�$�$�$�$�$�$�$�$�$�$ �$!�$"�$#�$$�$%�$&�$'�$(�$)�$*�$+�$,�$-�$.�$/�$0�$1�$2�$3�$4�$5�$6�$7�$8�$9�$:�$;�$<�$=�$>�$?�$@�$A�$B�$C�$D�$E�$F�$G�$H�$I�$J�$K�$L�$M�$N�$O�$P�$Q�$R�$S�$T�$U�$V�$W�$X�$Y�$Z�$[�$\�$]�$^�$_�$`�$a�$b�$c�$d�$e
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������$g�$h�$i�$j�$k�$l�$m�$n�$o�$p�$q�$r�$s�$t�$u�$v�$w�$x�$y�$z�${�$|�$}�$~�$�$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��$��%�%�%�%�%�%�%�%�%�%	�%
�%�%�%
�%�%�%�%�%�%�%�%�%�%�%�%�%�%�%�%�%�%�% �%!�%"�%#�%$�%%�%&�%'�%(�%)�%*�%+�%,�%-�%.�%/�%0�%1
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������%3�%4�%5�%6�%7�%8�%9�%:�%;�%<�%=�%>�%?�%@�%A�%B�%C�%D�%E�%F�%G�%H�%I�%J�%K�%L�%M�%N�%O�%P�%Q�%R�%S�%T�%U�%V�%W�%X�%Y�%Z�%[�%\�%]�%^�%_�%`�%a�%b�%c�%d�%e�%f�%g�%h�%i�%j�%k�%l�%m�%n�%o�%p�%q�%r�%s�%t�%u�%v�%w�%x�%y�%z�%{�%|�%}�%~�%�%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%��%�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������%��&�&�&�&�&�&�&�&�&�&	�&
�&�&�&
�&�&�&�&�&�&�&�&�&�&�&�&�&�&�&�&�&�&�& �&!�&"�&#�&$�&%�&&�&'�&(�&)�&*�&+�&,�&-�&.�&/�&0�&1�&2�&3�&4�&5�&6�&7�&8�&9�&:�&;�&<�&=�&>�&?�&@�&A�&B�&C�&D�&E�&F�&G�&H�&I�&J�&K�&L�&M�&N�&O�&P�&Q�&R�&S�&T�&U�&V�&W�&X�&Y�&Z�&[�&\�&]�&^�&_�&`�&a�&b�&c
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������&e�&f�&g�&h�&i�&j�&k�&l�&m�&n�&o�&p�&q�&r�&s�&t�&u�&v�&w�&x�&y�&z�&{�&|�&}�&~�&�&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��&��'�'�'�'�'�'�'�'�'�'	�'
�'�'�'
�'�'�'�'�'�'�'�'�'�'�'�'�'�'�'�'�'�'�' �'!�'"�'#�'$�'%�'&�''�'(�')�'*�'+�',�'-�'.�'/
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������'1�'2�'3�'4�'5�'6�'7�'8�'9�':�';�'<�'=�'>�'?�'@�'A�'B�'C�'D�'E�'F�'G�'H�'I�'J�'K�'L�'M�'N�'O�'P�'Q�'R�'S�'T�'U�'V�'W�'X�'Y�'Z�'[�'\�']�'^�'_�'`�'a�'b�'c�'d�'e�'f�'g�'h�'i�'j�'k�'l�'m�'n�'o�'p�'q�'r�'s�'t�'u�'v�'w�'x�'y�'z�'{�'|�'}�'~�'�'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'��'�'�'�'�'�'�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������'�'�'�((((((((((	(
(((
((((((((((((((((((( (!("(#($(%(&('((()(*(+(,(-(.(/(0(1(2(3(4(5(6(7(8(9(:(;(<(=(>(?(@(A(B(C(D(E(F(G(H(I(J(K(L(M(N(O(P	(Q	(R	(S	(T	(U	(V	(W	(X	(Y	(Z
([
(\
(]
(^
(_
(`
(a
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
(c
(d(e(f(g(h(i(j(k(l(m(n(o(p(q(r(s(t(u(v(w(x
(y
(z
({
(|
(}
(~
(
(�
(�
(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�(�))))))))))	)
)))
))))))))))))))))))) )!)")#)$)%)&)')()))*)+),)-
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������)/)0)1)2)3)4)5)6 )7 )8 )9 ): ); )< )= )> )? )@!)A!)B!)C!)D!)E!)F!)G!)H!)I!)J")K")L")M")N")O")P")Q")R")S")T#)U#)V#)W#)X#)Y#)Z#)[#)\#)]#)^$)_$)`$)a$)b$)c$)d$)e$)f$)g$)h%)i%)j%)k%)l%)m%)n%)o%)p%)q%)r&)s&)t&)u&)v&)w&)x&)y&)z&){&)|')}')~')')�')�')�')�')�')�')�()�()�()�()�()�()�()�()�()�()�))�))�))�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������))�))�))�))�))�))�*)�*)�*)�*)�*)�*)�*)�*)�*)�*)�+)�+)�+)�+)�+)�+)�+)�+)�+)�+)�,)�,)�,)�,)�,)�,)�,)�,)�,)�,)�-)�-)�-)�-)�-)�-)�-)�-)�-)�-)�.)�.)�.)�.)�.)�.)�.)�.)�.)�.)�/)�/)�/)�/)�/)�/)�/)�/)�/)�/)�0)�0)�0)�0)�0)�0)�0)�0)�0)�0)�1)�1)�1)�1)�1)�1)�1)�1)�1)�1)�2)�2)�2)�2)�2)�2)�2)�2)�2)�2)�3)�3)�3)�3)�3)�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������3)�3)�3)�3)�4)�4*4*4*4*4*4*4*4*4*5*	5*
5*5*5*
5*5*5*5*5*6*6*6*6*6*6*6*6*6*6*7*7*7*7* 7*!7*"7*#7*$7*%7*&8*'8*(8*)8**8*+8*,8*-8*.8*/8*09*19*29*39*49*59*69*79*89*99*::*;:*<:*=:*>:*?:*@:*A:*B:*C:*D;*E;*F;*G;*H;*I;*J;*K;*L;*M;*N<*O<*P<*Q<*R<*S<*T<*U<*V<*W<*X=*Y=*Z=*[=*\=*]=*^=*_
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������=*a=*b>*c>*d>*e>*f>*g>*h>*i>*j>*k>*l?*m?*n?*o?*p?*q?*r?*s?*t?*u?*v@*w@*x@*y@*z@*{@*|@*}@*~@*@*�A*�A*�A*�A*�A*�A*�A*�A*�A*�A*�B*�B*�B*�B*�B*�B*�B*�B*�B*�B*�C*�C*�C*�C*�C*�C*�C*�C*�C*�C*�D*�D*�D*�D*�D*�D*�D*�D*�D*�D*�E*�E*�E*�E*�E*�E*�E*�E*�E*�E*�F*�F*�F*�F*�F*�F*�F*�F*�F*�F*�G*�G*�G*�G*�G*�G*�G*�G*�G*�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������H*�H*�H*�H*�H*�H*�H*�H*�H*�H*�I*�I*�I*�I*�I*�I*�I*�I*�I*�I*�J*�J*�J*�J*�J*�J*�J*�J*�J*�J*�K*�K*�K*�K*�K*�K*�K*�K*�K*�K*�L*�L*�L*�L*�L*�L*�L*�L*�L*�L*�M*�M*�M*�M*�M*�M*�M*�M+M+M+N+N+N+N+N+N+N+	N+
N+N+O+
O+O+O+O+O+O+O+O+O+P+P+P+P+P+P+P+P+P+P+ Q+!Q+"Q+#Q+$Q+%Q+&Q+'Q+(Q+)Q+*R++
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������R+-R+.R+/R+0R+1R+2R+3R+4S+5S+6S+7S+8S+9S+:S+;S+<S+=S+>T+?T+@T+AT+BT+CT+DT+ET+FT+GT+HU+IU+JU+KU+LU+MU+NU+OU+PU+QU+RV+SV+TV+UV+VV+WV+XV+YV+ZV+[V+\W+]W+^W+_W+`W+aW+bW+cW+dW+eW+fX+gX+hX+iX+jX+kX+lX+mX+nX+oX+pY+qY+rY+sY+tY+uY+vY+wY+xY+yY+zZ+{Z+|Z+}Z+~Z+Z+�Z+�Z+�Z+�Z+�[+�[+�[+�[+�[+�[+�[+�[+�[+�[+�\+�\+�\+�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������\+�\+�\+�\+�\+�\+�]+�]+�]+�]+�]+�]+�]+�]+�]+�]+�^+�^+�^+�^+�^+�^+�^+�^+�^+�^+�_+�_+�_+�_+�_+�_+�_+�_+�_+�_+�`+�`+�`+�`+�`+�`+�`+�`+�`+�`+�a+�a+�a+�a+�a+�a+�a+�a+�a+�a+�b+�b+�b+�b+�b+�b+�b+�b+�b+�b+�c+�c+�c+�c+�c+�c+�c+�c+�c+�c+�d+�d+�d+�d+�d+�d+�d+�d+�d+�d+�e+�e+�e+�e+�e+�e+�e+�e+�e+�e+�f+�f+�f+�f+�f+�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������f+�f+�f+�f+�g+�g+�g+�g,g,g,g,g,g,g,h,h,h,	h,
h,h,h,
h,h,h,i,i,i,i,i,i,i,i,i,i,j,j,j,k,k,k, l,!l,"l,#l,$m,%m,&m,'m,(n,)n,*n,+o,,o,-o,.p,/p,0p,1p,2q,3q,4q,5q,6r,7r,8r,9s,:s,;s,<t,=t,>t,?t,@u,Au,Bu,Cu,Dv,Ev,Fv,Gv,Hv,Iv,Jv,Kv,Lv,Mv,Nw,Ow,Pw,Qw,Rw,Sw,Tw,Uw,Vw,Ww,Xx,Yx,Zx,[x,\x,]
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������x,_x,`x,ax,by,cy,dy,ey,fy,gy,hy,iy,jy,ky,lz,mz,nz,oz,pz,qz,rz,sz,tz,uz,v{,w{,x{,y{,z{,{{,|{,}{,~{,{,�|,�|,�|,�|,�|,�|,�|,�|,�|,�|,�},�},�},�},�},�},�},�},�},�},�~,�~,�~,�~,�~,�~,�~,�~,�~,�~,�,�,�,�,�,�,�,�,�,�,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��,��-�-�-�-�-�-�-�-�-�-	�-
�-�-�-
�-�-�-�-�-�-�-�-�-�-�-�-�-�-�-�-�-�-�- �-!�-"�-#�-$�-%�-&�-'�-(�-)
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������-+�-,�--�-.�-/�-0�-1�-2�-3�-4�-5�-6�-7�-8�-9�-:�-;�-<�-=�->�-?�-@�-A�-B�-C�-D�-E�-F�-G�-H�-I�-J�-K�-L�-M�-N�-O�-P�-Q�-R�-S�-T�-U�-V�-W�-X�-Y�-Z�-[�-\�-]�-^�-_�-`�-a�-b�-c�-d�-e�-f�-g�-h�-i�-j�-k�-l�-m�-n�-o�-p�-q�-r�-s�-t�-u�-v�-w�-x�-y�-z�-{�-|�-}�-~�-�-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-��-�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������-��-��-��-��-��-��-��-��-��.�.�.�.�.�.�.�.�.�.	�.
�.�.�.
�.�.�.�.�.�.�.�.�.�.�.�.�.�.�.�.�.�.�. �.!�."�.#�.$�.%�.&�.'�.(�.)�.*�.+�.,�.-�..�./�.0�.1�.2�.3�.4�.5�.6�.7�.8�.9�.:�.;�.<�.=�.>�.?�.@�.A�.B�.C�.D�.E�.F�.G�.H�.I�.J�.K�.L�.M�.N�.O�.P�.Q�.R�.S�.T�.U�.V�.W�.X�.Y�.Z�.[
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������.]�.^�._�.`�.a�.b�.c�.d�.e�.f�.g�.h�.i�.j�.k�.l�.m�.n�.o�.p�.q�.r�.s�.t�.u�.v�.w�.x�.y�.z�.{�.|�.}�.~�.�.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��.��/�/�/�/�/�/�/�/�/�/	�/
�/�/�/
�/�/�/�/�/�/�/�/�/�/�/�/�/�/�/�/�/�/�/ �/!�/"�/#�/$�/%�/&�/'
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������/)�/*�/+�/,�/-�/.�//�/0�/1�/2�/3�/4�/5�/6�/7�/8�/9�/:�/;�/<�/=�/>�/?�/@�/A�/B�/C�/D�/E�/F�/G�/H�/I�/J�/K�/L�/M�/N�/O�/P�/Q�/R�/S�/T�/U�/V�/W�/X�/Y�/Z�/[�/\�/]�/^�/_�/`�/a�/b�/c�/d�/e�/f�/g�/h�/i�/j�/k�/l�/m�/n�/o�/p�/q�/r�/s�/t�/u�/v�/w�/x�/y�/z�/{�/|�/}�/~�/�/��/��/��/��/��/��/��/��/��/��/��/��/��/�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/��/�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������/��/��/��/��/��/��/��/��/��/��/��0�0�0�0�0�0�0�0�0�0	�0
�0�0�0
�0�0�0�0�0�0�0�0�0�0�0�0�0�0�0�0�0�0�0 �0!�0"�0#�0$�0%�0&�0'�0(�0)�0*�0+�0,�0-�0.�0/�00�01�02�03�04�05�06�07�08�09�0:�0;�0<�0=�0>�0?�0@�0A�0B�0C�0D�0E�0F�0G�0H�0I�0J�0K�0L�0M�0N�0O�0P�0Q�0R�0S�0T�0U�0V�0W�0X�0Y
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������0[�0\�0]�0^�0_�0`�0a�0b�0c�0d�0e�0f�0g�0h�0i�0j�0k�0l�0m�0n�0o�0p�0q�0r�0s�0t�0u�0v�0w�0x�0y�0z�0{�0|�0}�0~�0�0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��0��1�1�1�1�1�1�1�1�1�1	�1
�1�1�1
�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1 �1!1"1#1$1%
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������1'1(1)1*1+1,1-1.1/101112131415161718191:1;1<1=1>1?1@1A1B1C1D1E1F1G1H1I1J1K1L1M1N1O1P1Q1R1S1T1U1V1W1X1Y1Z1[1\1]1^1_1`1a1b1c1d1e1f1g1h1i1j1k1l1m1n1o1p1q1r1s1t1u1v1w1x1y1z1{	1|	1}	1~	1	1�	1�	1�	1�	1�	1�
1�
1�
1�
1�
1�
1�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
1�
1�
1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�
1�
1�
1�
1�
1�
1�
1�
1�
1�
1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�1�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������1�1�1�1�1�1�1�1�1�1�1�1�1�2222222222	2
222
2222222222222222222 2!2"2#2$2%2&2'2(2)2*2+2,2-2.2/202122232425262728292:2;2<2=2>2?2@2A2B2C2D2E2F2G2H2I2J2K2L2M2N2O2P2Q2R2S2T2U2V2W
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������2Y2Z2[2\2]2^2_2`2a 2b 2c 2d 2e 2f 2g 2h 2i 2j 2k!2l!2m!2n!2o!2p!2q!2r!2s!2t!2u"2v"2w"2x"2y"2z"2{"2|"2}"2~"2#2�#2�#2�#2�#2�#2�#2�#2�#2�#2�$2�$2�$2�$2�$2�$2�$2�$2�$2�$2�%2�%2�%2�%2�%2�%2�%2�%2�%2�%2�&2�&2�&2�&2�&2�&2�&2�&2�&2�&2�'2�'2�'2�'2�'2�'2�'2�'2�'2�'2�(2�(2�(2�(2�(2�(2�(2�(2�(2�(2�)2�)2�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������)2�)2�)2�)2�)2�)2�)2�*2�*2�*2�*2�*2�*2�*2�*2�*2�*2�+2�+2�+2�+2�+2�+2�+2�+2�+2�+2�,2�,2�,2�,2�,2�,2�,2�,2�,2�,2�-2�-2�-2�-2�-2�-2�-2�-2�-2�-2�.2�.2�.2�.2�.2�.2�.2�.2�.2�.2�/2�/2�/2�/2�/2�/2�/2�/2�/3/30303030303030303	03
031313
13131313131313132323232323232323232333 33!33"33#
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������33%33&33'33(33)43*43+43,43-43.43/43043143243353453553653753853953:53;53<53=63>63?63@63A63B63C63D63E63F63G73H73I73J73K73L73M73N73O73P73Q83R83S83T83U83V83W83X83Y83Z83[93\93]93^93_93`93a93b93c93d93e:3f:3g:3h:3i:3j:3k:3l:3m:3n:3o;3p;3q;3r;3s;3t;3u;3v;3w;3x;3y<3z<3{<3|<3}<3~<3<3�<3�<3�<3�=3�=3�=3�=3�=3�=3�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������=3�=3�=3�>3�>3�>3�>3�>3�>3�>3�>3�>3�>3�?3�?3�?3�?3�?3�?3�?3�?3�?3�?3�@3�@3�@3�@3�@3�@3�@3�@3�@3�@3�A3�A3�A3�A3�A3�A3�A3�A3�A3�A3�B3�B3�B3�B3�B3�B3�B3�B3�B3�B3�C3�C3�C3�C3�C3�C3�C3�C3�C3�C3�D3�D3�D3�D3�D3�D3�D3�D3�D3�D3�E3�E3�E3�E3�E3�E3�E3�E3�E3�E3�F3�F3�F3�F3�F3�F3�F3�F3�F3�F3�G3�G3�G3�G3�G3�G3�G3�G3�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������G3�H3�H3�H3�H3�H3�H3�H3�H3�H3�H3�I3�I3�I3�I3�I4I4I4I4I4I4J4J4J4J4	J4
J4J4J4
J4J4K4K4K4K4K4K4K4K4K4K4L4L4L4L4L4L4L4 L4!L4"L4#M4$M4%M4&M4'M4(M4)M4*M4+M4,M4-N4.N4/N40N41N42N43N44N45N46N47O48O49O4:O4;O4<O4=O4>O4?O4@O4AP4BP4CP4DP4EP4FP4GP4HP4IP4JP4KQ4LQ4MQ4NQ4OQ4PQ4QQ4RQ4SQ4TQ4U
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������R4WR4XR4YR4ZR4[R4\R4]R4^R4_S4`S4aS4bS4cS4dS4eS4fS4gS4hS4iT4jT4kT4lT4mT4nT4oT4pT4qT4rT4sU4tU4uU4vU4wU4xU4yU4zU4{U4|U4}V4~V4V4�V4�V4�V4�V4�V4�V4�V4�W4�W4�W4�W4�W4�W4�W4�W4�W4�W4�X4�X4�X4�X4�X4�X4�X4�X4�X4�X4�Y4�Y4�Y4�Y4�Y4�Y4�Y4�Y4�Y4�Y4�Z4�Z4�Z4�Z4�Z4�Z4�Z4�Z4�Z4�Z4�[4�[4�[4�[4�[4�[4�[4�[4�[4�[4�\4�\4�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������\4�\4�\4�\4�\4�\4�\4�]4�]4�]4�]4�]4�]4�]4�]4�]4�]4�^4�^4�^4�^4�^4�^4�^4�^4�^4�^4�_4�_4�_4�_4�_4�_4�_4�_4�_4�_4�`4�`4�`4�`4�`4�`4�`4�`4�`4�`4�a4�a4�a4�a4�a4�a4�a4�a4�a4�a4�b4�b4�b4�b4�b4�b4�b4�b4�b4�b4�c5c5c5c5c5c5c5c5c5c5	d5
d5d5d5
d5d5d5d5d5d5e5e5e5e5e5e5e5e5e5e5f5f5f5 f5!
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������f5#f5$f5%f5&f5'g5(g5)g5*g5+g5,g5-g5.g5/g50g51h52h53h54h55h56h57h58h59h5:h5;i5<i5=i5>i5?i5@i5Ai5Bi5Ci5Di5Ej5Fj5Gj5Hj5Ij5Jj5Kj5Lj5Mj5Nj5Ok5Pk5Qk5Rk5Sk5Tk5Uk5Vk5Wk5Xk5Yl5Zl5[l5\l5]l5^l5_l5`l5al5bl5cm5dm5em5fm5gm5hm5im5jm5km5lm5mn5nn5on5pn5qn5rn5sn5tn5un5vn5wo5xo5yo5zo5{o5|o5}o5~o5o5�o5�p5�p5�p5�p5�p5�p5�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������p5�p5�p5�q5�q5�q5�q5�q5�q5�q5�q5�q5�q5�r5�r5�r5�r5�r5�r5�r5�r5�r5�r5�s5�s5�s5�s5�s5�s5�s5�s5�s5�s5�t5�t5�t5�t5�t5�t5�t5�t5�t5�t5�u5�u5�u5�u5�u5�u5�u5�u5�u5�u5�v5�v5�v5�v5�v5�v5�v5�v5�v5�v5�w5�w5�w5�w5�w5�w5�w5�w5�w5�w5�x5�x5�x5�x5�x5�x5�x5�x5�x5�x5�y5�y5�y5�y5�y5�y5�y5�y5�y5�y5�z5�z5�z5�z5�z5�z5�z5�z5�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������z5�{5�{5�{5�{5�{5�{5�{5�{5�{5�{5�|5�|5�|5�|5�|5�|5�|6|6|6|6}6}6}6}6}6}6	}6
}6}6}6
~6~6~6~6~6~6~6~6~6~6666666666 6!�6"�6#�6$�6%�6&�6'�6(�6)�6*�6+�6,�6-�6.�6/�60�61�62�63�64�65�66�67�68�69�6:�6;�6<�6=�6>�6?�6@�6A�6B�6C�6D�6E�6F�6G�6H�6I�6J�6K�6L�6M�6N�6O�6P�6Q�6R�6S
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������6U�6V�6W�6X�6Y�6Z�6[�6\�6]�6^�6_�6`�6a�6b�6c�6d�6e�6f�6g�6h�6i�6j�6k�6l�6m�6n�6o�6p�6q�6r�6s�6t�6u�6v�6w�6x�6y�6z�6{�6|�6}�6~�6�6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��6��7�7�7�7�7�7�7�7�7�7	�7
�7�7�7
�7�7�7�7�7�7�7�7�7�7�7�7�7�7�7�7�7�7
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������7!�7"�7#�7$�7%�7&�7'�7(�7)�7*�7+�7,�7-�7.�7/�70�71�72�73�74�75�76�77�78�79�7:�7;�7<�7=�7>�7?�7@�7A�7B�7C�7D�7E�7F�7G�7H�7I�7J�7K�7L�7M�7N�7O�7P�7Q�7R�7S�7T�7U�7V�7W�7X�7Y�7Z�7[�7\�7]�7^�7_�7`�7a�7b�7c�7d�7e�7f�7g�7h�7i�7j�7k�7l�7m�7n�7o�7p�7q�7r�7s�7t�7u�7v�7w�7x�7y�7z�7{�7|�7}�7~�7�7��7��7��7��7��7�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��7��8�8�8�8�8�8�8�8�8�8	�8
�8�8�8
�8�8�8�8�8�8�8�8�8�8�8�8�8�8�8�8�8�8�8 �8!�8"�8#�8$�8%�8&�8'�8(�8)�8*�8+�8,�8-�8.�8/�80�81�82�83�84�85�86�87�88�89�8:�8;�8<�8=�8>�8?�8@�8A�8B�8C�8D�8E�8F�8G�8H�8I�8J�8K�8L�8M�8N�8O�8P�8Q
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������8S�8T�8U�8V�8W�8X�8Y�8Z�8[�8\�8]�8^�8_�8`�8a�8b�8c�8d�8e�8f�8g�8h�8i�8j�8k�8l�8m�8n�8o�8p�8q�8r�8s�8t�8u�8v�8w�8x�8y�8z�8{�8|�8}�8~�8�8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��8��9�9�9�9�9�9�9�9�9�9	�9
�9�9�9
�9�9�9�9�9�9�9�9�9�9�9�9�9�9�9�9
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������9�9 �9!�9"�9#�9$�9%�9&�9'�9(�9)�9*�9+�9,�9-�9.�9/�90�91�92�93�94�95�96�97�98�99�9:�9;�9<�9=�9>�9?�9@�9A�9B�9C�9D�9E�9F�9G�9H�9I�9J�9K�9L�9M�9N�9O�9P�9Q�9R�9S�9T�9U�9V�9W�9X�9Y�9Z�9[�9\�9]�9^�9_�9`�9a�9b�9c�9d�9e�9f�9g�9h�9i�9j�9k�9l�9m�9n�9o�9p�9q�9r�9s�9t�9u�9v�9w�9x�9y�9z�9{�9|�9}�9~�9�9��9��9��9�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��9��:�:�:�:�:�:�:�:�:�:	�:
�:�:�:
�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�: �:!�:"�:#�:$�:%�:&�:'�:(�:)�:*�:+�:,�:-�:.�:/�:0�:1�:2�:3�:4�:5�:6�:7�:8�:9�::�:;�:<�:=�:>�:?�:@�:A�:B�:C�:D�:E�:F�:G�:H�:I�:J�:K�:L�:M�:N�:O
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������:Q�:R�:S�:T�:U�:V�:W�:X�:Y�:Z�:[�:\�:]�:^�:_�:`�:a�:b�:c�:d�:e�:f�:g�:h�:i�:j�:k�:l�:m�:n�:o�:p�:q�:r�:s�:t�:u�:v�:w�:x�:y�:z�:{�:|�:}�:~�:�:��:��:��:��:��:��:��:��:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�:�	:�	:�	:�	:�	:�	:�	:�	:�	:�	:�
:�
:�
:�
:�
:�
:�
:�
:�
:�
:�:�:�:�:�:�:�:�:�:�;;;;;;;;;;	;

;
;
;

;
;
;
;
;
;
;;;;;;;;
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������;;;; ;!;";#;$;%;&;';(;);*;+;,;-;.;/;0;1;2;3;4;5;6;7;8;9;:;;;<;=;>;?;@;A;B;C;D;E;F;G;H;I;J;K;L;M;N;O;P;Q;R;S;T;U;V;W;X;Y;Z;[;\;];^;_;`;a;b;c;d;e;f;g;h;i;j;k;l;m;n;o;p;q;r;s;t;u;v;w;x;y;z;{;|;};~;;�;�H�K���������$0<HT`lx����������� ,8DP\ht�����������(4@LXdp|����������KH;�KJ#;�KK-<NKL7<�KMA=KNK=�KOV=�KP`>LKQj>�KRt?KS~?~KT�?�KU�@JKV�@�KW�AKX�A|KY�A�KZ�BHK[�B�K\�CK]�CzK^�C�K_�DFK`D�KaEKbExKc$E�Kd.FDKe8F�KfCGKgMGvKhWG�KiaHBKjkH�KkvIKl�ItKm�I�Kn�J@Ko�J�Kp�KKq�KrKr�K�Ks�L>Kt�L�Ku�M
Kv�MpKw�M�Kx�N<KyN�KzOK{OnK|#O�K}-P:K~7P�KBQK�LQlK�VQ�K�`R8K�jR�K�uSK�SjK��S�K��T6K��T�K��UK��UhK��U�K��V4K��V�K��WK��WfK��W�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;�;� ;� ;� ;� ;� ;� ;� ;� ;� ;� ;�!;�!;�!;�!;�!;�!;�!;�!;�!;�!;�";�";�";�";�";�";�";�";�";�";�#;�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������#;�#;�#;�#;�#;�#;�#;�#;�$;�$;�$;�$;�$;�$;�$;�$;�$;�$;�%;�%;�%;�%;�%;�%<%<%<%<%<&<&<&<&<&<	&<
&<&<&<
&<'<'<'<'<'<'<'<'<'<'<(<(<(<(<(<(<(<(< (<!(<")<#)<$)<%)<&)<')<()<))<*)<+)<,*<-*<.*</*<0*<1*<2*<3*<4*<5*<6+<7+<8+<9+<:+<;+<<+<=+<>+<?+<@,<A,<B,<C,<D,<E,<F,<G,<H,<I,<J-<K-<L-<M
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������-<O-<P-<Q-<R-<S-<T.<U.<V.<W.<X.<Y.<Z.<[.<\.<].<^/<_/<`/<a/<b/<c/<d/<e/<f/<g/<h0<i0<j0<k0<l0<m0<n0<o0<p0<q0<r1<s1<t1<u1<v1<w1<x1<y1<z1<{1<|2<}2<~2<2<�2<�2<�2<�2<�2<�2<�3<�3<�3<�3<�3<�3<�3<�3<�3<�3<�4<�4<�4<�4<�4<�4<�4<�4<�4<�4<�5<�5<�5<�5<�5<�5<�5<�5<�5<�5<�6<�6<�6<�6<�6<�6<�6<�6<�6<�6<�7<�7<�7<�7<�7<�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������7<�7<�7<�7<�8<�8<�8<�8<�8<�8<�8<�8<�8<�8<�9<�9<�9<�9<�9<�9<�9<�9<�9<�9<�:<�:<�:<�:<�:<�:<�:<�:<�:<�:<�;<�;<�;<�;<�;<�;<�;<�;<�;<�;<�<<�<<�<<�<<�<<�<<�<<�<<�<<�<<�=<�=<�=<�=<�=<�=<�=<�=<�=<�=<�><�><�><�><�><�><�><�><�><�><�?<�?=?=?=?=?=?=?=?=?=@=	@=
@=@=@=
@=@=@=@=@=A=A=A=A=A=A=A=
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������A=A=B=B=B=B= B=!B="B=#B=$B=%B=&C='C=(C=)C=*C=+C=,C=-C=.C=/C=0D=1D=2D=3D=4D=5D=6D=7D=8D=9D=:E=;E=<E==E=>E=?E=@E=AE=BE=CE=DF=EF=FF=GF=HF=IF=JF=KF=LF=MF=NG=OG=PG=QG=RG=SG=TG=UG=VG=WG=XH=YH=ZH=[H=\H=]H=^H=_H=`H=aH=bI=cI=dI=eI=fI=gI=hI=iI=jI=kI=lJ=mJ=nJ=oJ=pJ=qJ=rJ=sJ=tJ=uJ=vK=wK=xK=yK=zK={K=|K=}K=~K=
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������L=�L=�L=�L=�L=�L=�L=�L=�L=�L=�M=�M=�M=�M=�M=�M=�M=�M=�M=�M=�N=�N=�N=�N=�N=�N=�N=�N=�N=�N=�O=�O=�O=�O=�O=�O=�O=�O=�O=�O=�P=�P=�P=�P=�P=�P=�P=�P=�P=�P=�Q=�Q=�Q=�Q=�Q=�Q=�Q=�Q=�Q=�Q=�R=�R=�R=�R=�R=�R=�R=�R=�R=�R=�S=�S=�S=�S=�S=�S=�S=�S=�S=�S=�T=�T=�T=�T=�T=�T=�T=�T=�T=�T=�U=�U=�U=�U=�U=�U=�U=�U=�U=�U=�V=�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������V=�V=�V=�V=�V=�V=�V=�V=�W=�W=�W=�W=�W=�W=�W=�W=�W=�W=�X=�X=�X=�X=�X=�X=�X=�X>X>X>Y>Y>Y>Y>Y>Y>Y>	Y>
Y>Y>Z>
Z>Z>Z>Z>Z>Z>Z>Z>Z>[>[>[>[>[>[>[>[>[>[> \>!\>"\>#\>$\>%\>&\>'\>(\>)\>*]>+]>,]>-]>.]>/]>0]>1]>2]>3]>4^>5^>6^>7^>8^>9^>:^>;^><^>=^>>_>?_>@_>A_>B_>C_>D_>E_>F_>G_>H`>I`>J`>K
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������`>M`>N`>O`>P`>Q`>Ra>Sa>Ta>Ua>Va>Wa>Xa>Ya>Za>[a>\b>]b>^b>_b>`b>ab>bb>cb>db>eb>fc>gc>hc>ic>jc>kc>lc>mc>nc>oc>pd>qd>rd>sd>td>ud>vd>wd>xd>yd>ze>{e>|e>}e>~e>e>�e>�e>�e>�e>�f>�f>�f>�f>�f>�f>�f>�f>�f>�f>�g>�g>�g>�g>�g>�g>�g>�g>�g>�g>�h>�h>�h>�h>�h>�h>�h>�h>�h>�h>�i>�i>�i>�i>�i>�i>�i>�i>�i>�i>�j>�j>�j>�j>�j>�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������j>�j>�j>�j>�k>�k>�k>�k>�k>�k>�k>�k>�k>�k>�l>�l>�l>�l>�l>�l>�l>�l>�l>�l>�m>�m>�m>�m>�m>�m>�m>�m>�m>�m>�n>�n>�n>�n>�n>�n>�n>�n>�n>�n>�o>�o>�o>�o>�o>�o>�o>�o>�o>�o>�p>�p>�p>�p>�p>�p>�p>�p>�p>�p>�q>�q>�q>�q>�q>�q>�q>�q>�q>�q>�r>�r>�r>�r?r?r?r?r?r?r?s?s?s?	s?
s?s?s?
s?s?s?t?t?t?t?t?t?t?
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������t?t?u?u?u?u?u?u? u?!u?"u?#u?$v?%v?&v?'v?(v?)v?*v?+v?,v?-v?.w?/w?0w?1w?2w?3w?4w?5w?6w?7w?8x?9x?:x?;x?<x?=x?>x??x?@x?Ax?By?Cy?Dy?Ey?Fy?Gy?Hy?Iy?Jy?Ky?Lz?Mz?Nz?Oz?Pz?Qz?Rz?Sz?Tz?Uz?V{?W{?X{?Y{?Z{?[{?\{?]{?^{?_{?`|?a|?b|?c|?d|?e|?f|?g|?h|?i|?j}?k}?l}?m}?n}?o}?p}?q}?r}?s}?t~?u~?v~?w~?x~?y~?z~?{~?|~?}
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������??�?�?�?�?�?�?�?�?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��?��@�@�@�@�@�@�@�@�@�@	�@
�@�@�@
�@�@�@�@�@�@�@�@�@�@�@�@�@�@�@�@�@�@�@ �@!�@"�@#�@$�@%�@&�@'�@(�@)�@*�@+�@,�@-�@.�@/�@0�@1�@2�@3�@4�@5�@6�@7�@8�@9�@:�@;�@<�@=�@>�@?�@@�@A�@B�@C�@D�@E�@F�@G�@H�@I
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������@K�@L�@M�@N�@O�@P�@Q�@R�@S�@T�@U�@V�@W�@X�@Y�@Z�@[�@\�@]�@^�@_�@`�@a�@b�@c�@d�@e�@f�@g�@h�@i�@j�@k�@l�@m�@n�@o�@p�@q�@r�@s�@t�@u�@v�@w�@x�@y�@z�@{�@|�@}�@~�@�@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��@��A�A�A�A�A�A�A�A�A�A	�A
�A�A�A
�A�A�A�A�A�A�A�A
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������A�A�A�A�A�A�A�A�A�A �A!�A"�A#�A$�A%�A&�A'�A(�A)�A*�A+�A,�A-�A.�A/�A0�A1�A2�A3�A4�A5�A6�A7�A8�A9�A:�A;�A<�A=�A>�A?�A@�AA�AB�AC�AD�AE�AF�AG�AH�AI�AJ�AK�AL�AM�AN�AO�AP�AQ�AR�AS�AT�AU�AV�AW�AX�AY�AZ�A[�A\�A]�A^�A_�A`�Aa�Ab�Ac�Ad�Ae�Af�Ag�Ah�Ai�Aj�Ak�Al�Am�An�Ao�Ap�Aq�Ar�As�At�Au�Av�Aw�Ax�Ay�Az�A{
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������A}�A~�A�A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��A��B�B�B�B�B�B�B�B�B�B	�B
�B�B�B
�B�B�B�B�B�B�B�B�B�B�B�B�B�B�B�B�B�B�B �B!�B"�B#�B$�B%�B&�B'�B(�B)�B*�B+�B,�B-�B.�B/�B0�B1�B2�B3�B4�B5�B6�B7�B8�B9�B:�B;�B<�B=�B>�B?�B@�BA�BB�BC�BD�BE�BF�BG
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������BI�BJ�BK�BL�BM�BN�BO�BP�BQ�BR�BS�BT�BU�BV�BW�BX�BY�BZ�B[�B\�B]�B^�B_�B`�Ba�Bb�Bc�Bd�Be�Bf�Bg�Bh�Bi�Bj�Bk�Bl�Bm�Bn�Bo�Bp�Bq�Br�Bs�Bt�Bu�Bv�Bw�Bx�By�Bz�B{�B|�B}�B~�B�B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��B��C�C�C�C�C�C�C�C�C�C	�C
�C�C�C
�C�C�C�C�C�C
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������C�C�C�C�C�C�C�C�C�C�C�C �C!�C"�C#�C$�C%�C&�C'�C(�C)�C*�C+�C,�C-�C.�C/�C0�C1�C2�C3�C4�C5�C6�C7�C8�C9�C:�C;�C<�C=�C>�C?�C@�CA�CB�CC�CD�CE�CF�CG�CH�CI�CJ�CK�CL�CM�CN�CO�CP�CQ�CR�CS�CT�CU�CV�CW�CX�CY�CZ�C[�C\�C]�C^�C_�C`�Ca�Cb�Cc�Cd�Ce�Cf�Cg�Ch�Ci�Cj�Ck�Cl�Cm�Cn�Co�Cp�Cq�Cr�Cs�Ct�Cu�Cv�Cw�Cx�Cy
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������C{�C|�C}�C~�C�C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��C��D�D�D�D�D�D�D�D�D�D	�D
�D�D�D
�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D �D!�D"�D#�D$�D%�D&�D'�D(�D)�D*�D+�D,�D-�D.�D/�D0�D1�D2�D3�D4�D5�D6�D7�D8�D9�D:�D;�D<�D=�D>�D?�D@�DA�DB�DC�DD�DE
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������DG�DH�DI�DJ�DK�DL�DM�DN�DO�DP�DQ�DR�DS�DT�DU�DV�DW�DX�DY�DZ�D[�D\�D]�D^�D_�D`�Da�Db�Dc�Dd�De�Df�Dg�Dh�Di�Dj�Dk�Dl�Dm�Dn�Do�DpDqDrDsDtDuDvDwDxDyDzD{D|D}D~DD�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�	D�	D�	D�	D�	D�	D�	D�	D�	D�	D�
D�
D�
D�
D�
D�
D�
D�
D�
D�
D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�D�
D�
D�
D�
D�
D�
D�
D�
D�
D�
D�D�D�D�EEEEEEEEEE	E
EEE
EEEE
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������EEEEEEEEEEEEEE E!E"E#E$E%E&E'E(E)E*E+E,E-E.E/E0E1E2E3E4E5E6E7E8E9E:E;E<E=E>E?E@EAEBECEDEEEFEGEHEIEJEKELEMENEOEPEQERESETEUEVEWEXEYEZE[E\E]E^E_E`EaEbEcEdEeEfEgEhEiEjEkElEmEnEoEpEqErEsEtEuEvEw
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������EyEzE{E|E}E~EE�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E�E� E� E� E� E� E� E� E� E� E� E�!E�!E�!E�!E�!E�!E�!E�!E�!E�!E�"E�"E�"E�"E�"E�"E�"E�"E�"E�"E�#E�#E�#E�#E�#E�#E�#E�#E�#E�#E�$E�$E�$E�$E�$E�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������$E�$E�$E�$E�%E�%E�%E�%E�%E�%E�%E�%E�%E�%E�&E�&E�&E�&E�&E�&E�&E�&E�&E�&E�'E�'E�'E�'E�'E�'E�'E�'E�'E�'F(F(F(F(F(F(F(F(F(F	(F
)F)F)F
)F)F)F)F)F)F)F*F*F*F*F*F*F*F*F*F*F+F+F +F!+F"+F#+F$+F%+F&+F'+F(,F),F*,F+,F,,F-,F.,F/,F0,F1,F2-F3-F4-F5-F6-F7-F8-F9-F:-F;-F<.F=.F>.F?.F@.FA.FB.FC
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������.FE.FF/FG/FH/FI/FJ/FK/FL/FM/FN/FO/FP0FQ0FR0FS0FT0FU0FV0FW0FX0FY0FZ1F[1F\1F]1F^1F_1F`1Fa1Fb1Fc1Fd2Fe2Ff2Fg2Fh2Fi2Fj2Fk2Fl2Fm2Fn3Fo3Fp3Fq3Fr3Fs3Ft3Fu3Fv3Fw3Fx4Fy4Fz4F{4F|4F}4F~4F4F�4F�4F�5F�5F�5F�5F�5F�5F�5F�5F�5F�5F�6F�6F�6F�6F�6F�6F�6F�6F�6F�6F�7F�7F�7F�7F�7F�7F�7F�7F�7F�7F�8F�8F�8F�8F�8F�8F�8F�8F�8F�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������9F�9F�9F�9F�9F�9F�9F�9F�9F�9F�:F�:F�:F�:F�:F�:F�:F�:F�:F�:F�;F�;F�;F�;F�;F�;F�;F�;F�;F�;F�<F�<F�<F�<F�<F�<F�<F�<F�<F�<F�=F�=F�=F�=F�=F�=F�=F�=F�=F�=F�>F�>F�>F�>F�>F�>F�>F�>F�>F�>F�?F�?F�?F�?F�?F�?F�?F�?F�?F�?F�@F�@F�@F�@F�@F�@F�@F�@F�@F�@F�AF�AF�AF�AF�AF�AGAGAGAGAGBGBGBGBGBG	BG
BGBGBG
BGCG
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������CGCGCGCGCGCGCGCGDGDGDGDGDGDGDGDG DG!DG"EG#EG$EG%EG&EG'EG(EG)EG*EG+EG,FG-FG.FG/FG0FG1FG2FG3FG4FG5FG6GG7GG8GG9GG:GG;GG<GG=GG>GG?GG@HGAHGBHGCHGDHGEHGFHGGHGHHGIHGJIGKIGLIGMIGNIGOIGPIGQIGRIGSIGTJGUJGVJGWJGXJGYJGZJG[JG\JG]JG^KG_KG`KGaKGbKGcKGdKGeKGfKGgKGhLGiLGjLGkLGlLGmLGnLGoLGpLGqLGrMGsMGtMGu
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������MGwMGxMGyMGzMG{MG|NG}NG~NGNG�NG�NG�NG�NG�NG�NG�OG�OG�OG�OG�OG�OG�OG�OG�OG�OG�PG�PG�PG�PG�PG�PG�PG�PG�PG�PG�QG�QG�QG�QG�QG�QG�QG�QG�QG�QG�RG�RG�RG�RG�RG�RG�RG�RG�RG�RG�SG�SG�SG�SG�SG�SG�SG�SG�SG�SG�TG�TG�TG�TG�TG�TG�TG�TG�TG�TG�UG�UG�UG�UG�UG�UG�UG�UG�UG�UG�VG�VG�VG�VG�VG�VG�VG�VG�VG�VG�WG�WG�WG�WG�WG�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������WG�WG�WG�WG�XG�XG�XG�XG�XG�XG�XG�XG�XG�XG�YG�YG�YG�YG�YG�YG�YG�YG�YG�YG�ZG�ZG�ZG�ZG�ZG�ZG�ZG�ZG�ZG�ZG�[G�[H[H[H[H[H[H[H[H[H\H	\H
\H\H\H
\H\H\H\H\H]H]H]H]H]H]H]H]H]H]H^H^H^H^H ^H!^H"^H#^H$^H%^H&_H'_H(_H)_H*_H+_H,_H-_H._H/_H0`H1`H2`H3`H4`H5`H6`H7`H8`H9`H:aH;aH<aH=aH>aH?aH@aHA
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������aHCaHDbHEbHFbHGbHHbHIbHJbHKbHLbHMbHNcHOcHPcHQcHRcHScHTcHUcHVcHWcHXdHYdHZdH[dH\dH]dH^dH_dH`dHadHbeHceHdeHeeHfeHgeHheHieHjeHkeHlfHmfHnfHofHpfHqfHrfHsfHtfHufHvgHwgHxgHygHzgH{gH|gH}gH~gHgH�hH�hH�hH�hH�hH�hH�hH�hH�hH�hH�iH�iH�iH�iH�iH�iH�iH�iH�iH�iH�jH�jH�jH�jH�jH�jH�jH�jH�jH�jH�kH�kH�kH�kH�kH�kH�kH�kH�kH�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������lH�lH�lH�lH�lH�lH�lH�lH�lH�lH�mH�mH�mH�mH�mH�mH�mH�mH�mH�mH�nH�nH�nH�nH�nH�nH�nH�nH�nH�nH�oH�oH�oH�oH�oH�oH�oH�oH�oH�oH�pH�pH�pH�pH�pH�pH�pH�pH�pH�pH�qH�qH�qH�qH�qH�qH�qH�qH�qH�qH�rH�rH�rH�rH�rH�rH�rH�rH�rH�rH�sH�sH�sH�sH�sH�sH�sH�sH�sH�sH�tH�tH�tH�tH�tH�tH�tH�tItItIuIuIuIuIuIuIuI	uI
uIuIvI
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������vIvIvIvIvIvIvIvIwIwIwIwIwIwIwIwIwIwI xI!xI"xI#xI$xI%xI&xI'xI(xI)xI*yI+yI,yI-yI.yI/yI0yI1yI2yI3yI4zI5zI6zI7zI8zI9zI:zI;zI<zI=zI>{I?{I@{IA{IB{IC{ID{IE{IF{IG{IH|II|IJ|IK|IL|IM|IN|IO|IP|IQ|IR}IS}IT}IU}IV}IW}IX}IY}IZ}I[}I\~I]~I^~I_~I`~Ia~Ib~Ic~Id~Ie~IfIgIhIiIjIkIlImInIoIp�Iq�Ir�Is
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������Iu�Iv�Iw�Ix�Iy�Iz�I{�I|�I}�I~�I�I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��I��J�J�J�J�J�J�J�J�J�J	�J
�J�J�J
�J�J�J�J�J�J�J�J�J�J�J�J�J�J�J�J�J�J�J �J!�J"�J#�J$�J%�J&�J'�J(�J)�J*�J+�J,�J-�J.�J/�J0�J1�J2�J3�J4�J5�J6�J7�J8�J9�J:�J;�J<�J=�J>�J?
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������JA�JB�JC�JD�JE�JF�JG�JH�JI�JJ�JK�JL�JM�JN�JO�JP�JQ�JR�JS�JT�JU�JV�JW�JX�JY�JZ�J[�J\�J]�J^�J_�J`�Ja�Jb�Jc�Jd�Je�Jf�Jg�Jh�Ji�Jj�Jk�Jl�Jm�Jn�Jo�Jp�Jq�Jr�Js�Jt�Ju�Jv�Jw�Jx�Jy�Jz�J{�J|�J}�J~�J�J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��J��K�K�K�K�K�K�K�K�K�K	�K
�K
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������K
�K�K�K�K�K�K�K�K�K�K�K�K�K�K�K�K�K�K�K �K!�K"�K#�K$�K%�K&�K'�K(�K)�K*�K+�K,�K-�K.�K/�K0�K1�K2�K3�K4�K5�K6�K7�K8�K9�K:�K;�K<�K=�K>�K?�K@�KA�KB�KC�KD�KE�KF�KG�KH�KI�KJ�KK�KL�KM�KN�KO�KP�KQ�KR�KS�KT�KU�KV�KW�KX�KY�KZ�K[�K\�K]�K^�K_�K`�Ka�Kb�Kc�Kd�Ke�Kf�Kg�Kh�Ki�Kj�Kk�Kl�Km�Kn�Ko�Kp�Kq
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������Ks�Kt�Ku�Kv�Kw�Kx�Ky�Kz�K{�K|�K}�K~�K�K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��K��L�L�L�L�L�L�L�L�L�L	�L
�L�L�L
�L�L�L�L�L�L�L�L�L�L�L�L�L�L�L�L�L�L�L �L!�L"�L#�L$�L%�L&�L'�L(�L)�L*�L+�L,�L-�L.�L/�L0�L1�L2�L3�L4�L5�L6�L7�L8�L9�L:�L;�L<�L=
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������L?�L@�LA�LB�LC�LD�LE�LF�LG�LH�LI�LJ�LK�LL�LM�LN�LO�LP�LQ�LR�LS�LT�LU�LV�LW�LX�LY�LZ�L[�L\�L]�L^�L_�L`�La�Lb�Lc�Ld�Le�Lf�Lg�Lh�Li�Lj�Lk�Ll�Lm�Ln�Lo�Lp�Lq�Lr�Ls�Lt�Lu�Lv�Lw�Lx�Ly�Lz�L{�L|�L}�L~�L�L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��L��M�M�M�M�M�M�M�M�M�M	
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������M�M�M
�M�M�M�M�M�M�M�M�M�M�M�M�M�M�M�M�M�M�M �M!�M"�M#�M$�M%�M&�M'�M(�M)�M*�M+�M,�M-�M.�M/�M0�M1�M2�M3�M4�M5�M6�M7�M8�M9�M:�M;�M<�M=�M>�M?�M@�MA�MB�MC�MD�ME�MF�MG�MH�MI�MJ�MK�ML�MM�MN�MO�MP�MQ�MR�MS�MT�MU�MV�MW�MX�MY�MZ�M[�M\�M]�M^�M_�M`�Ma�Mb�Mc�Md�Me�Mf�Mg�Mh�Mi�Mj�Mk�Ml�Mm�Mn�Mo
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������Mq�Mr�Ms�Mt�Mu�Mv�Mw�Mx�My�Mz�M{�M|�M}�M~�M�M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��M��N�N�N�N�N�N�N�N�N�N	�N
�N�N�N
�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N �N!�N"�N#�N$�N%�N&�N'�N(�N)�N*�N+�N,�N-�N.�N/�N0�N1�N2�N3�N4�N5�N6�N7�N8�N9�N:�N;
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������N=�N>�N?�N@�NA�NB�NC�ND�NE�NF�NG�NH�NI�NJ�NK�NL�NM�NN�NO�NP�NQ�NR�NS�NT�NU�NV�NW�NX�NY�NZ�N[�N\�N]�N^�N_�N`�Na�Nb�Nc�Nd�Ne�Nf�Ng�Nh�Ni�Nj�Nk�Nl�Nm�Nn�No�NpNqNrNsNtNuNvNwNxNyNzN{N|N}N~NN�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�	N�	N�	N�	N�	N�	N�	N�	N�	N�	N�
N�
N�
N�
N�
N�
N�
N�
N�
N�
N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�N�
N�
N�
N�
N�
N�
N�
N�
N�
N�
N�N�N�N�OOOOOOOO
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������O	O
OOO
OOOOOOOOOOOOOOOOOOO O!O"O#O$O%O&O'O(O)O*O+O,O-O.O/O0O1O2O3O4O5O6O7O8O9O:O;O<O=O>O?O@OAOBOCODOEOFOGOHOIOJOKOLOMONOOOPOQOROSOTOUOVOWOXOYOZO[O\O]O^O_O`OaObOcOdOeOfOgOhOiOjOkOlOm
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������OoOpOqOrOsOtOuOvOwOxOyOzO{O|O}O~OO�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O�O� O� O� O� O� O� O� O� O� O� O�!O�!O�!O�!O�!O�!O�!O�!O�!O�!O�"O�"O�"O�"O�"O�"O�"O�"O�"O�"O�#O�#O�#O�#O�#O�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������#O�#O�#O�#O�$O�$O�$O�$O�$O�$O�$O�$O�$O�$O�%O�%O�%O�%O�%O�%O�%O�%O�%O�%O�&O�&O�&O�&O�&O�&O�&O�&O�&O�&O�'O�'O�'O�'O�'O�'O�'O�'O�'O�'P(P(P(P(P(P(P(P(P(P	(P
)P)P)P
)P)P)P)P)P)P)P*P*P*P*P*P*P*P*P*P*P+P+P +P!+P"+P#+P$+P%+P&+P'+P(,P),P*,P+,P,,P-,P.,P/,P0,P1,P2-P3-P4-P5-P6-P7-P8-P9
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������-P;-P<.P=.P>.P?.P@.PA.PB.PC.PD.PE.PF/PG/PH/PI/PJ/PK/PL/PM/PN/PO/PP0PQ0PR0PS0PT0PU0PV0PW0PX0PY0PZ1P[1P\1P]1P^1P_1P`1Pa1Pb1Pc1Pd2Pe2Pf2Pg2Ph2Pi2Pj2Pk2Pl2Pm2Pn3Po3Pp3Pq3Pr3Ps3Pt3Pu3Pv3Pw3Px4Py4Pz4P{4P|4P}4P~4P4P�4P�4P�5P�5P�5P�5P�5P�5P�5P�5P�5P�5P�6P�6P�6P�6P�6P�6P�6P�6P�6P�6P�7P�7P�7P�7P�7P�7P�7P�7P�7P�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������8P�8P�8P�8P�8P�8P�8P�8P�8P�8P�9P�9P�9P�9P�9P�9P�9P�9P�9P�9P�:P�:P�:P�:P�:P�:P�:P�:P�:P�:P�;P�;P�;P�;P�;P�;P�;P�;P�;P�;P�<P�<P�<P�<P�<P�<P�<P�<P�<P�<P�=P�=P�=P�=P�=P�=P�=P�=P�=P�=P�>P�>P�>P�>P�>P�>P�>P�>P�>P�>P�?P�?P�?P�?P�?P�?P�?P�?P�?P�?P�@P�@P�@P�@P�@P�@P�@P�@P�@P�@P�AP�AP�AP�AP�AP�AQAQAQAQAQBQ
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������BQBQBQ	BQ
BQBQBQ
BQCQCQCQCQCQCQCQCQCQCQDQDQDQDQDQDQDQDQ DQ!DQ"EQ#EQ$EQ%EQ&EQ'EQ(EQ)EQ*EQ+EQ,FQ-FQ.FQ/FQ0FQ1FQ2FQ3FQ4FQ5FQ6GQ7GQ8GQ9GQ:GQ;GQ<GQ=GQ>GQ?GQ@HQAHQBHQCHQDHQEHQFHQGHQHHQIHQJIQKIQLIQMIQNIQOIQPIQQIQRIQSIQTJQUJQVJQWJQXJQYJQZJQ[JQ\JQ]JQ^KQ_KQ`KQaKQbKQcKQdKQeKQfKQgKQhLQiLQjLQk
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������LQmLQnLQoLQpLQqLQrMQsMQtMQuMQvMQwMQxMQyMQzMQ{MQ|NQ}NQ~NQNQ�NQ�NQ�NQ�NQ�NQ�NQ�OQ�OQ�OQ�OQ�OQ�OQ�OQ�OQ�OQ�OQ�PQ�PQ�PQ�PQ�PQ�PQ�PQ�PQ�PQ�PQ�QQ�QQ�QQ�QQ�QQ�QQ�QQ�QQ�QQ�QQ�RQ�RQ�RQ�RQ�RQ�RQ�RQ�RQ�RQ�RQ�SQ�SQ�SQ�SQ�SQ�SQ�SQ�SQ�SQ�SQ�TQ�TQ�TQ�TQ�TQ�TQ�TQ�TQ�TQ�TQ�UQ�UQ�UQ�UQ�UQ�UQ�UQ�UQ�UQ�UQ�VQ�VQ�VQ�VQ�VQ�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������VQ�VQ�VQ�VQ�WQ�WQ�WQ�WQ�WQ�WQ�WQ�WQ�WQ�WQ�XQ�XQ�XQ�XQ�XQ�XQ�XQ�XQ�XQ�XQ�YQ�YQ�YQ�YQ�YQ�YQ�YQ�YQ�YQ�YQ�ZQ�ZQ�ZQ�ZQ�ZQ�ZQ�ZQ�ZQ�ZQ�ZQ�[Q�[R[R[R[R[R[R[R[R[R\R	\R
\R\R\R
\R\R\R\R\R]R]R]R]R]R]R]R]R]R]R^R^R^R^R ^R!^R"^R#^R$^R%^R&_R'_R(_R)_R*_R+_R,_R-_R._R/_R0`R1`R2`R3`R4`R5`R6`R7
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������`R9`R:aR;aR<aR=aR>aR?aR@aRAaRBaRCaRDbREbRFbRGbRHbRIbRJbRKbRLbRMbRNcROcRPcRQcRRcRScRTcRUcRVcRWcRXdRYdRZdR[dR\dR]dR^dR_dR`dRadRbeRceRdeReeRfeRgeRheRieRjeRkeRlfRmfRnfRofRpfRqfRrfRsfRtfRufRvgRwgRxgRygRzgR{gR|gR}gR~gRgR�hR�hR�hR�hR�hR�hR�hR�hR�hR�hR�iR�iR�iR�iR�iR�iR�iR�iR�iR�iR�jR�jR�jR�jR�jR�jR�jR�jR�jR�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������kR�kR�kR�kR�kR�kR�kR�kR�kR�kR�lR�lR�lR�lR�lR�lR�lR�lR�lR�lR�mR�mR�mR�mR�mR�mR�mR�mR�mR�mR�nR�nR�nR�nR�nR�nR�nR�nR�nR�nR�oR�oR�oR�oR�oR�oR�oR�oR�oR�oR�pR�pR�pR�pR�pR�pR�pR�pR�pR�pR�qR�qR�qR�qR�qR�qR�qR�qR�qR�qR�rR�rR�rR�rR�rR�rR�rR�rR�rR�rR�sR�sR�sR�sR�sR�sR�sR�sR�sR�sR�tR�tR�tR�tR�tR�tR�tR�tStStSuS
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������uSuSuSuSuS	uS
uSuSvS
vSvSvSvSvSvSvSvSvSwSwSwSwSwSwSwSwSwSwS xS!xS"xS#xS$xS%xS&xS'xS(xS)xS*yS+yS,yS-yS.yS/yS0yS1yS2yS3yS4zS5zS6zS7zS8zS9zS:zS;zS<zS=zS>{S?{S@{SA{SB{SC{SD{SE{SF{SG{SH|SI|SJ|SK|SL|SM|SN|SO|SP|SQ|SR}SS}ST}SU}SV}SW}SX}SY}SZ}S[}S\~S]~S^~S_~S`~Sa~Sb~Sc~Sd~Se~SfSgShSi
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������SkSlSmSnSoSp�Sq�Sr�Ss�St�Su�Sv�Sw�Sx�Sy�Sz�S{�S|�S}�S~�S�S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��S��T�T�T�T�T�T�T�T�T�T	�T
�T�T�T
�T�T�T�T�T�T�T�T�T�T�T�T�T�T�T�T�T�T�T �T!�T"�T#�T$�T%�T&�T'�T(�T)�T*�T+�T,�T-�T.�T/�T0�T1�T2�T3�T4�T5
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������T7�T8�T9�T:�T;�T<�T=�T>�T?�T@�TA�TB�TC�TD�TE�TF�TG�TH�TI�TJ�TK�TL�TM�TN�TO�TP�TQ�TR�TS�TT�TU�TV�TW�TX�TY�TZ�T[�T\�T]�T^�T_�T`�Ta�Tb�Tc�Td�Te�Tf�Tg�Th�Ti�Tj�Tk�Tl�Tm�Tn�To�Tp�Tq�Tr�Ts�Tt�Tu�Tv�Tw�Tx�Ty�Tz�T{�T|�T}�T~�T�T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��T��U�U
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������U�U�U�U�U�U�U	�U
�U�U�U
�U�U�U�U�U�U�U�U�U�U�U�U�U�U�U�U�U�U�U �U!�U"�U#�U$�U%�U&�U'�U(�U)�U*�U+�U,�U-�U.�U/�U0�U1�U2�U3�U4�U5�U6�U7�U8�U9�U:�U;�U<�U=�U>�U?�U@�UA�UB�UC�UD�UE�UF�UG�UH�UI�UJ�UK�UL�UM�UN�UO�UP�UQ�UR�US�UT�UU�UV�UW�UX�UY�UZ�U[�U\�U]�U^�U_�U`�Ua�Ub�Uc�Ud�Ue�Uf�Ug
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������Ui�Uj�Uk�Ul�Um�Un�Uo�Up�Uq�Ur�Us�Ut�Uu�Uv�Uw�Ux�Uy�Uz�U{�U|�U}�U~�U�U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��U��V�V�V�V�V�V�V�V�V�V	�V
�V�V�V
�V�V�V�V�V�V�V�V�V�V�V�V�V�V�V�V�V�V�V �V!�V"�V#�V$�V%�V&�V'�V(�V)�V*�V+�V,�V-�V.�V/�V0�V1�V2�V3
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������V5�V6�V7�V8�V9�V:�V;�V<�V=�V>�V?�V@�VA�VB�VC�VD�VE�VF�VG�VH�VI�VJ�VK�VL�VM�VN�VO�VP�VQ�VR�VS�VT�VU�VV�VW�VX�VY�VZ�V[�V\�V]�V^�V_�V`�Va�Vb�Vc�Vd�Ve�Vf�Vg�Vh�Vi�Vj�Vk�Vl�Vm�Vn�Vo�Vp�Vq�Vr�Vs�Vt�Vu�Vv�Vw�Vx�Vy�Vz�V{�V|�V}�V~�V�V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V��V�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������W�W�W�W�W�W�W�W�W	�W
�W�W�W
�W�W�W�W�W�W�W�W�W�W�W�W�W�W�W�W�W�W�W �W!�W"�W#�W$�W%�W&�W'�W(�W)�W*�W+�W,�W-�W.�W/�W0�W1�W2�W3�W4�W5�W6�W7�W8�W9�W:�W;�W<�W=�W>�W?�W@�WA�WB�WC�WD�WE�WF�WG�WH�WI�WJ�WK�WL�WM�WN�WO�WP�WQ�WR�WS�WT�WU�WV�WW�WX�WY�WZ�W[�W\�W]�W^�W_�W`�Wa�Wb�Wc�Wd�We
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������Wg�Wh�Wi�Wj�Wk�Wl�Wm�Wn�Wo�Wp�Wq�Wr�Ws�Wt�Wu�Wv�Ww�Wx�Wy�Wz�W{�W|�W}�W~�W�W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��W��X�X�X�X�X�X�X�X�X�X	�X
�X�X�X
�X�X�X�X�X�X�X�X�X�X�X�X�X�X�X�X�X�X�X �X!�X"�X#�X$�X%�X&�X'�X(�X)�X*�X+�X,�X-�X.�X/�X0�X1
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������X3�X4�X5�X6�X7�X8�X9�X:�X;�X<�X=�X>�X?�X@�XA�XB�XC�XD�XE�XF�XG�XH�XI�XJ�XK�XL�XM�XN�XO�XP�XQ�XR�XS�XT�XU�XV�XW�XX�XY�XZ�X[�X\�X]�X^�X_�X`�Xa�Xb�Xc�Xd�Xe�Xf�Xg�Xh�Xi�Xj�Xk�Xl�Xm�Xn�Xo�Xp	Xq	Xr	Xs	Xt	Xu	Xv	Xw	Xx	Xy	Xz	X{	X|	X}	X~	X	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�H�K���������$0<HT`lx����������� ,8DP\ht�����������(4@LXdp|����������K�	X�K�	X�K�	YdK�	"Y�K�	,Z0K�	6Z�K�	AZ�K�	K[bK�	U[�K�	_\.K�	i\�K�	t\�K�	~]`K�	�]�K�	�^,K�	�^�K�	�^�K�	�_^K�	�_�K�	�`*K�	�`�K�	�`�K�	�a\K�	�a�K�	�b(K�
b�K�

b�K�
cZK�
!c�K�
+d&K�
5d�K�
@d�K�
JeXK�
Te�K�
^f$K�
hf�K�
sf�K�
}gVK�
�g�K�
�h"K�
�h�K�
�h�K�
�iTK�
�i�K�
�j K�
�j�K�
�j�K�
�kRK�
�k�K�
�lK�l�K�l�K�mPK� m�K�*nK�4n�K�?n�K�IoNK�So�K�]pK�gp�K�rp�K�|qLK��q�K��rK��r~K��r�K��sJK��s�K��tK��t|K��t�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�		X�		X�		X�		X�		X�		X�		X�		X�		X�		X�	
X�	
X�	
X�	
X�	
X�	
X�	
X�	
X�	
X�	
X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	X�	
X�	
X�	
X�	
X�	
X�	
X�	
X�	
X�	
X�	
X�	X�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	X�	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y		Y
	Y	Y	Y
	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y	Y 	Y!	Y"	Y#	Y$	Y%	Y&	Y'	Y(	Y)	Y*	Y+	Y,	Y-	Y.	Y/	Y0	Y1	Y2	Y3	Y4	Y5	Y6	Y7	Y8	Y9	Y:	Y;	Y<	Y=	Y>	Y?	Y@	YA	YB	YC	YD	YE	YF	YG	YH	YI	YJ	YK	YL	YM	YN	YO	YP	YQ	YR	YS	YT	YU	YV	YW	YX	YY	YZ	Y[	Y\	Y]	Y^	Y_	Y`	Ya	Yb	Yc
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	Ye	Yf	Yg	Yh	Yi	Yj	Yk	Yl	Ym	Yn	Yo	Yp	Yq	Yr	Ys	Yt	Yu	Yv	Yw	Yx	Yy	Yz	Y{	Y|	Y}	Y~	Y	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	Y�	 Y�	 Y�	 Y�	 Y�	 Y�	 Y�	 Y�	 Y�	 Y�	 Y�	!Y�	!Y�	!Y�	!Y�	!Y�	!Y�	!Y�	!Y�	!Y�	!Y�	"Y�	"Y�	"Y�	"Y�	"Y�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	"Y�	"Y�	"Y�	"Y�	#Y�	#Y�	#Y�	#Y�	#Y�	#Y�	#Y�	#Y�	#Y�	#Y�	$Y�	$Y�	$Y�	$Y�	$Y�	$Y�	$Y�	$Y�	$Y�	$Y�	%Y�	%Y�	%Y�	%Y�	%Y�	%Y�	%Y�	%Y�	%Y�	%Y�	&Y�	&Y�	&Y�	&Y�	&Y�	&Y�	&Y�	&Y�	&Y�	&Y�	'Y�	'Y�	'Y�	'Y�	'Y�	'Y�	'Y�	'Y�	'Y�	'Z	(Z	(Z	(Z	(Z	(Z	(Z	(Z	(Z	(Z		(Z
	)Z	)Z	)Z
	)Z	)Z	)Z	)Z	)Z	)Z	)Z	*Z	*Z	*Z	*Z	*Z	*Z	*Z	*Z	*Z	*Z	+Z	+Z 	+Z!	+Z"	+Z#	+Z$	+Z%	+Z&	+Z'	+Z(	,Z)	,Z*	,Z+	,Z,	,Z-	,Z.	,Z/
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	,Z1	,Z2	-Z3	-Z4	-Z5	-Z6	-Z7	-Z8	-Z9	-Z:	-Z;	-Z<	.Z=	.Z>	.Z?	.Z@	.ZA	.ZB	.ZC	.ZD	.ZE	.ZF	/ZG	/ZH	/ZI	/ZJ	/ZK	/ZL	/ZM	/ZN	/ZO	/ZP	0ZQ	0ZR	0ZS	0ZT	0ZU	0ZV	0ZW	0ZX	0ZY	0ZZ	1Z[	1Z\	1Z]	1Z^	1Z_	1Z`	1Za	1Zb	1Zc	1Zd	2Ze	2Zf	2Zg	2Zh	2Zi	2Zj	2Zk	2Zl	2Zm	2Zn	3Zo	3Zp	3Zq	3Zr	3Zs	3Zt	3Zu	3Zv	3Zw	3Zx	4Zy	4Zz	4Z{	4Z|	4Z}	4Z~	4Z	4Z�	4Z�	4Z�	5Z�	5Z�	5Z�	5Z�	5Z�	5Z�	5Z�	5Z�	5Z�	5Z�	6Z�	6Z�	6Z�	6Z�	6Z�	6Z�	6Z�	6Z�	6Z�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	7Z�	7Z�	7Z�	7Z�	7Z�	7Z�	7Z�	7Z�	7Z�	7Z�	8Z�	8Z�	8Z�	8Z�	8Z�	8Z�	8Z�	8Z�	8Z�	8Z�	9Z�	9Z�	9Z�	9Z�	9Z�	9Z�	9Z�	9Z�	9Z�	9Z�	:Z�	:Z�	:Z�	:Z�	:Z�	:Z�	:Z�	:Z�	:Z�	:Z�	;Z�	;Z�	;Z�	;Z�	;Z�	;Z�	;Z�	;Z�	;Z�	;Z�	<Z�	<Z�	<Z�	<Z�	<Z�	<Z�	<Z�	<Z�	<Z�	<Z�	=Z�	=Z�	=Z�	=Z�	=Z�	=Z�	=Z�	=Z�	=Z�	=Z�	>Z�	>Z�	>Z�	>Z�	>Z�	>Z�	>Z�	>Z�	>Z�	>Z�	?Z�	?Z�	?Z�	?Z�	?Z�	?Z�	?Z�	?Z�	?Z�	?Z�	@Z�	@Z�	@Z�	@Z�	@Z�	@Z�	@Z�	@Z�	@Z�	@Z�	AZ�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	AZ�	AZ�	AZ�	A[	A[	A[	A[	A[	B[	B[	B[	B[	B[		B[
	B[	B[	B[
	B[	C[	C[	C[	C[	C[	C[	C[	C[	C[	C[	D[	D[	D[	D[	D[	D[	D[	D[ 	D[!	D["	E[#	E[$	E[%	E[&	E['	E[(	E[)	E[*	E[+	E[,	F[-	F[.	F[/	F[0	F[1	F[2	F[3	F[4	F[5	F[6	G[7	G[8	G[9	G[:	G[;	G[<	G[=	G[>	G[?	G[@	H[A	H[B	H[C	H[D	H[E	H[F	H[G	H[H	H[I	H[J	I[K	I[L	I[M	I[N	I[O	I[P	I[Q	I[R	I[S	I[T	J[U	J[V	J[W	J[X	J[Y	J[Z	J[[	J[\	J[]	J[^	K[_	K[`	K[a
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	K[c	K[d	K[e	K[f	K[g	K[h	L[i	L[j	L[k	L[l	L[m	L[n	L[o	L[p	L[q	L[r	M[s	M[t	M[u	M[v	M[w	M[x	M[y	M[z	M[{	M[|	N[}	N[~	N[	N[�	N[�	N[�	N[�	N[�	N[�	N[�	O[�	O[�	O[�	O[�	O[�	O[�	O[�	O[�	O[�	O[�	P[�	P[�	P[�	P[�	P[�	P[�	P[�	P[�	P[�	P[�	Q[�	Q[�	Q[�	Q[�	Q[�	Q[�	Q[�	Q[�	Q[�	Q[�	R[�	R[�	R[�	R[�	R[�	R[�	R[�	R[�	R[�	R[�	S[�	S[�	S[�	S[�	S[�	S[�	S[�	S[�	S[�	S[�	T[�	T[�	T[�	T[�	T[�	T[�	T[�	T[�	T[�	T[�	U[�	U[�	U[�	U[�	U[�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	U[�	U[�	U[�	U[�	V[�	V[�	V[�	V[�	V[�	V[�	V[�	V[�	V[�	V[�	W[�	W[�	W[�	W[�	W[�	W[�	W[�	W[�	W[�	W[�	X[�	X[�	X[�	X[�	X[�	X[�	X[�	X[�	X[�	X[�	Y[�	Y[�	Y[�	Y[�	Y[�	Y[�	Y[�	Y[�	Y[�	Y[�	Z[�	Z[�	Z[�	Z[�	Z[�	Z[�	Z[�	Z[�	Z[�	Z[�	[[�	[\	[\	[\	[\	[\	[\	[\	[\	[\	\\		\\
	\\	\\	\\
	\\	\\	\\	\\	\\	]\	]\	]\	]\	]\	]\	]\	]\	]\	]\	^\	^\	^\	^\ 	^\!	^\"	^\#	^\$	^\%	^\&	_\'	_\(	_\)	_\*	_\+	_\,	_\-
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	_\/	_\0	`\1	`\2	`\3	`\4	`\5	`\6	`\7	`\8	`\9	`\:	a\;	a\<	a\=	a\>	a\?	a\@	a\A	a\B	a\C	a\D	b\E	b\F	b\G	b\H	b\I	b\J	b\K	b\L	b\M	b\N	c\O	c\P	c\Q	c\R	c\S	c\T	c\U	c\V	c\W	c\X	d\Y	d\Z	d\[	d\\	d\]	d\^	d\_	d\`	d\a	d\b	e\c	e\d	e\e	e\f	e\g	e\h	e\i	e\j	e\k	e\l	f\m	f\n	f\o	f\p	f\q	f\r	f\s	f\t	f\u	f\v	g\w	g\x	g\y	g\z	g\{	g\|	g\}	g\~	g\	g\�	h\�	h\�	h\�	h\�	h\�	h\�	h\�	h\�	h\�	h\�	i\�	i\�	i\�	i\�	i\�	i\�	i\�	i\�	i\�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	j\�	j\�	j\�	j\�	j\�	j\�	j\�	j\�	j\�	j\�	k\�	k\�	k\�	k\�	k\�	k\�	k\�	k\�	k\�	k\�	l\�	l\�	l\�	l\�	l\�	l\�	l\�	l\�	l\�	l\�	m\�	m\�	m\�	m\�	m\�	m\�	m\�	m\�	m\�	m\�	n\�	n\�	n\�	n\�	n\�	n\�	n\�	n\�	n\�	n\�	o\�	o\�	o\�	o\�	o\�	o\�	o\�	o\�	o\�	o\�	p\�	p\�	p\�	p\�	p\�	p\�	p\�	p\�	p\�	p\�	q\�	q\�	q\�	q\�	q\�	q\�	q\�	q\�	q\�	q\�	r\�	r\�	r\�	r\�	r\�	r\�	r\�	r\�	r\�	r\�	s\�	s\�	s\�	s\�	s\�	s\�	s\�	s\�	s\�	s\�	t\�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	t\�	t\�	t\�	t\�	t\�	t]	t]	t]	u]	u]	u]	u]	u]	u]	u]		u]
	u]	u]	v]
	v]	v]	v]	v]	v]	v]	v]	v]	v]	w]	w]	w]	w]	w]	w]	w]	w]	w]	w] 	x]!	x]"	x]#	x]$	x]%	x]&	x]'	x](	x])	x]*	y]+	y],	y]-	y].	y]/	y]0	y]1	y]2	y]3	y]4	z]5	z]6	z]7	z]8	z]9	z]:	z];	z]<	z]=	z]>	{]?	{]@	{]A	{]B	{]C	{]D	{]E	{]F	{]G	{]H	|]I	|]J	|]K	|]L	|]M	|]N	|]O	|]P	|]Q	|]R	}]S	}]T	}]U	}]V	}]W	}]X	}]Y	}]Z	}][	}]\	~]]	~]^	~]_
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	~]a	~]b	~]c	~]d	~]e	~]f	]g	]h	]i	]j	]k	]l	]m	]n	]o	]p	�]q	�]r	�]s	�]t	�]u	�]v	�]w	�]x	�]y	�]z	�]{	�]|	�]}	�]~	�]	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�]�	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^		�^
	�^	�^	�^
	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^	�^ 	�^!	�^"	�^#	�^$	�^%	�^&	�^'	�^(	�^)	�^*	�^+
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�^-	�^.	�^/	�^0	�^1	�^2	�^3	�^4	�^5	�^6	�^7	�^8	�^9	�^:	�^;	�^<	�^=	�^>	�^?	�^@	�^A	�^B	�^C	�^D	�^E	�^F	�^G	�^H	�^I	�^J	�^K	�^L	�^M	�^N	�^O	�^P	�^Q	�^R	�^S	�^T	�^U	�^V	�^W	�^X	�^Y	�^Z	�^[	�^\	�^]	�^^	�^_	�^`	�^a	�^b	�^c	�^d	�^e	�^f	�^g	�^h	�^i	�^j	�^k	�^l	�^m	�^n	�^o	�^p	�^q	�^r	�^s	�^t	�^u	�^v	�^w	�^x	�^y	�^z	�^{	�^|	�^}	�^~	�^	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�^�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�^�	�^�	�^�	�^�	�^�	�^�	�^�	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_		�_
	�_	�_	�_
	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_	�_ 	�_!	�_"	�_#	�_$	�_%	�_&	�_'	�_(	�_)	�_*	�_+	�_,	�_-	�_.	�_/	�_0	�_1	�_2	�_3	�_4	�_5	�_6	�_7	�_8	�_9	�_:	�_;	�_<	�_=	�_>	�_?	�_@	�_A	�_B	�_C	�_D	�_E	�_F	�_G	�_H	�_I	�_J	�_K	�_L	�_M	�_N	�_O	�_P	�_Q	�_R	�_S	�_T	�_U	�_V	�_W	�_X	�_Y	�_Z	�_[	�_\	�_]
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�__	�_`	�_a	�_b	�_c	�_d	�_e	�_f	�_g	�_h	�_i	�_j	�_k	�_l	�_m	�_n	�_o	�_p	�_q	�_r	�_s	�_t	�_u	�_v	�_w	�_x	�_y	�_z	�_{	�_|	�_}	�_~	�_	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�_�	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`		�`
	�`	�`	�`
	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�`	�` 	�`!	�`"	�`#	�`$	�`%	�`&	�`'	�`(	�`)
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�`+	�`,	�`-	�`.	�`/	�`0	�`1	�`2	�`3	�`4	�`5	�`6	�`7	�`8	�`9	�`:	�`;	�`<	�`=	�`>	�`?	�`@	�`A	�`B	�`C	�`D	�`E	�`F	�`G	�`H	�`I	�`J	�`K	�`L	�`M	�`N	�`O	�`P	�`Q	�`R	�`S	�`T	�`U	�`V	�`W	�`X	�`Y	�`Z	�`[	�`\	�`]	�`^	�`_	�``	�`a	�`b	�`c	�`d	�`e	�`f	�`g	�`h	�`i	�`j	�`k	�`l	�`m	�`n	�`o	�`p	�`q	�`r	�`s	�`t	�`u	�`v	�`w	�`x	�`y	�`z	�`{	�`|	�`}	�`~	�`	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�`�	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a		�a
	�a	�a	�a
	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a	�a 	�a!	�a"	�a#	�a$	�a%	�a&	�a'	�a(	�a)	�a*	�a+	�a,	�a-	�a.	�a/	�a0	�a1	�a2	�a3	�a4	�a5	�a6	�a7	�a8	�a9	�a:	�a;	�a<	�a=	�a>	�a?	�a@	�aA	�aB	�aC	�aD	�aE	�aF	�aG	�aH	�aI	�aJ	�aK	�aL	�aM	�aN	�aO	�aP	�aQ	�aR	�aS	�aT	�aU	�aV	�aW	�aX	�aY	�aZ	�a[
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�a]	�a^	�a_	�a`	�aa	�ab	�ac	�ad	�ae	�af	�ag	�ah	�ai	�aj	�ak	�al	�am	�an	�ao	�ap	�aq	�ar	�as	�at	�au	�av	�aw	�ax	�ay	�az	�a{	�a|	�a}	�a~	�a	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�a�	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b		�b
	�b	�b	�b
	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b	�b 	�b!	�b"	�b#	�b$	�b%	�b&	�b'
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������	�b)	�b*	�b+	�b,	�b-	�b.	�b/	�b0	�b1	�b2	�b3	�b4	�b5	�b6	�b7	�b8	�b9	�b:	�b;	�b<	�b=	�b>	�b?	�b@	�bA	�bB	�bC	�bD	�bE	�bF	�bG	�bH	�bI	�bJ	�bK	�bL	�bM	�bN	�bO	�bP	�bQ	�bR	�bS	�bT	�bU	�bV	�bW	�bX	�bY	�bZ	�b[	�b\	�b]	�b^	�b_	�b`	�ba	�bb	�bc	�bd	�be	�bf	�bg	�bh	�bi	�bj	�bk	�bl	�bm	�bn	�bo	�bp
bq
br
bs
bt
bu
bv
bw
bx
by
bz
b{
b|
b}
b~
b
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
	b�
	b�
	b�
	b�
	b�
	b�
	b�
	b�
	b�
	b�

b�

b�

b�

b�

b�

b�

b�

b�

b�

b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�
b�

b�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������

b�

b�

b�

b�

b�

b�

b�

b�
b�
b�
b�
c
c
c
c
c
c
c
c
c
c	
c

c
c
c

c
c
c
c
c
c
c
c
c
c
c
c
c
c
c
c
c
c
c 
c!
c"
c#
c$
c%
c&
c'
c(
c)
c*
c+
c,
c-
c.
c/
c0
c1
c2
c3
c4
c5
c6
c7
c8
c9
c:
c;
c<
c=
c>
c?
c@
cA
cB
cC
cD
cE
cF
cG
cH
cI
cJ
cK
cL
cM
cN
cO
cP
cQ
cR
cS
cT
cU
cV
cW
cX
cY
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
c[
c\
c]
c^
c_
c`
ca
cb
cc
cd
ce
cf
cg
ch
ci
cj
ck
cl
cm
cn
co
cp
cq
cr
cs
ct
cu
cv
cw
cx
cy
cz
c{
c|
c}
c~
c
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
c�
 c�
 c�
 c�
 c�
 c�
 c�
 c�
 c�
 c�
 c�
!c�
!c�
!c�
!c�
!c�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
!c�
!c�
!c�
!c�
"c�
"c�
"c�
"c�
"c�
"c�
"c�
"c�
"c�
"c�
#c�
#c�
#c�
#c�
#c�
#c�
#c�
#c�
#c�
#c�
$c�
$c�
$c�
$c�
$c�
$c�
$c�
$c�
$c�
$c�
%c�
%c�
%c�
%c�
%c�
%c�
%c�
%c�
%c�
%c�
&c�
&c�
&c�
&c�
&c�
&c�
&c�
&c�
&c�
&c�
'c�
'c�
'c�
'c�
'c�
'c�
'c�
'c�
'c�
'd
(d
(d
(d
(d
(d
(d
(d
(d
(d	
(d

)d
)d
)d

)d
)d
)d
)d
)d
)d
)d
*d
*d
*d
*d
*d
*d
*d
*d
*d
*d
+d
+d 
+d!
+d"
+d#
+d$
+d%
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
+d'
+d(
,d)
,d*
,d+
,d,
,d-
,d.
,d/
,d0
,d1
,d2
-d3
-d4
-d5
-d6
-d7
-d8
-d9
-d:
-d;
-d<
.d=
.d>
.d?
.d@
.dA
.dB
.dC
.dD
.dE
.dF
/dG
/dH
/dI
/dJ
/dK
/dL
/dM
/dN
/dO
/dP
0dQ
0dR
0dS
0dT
0dU
0dV
0dW
0dX
0dY
0dZ
1d[
1d\
1d]
1d^
1d_
1d`
1da
1db
1dc
1dd
2de
2df
2dg
2dh
2di
2dj
2dk
2dl
2dm
2dn
3do
3dp
3dq
3dr
3ds
3dt
3du
3dv
3dw
3dx
4dy
4dz
4d{
4d|
4d}
4d~
4d
4d�
4d�
4d�
5d�
5d�
5d�
5d�
5d�
5d�
5d�
5d�
5d�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
6d�
6d�
6d�
6d�
6d�
6d�
6d�
6d�
6d�
6d�
7d�
7d�
7d�
7d�
7d�
7d�
7d�
7d�
7d�
7d�
8d�
8d�
8d�
8d�
8d�
8d�
8d�
8d�
8d�
8d�
9d�
9d�
9d�
9d�
9d�
9d�
9d�
9d�
9d�
9d�
:d�
:d�
:d�
:d�
:d�
:d�
:d�
:d�
:d�
:d�
;d�
;d�
;d�
;d�
;d�
;d�
;d�
;d�
;d�
;d�
<d�
<d�
<d�
<d�
<d�
<d�
<d�
<d�
<d�
<d�
=d�
=d�
=d�
=d�
=d�
=d�
=d�
=d�
=d�
=d�
>d�
>d�
>d�
>d�
>d�
>d�
>d�
>d�
>d�
>d�
?d�
?d�
?d�
?d�
?d�
?d�
?d�
?d�
?d�
?d�
@d�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
@d�
@d�
@d�
@d�
@d�
@d�
@d�
@d�
Ad�
Ad�
Ad�
Ad�
Ad�
Ae
Ae
Ae
Ae
Ae
Be
Be
Be
Be
Be	
Be

Be
Be
Be

Be
Ce
Ce
Ce
Ce
Ce
Ce
Ce
Ce
Ce
Ce
De
De
De
De
De
De
De
De 
De!
De"
Ee#
Ee$
Ee%
Ee&
Ee'
Ee(
Ee)
Ee*
Ee+
Ee,
Fe-
Fe.
Fe/
Fe0
Fe1
Fe2
Fe3
Fe4
Fe5
Fe6
Ge7
Ge8
Ge9
Ge:
Ge;
Ge<
Ge=
Ge>
Ge?
Ge@
HeA
HeB
HeC
HeD
HeE
HeF
HeG
HeH
HeI
HeJ
IeK
IeL
IeM
IeN
IeO
IeP
IeQ
IeR
IeS
IeT
JeU
JeV
JeW
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
JeY
JeZ
Je[
Je\
Je]
Je^
Ke_
Ke`
Kea
Keb
Kec
Ked
Kee
Kef
Keg
Keh
Lei
Lej
Lek
Lel
Lem
Len
Leo
Lep
Leq
Ler
Mes
Met
Meu
Mev
Mew
Mex
Mey
Mez
Me{
Me|
Ne}
Ne~
Ne
Ne�
Ne�
Ne�
Ne�
Ne�
Ne�
Ne�
Oe�
Oe�
Oe�
Oe�
Oe�
Oe�
Oe�
Oe�
Oe�
Oe�
Pe�
Pe�
Pe�
Pe�
Pe�
Pe�
Pe�
Pe�
Pe�
Pe�
Qe�
Qe�
Qe�
Qe�
Qe�
Qe�
Qe�
Qe�
Qe�
Qe�
Re�
Re�
Re�
Re�
Re�
Re�
Re�
Re�
Re�
Re�
Se�
Se�
Se�
Se�
Se�
Se�
Se�
Se�
Se�
Se�
Te�
Te�
Te�
Te�
Te�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
Te�
Te�
Te�
Te�
Ue�
Ue�
Ue�
Ue�
Ue�
Ue�
Ue�
Ue�
Ue�
Ue�
Ve�
Ve�
Ve�
Ve�
Ve�
Ve�
Ve�
Ve�
Ve�
Ve�
We�
We�
We�
We�
We�
We�
We�
We�
We�
We�
Xe�
Xe�
Xe�
Xe�
Xe�
Xe�
Xe�
Xe�
Xe�
Xe�
Ye�
Ye�
Ye�
Ye�
Ye�
Ye�
Ye�
Ye�
Ye�
Ye�
Ze�
Ze�
Ze�
Ze�
Ze�
Ze�
Ze�
Ze�
Ze�
Ze�
[e�
[f
[f
[f
[f
[f
[f
[f
[f
[f
\f	
\f

\f
\f
\f

\f
\f
\f
\f
\f
]f
]f
]f
]f
]f
]f
]f
]f
]f
]f
^f
^f
^f
^f 
^f!
^f"
^f#
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
^f%
^f&
_f'
_f(
_f)
_f*
_f+
_f,
_f-
_f.
_f/
_f0
`f1
`f2
`f3
`f4
`f5
`f6
`f7
`f8
`f9
`f:
af;
af<
af=
af>
af?
af@
afA
afB
afC
afD
bfE
bfF
bfG
bfH
bfI
bfJ
bfK
bfL
bfM
bfN
cfO
cfP
cfQ
cfR
cfS
cfT
cfU
cfV
cfW
cfX
dfY
dfZ
df[
df\
df]
df^
df_
df`
dfa
dfb
efc
efd
efe
eff
efg
efh
efi
efj
efk
efl
ffm
ffn
ffo
ffp
ffq
ffr
ffs
fft
ffu
ffv
gfw
gfx
gfy
gfz
gf{
gf|
gf}
gf~
gf
gf�
hf�
hf�
hf�
hf�
hf�
hf�
hf�
hf�
hf�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
if�
if�
if�
if�
if�
if�
if�
if�
if�
if�
jf�
jf�
jf�
jf�
jf�
jf�
jf�
jf�
jf�
jf�
kf�
kf�
kf�
kf�
kf�
kf�
kf�
kf�
kf�
kf�
lf�
lf�
lf�
lf�
lf�
lf�
lf�
lf�
lf�
lf�
mf�
mf�
mf�
mf�
mf�
mf�
mf�
mf�
mf�
mf�
nf�
nf�
nf�
nf�
nf�
nf�
nf�
nf�
nf�
nf�
of�
of�
of�
of�
of�
of�
of�
of�
of�
of�
pf�
pf�
pf�
pf�
pf�
pf�
pf�
pf�
pf�
pf�
qf�
qf�
qf�
qf�
qf�
qf�
qf�
qf�
qf�
qf�
rf�
rf�
rf�
rf�
rf�
rf�
rf�
rf�
rf�
rf�
sf�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
sf�
sf�
sf�
sf�
sf�
sf�
sf�
sf�
tf�
tf�
tf�
tf�
tf�
tf�
tf�
tg
tg
tg
ug
ug
ug
ug
ug
ug
ug	
ug

ug
ug
vg

vg
vg
vg
vg
vg
vg
vg
vg
vg
wg
wg
wg
wg
wg
wg
wg
wg
wg
wg 
xg!
xg"
xg#
xg$
xg%
xg&
xg'
xg(
xg)
xg*
yg+
yg,
yg-
yg.
yg/
yg0
yg1
yg2
yg3
yg4
zg5
zg6
zg7
zg8
zg9
zg:
zg;
zg<
zg=
zg>
{g?
{g@
{gA
{gB
{gC
{gD
{gE
{gF
{gG
{gH
|gI
|gJ
|gK
|gL
|gM
|gN
|gO
|gP
|gQ
|gR
}gS
}gT
}gU
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
}gW
}gX
}gY
}gZ
}g[
}g\
~g]
~g^
~g_
~g`
~ga
~gb
~gc
~gd
~ge
~gf
gg
gh
gi
gj
gk
gl
gm
gn
go
gp
�gq
�gr
�gs
�gt
�gu
�gv
�gw
�gx
�gy
�gz
�g{
�g|
�g}
�g~
�g
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�g�
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h	
�h

�h
�h
�h

�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h
�h 
�h!
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�h#
�h$
�h%
�h&
�h'
�h(
�h)
�h*
�h+
�h,
�h-
�h.
�h/
�h0
�h1
�h2
�h3
�h4
�h5
�h6
�h7
�h8
�h9
�h:
�h;
�h<
�h=
�h>
�h?
�h@
�hA
�hB
�hC
�hD
�hE
�hF
�hG
�hH
�hI
�hJ
�hK
�hL
�hM
�hN
�hO
�hP
�hQ
�hR
�hS
�hT
�hU
�hV
�hW
�hX
�hY
�hZ
�h[
�h\
�h]
�h^
�h_
�h`
�ha
�hb
�hc
�hd
�he
�hf
�hg
�hh
�hi
�hj
�hk
�hl
�hm
�hn
�ho
�hp
�hq
�hr
�hs
�ht
�hu
�hv
�hw
�hx
�hy
�hz
�h{
�h|
�h}
�h~
�h
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�h�
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i	
�i

�i
�i
�i

�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i
�i 
�i!
�i"
�i#
�i$
�i%
�i&
�i'
�i(
�i)
�i*
�i+
�i,
�i-
�i.
�i/
�i0
�i1
�i2
�i3
�i4
�i5
�i6
�i7
�i8
�i9
�i:
�i;
�i<
�i=
�i>
�i?
�i@
�iA
�iB
�iC
�iD
�iE
�iF
�iG
�iH
�iI
�iJ
�iK
�iL
�iM
�iN
�iO
�iP
�iQ
�iR
�iS
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�iU
�iV
�iW
�iX
�iY
�iZ
�i[
�i\
�i]
�i^
�i_
�i`
�ia
�ib
�ic
�id
�ie
�if
�ig
�ih
�ii
�ij
�ik
�il
�im
�in
�io
�ip
�iq
�ir
�is
�it
�iu
�iv
�iw
�ix
�iy
�iz
�i{
�i|
�i}
�i~
�i
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�i�
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j	
�j

�j
�j
�j

�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
�j
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�j!
�j"
�j#
�j$
�j%
�j&
�j'
�j(
�j)
�j*
�j+
�j,
�j-
�j.
�j/
�j0
�j1
�j2
�j3
�j4
�j5
�j6
�j7
�j8
�j9
�j:
�j;
�j<
�j=
�j>
�j?
�j@
�jA
�jB
�jC
�jD
�jE
�jF
�jG
�jH
�jI
�jJ
�jK
�jL
�jM
�jN
�jO
�jP
�jQ
�jR
�jS
�jT
�jU
�jV
�jW
�jX
�jY
�jZ
�j[
�j\
�j]
�j^
�j_
�j`
�ja
�jb
�jc
�jd
�je
�jf
�jg
�jh
�ji
�jj
�jk
�jl
�jm
�jn
�jo
�jp
�jq
�jr
�js
�jt
�ju
�jv
�jw
�jx
�jy
�jz
�j{
�j|
�j}
�j~
�j
�j�
�j�
�j�
�j�
�j�
�j�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�j�
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k	
�k

�k
�k
�k

�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k
�k 
�k!
�k"
�k#
�k$
�k%
�k&
�k'
�k(
�k)
�k*
�k+
�k,
�k-
�k.
�k/
�k0
�k1
�k2
�k3
�k4
�k5
�k6
�k7
�k8
�k9
�k:
�k;
�k<
�k=
�k>
�k?
�k@
�kA
�kB
�kC
�kD
�kE
�kF
�kG
�kH
�kI
�kJ
�kK
�kL
�kM
�kN
�kO
�kP
�kQ
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�kS
�kT
�kU
�kV
�kW
�kX
�kY
�kZ
�k[
�k\
�k]
�k^
�k_
�k`
�ka
�kb
�kc
�kd
�ke
�kf
�kg
�kh
�ki
�kj
�kk
�kl
�km
�kn
�ko
�kp
�kq
�kr
�ks
�kt
�ku
�kv
�kw
�kx
�ky
�kz
�k{
�k|
�k}
�k~
�k
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�k�
�l
�l
�l
�l
�l
�l
�l
�l
�l
�l	
�l

�l
�l
�l

�l
�l
�l
�l
�l
�l
�l
�l
�l
�l
�l
�l
�l
�l
�l
�l
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������
�l
�l 
�l!
�l"
�l#
�l$
�l%
�l&
�l'
�l(
�l)
�l*
�l+
�l,
�l-
�l.
�l/
�l0
�l1
�l2
�l3
�l4
�l5
�l6
�l7
�l8
�l9
�l:
�l;
�l<
�l=
�l>
�l?
�l@
�lA
�lB
�lC
�lD
�lE
�lF
�lG
�lH
�lI
�lJ
�lK
�lL
�lM
�lN
�lO
�lP
�lQ
�lR
�lS
�lT
�lU
�lV
�lW
�lX
�lY
�lZ
�l[
�l\
�l]
�l^
�l_
�l`
�la
�lb
�lc
�ld
�le
�lf
�lg
�lh
�li
�lj
�lk
�ll
�lm
�ln
�lo
�lplqlrlsltlulvlwlxlylzl{l|l}l~ll�l�l�l�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�l�	l�	l�	l�	l�	l�	l�	l�	l�	l�	l�
l�
l�
l�
l�
l�
l�
l�
l�
l�
l�l�l�l�l�l�l�l�l�l�l�l�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������l�l�l�l�l�l�l�l�
l�
l�
l�
l�
l�
l�
l�
l�
l�
l�l�l�l�mmmmmmmmmm	m
mmm
mmmmmmmmmmmmmmmmmmm m!m"m#m$m%m&m'm(m)m*m+m,m-m.m/m0m1m2m3m4m5m6m7m8m9m:m;m<m=m>m?m@mAmBmCmDmEmFmGmHmImJmKmLmMmNmO
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������mQmRmSmTmUmVmWmXmYmZm[m\m]m^m_m`mambmcmdmemfmgmhmimjmkmlmmmnmompmqmrmsmtmumvmwmxmymzm{m|m}m~mm�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m�m� m� m� m� m� m�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx���������������� m� m� m� m�!m�!m�!m�!m�!m�!m�!m�!m�!m�!m�"m�"m�"m�"m�"m�"m�"m�"m�"m�"m�#m�#m�#m�#m�#m�#m�#m�#m�#m�#m�$m�$m�$m�$m�$m�$m�$m�$m�$m�$m�%m�%m�%m�%m�%m�%m�%m�%m�%m�%m�&m�&m�&m�&m�&m�&m�&m�&m�&m�&m�'m�'m�'m�'m�'m�'m�'m�'m�'m�'n(n(n(n(n(n(n(n(n(n	(n
)n)n)n
)n)n)n)n)n)n)n*n*n*n*n*n*n*n
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������*n*n+n+n +n!+n"+n#+n$+n%+n&+n'+n(,n),n*,n+,n,,n-,n.,n/,n0,n1,n2-n3-n4-n5-n6-n7-n8-n9-n:-n;-n<.n=.n>.n?.n@.nA.nB.nC.nD.nE.nF/nG/nH/nI/nJ/nK/nL/nM/nN/nO/nP0nQ0nR0nS0nT0nU0nV0nW0nX0nY0nZ1n[1n\1n]1n^1n_1n`1na1nb1nc1nd2ne2nf2ng2nh2ni2nj2nk2nl2nm2nn3no3np3nq3nr3ns3nt3nu3nv3nw3nx4ny4nz4n{4n|4n}4n~4n4n�4n�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������5n�5n�5n�5n�5n�5n�5n�5n�5n�5n�6n�6n�6n�6n�6n�6n�6n�6n�6n�6n�7n�7n�7n�7n�7n�7n�7n�7n�7n�7n�8n�8n�8n�8n�8n�8n�8n�8n�8n�8n�9n�9n�9n�9n�9n�9n�9n�9n�9n�9n�:n�:n�:n�:n�:n�:n�:n�:n�:n�:n�;n�;n�;n�;n�;n�;n�;n�;n�;n�;n�<n�<n�<n�<n�<n�<n�<n�<n�<n�<n�=n�=n�=n�=n�=n�=n�=n�=n�=n�=n�>n�>n�>n�>n�>n�>n�>n�>n�>n�>n�?n�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������?n�?n�?n�?n�?n�?n�?n�?n�@n�@n�@n�@n�@n�@n�@n�@n�@n�@n�An�An�An�An�An�AoAoAoAoAoBoBoBoBoBo	Bo
BoBoBo
BoCoCoCoCoCoCoCoCoCoCoDoDoDoDoDoDoDoDo Do!Do"Eo#Eo$Eo%Eo&Eo'Eo(Eo)Eo*Eo+Eo,Fo-Fo.Fo/Fo0Fo1Fo2Fo3Fo4Fo5Fo6Go7Go8Go9Go:Go;Go<Go=Go>Go?Go@HoAHoBHoCHoDHoEHoFHoGHoHHoIHoJIoKIoLIoM
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������IoOIoPIoQIoRIoSIoTJoUJoVJoWJoXJoYJoZJo[Jo\Jo]Jo^Ko_Ko`KoaKobKocKodKoeKofKogKohLoiLojLokLolLomLonLooLopLoqLorMosMotMouMovMowMoxMoyMozMo{Mo|No}No~NoNo�No�No�No�No�No�No�Oo�Oo�Oo�Oo�Oo�Oo�Oo�Oo�Oo�Oo�Po�Po�Po�Po�Po�Po�Po�Po�Po�Po�Qo�Qo�Qo�Qo�Qo�Qo�Qo�Qo�Qo�Qo�Ro�Ro�Ro�Ro�Ro�Ro�Ro�Ro�Ro�Ro�So�So�So�So�So�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������So�So�So�So�To�To�To�To�To�To�To�To�To�To�Uo�Uo�Uo�Uo�Uo�Uo�Uo�Uo�Uo�Uo�Vo�Vo�Vo�Vo�Vo�Vo�Vo�Vo�Vo�Vo�Wo�Wo�Wo�Wo�Wo�Wo�Wo�Wo�Wo�Wo�Xo�Xo�Xo�Xo�Xo�Xo�Xo�Xo�Xo�Xo�Yo�Yo�Yo�Yo�Yo�Yo�Yo�Yo�Yo�Yo�Zo�Zo�Zo�Zo�Zo�Zo�Zo�Zo�Zo�Zo�[o�[p[p[p[p[p[p[p[p[p\p	\p
\p\p\p
\p\p\p\p\p]p]p]p]p]p]p]p
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������]p]p^p^p^p^p ^p!^p"^p#^p$^p%^p&_p'_p(_p)_p*_p+_p,_p-_p._p/_p0`p1`p2`p3`p4`p5`p6`p7`p8`p9`p:ap;ap<ap=ap>ap?ap@apAapBapCapDbpEbpFbpGbpHbpIbpJbpKbpLbpMbpNcpOcpPcpQcpRcpScpTcpUcpVcpWcpXdpYdpZdp[dp\dp]dp^dp_dp`dpadpbepcepdepeepfepgephepiepjepkeplfpmfpnfpofppfpqfprfpsfptfpufpvgpwgpxgpygpzgp{gp|gp}gp~gp
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������hp�hp�hp�hp�hp�hp�hp�hp�hp�hp�ip�ip�ip�ip�ip�ip�ip�ip�ip�ip�jp�jp�jp�jp�jp�jp�jp�jp�jp�jp�kp�kp�kp�kp�kp�kp�kp�kp�kp�kp�lp�lp�lp�lp�lp�lp�lp�lp�lp�lp�mp�mp�mp�mp�mp�mp�mp�mp�mp�mp�np�np�np�np�np�np�np�np�np�np�op�op�op�op�op�op�op�op�op�op�pp�pp�pp�pp�pp�pp�pp�pp�pp�pp�qp�qp�qp�qp�qp�qp�qp�qp�qp�qp�rp�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������rp�rp�rp�rp�rp�rp�rp�rp�sp�sp�sp�sp�sp�sp�sp�sp�sp�sp�tp�tp�tp�tp�tp�tp�tp�tqtqtquququququququq	uq
uquqvq
vqvqvqvqvqvqvqvqvqwqwqwqwqwqwqwqwqwqwq xq!xq"xq#xq$xq%xq&xq'xq(xq)xq*yq+yq,yq-yq.yq/yq0yq1yq2yq3yq4zq5zq6zq7zq8zq9zq:zq;zq<zq=zq>{q?{q@{qA{qB{qC{qD{qE{qF{qG{qH|qI|qJ|qK
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������|qM|qN|qO|qP|qQ|qR}qS}qT}qU}qV}qW}qX}qY}qZ}q[}q\~q]~q^~q_~q`~qa~qb~qc~qd~qe~qfqgqhqiqjqkqlqmqnqoqp�qq�qr�qs�qt�qu�qv�qw�qx�qy�qz�q{�q|�q}�q~�q�q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��q��r�r�r�r�r�r�r�r�r�r	�r
�r�r�r
�r�r�r�r�r�r�r�r�r�r
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������r�r�r�r�r�r�r�r �r!�r"�r#�r$�r%�r&�r'�r(�r)�r*�r+�r,�r-�r.�r/�r0�r1�r2�r3�r4�r5�r6�r7�r8�r9�r:�r;�r<�r=�r>�r?�r@�rA�rB�rC�rD�rE�rF�rG�rH�rI�rJ�rK�rL�rM�rN�rO�rP�rQ�rR�rS�rT�rU�rV�rW�rX�rY�rZ�r[�r\�r]�r^�r_�r`�ra�rb�rc�rd�re�rf�rg�rh�ri�rj�rk�rl�rm�rn�ro�rp�rq�rr�rs�rt�ru�rv�rw�rx�ry�rz�r{�r|�r}
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������r�r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��r��s�s�s�s�s�s�s�s�s�s	�s
�s�s�s
�s�s�s�s�s�s�s�s�s�s�s�s�s�s�s�s�s�s�s �s!�s"�s#�s$�s%�s&�s'�s(�s)�s*�s+�s,�s-�s.�s/�s0�s1�s2�s3�s4�s5�s6�s7�s8�s9�s:�s;�s<�s=�s>�s?�s@�sA�sB�sC�sD�sE�sF�sG�sH�sI
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������sK�sL�sM�sN�sO�sP�sQ�sR�sS�sT�sU�sV�sW�sX�sY�sZ�s[�s\�s]�s^�s_�s`�sa�sb�sc�sd�se�sf�sg�sh�si�sj�sk�sl�sm�sn�so�sp�sq�sr�ss�st�su�sv�sw�sx�sy�sz�s{�s|�s}�s~�s�s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��s��t�t�t�t�t�t�t�t�t�t	�t
�t�t�t
�t�t�t�t�t�t�t�t
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������t�t�t�t�t�t�t�t�t�t �t!�t"�t#�t$�t%�t&�t'�t(�t)�t*�t+�t,�t-�t.�t/�t0�t1�t2�t3�t4�t5�t6�t7�t8�t9�t:�t;�t<�t=�t>�t?�t@�tA�tB�tC�tD�tE�tF�tG�tH�tI�tJ�tK�tL�tM�tN�tO�tP�tQ�tR�tS�tT�tU�tV�tW�tX�tY�tZ�t[�t\�t]�t^�t_�t`�ta�tb�tc�td�te�tf�tg�th�ti�tj�tk�tl�tm�tn�to�tp�tq�tr�ts�tt�tu�tv�tw�tx�ty�tz�t{
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������t}�t~�t�t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��t��u�u�u�u�u�u�u�u�u�u	�u
�u�u�u
�u�u�u�u�u�u�u�u�u�u�u�u�u�u�u�u�u�u�u �u!�u"�u#�u$�u%�u&�u'�u(�u)�u*�u+�u,�u-�u.�u/�u0�u1�u2�u3�u4�u5�u6�u7�u8�u9�u:�u;�u<�u=�u>�u?�u@�uA�uB�uC�uD�uE�uF�uG
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������uI�uJ�uK�uL�uM�uN�uO�uP�uQ�uR�uS�uT�uU�uV�uW�uX�uY�uZ�u[�u\�u]�u^�u_�u`�ua�ub�uc�ud�ue�uf�ug�uh�ui�uj�uk�ul�um�un�uo�up�uq�ur�us�ut�uu�uv�uw�ux�uy�uz�u{�u|�u}�u~�u�u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u�E�L"���������)5AMYeq}����������,9FS`mz����������	#0=JWdq~���������K��u�K��vK�vzK�v�K�wFK�w�K�)xK�3xxK�>x�K�HyDK�Ry�K�\zK�fzvK�qz�K�{{BK��{�K��|K��|tK��|�K��}@K��}�K��~K��~rK��~�K��>K���K���	K���fK�
��K�
� K�
�}K�
$��K�
-�7K�
6��K�
@��L
I�NL
R��L
[�L
e�eL
n��L
w�L
��|L
���L
��6L	
���L

���L
��ML
���L

��L
��dL
���L
��L
��{L
���L
��5L��L��L�LL��L(�L1�cL;��LD�LM�zLW��L`�4Li��L r��L!|�K
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��u��v�v�v�v�v�v�v�v�v�v	�v
�v�v�v
�v�v�v�v�v�v
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������v�v�v�v�v�v�v�v�v�v�v�v �v!�v"�v#�v$�v%�v&�v'�v(�v)�v*�v+�v,�v-�v.�v/�v0�v1�v2�v3�v4�v5�v6�v7�v8�v9�v:�v;�v<�v=�v>�v?�v@�vA�vB�vC�vD�vE�vF�vG�vH�vI�vJ�vK�vL�vM�vN�vO�vP�vQ�vR�vS�vT�vU�vV�vW�vX�vY�vZ�v[�v\�v]�v^�v_�v`�va�vb�vc�vd�ve�vf�vg�vh�vi�vj�vk�vl�vm�vn�vo�vpvqvrvsvtvuvvvwvxvy
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������v{v|v}v~vv�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�	v�	v�	v�	v�	v�	v�	v�	v�	v�	v�
v�
v�
v�
v�
v�
v�
v�
v�
v�
v�v�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�v�
v�
v�
v�
v�
v�
v�
v�
v�
v�
v�v�v�v�wwwwwwwwww	w
www
wwwwwwwwwwwwwwwwwww w!w"w#w$w%w&w'w(w)w*w+w,w-w.w/w0w1w2w3w4w5w6w7w8w9w:w;w<w=w>w?w@wAwBwCwDwE
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������wGwHwIwJwKwLwMwNwOwPwQwRwSwTwUwVwWwXwYwZw[w\w]w^w_w`wawbwcwdwewfwgwhwiwjwkwlwmwnwowpwqwrwswtwuwvwwwxwywzw{w|w}w~ww�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�w�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������w�w�w�w� w� w� w� w� w� w� w� w� w� w�!w�!w�!w�!w�!w�!w�!w�!w�!w�!w�"w�"w�"w�"w�"w�"w�"w�"w�"w�"w�#w�#w�#w�#w�#w�#w�#w�#w�#w�#w�$w�$w�$w�$w�$w�$w�$w�$w�$w�$w�%w�%w�%w�%w�%w�%w�%w�%w�%w�%w�&w�&w�&w�&w�&w�&w�&w�&w�&w�&w�'w�'w�'w�'w�'w�'w�'w�'w�'w�'x(x(x(x(x(x(x(x(x(x	(x
)x)x)x
)x)x)x)x
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������)x)x*x*x*x*x*x*x*x*x*x*x+x+x +x!+x"+x#+x$+x%+x&+x'+x(,x),x*,x+,x,,x-,x.,x/,x0,x1,x2-x3-x4-x5-x6-x7-x8-x9-x:-x;-x<.x=.x>.x?.x@.xA.xB.xC.xD.xE.xF/xG/xH/xI/xJ/xK/xL/xM/xN/xO/xP0xQ0xR0xS0xT0xU0xV0xW0xX0xY0xZ1x[1x\1x]1x^1x_1x`1xa1xb1xc1xd2xe2xf2xg2xh2xi2xj2xk2xl2xm2xn3xo3xp3xq3xr3xs3xt3xu3xv3xw
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������4xy4xz4x{4x|4x}4x~4x4x�4x�4x�5x�5x�5x�5x�5x�5x�5x�5x�5x�5x�6x�6x�6x�6x�6x�6x�6x�6x�6x�6x�7x�7x�7x�7x�7x�7x�7x�7x�7x�7x�8x�8x�8x�8x�8x�8x�8x�8x�8x�8x�9x�9x�9x�9x�9x�9x�9x�9x�9x�9x�:x�:x�:x�:x�:x�:x�:x�:x�:x�:x�;x�;x�;x�;x�;x�;x�;x�;x�;x�;x�<x�<x�<x�<x�<x�<x�<x�<x�<x�<x�=x�=x�=x�=x�=x�=x�=x�=x�=x�=x�>x�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������>x�>x�>x�>x�>x�>x�>x�>x�?x�?x�?x�?x�?x�?x�?x�?x�?x�?x�@x�@x�@x�@x�@x�@x�@x�@x�@x�@x�Ax�Ax�Ax�Ax�Ax�AyAyAyAyAyByByByByBy	By
ByByBy
ByCyCyCyCyCyCyCyCyCyCyDyDyDyDyDyDyDyDy Dy!Dy"Ey#Ey$Ey%Ey&Ey'Ey(Ey)Ey*Ey+Ey,Fy-Fy.Fy/Fy0Fy1Fy2Fy3Fy4Fy5Fy6Gy7Gy8Gy9Gy:Gy;Gy<Gy=Gy>Gy?Gy@HyAHyBHyC
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������HyEHyFHyGHyHHyIHyJIyKIyLIyMIyNIyOIyPIyQIyRIySIyTJyUJyVJyWJyXJyYJyZJy[Jy\Jy]Jy^Ky_Ky`KyaKybKycKydKyeKyfKygKyhLyiLyjLykLylLymLynLyoLypLyqLyrMysMytMyuMyvMywMyxMyyMyzMy{My|Ny}Ny~NyNy�Ny�Ny�Ny�Ny�Ny�Ny�Oy�Oy�Oy�Oy�Oy�Oy�Oy�Oy�Oy�Oy�Py�Py�Py�Py�Py�Py�Py�Py�Py�Py�Qy�Qy�Qy�Qy�Qy�Qy�Qy�Qy�Qy�Qy�Ry�Ry�Ry�Ry�Ry�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������Ry�Ry�Ry�Ry�Sy�Sy�Sy�Sy�Sy�Sy�Sy�Sy�Sy�Sy�Ty�Ty�Ty�Ty�Ty�Ty�Ty�Ty�Ty�Ty�Uy�Uy�Uy�Uy�Uy�Uy�Uy�Uy�Uy�Uy�Vy�Vy�Vy�Vy�Vy�Vy�Vy�Vy�Vy�Vy�Wy�Wy�Wy�Wy�Wy�Wy�Wy�Wy�Wy�Wy�Xy�Xy�Xy�Xy�Xy�Xy�Xy�Xy�Xy�Xy�Yy�Yy�Yy�Yy�Yy�Yy�Yy�Yy�Yy�Yy�Zy�Zy�Zy�Zy�Zy�Zy�Zy�Zy�Zy�Zy�[y�[z[z[z[z[z[z[z[z[z\z	\z
\z\z\z
\z\z
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������\z\z]z]z]z]z]z]z]z]z]z]z^z^z^z^z ^z!^z"^z#^z$^z%^z&_z'_z(_z)_z*_z+_z,_z-_z._z/_z0`z1`z2`z3`z4`z5`z6`z7`z8`z9`z:az;az<az=az>az?az@azAazBazCazDbzEbzFbzGbzHbzIbzJbzKbzLbzMbzNczOczPczQczRczSczTczUczVczWczXdzYdzZdz[dz\dz]dz^dz_dz`dzadzbezcezdezeezfezgezheziezjezkezlfzmfznfzofzpfzqfzrfzsfztfzu
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������gzwgzxgzygzzgz{gz|gz}gz~gzgz�hz�hz�hz�hz�hz�hz�hz�hz�hz�hz�iz�iz�iz�iz�iz�iz�iz�iz�iz�iz�jz�jz�jz�jz�jz�jz�jz�jz�jz�jz�kz�kz�kz�kz�kz�kz�kz�kz�kz�kz�lz�lz�lz�lz�lz�lz�lz�lz�lz�lz�mz�mz�mz�mz�mz�mz�mz�mz�mz�mz�nz�nz�nz�nz�nz�nz�nz�nz�nz�nz�oz�oz�oz�oz�oz�oz�oz�oz�oz�oz�pz�pz�pz�pz�pz�pz�pz�pz�pz�pz�qz�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������qz�qz�qz�qz�qz�qz�qz�qz�rz�rz�rz�rz�rz�rz�rz�rz�rz�rz�sz�sz�sz�sz�sz�sz�sz�sz�sz�sz�tz�tz�tz�tz�tz�tz�tz�t{t{t{u{u{u{u{u{u{u{	u{
u{u{v{
v{v{v{v{v{v{v{v{v{w{w{w{w{w{w{w{w{w{w{ x{!x{"x{#x{$x{%x{&x{'x{(x{)x{*y{+y{,y{-y{.y{/y{0y{1y{2y{3y{4z{5z{6z{7z{8z{9z{:z{;z{<z{=z{>{{?{{@{{A
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx����������������{{C{{D{{E{{F{{G{{H|{I|{J|{K|{L|{M|{N|{O|{P|{Q|{R}{S}{T}{U}{V}{W}{X}{Y}{Z}{[}{\~{]~{^~{_~{`~{a~{b~{c~{d~{e~{f{g{h{i{j{k{l{m{n{o{p�{q�{r�{s�{t�{u�{v�{w�{x�{y�{z�{{�{|�{}�{~�{�{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��{��|�|�|�|�|�|�|�|�|�|	�|
�|�|�|
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������|�|�|�|�|�|�|�|�|�|�|�|�|�|�|�|�|�| �|!�|"�|#�|$�|%�|&�|'�|(�|)�|*�|+�|,�|-�|.�|/�|0�|1�|2�|3�|4�|5�|6�|7�|8�|9�|:�|;�|<�|=�|>�|?�|@�|A�|B�|C�|D�|E�|F�|G�|H�|I�|J�|K�|L�|M�|N�|O�|P�|Q�|R�|S�|T�|U�|V�|W�|X�|Y�|Z�|[�|\�|]�|^�|_�|`�|a�|b�|c�|d�|e�|f�|g�|h�|i�|j�|k�|l�|m�|n�|o�|p�|q�|r�|s
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������|u�|v�|w�|x�|y�|z�|{�||�|}�|~�|�|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��|��}�}�}�}�}�}�}�}�}�}	�}
�}�}�}
�}�}�}�}�}�}�}�}�}�}�}�}�}�}�}�}�}�}�} �}!�}"�}#�}$�}%�}&�}'�}(�})�}*�}+�},�}-�}.�}/�}0�}1�}2�}3�}4�}5�}6�}7�}8�}9�}:�};�}<�}=�}>�}?
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������}A�}B�}C�}D�}E�}F�}G�}H�}I�}J�}K�}L�}M�}N�}O�}P�}Q�}R�}S�}T�}U�}V�}W�}X�}Y�}Z�}[�}\�}]�}^�}_�}`�}a�}b�}c�}d�}e�}f�}g�}h�}i�}j�}k�}l�}m�}n�}o�}p�}q�}r�}s�}t�}u�}v�}w�}x�}y�}z�}{�}|�}}�}~�}�}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��}��~�~�~�~�~�~�~�~�~�~	�~
�~
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������~
�~�~�~�~�~�~�~�~�~�~�~�~�~�~�~�~�~�~�~ �~!�~"�~#�~$�~%�~&�~'�~(�~)�~*�~+�~,�~-�~.�~/�~0�~1�~2�~3�~4�~5�~6�~7�~8�~9�~:�~;�~<�~=�~>�~?�~@�~A�~B�~C�~D�~E�~F�~G�~H�~I�~J�~K�~L�~M�~N�~O�~P�~Q�~R�~S�~T�~U�~V�~W�~X�~Y�~Z�~[�~\�~]�~^�~_�~`�~a�~b�~c�~d�~e�~f�~g�~h�~i�~j�~k�~l�~m�~n�~o�~p�~q
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������~s�~t�~u�~v�~w�~x�~y�~z�~{�~|�~}�~~�~�~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~�
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~��~�����������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=
e������ (08@HPX`hpx���������������� (08@HPX`hpx���������������� (08@HPX`hpx�����������������?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������������������������������������������
d�������'/7?GOW_gow����������������'/7?GOW_gow����������������'/7?GOW_gow����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������g��h��i��j��k��l��m��n��o��p
�q
�r
�s
�t
�u
�v
�w
�x
�y
�z
�{
�|
�}
�~
�
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��
��
��
��
��
��
��
	��
	��
	��
	��
	��
	��
	��
	��
	��
	��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��

��

��

��

��

��

��

��

��

��

��
��
��
��
�
�
�
�
�
�
�
�
�
�	
�

�
�
�

�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
�!
�"
�#
�$
�%
�&
�'
�(
�)
�*
�+
�,
�-
�.
�/
�0
�1
�2
�3
�4
�5
�6
�7
�8
�9
�:
�;
�<
�=
�>
�?
�@
�A
�B
�C
�D
�E
�F
�G
�H
�I
�J
�K
�L
�M
�N
�O
�P
�Q
�R
�S
�T
�U
�V
�W
�X
�Y
�Z
�[
�\
�]
�^
�_
�`
�a
�b
�c
�d
�e
�f
�g
�h
�i
�j
�k
�l
�m
�n
�o
�p
�q
�r
�s
�t
�u
�v
�w
�x
�y
�z
�{
�|
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
�~
�
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
 ��
 ��
 ��
 ��
 ��
 ��
 ��
 ��
 ��
 ��
!��
!��
!��
!��
!��
!��
!��
!��
!��
!��
"��
"��
"��
"��
"��
"��
"��
"��
"��
"��
#��
#��
#��
#��
#��
#��
#��
#��
#��
#��
$��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
$��
$��
$��
$��
$��
$��
$��
$��
%��
%��
%��
%��
%��
%��
%��
%��
%��
%��
&��
&��
&��
&��
&��
&��
&��
&��
&��
&��
'��
'��
'��
'��
'��
'��
'��
'��
'��
'�
(�
(�
(�
(�
(�
(�
(�
(�
(�	
(�

)�
)�
)�

)�
)�
)�
)�
)�
)�
)�
*�
*�
*�
*�
*�
*�
*�
*�
*�
*�
+�
+� 
+�!
+�"
+�#
+�$
+�%
+�&
+�'
+�(
,�)
,�*
,�+
,�,
,�-
,�.
,�/
,�0
,�1
,�2
-�3
-�4
-�5
-�6
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
-�8
-�9
-�:
-�;
-�<
.�=
.�>
.�?
.�@
.�A
.�B
.�C
.�D
.�E
.�F
/�G
/�H
/�I
/�J
/�K
/�L
/�M
/�N
/�O
/�P
0�Q
0�R
0�S
0�T
0�U
0�V
0�W
0�X
0�Y
0�Z
1�[
1�\
1�]
1�^
1�_
1�`
1�a
1�b
1�c
1�d
2�e
2�f
2�g
2�h
2�i
2�j
2�k
2�l
2�m
2�n
3�o
3�p
3�q
3�r
3�s
3�t
3�u
3�v
3�w
3�x
4�y
4�z
4�{
4�|
4�}
4�~
4�
4��
4��
4��
5��
5��
5��
5��
5��
5��
5��
5��
5��
5��
6��
6��
6��
6��
6��
6��
6��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
6��
6��
7��
7��
7��
7��
7��
7��
7��
7��
7��
7��
8��
8��
8��
8��
8��
8��
8��
8��
8��
8��
9��
9��
9��
9��
9��
9��
9��
9��
9��
9��
:��
:��
:��
:��
:��
:��
:��
:��
:��
:��
;��
;��
;��
;��
;��
;��
;��
;��
;��
;��
<��
<��
<��
<��
<��
<��
<��
<��
<��
<��
=��
=��
=��
=��
=��
=��
=��
=��
=��
=��
>��
>��
>��
>��
>��
>��
>��
>��
>��
>��
?��
?��
?��
?��
?��
?��
?��
?��
?��
?��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
@��
@��
@��
@��
@��
@��
@��
@��
@��
A��
A��
A��
A��
A��
A�
A�
A�
A�
A�
B�
B�
B�
B�
B�	
B�

B�
B�
B�

B�
C�
C�
C�
C�
C�
C�
C�
C�
C�
C�
D�
D�
D�
D�
D�
D�
D�
D� 
D�!
D�"
E�#
E�$
E�%
E�&
E�'
E�(
E�)
E�*
E�+
E�,
F�-
F�.
F�/
F�0
F�1
F�2
F�3
F�4
F�5
F�6
G�7
G�8
G�9
G�:
G�;
G�<
G�=
G�>
G�?
G�@
H�A
H�B
H�C
H�D
H�E
H�F
H�G
H�H
H�I
H�J
I�K
I�L
I�M
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
I�O
I�P
I�Q
I�R
I�S
I�T
J�U
J�V
J�W
J�X
J�Y
J�Z
J�[
J�\
J�]
J�^
K�_
K�`
K�a
K�b
K�c
K�d
K�e
K�f
K�g
K�h
L�i
L�j
L�k
L�l
L�m
L�n
L�o
L�p
L�q
L�r
M�s
M�t
M�u
M�v
M�w
M�x
M�y
M�z
M�{
M�|
N�}
N�~
N�
N��
N��
N��
N��
N��
N��
N��
O��
O��
O��
O��
O��
O��
O��
O��
O��
O��
P��
P��
P��
P��
P��
P��
P��
P��
P��
P��
Q��
Q��
Q��
Q��
Q��
Q��
Q��
Q��
Q��
Q��
R��
R��
R��
R��
R��
R��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
R��
R��
R��
S��
S��
S��
S��
S��
S��
S��
S��
S��
S��
T��
T��
T��
T��
T��
T��
T��
T��
T��
T��
U��
U��
U��
U��
U��
U��
U��
U��
U��
U��
V��
V��
V��
V��
V��
V��
V��
V��
V��
V��
W��
W��
W��
W��
W��
W��
W��
W��
W��
W��
X��
X��
X��
X��
X��
X��
X��
X��
X��
X��
Y��
Y��
Y��
Y��
Y��
Y��
Y��
Y��
Y��
Y��
Z��
Z��
Z��
Z��
Z��
Z��
Z��
Z��
Z��
Z��
[��
[�
[�
[�
[�
[�
[�
[�
[�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
\�	
\�

\�
\�
\�

\�
\�
\�
\�
\�
]�
]�
]�
]�
]�
]�
]�
]�
]�
]�
^�
^�
^�
^� 
^�!
^�"
^�#
^�$
^�%
^�&
_�'
_�(
_�)
_�*
_�+
_�,
_�-
_�.
_�/
_�0
`�1
`�2
`�3
`�4
`�5
`�6
`�7
`�8
`�9
`�:
a�;
a�<
a�=
a�>
a�?
a�@
a�A
a�B
a�C
a�D
b�E
b�F
b�G
b�H
b�I
b�J
b�K
b�L
b�M
b�N
c�O
c�P
c�Q
c�R
c�S
c�T
c�U
c�V
c�W
c�X
d�Y
d�Z
d�[
d�\
d�]
d�^
d�_
d�`
d�a
d�b
e�c
e�d
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
e�f
e�g
e�h
e�i
e�j
e�k
e�l
f�m
f�n
f�o
f�p
f�q
f�r
f�s
f�t
f�u
f�v
g�w
g�x
g�y
g�z
g�{
g�|
g�}
g�~
g�
g��
h��
h��
h��
h��
h��
h��
h��
h��
h��
h��
i��
i��
i��
i��
i��
i��
i��
i��
i��
i��
j��
j��
j��
j��
j��
j��
j��
j��
j��
j��
k��
k��
k��
k��
k��
k��
k��
k��
k��
k��
l��
l��
l��
l��
l��
l��
l��
l��
l��
l��
m��
m��
m��
m��
m��
m��
m��
m��
m��
m��
n��
n��
n��
n��
n��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
n��
n��
n��
n��
o��
o��
o��
o��
o��
o��
o��
o��
o��
o��
p��
p��
p��
p��
p��
p��
p��
p��
p��
p��
q��
q��
q��
q��
q��
q��
q��
q��
q��
q��
r��
r��
r��
r��
r��
r��
r��
r��
r��
r��
s��
s��
s��
s��
s��
s��
s��
s��
s��
s��
t��
t��
t��
t��
t��
t��
t��
t�
t�
t�
u�
u�
u�
u�
u�
u�
u�	
u�

u�
u�
v�

v�
v�
v�
v�
v�
v�
v�
v�
v�
w�
w�
w�
w�
w�
w�
w�
w�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
w� 
x�!
x�"
x�#
x�$
x�%
x�&
x�'
x�(
x�)
x�*
y�+
y�,
y�-
y�.
y�/
y�0
y�1
y�2
y�3
y�4
z�5
z�6
z�7
z�8
z�9
z�:
z�;
z�<
z�=
z�>
{�?
{�@
{�A
{�B
{�C
{�D
{�E
{�F
{�G
{�H
|�I
|�J
|�K
|�L
|�M
|�N
|�O
|�P
|�Q
|�R
}�S
}�T
}�U
}�V
}�W
}�X
}�Y
}�Z
}�[
}�\
~�]
~�^
~�_
~�`
~�a
~�b
~�c
~�d
~�e
~�f
�g
�h
�i
�j
�k
�l
�m
�n
�o
�p
��q
��r
��s
��t
��u
��v
��w
��x
��y
��z
��{
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��}
��~
��
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
��
��
��
��
��
��
��
��
��
��	
��

��
��
��

��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
�� 
��!
��"
��#
��$
��%
��&
��'
��(
��)
��*
��+
��,
��-
��.
��/
��0
��1
��2
��3
��4
��5
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��7
��8
��9
��:
��;
��<
��=
��>
��?
��@
��A
��B
��C
��D
��E
��F
��G
��H
��I
��J
��K
��L
��M
��N
��O
��P
��Q
��R
��S
��T
��U
��V
��W
��X
��Y
��Z
��[
��\
��]
��^
��_
��`
��a
��b
��c
��d
��e
��f
��g
��h
��i
��j
��k
��l
��m
��n
��o
��p
��q
��r
��s
��t
��u
��v
��w
��x
��y
��z
��{
��|
��}
��~
��
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
��
��
��
��
��
��
��
��
��
��	
��

��
��
��

��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
�� 
��!
��"
��#
��$
��%
��&
��'
��(
��)
��*
��+
��,
��-
��.
��/
��0
��1
��2
��3
��4
��5
��6
��7
��8
��9
��:
��;
��<
��=
��>
��?
��@
��A
��B
��C
��D
��E
��F
��G
��H
��I
��J
��K
��L
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��N
��O
��P
��Q
��R
��S
��T
��U
��V
��W
��X
��Y
��Z
��[
��\
��]
��^
��_
��`
��a
��b
��c
��d
��e
��f
��g
��h
��i
��j
��k
��l
��m
��n
��o
��p
��q
��r
��s
��t
��u
��v
��w
��x
��y
��z
��{
��|
��}
��~
��
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
��
��
��
��
��
��
��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��
��	
��

��
��
��

��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
�� 
��!
��"
��#
��$
��%
��&
��'
��(
��)
��*
��+
��,
��-
��.
��/
��0
��1
��2
��3
��4
��5
��6
��7
��8
��9
��:
��;
��<
��=
��>
��?
��@
��A
��B
��C
��D
��E
��F
��G
��H
��I
��J
��K
��L
��M
��N
��O
��P
��Q
��R
��S
��T
��U
��V
��W
��X
��Y
��Z
��[
��\
��]
��^
��_
��`
��a
��b
��c
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��e
��f
��g
��h
��i
��j
��k
��l
��m
��n
��o
��p
��q
��r
��s
��t
��u
��v
��w
��x
��y
��z
��{
��|
��}
��~
��
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
��
��
��
��
��
��
��
��
��
��	
��

��
��
��

��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��
�� 
��!
��"
��#
��$
��%
��&
��'
��(
��)
��*
��+
��,
��-
��.
��/
��0
��1
��2
��3
��4
��5
��6
��7
��8
��9
��:
��;
��<
��=
��>
��?
��@
��A
��B
��C
��D
��E
��F
��G
��H
��I
��J
��K
��L
��M
��N
��O
��P
��Q
��R
��S
��T
��U
��V
��W
��X
��Y
��Z
��[
��\
��]
��^
��_
��`
��a
��b
��c
��d
��e
��f
��g
��h
��i
��j
��k
��l
��m
��n
��o
��p
��q
��r
��s
��t
��u
��v
��w
��x
��y
��z
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��|
��}
��~
��
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
���
��
��
��
��
��
��
��
��
��
��	
��

��
��
��

��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
��
�� 
��!
��"
��#
��$
��%
��&
��'
��(
��)
��*
��+
��,
��-
��.
��/
��0
��1
��2
��3
��4
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
��6
��7
��8
��9
��:
��;
��<
��=
��>
��?
��@
��A
��B
��C
��D
��E
��F
��G
��H
��I
��J
��K
��L
��M
��N
��O
��P
��Q
��R
��S
��T
��U
��V
��W
��X
��Y
��Z
��[
��\
��]
��^
��_
��`
��a
��b
��c
��d
��e
��f
��g
��h
��i
��j
��k
��l
��m
��n
��o
��p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������������������������������������������������������������������������������������������������	��	��	��	��	��	��	��	��	��	��
��
��
��
��
��
��
��
��
��
����������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������
��
��
��
��
��
��
��
��
��
������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�����������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������� �� �� �� �� �� �� �� �� �� ��!��!��!��!��!��!��!��!��!��!��"��"��"��"��"��"��"��"��"��"��#��#��#��#��#��#��#��#��#��#��$��$��$��$��$��$��$��$��$��$��%��%��%��%��%��%��%��%��%��%��&��&��&��&��&��&��&��&��&��&��'��'��'��'��'��'��'��'��'��'�(�(�(�(�(�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������(�(�(�	(�
)�)�)�
)�)�)�)�)�)�)�*�*�*�*�*�*�*�*�*�*�+�+� +�!+�"+�#+�$+�%+�&+�'+�(,�),�*,�+,�,,�-,�.,�/,�0,�1,�2-�3-�4-�5-�6-�7-�8-�9-�:-�;-�<.�=.�>.�?.�@.�A.�B.�C.�D.�E.�F/�G/�H/�I/�J/�K/�L/�M/�N/�O/�P0�Q0�R0�S0�T0�U0�V0�W0�X0�Y0�Z1�[1�\1�]1�^1�_1�`1�a1�b
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������1�d2�e2�f2�g2�h2�i2�j2�k2�l2�m2�n3�o3�p3�q3�r3�s3�t3�u3�v3�w3�x4�y4�z4�{4�|4�}4�~4�4��4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��6��6��6��6��6��6��6��7��7��7��7��7��7��7��7��7��7��8��8��8��8��8��8��8��8��8��8��9��9��9��9��9��9��9��9��9��9��:��:��:��:��:��:��:��:��:��:��;��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������;��;��;��;��;��;��;��;��<��<��<��<��<��<��<��<��<��<��=��=��=��=��=��=��=��=��=��=��>��>��>��>��>��>��>��>��>��>��?��?��?��?��?��?��?��?��?��?��@��@��@��@��@��@��@��@��@��@��A��A��A��A��A��A�A�A�A�A�B�B�B�B�B�	B�
B�B�B�
B�C�C�C�C�C�C�C�C�C�C�D�D�D�D�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������D�D�D� D�!D�"E�#E�$E�%E�&E�'E�(E�)E�*E�+E�,F�-F�.F�/F�0F�1F�2F�3F�4F�5F�6G�7G�8G�9G�:G�;G�<G�=G�>G�?G�@H�AH�BH�CH�DH�EH�FH�GH�HH�IH�JI�KI�LI�MI�NI�OI�PI�QI�RI�SI�TJ�UJ�VJ�WJ�XJ�YJ�ZJ�[J�\J�]J�^K�_K�`K�aK�bK�cK�dK�eK�fK�gK�hL�iL�jL�kL�lL�mL�nL�oL�pL�qL�rM�sM�tM�uM�vM�wM�xM�y
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������M�{M�|N�}N�~N�N��N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P��P��P��P��P��Q��Q��Q��Q��Q��Q��Q��Q��Q��Q��R��R��R��R��R��R��R��R��R��R��S��S��S��S��S��S��S��S��S��S��T��T��T��T��T��T��T��T��T��T��U��U��U��U��U��U��U��U��U��U��V��V��V��V��V��V��V��V��V��V��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������W��W��W��W��W��W��W��W��W��X��X��X��X��X��X��X��X��X��X��Y��Y��Y��Y��Y��Y��Y��Y��Y��Y��Z��Z��Z��Z��Z��Z��Z��Z��Z��Z��[��[�[�[�[�[�[�[�[�[�\�	\�
\�\�\�
\�\�\�\�\�]�]�]�]�]�]�]�]�]�]�^�^�^�^� ^�!^�"^�#^�$^�%^�&_�'_�(_�)_�*_�+_�,_�-_�._�/_�0`�1`�2`�3
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������`�5`�6`�7`�8`�9`�:a�;a�<a�=a�>a�?a�@a�Aa�Ba�Ca�Db�Eb�Fb�Gb�Hb�Ib�Jb�Kb�Lb�Mb�Nc�Oc�Pc�Qc�Rc�Sc�Tc�Uc�Vc�Wc�Xd�Yd�Zd�[d�\d�]d�^d�_d�`d�ad�be�ce�de�ee�fe�ge�he�ie�je�ke�lf�mf�nf�of�pf�qf�rf�sf�tf�uf�vg�wg�xg�yg�zg�{g�|g�}g�~g�g��h��h��h��h��h��h��h��h��h��h��i��i��i��i��i��i��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������i��i��i��j��j��j��j��j��j��j��j��j��j��k��k��k��k��k��k��k��k��k��k��l��l��l��l��l��l��l��l��l��l��m��m��m��m��m��m��m��m��m��m��n��n��n��n��n��n��n��n��n��n��o��o��o��o��o��o��o��o��o��o��p��p��p��p��p��p��p��p��p��p��q��q��q��q��q��q��q��q��q��q��r��r��r��r��r��r��r��r��r��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������s��s��s��s��s��s��s��s��s��s��t��t��t��t��t��t��t��t�t�t�u�u�u�u�u�u�u�	u�
u�u�v�
v�v�v�v�v�v�v�v�v�w�w�w�w�w�w�w�w�w�w� x�!x�"x�#x�$x�%x�&x�'x�(x�)x�*y�+y�,y�-y�.y�/y�0y�1y�2y�3y�4z�5z�6z�7z�8z�9z�:z�;z�<z�=z�>{�?{�@{�A{�B{�C{�D{�E{�F{�G{�H|�I|�J
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������|�L|�M|�N|�O|�P|�Q|�R}�S}�T}�U}�V}�W}�X}�Y}�Z}�[}�\~�]~�^~�_~�`~�a~�b~�c~�d~�e~�f�g�h�i�j�k�l�m�n�o�p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������C�Lg��������(5BO\iv����������,9FS`mz����������	#0=JWdq~���������L#��L%��bL&���L'��L(��yL)���L*��3L+���L,���L-��JL.���L/��L0��aL1��L2�L3�xL4#��L5-�2L66��L7?��L8H�IL9R��L:[�L;d�`L<n��L=w�L>��wL?���L@��1LA���LB���LC��HLD���LE��LF��_LG���LH��LI��vLJ���LK��0LL��LM��LN�GLO��LP(�LQ1�^LR:��LSD�LTM�uLUV��LV_�/LWi��LXr��LY{�FLZ���L[��L\��]L]���L^��L_��tL`���La��.Lb���Lc���Ld��ELe���Lf���
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
����������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������b��c��d��e��f��g��h��i��j��k��l��m��n��o��p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�����������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������	��	��	��	��	��	��	��	��	��	��
��
��
��
��
��
��
��
��
��
������������������������������������������
��
��
��
��
��
��
��
��
��
��������������������	�
���
�������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������y�z�{�|�}�~������������������������������������������������������������������������������������������������� �� �� �� �� �� �� �� �� �� ��!��!��!��!��!��!��!��!��!��!��"��"��"��"��"��"��"��"��"��"��#��#��#��#��#��#��#��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������#��#��$��$��$��$��$��$��$��$��$��$��%��%��%��%��%��%��%��%��%��%��&��&��&��&��&��&��&��&��&��&��'��'��'��'��'��'��'��'��'��'��(�(�(�(�(�(�(�(�(�(�	)�
)�)�)�
)�)�)�)�)�)�*�*�*�*�*�*�*�*�*�*�+�+�+� +�!+�"+�#+�$+�%+�&+�',�(,�),�*,�+,�,,�-,�.,�/,�0,�1
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������-�3-�4-�5-�6-�7-�8-�9-�:-�;.�<.�=.�>.�?.�@.�A.�B.�C.�D.�E/�F/�G/�H/�I/�J/�K/�L/�M/�N/�O0�P0�Q0�R0�S0�T0�U0�V0�W0�X0�Y1�Z1�[1�\1�]1�^1�_1�`1�a1�b1�c2�d2�e2�f2�g2�h2�i2�j2�k2�l2�m3�n3�o3�p3�q3�r3�s3�t3�u3�v3�w4�x4�y4�z4�{4�|4�}4�~4�4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������6��6��6��6��6��6��7��7��7��7��7��7��7��7��7��7��8��8��8��8��8��8��8��8��8��8��9��9��9��9��9��9��9��9��9��9��:��:��:��:��:��:��:��:��:��:��;��;��;��;��;��;��;��;��;��;��<��<��<��<��<��<��<��<��<��<��=��=��=��=��=��=��=��=��=��=��>��>��>��>��>��>��>��>��>��>��?��?��?��?��?��?��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������?��?��?��@��@��@��@��@��@��@��@��@��@��A��A��A��A��A��A��A�A�A�A�B�B�B�B�B�B�	B�
B�B�B�
C�C�C�C�C�C�C�C�C�C�D�D�D�D�D�D�D�D�D� D�!E�"E�#E�$E�%E�&E�'E�(E�)E�*E�+F�,F�-F�.F�/F�0F�1F�2F�3F�4F�5G�6G�7G�8G�9G�:G�;G�<G�=G�>G�?H�@H�AH�BH�CH�DH�EH�FH�GH�H
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������I�JI�KI�LI�MI�NI�OI�PI�QI�RI�SJ�TJ�UJ�VJ�WJ�XJ�YJ�ZJ�[J�\J�]K�^K�_K�`K�aK�bK�cK�dK�eK�fK�gL�hL�iL�jL�kL�lL�mL�nL�oL�pL�qM�rM�sM�tM�uM�vM�wM�xM�yM�zM�{N�|N�}N�~N�N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P��P��P��P��P��Q��Q��Q��Q��Q��Q��Q��Q��Q��Q��R��R��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������R��R��R��R��R��R��R��S��S��S��S��S��S��S��S��S��S��T��T��T��T��T��T��T��T��T��T��U��U��U��U��U��U��U��U��U��U��V��V��V��V��V��V��V��V��V��V��W��W��W��W��W��W��W��W��W��W��X��X��X��X��X��X��X��X��X��X��Y��Y��Y��Y��Y��Y��Y��Y��Y��Y��Z��Z��Z��Z��Z��Z��Z��Z��Z��Z��[��[��[�[�[�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������[�[�[�[�\�\�	\�
\�\�\�
\�\�\�\�]�]�]�]�]�]�]�]�]�]�^�^�^�^�^� ^�!^�"^�#^�$^�%_�&_�'_�(_�)_�*_�+_�,_�-_�._�/`�0`�1`�2`�3`�4`�5`�6`�7`�8`�9a�:a�;a�<a�=a�>a�?a�@a�Aa�Ba�Cb�Db�Eb�Fb�Gb�Hb�Ib�Jb�Kb�Lb�Mc�Nc�Oc�Pc�Qc�Rc�Sc�Tc�Uc�Vc�Wd�Xd�Yd�Zd�[d�\d�]d�^d�_
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������d�ae�be�ce�de�ee�fe�ge�he�ie�je�kf�lf�mf�nf�of�pf�qf�rf�sf�tf�ug�vg�wg�xg�yg�zg�{g�|g�}g�~g�h��h��h��h��h��h��h��h��h��h��i��i��i��i��i��i��i��i��i��i��j��j��j��j��j��j��j��j��j��j��k��k��k��k��k��k��k��k��k��k��l��l��l��l��l��l��l��l��l��l��m��m��m��m��m��m��m��m��m��m��n��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������n��n��n��n��n��n��n��n��o��o��o��o��o��o��o��o��o��o��p��p��p��p��p��p��p��p��p��p��q��q��q��q��q��q��q��q��q��q��r��r��r��r��r��r��r��r��r��r��s��s��s��s��s��s��s��s��s��s��t��t��t��t��t��t��t��t��t�t�u�u�u�u�u�u�u�u�	u�
u�v�v�
v�v�v�v�v�v�v�v�w�w�w�w�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������w�w�w�w�w�x� x�!x�"x�#x�$x�%x�&x�'x�(x�)y�*y�+y�,y�-y�.y�/y�0y�1y�2y�3z�4z�5z�6z�7z�8z�9z�:z�;z�<z�={�>{�?{�@{�A{�B{�C{�D{�E{�F{�G|�H|�I|�J|�K|�L|�M|�N|�O|�P|�Q}�R}�S}�T}�U}�V}�W}�X}�Y}�Z}�[~�\~�]~�^~�_~�`~�a~�b~�c~�d~�e�f�g�h�i�j�k�l�m�n�o��p��q��r��s��t��u��v
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
����������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~���������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������	��	��	��	��	��	��	��	��	��	��
��
��
��
��
��
��
��
��
��
��������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������
��
��
��
��
��
��
��
��
��
��������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������ �� �� �� �� �� �� �� �� �� ��!��!��!��!��!��!��!��!��!��!��"��"��"��"��"��"��"��"��"��"��#��#��#��#��#��#��#��#��#��#��$��$��$��$��$��$��$��$��$��$��%��%��%��%��%��%��%��%��%��%��&��&��&��&��&��&��&��&��&��&��'��'��'��'��'��'��'��'��'��'��(�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������(�(�(�(�(�(�(�(�	)�
)�)�)�
)�)�)�)�)�)�*�*�*�*�*�*�*�*�*�*�+�+�+� +�!+�"+�#+�$+�%+�&+�',�(,�),�*,�+,�,,�-,�.,�/,�0,�1-�2-�3-�4-�5-�6-�7-�8-�9-�:-�;.�<.�=.�>.�?.�@.�A.�B.�C.�D.�E/�F/�G/�H/�I/�J/�K/�L/�M/�N/�O0�P0�Q0�R0�S0�T0�U0�V0�W0�X0�Y1�Z1�[1�\1�]
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������1�_1�`1�a1�b1�c2�d2�e2�f2�g2�h2�i2�j2�k2�l2�m3�n3�o3�p3�q3�r3�s3�t3�u3�v3�w4�x4�y4�z4�{4�|4�}4�~4�4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��6��6��6��6��6��6��6��7��7��7��7��7��7��7��7��7��7��8��8��8��8��8��8��8��8��8��8��9��9��9��9��9��9��9��9��9��9��:��:��:��:��:��:��:��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������:��:��;��;��;��;��;��;��;��;��;��;��<��<��<��<��<��<��<��<��<��<��=��=��=��=��=��=��=��=��=��=��>��>��>��>��>��>��>��>��>��>��?��?��?��?��?��?��?��?��?��?��@��@��@��@��@��@��@��@��@��@��A��A��A��A��A��A��A�A�A�A�B�B�B�B�B�B�	B�
B�B�B�
C�C�C�C�C�C�C�C�C�C�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������D�D�D�D�D�D�D�D� D�!E�"E�#E�$E�%E�&E�'E�(E�)E�*E�+F�,F�-F�.F�/F�0F�1F�2F�3F�4F�5G�6G�7G�8G�9G�:G�;G�<G�=G�>G�?H�@H�AH�BH�CH�DH�EH�FH�GH�HH�II�JI�KI�LI�MI�NI�OI�PI�QI�RI�SJ�TJ�UJ�VJ�WJ�XJ�YJ�ZJ�[J�\J�]K�^K�_K�`K�aK�bK�cK�dK�eK�fK�gL�hL�iL�jL�kL�lL�mL�nL�oL�pL�qM�rM�sM�t
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������M�vM�wM�xM�yM�zM�{N�|N�}N�~N�N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P��P��P��P��P��Q��Q��Q��Q��Q��Q��Q��Q��Q��Q��R��R��R��R��R��R��R��R��R��R��S��S��S��S��S��S��S��S��S��S��T��T��T��T��T��T��T��T��T��T��U��U��U��U��U��U��U��U��U��U��V��V��V��V��V��V��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������V��V��V��W��W��W��W��W��W��W��W��W��W��X��X��X��X��X��X��X��X��X��X��Y��Y��Y��Y��Y��Y��Y��Y��Y��Y��Z��Z��Z��Z��Z��Z��Z��Z��Z��Z��[��[��[�[�[�[�[�[�[�[�\�\�	\�
\�\�\�
\�\�\�\�]�]�]�]�]�]�]�]�]�]�^�^�^�^�^� ^�!^�"^�#^�$^�%_�&_�'_�(_�)_�*_�+_�,_�-_�.
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������`�0`�1`�2`�3`�4`�5`�6`�7`�8`�9a�:a�;a�<a�=a�>a�?a�@a�Aa�Ba�Cb�Db�Eb�Fb�Gb�Hb�Ib�Jb�Kb�Lb�Mc�Nc�Oc�Pc�Qc�Rc�Sc�Tc�Uc�Vc�Wd�Xd�Yd�Zd�[d�\d�]d�^d�_d�`d�ae�be�ce�de�ee�fe�ge�he�ie�je�kf�lf�mf�nf�of�pf�qf�rf�sf�tf�ug�vg�wg�xg�yg�zg�{g�|g�}g�~g�h��h��h��h��h��h��h��h��h��h��i��i��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������i��i��i��i��i��i��i��j��j��j��j��j��j��j��j��j��j��k��k��k��k��k��k��k��k��k��k��l��l��l��l��l��l��l��l��l��l��m��m��m��m��m��m��m��m��m��m��n��n��n��n��n��n��n��n��n��n��o��o��o��o��o��o��o��o��o��o��p��p��p��p��p��p��p��p��p��p��q��q��q��q��q��q��q��q��q��q��r��r��r��r��r��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������r��r��r��r��s��s��s��s��s��s��s��s��s��s��t��t��t��t��t��t��t��t��t�t�u�u�u�u�u�u�u�u�	u�
u�v�v�
v�v�v�v�v�v�v�v�w�w�w�w�w�w�w�w�w�w�x� x�!x�"x�#x�$x�%x�&x�'x�(x�)y�*y�+y�,y�-y�.y�/y�0y�1y�2y�3z�4z�5z�6z�7z�8z�9z�:z�;z�<z�={�>{�?{�@{�A{�B{�C{�D{�E
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������{�G|�H|�I|�J|�K|�L|�M|�N|�O|�P|�Q}�R}�S}�T}�U}�V}�W}�X}�Y}�Z}�[~�\~�]~�^~�_~�`~�a~�b~�c~�d~�e�f�g�h�i�j�k�l�m�n�o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������������������������������������������������������������������������������������C�L���������(5BO\iv����������,9FS`mz����������	#0=JWdq~���������Lh��Lj�Lk�sLl#��Lm,�-Ln5��Lo?��LpH�DLqQ��Lr[��Lsd�[Ltm��Luv�Lv��rLw���Lx��,Ly���Lz���L{��CL|���L}���L~��ZL���L���L���qL����L���+L���L���L��BL���L�'��L�0�YL�:��L�C�L�L�pL�V��L�_�*L�h��L�r��L�{�AL����L����L���XL����L���L���oL����L���)L����L����L���@L����L����L���WL���L��L�)�nL�2��L�<�(L�E��L�N��L�W�?L�a��L�j��L�s�VL�}��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������	��	��	��	��	��	��	��	��	��	��
��
��
��
��
��
��
��
��
��
������������������������������������������
��
��
��
��
��
��
��
��
��
��������������������	�
���
��������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������ �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������t�u�v�w�x�y�z�{�|�}�~������������������������������������������������������������������������������������������������� �� �� �� �� �� �� �� �� �� ��!��!��!��!��!��!��!��!��!��!��"��"��"��"��"��"��"��"��"��"��#��#��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������#��#��#��#��#��#��#��$��$��$��$��$��$��$��$��$��$��%��%��%��%��%��%��%��%��%��%��&��&��&��&��&��&��&��&��&��&��'��'��'��'��'��'��'��'��'��'��(�(�(�(�(�(�(�(�(�(�	)�
)�)�)�
)�)�)�)�)�)�*�*�*�*�*�*�*�*�*�*�+�+�+� +�!+�"+�#+�$+�%+�&+�',�(,�),�*,�+,�,
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������,�.,�/,�0,�1-�2-�3-�4-�5-�6-�7-�8-�9-�:-�;.�<.�=.�>.�?.�@.�A.�B.�C.�D.�E/�F/�G/�H/�I/�J/�K/�L/�M/�N/�O0�P0�Q0�R0�S0�T0�U0�V0�W0�X0�Y1�Z1�[1�\1�]1�^1�_1�`1�a1�b1�c2�d2�e2�f2�g2�h2�i2�j2�k2�l2�m3�n3�o3�p3�q3�r3�s3�t3�u3�v3�w4�x4�y4�z4�{4�|4�}4�~4�4��4��5��5��5��5��5��5��5��5��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������5��6��6��6��6��6��6��6��6��6��6��7��7��7��7��7��7��7��7��7��7��8��8��8��8��8��8��8��8��8��8��9��9��9��9��9��9��9��9��9��9��:��:��:��:��:��:��:��:��:��:��;��;��;��;��;��;��;��;��;��;��<��<��<��<��<��<��<��<��<��<��=��=��=��=��=��=��=��=��=��=��>��>��>��>��>��>��>��>��>��>��?��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������?��?��?��?��?��?��?��?��@��@��@��@��@��@��@��@��@��@��A��A��A��A��A��A��A�A�A�A�B�B�B�B�B�B�	B�
B�B�B�
C�C�C�C�C�C�C�C�C�C�D�D�D�D�D�D�D�D�D� D�!E�"E�#E�$E�%E�&E�'E�(E�)E�*E�+F�,F�-F�.F�/F�0F�1F�2F�3F�4F�5G�6G�7G�8G�9G�:G�;G�<G�=G�>G�?H�@H�AH�BH�C
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������H�EH�FH�GH�HH�II�JI�KI�LI�MI�NI�OI�PI�QI�RI�SJ�TJ�UJ�VJ�WJ�XJ�YJ�ZJ�[J�\J�]K�^K�_K�`K�aK�bK�cK�dK�eK�fK�gL�hL�iL�jL�kL�lL�mL�nL�oL�pL�qM�rM�sM�tM�uM�vM�wM�xM�yM�zM�{N�|N�}N�~N�N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P��P��P��P��P��Q��Q��Q��Q��Q��Q��Q��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������Q��Q��R��R��R��R��R��R��R��R��R��R��S��S��S��S��S��S��S��S��S��S��T��T��T��T��T��T��T��T��T��T��U��U��U��U��U��U��U��U��U��U��V��V��V��V��V��V��V��V��V��V��W��W��W��W��W��W��W��W��W��W��X��X��X��X��X��X��X��X��X��X��Y��Y��Y��Y��Y��Y��Y��Y��Y��Y��Z��Z��Z��Z��Z��Z��Z��Z��Z��Z��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������[��[�[�[�[�[�[�[�[�\�\�	\�
\�\�\�
\�\�\�\�]�]�]�]�]�]�]�]�]�]�^�^�^�^�^� ^�!^�"^�#^�$^�%_�&_�'_�(_�)_�*_�+_�,_�-_�._�/`�0`�1`�2`�3`�4`�5`�6`�7`�8`�9a�:a�;a�<a�=a�>a�?a�@a�Aa�Ba�Cb�Db�Eb�Fb�Gb�Hb�Ib�Jb�Kb�Lb�Mc�Nc�Oc�Pc�Qc�Rc�Sc�Tc�Uc�Vc�Wd�Xd�Yd�Z
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������d�\d�]d�^d�_d�`d�ae�be�ce�de�ee�fe�ge�he�ie�je�kf�lf�mf�nf�of�pf�qf�rf�sf�tf�ug�vg�wg�xg�yg�zg�{g�|g�}g�~g�h��h��h��h��h��h��h��h��h��h��i��i��i��i��i��i��i��i��i��i��j��j��j��j��j��j��j��j��j��j��k��k��k��k��k��k��k��k��k��k��l��l��l��l��l��l��l��l��l��l��m��m��m��m��m��m��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������m��m��m��n��n��n��n��n��n��n��n��n��n��o��o��o��o��o��o��o��o��o��o��p��p��p��p��p��p��p��p��p��p��q��q��q��q��q��q��q��q��q��q��r��r��r��r��r��r��r��r��r��r��s��s��s��s��s��s��s��s��s��s��t��t��t��t��t��t��t��t��t�t�u�u�u�u�u�u�u�u�	u�
u�v�v�
v�v�v�v�v�v�v�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������w�w�w�w�w�w�w�w�w�w�x� x�!x�"x�#x�$x�%x�&x�'x�(x�)y�*y�+y�,y�-y�.y�/y�0y�1y�2y�3z�4z�5z�6z�7z�8z�9z�:z�;z�<z�={�>{�?{�@{�A{�B{�C{�D{�E{�F{�G|�H|�I|�J|�K|�L|�M|�N|�O|�P|�Q}�R}�S}�T}�U}�V}�W}�X}�Y}�Z}�[~�\~�]~�^~�_~�`~�a~�b~�c~�d~�e�f�g�h�i�j�k�l�m�n�o��p��q
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�����������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������������������������������������������������������������������������������������������������������������������	��	��	��	��	��	��	��	��	��	��
��
��
��
��
��
��
��
��
��
����������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������
��
��
��
��
��
��
��
��
��
��������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/�0�1�2�3�4�5�6�7�8�9�:�;�<�=�>�?�@�A
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~���������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������������������������� �� �� �� �� �� �� �� �� �� ��!��!��!��!��!��!��!��!��!��!��"��"��"��"��"��"��"��"��"��"��#��#��#��#��#��#��#��#��#��#��$��$��$��$��$��$��$��$��$��$��%��%��%��%��%��%��%��%��%��%��&��&��&��&��&��&��&��&��&��&��'��'��'��'��'��'��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������'��'��'��(�(�(�(�(�(�(�(�(�(�	)�
)�)�)�
)�)�)�)�)�)�*�*�*�*�*�*�*�*�*�*�+�+�+� +�!+�"+�#+�$+�%+�&+�',�(,�),�*,�+,�,,�-,�.,�/,�0,�1-�2-�3-�4-�5-�6-�7-�8-�9-�:-�;.�<.�=.�>.�?.�@.�A.�B.�C.�D.�E/�F/�G/�H/�I/�J/�K/�L/�M/�N/�O0�P0�Q0�R0�S0�T0�U0�V0�W0�X
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������1�Z1�[1�\1�]1�^1�_1�`1�a1�b1�c2�d2�e2�f2�g2�h2�i2�j2�k2�l2�m3�n3�o3�p3�q3�r3�s3�t3�u3�v3�w4�x4�y4�z4�{4�|4�}4�~4�4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��6��6��6��6��6��6��6��7��7��7��7��7��7��7��7��7��7��8��8��8��8��8��8��8��8��8��8��9��9��9��9��9��9��9��9��9��9��:��:��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������:��:��:��:��:��:��:��;��;��;��;��;��;��;��;��;��;��<��<��<��<��<��<��<��<��<��<��=��=��=��=��=��=��=��=��=��=��>��>��>��>��>��>��>��>��>��>��?��?��?��?��?��?��?��?��?��?��@��@��@��@��@��@��@��@��@��@��A��A��A��A��A��A��A�A�A�A�B�B�B�B�B�B�	B�
B�B�B�
C�C�C�C�C�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������C�C�C�C�D�D�D�D�D�D�D�D�D� D�!E�"E�#E�$E�%E�&E�'E�(E�)E�*E�+F�,F�-F�.F�/F�0F�1F�2F�3F�4F�5G�6G�7G�8G�9G�:G�;G�<G�=G�>G�?H�@H�AH�BH�CH�DH�EH�FH�GH�HH�II�JI�KI�LI�MI�NI�OI�PI�QI�RI�SJ�TJ�UJ�VJ�WJ�XJ�YJ�ZJ�[J�\J�]K�^K�_K�`K�aK�bK�cK�dK�eK�fK�gL�hL�iL�jL�kL�lL�mL�nL�o
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������L�qM�rM�sM�tM�uM�vM�wM�xM�yM�zM�{N�|N�}N�~N�N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P��P��P��P��P��Q��Q��Q��Q��Q��Q��Q��Q��Q��Q��R��R��R��R��R��R��R��R��R��R��S��S��S��S��S��S��S��S��S��S��T��T��T��T��T��T��T��T��T��T��U��U��U��U��U��U��U��U��U��U��V��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������V��V��V��V��V��V��V��V��W��W��W��W��W��W��W��W��W��W��X��X��X��X��X��X��X��X��X��X��Y��Y��Y��Y��Y��Y��Y��Y��Y��Y��Z��Z��Z��Z��Z��Z��Z��Z��Z��Z��[��[��[�[�[�[�[�[�[�[�\�\�	\�
\�\�\�
\�\�\�\�]�]�]�]�]�]�]�]�]�]�^�^�^�^�^� ^�!^�"^�#^�$^�%_�&_�'_�(_�)
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������_�+_�,_�-_�._�/`�0`�1`�2`�3`�4`�5`�6`�7`�8`�9a�:a�;a�<a�=a�>a�?a�@a�Aa�Ba�Cb�Db�Eb�Fb�Gb�Hb�Ib�Jb�Kb�Lb�Mc�Nc�Oc�Pc�Qc�Rc�Sc�Tc�Uc�Vc�Wd�Xd�Yd�Zd�[d�\d�]d�^d�_d�`d�ae�be�ce�de�ee�fe�ge�he�ie�je�kf�lf�mf�nf�of�pf�qf�rf�sf�tf�ug�vg�wg�xg�yg�zg�{g�|g�}g�~g�h��h��h��h��h��h��h��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������h��h��i��i��i��i��i��i��i��i��i��i��j��j��j��j��j��j��j��j��j��j��k��k��k��k��k��k��k��k��k��k��l��l��l��l��l��l��l��l��l��l��m��m��m��m��m��m��m��m��m��m��n��n��n��n��n��n��n��n��n��n��o��o��o��o��o��o��o��o��o��o��p��p��p��p��p��p��p��p��p��p��q��q��q��q��q��q��q��q��q��q��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������r��r��r��r��r��r��r��r��r��s��s��s��s��s��s��s��s��s��s��t��t��t��t��t��t��t��t��t�t�u�u�u�u�u�u�u�u�	u�
u�v�v�
v�v�v�v�v�v�v�v�w�w�w�w�w�w�w�w�w�w�x� x�!x�"x�#x�$x�%x�&x�'x�(x�)y�*y�+y�,y�-y�.y�/y�0y�1y�2y�3z�4z�5z�6z�7z�8z�9z�:z�;z�<z�={�>{�?{�@
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������{�B{�C{�D{�E{�F{�G|�H|�I|�J|�K|�L|�M|�N|�O|�P|�Q}�R}�S}�T}�U}�V}�W}�X}�Y}�Z}�[~�\~�]~�^~�_~�`~�a~�b~�c~�d~�e�f�g�h�i�j�k�l�m�n�o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
��������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������������ ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~�����������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~���������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������	��	��	��	��	��	��	��	��	��	��
��
��
��
��
��
��
��
��
��
������������������������������������������
��
��
��
��
��
��
��
��
��
��������������������	�
���
���
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������� �!�"�#�$�%�&�'�(�)�*�+�,�-�.�/ �0 �1!�2!�3"�4"�5#�6#�7$�8$�9$�:$�;$�<$�=$�>$�?$�@$�A%�B%�C%�D%�E%�F%�G%�H%�I%�J%�K&�L&�M&�N&�O&�P&�Q&�R&�S&�T&�U'�V'�W'�X'�Y'�Z'�['�\'�]'�^'�_(�`(�a(�b(�c(�d(�e(�f(�g(�h(�i)�j)�k)�l)�m
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������)�o)�p)�q)�r)�s*�t*�u*�v*�w*�x*�y*�z*�{*�|*�}+�~+�+��+��+��+��+��+��+��+��,��,��,��,��,��,��,��,��,��,��-��-��-��-��-��-��-��-��-��-��.��.��.��.��.��.��.��.��.��.��/��/��/��/��/��/��/��/��/��/��0��0��0��0��0��0��0��0��0��0��1��1��1��1��1��1��1��1��1��1��2��2��2��2��2��2��2��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������2��2��3��3��3��3��3��3��3��3��3��3��4��4��4��4��4��4��4��4��4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��6��6��6��6��6��6��6��7��7��7��7��7��7��7��7��7��7��8�8�8�8�8�8�8�8�8�8�	9�
9�9�9�
9�9�9�9�9�9�:�:�:�:�:�:�:�:�:�:�;�;�;� ;�!;�";�#;�$;�%;�&;�'
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������<�)<�*<�+<�,<�-<�.<�/<�0<�1=�2=�3=�4=�5=�6=�7=�8=�9=�:=�;>�<>�=>�>>�?>�@>�A>�B>�C>�D>�E?�F?�G?�H?�I?�J?�K?�L?�M?�N?�O@�P@�Q@�R@�S@�T@�U@�V@�W@�X@�YA�ZA�[A�\A�]A�^A�_A�`A�aA�bA�cB�dB�eB�fB�gB�hB�iB�jB�kB�lB�mC�nC�oC�pC�qC�rC�sC�tC�uC�vC�wD�xD�yD�zD�{D�|D�}D�~D�D��D��E��E��E��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������E��E��E��E��E��E��F��F��F��F��F��F��F��F��F��F��G��G��G��G��G��G��G��G��G��G��H��H��H��H��H��H��H��H��H��H��I��I��I��I��I��I��I��I��I��I��J��J��J��J��J��J��J��J��J��J��K��K��K��K��K��K��K��K��K��K��L��L��L��L��L��L��L��L��L��L��M��M��M��M��M��M��M��M��M��M��N��N��N��N��N��N��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P��P��P��P��P��Q��Q��Q��Q��Q��Q��Q�Q�Q�Q�R�R�R�R�R�R�	R�
R�R�R�
S�S�S�S�S�S�S�S�S�S�T�T�T�T�T�T�T�T�T� T�!U�"U�#U�$U�%U�&U�'U�(U�)U�*U�+V�,V�-V�.V�/V�0V�1V�2V�3V�4V�5W�6W�7W�8W�9W�:W�;W�<W�=W�>
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������X�@X�AX�BX�CX�DX�EX�FX�GX�HX�IY�JY�KY�LY�MY�NY�OY�PY�QY�RY�SZ�TZ�UZ�VZ�WZ�XZ�YZ�ZZ�[Z�\Z�][�^[�_[�`[�a[�b[�c[�d[�e[�f[�g\�h\�i\�j\�k\�l\�m\�n\�o\�p\�q]�r]�s]�t]�u]�v]�w]�x]�y]�z]�{^�|^�}^�~^�^��^��^��^��^��^��_��_��_��_��_��_��_��_��_��_��`��`��`��`��`��`��`��`��`��`��a��a��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������a��a��a��a��a��a��a��b��b��b��b��b��b��b��b��b��b��c��c��c��c��c��c��c��c��c��c��d��d��d��d��d��d��d��d��d��d��e��e��e��e��e��e��e��e��e��e��f��f��f��f��f��f��f��f��f��f��g��g��g��g��g��g��g��g��g��g��h��h��h��h��h��h��h��h��h��h��i��i��i��i��i��i��i��i��i��i��j��j��j��j��j��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������j��j��j��j��k��k��k�k�k�k�k�k�k�k�l�l�	l�
l�l�l�
l�l�l�l�m�m�m�m�m�m�m�m�m�m�n�n�n�n�n� n�!n�"n�#n�$n�%o�&o�'o�(o�)o�*o�+o�,o�-o�.o�/p�0p�1p�2p�3p�4p�5p�6p�7p�8p�9q�:q�;q�<q�=q�>q�?q�@q�Aq�Bq�Cr�Dr�Er�Fr�Gr�Hr�Ir�Jr�Kr�Lr�Ms�Ns�Os�Ps�Qs�Rs�Ss�Ts�U
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������s�Wt�Xt�Yt�Zt�[t�\t�]t�^t�_t�`t�au�bu�cu�du�eu�fu�gu�hu�iu�ju�kv�lv�mv�nv�ov�pv�qv�rv�sv�tv�uw�vw�ww�xw�yw�zw�{w�|w�}w�~w�x��x��x��x��x��x��x��x��x��x��y��y��y��y��y��y��y��y��y��y��z��z��z��z��z��z��z��z��z��z��{��{��{��{��{��{��{��{��{��{��|��|��|��|��|��|��|��|��|��|��}��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������}��}��}��}��}��}��}��}��~��~��~��~��~��~��~��~��~��~������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
����
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��lC�L���������(5BO\iv����������,9FS`mz����������	#0=JWdq~���������L���mL����L���'L��L����L���>L��ÛL���L���UL��ĲL���L���lL����L��&L�ƃL���L�$�=L�-ǚL�7�L�@�TL�IȱL�S�L�\�kL�e��L�n�%L�xʂL����L���<L��˙L���L���SL��̰L���
L���jL����L���$L��΁L����L���;L��ϘL��L�
�RL�ЯL��L�(�iL�2��L�;�#L�DҀL�N��L�W�:L�`ӗL�j��L�s�QL�|ԮL���L���hL����L���"L���L����L���9L��זL����L���PL��حL���
L���g
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������������ �¡�¢�£�¤�¥�¦�§�¨�©�ª�«�¬��®�¯�°�±�²�³�´�µ�¶�·�¸�¹�º�»�¼�½�¾�¿�������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���À�Á�Â�Ã�Ä�Å�Æ�Ç�È�É�Ê�Ë�Ì�Í�Î�Ï�Ð�Ñ�Ò�Ó�Ô�Õ�Ö�×�Ø�Ù�Ú
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������Ü�Ý�Þ�ß�à�á�â�ã�ä�å�æ�ç�è�é�ê�ë�ì�í�î�ï�ð�ñ�ò�ó�ô�õ�ö�÷�ø�ù�ú�û�ü�ý�þ�ÿ�������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���Ā�ā�Ă�ă�Ą�ą�Ć�ć�Ĉ�ĉ�Ċ�ċ�Č�č�Ď�ď�Đ�đ�Ē�ē�Ĕ�ĕ�Ė�ė�Ę�ę�Ě�ě�Ĝ�ĝ�Ğ�ğ�Ġ�ġ�Ģ�ģ�Ĥ�ĥ�Ħ�ħ�Ĩ�ĩ�Ī�ī�Ĭ�ĭ�Į�į�İ�ı
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������ĳ�Ĵ�ĵ�Ķ�ķ�ĸ�Ĺ�ĺ�Ļ�ļ�Ľ�ľ�Ŀ�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������������������������������������ ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���ŀ�Ł�ł�Ń�ń�Ņ�ņ�Ň�ň�ŉ�Ŋ�ŋ�Ō�ō�Ŏ�ŏ�Ő�ő�Œ�œ�Ŕ�ŕ�Ŗ�ŗ�Ř�ř�Ś�ś�Ŝ�ŝ�Ş�ş�Š�š�Ţ�ţ�Ť�ť�Ŧ�ŧ�Ũ�ũ�Ū�ū�Ŭ�ŭ�Ů�ů�Ű�ű�Ų�ų�Ŵ�ŵ�Ŷ�ŷ�Ÿ�Ź�ź�Ż�ż�Ž�ž�ſ�������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������	�
���
������������������� �!�"�#�$�%
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������'�(�)	�*	�+	�,	�-	�.	�/	�0	�1	�2	�3
�4
�5
�6
�7
�8
�9
�:
�;
�<
�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q
�R
�S
�T
�U
�V
�W
�X
�Y
�Z
�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�ƀƁƂ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������ƄƅƆƇƈƉƊƋƌƍƎƏƐƑƒƓƔƕƖƗƘƙƚƛƜƝƞƟƠơƢƣƤƥƦƧƨƩƪƫƬƭƮƯưƱƲƳƴƵƶƷƸƹƺƻƼƽƾƿ��������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������������������������������������������������������	�
���
�� � � � � � � � � � �!�!�!�!�!�!�!� !�!!�"!�#"�$"�%"�&"�'"�("�)"�*"�+"�,"�-#�.#�/#�0#�1#�2#�3#�4#�5#�6#�7$�8$�9$�:$�;$�<
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������$�>$�?$�@$�A%�B%�C%�D%�E%�F%�G%�H%�I%�J%�K&�L&�M&�N&�O&�P&�Q&�R&�S&�T&�U'�V'�W'�X'�Y'�Z'�['�\'�]'�^'�_(�`(�a(�b(�c(�d(�e(�f(�g(�h(�i)�j)�k)�l)�m)�n)�o)�p)�q)�r)�s*�t*�u*�v*�w*�x*�y*�z*�{*�|*�}+�~+�+ǀ+ǁ+ǂ+ǃ+Ǆ+ǅ+ǆ+Ǉ,ǈ,ǉ,Ǌ,ǋ,ǌ,Ǎ,ǎ,Ǐ,ǐ,Ǒ-ǒ-Ǔ-ǔ-Ǖ-ǖ-Ǘ-ǘ-Ǚ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������-Ǜ.ǜ.ǝ.Ǟ.ǟ.Ǡ.ǡ.Ǣ.ǣ.Ǥ.ǥ/Ǧ/ǧ/Ǩ/ǩ/Ǫ/ǫ/Ǭ/ǭ/Ǯ/ǯ0ǰ0Ǳ0ǲ0ǳ0Ǵ0ǵ0Ƕ0Ƿ0Ǹ0ǹ1Ǻ1ǻ1Ǽ1ǽ1Ǿ1ǿ1�1�1��1��2��2��2��2��2��2��2��2��2��2��3��3��3��3��3��3��3��3��3��3��4��4��4��4��4��4��4��4��4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��6��6��6��6��6��6��6�7�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������7�7�7�7�7�7�7�7�8�8�8�8�8�8�8�8�8�8�	9�
9�9�9�
9�9�9�9�9�9�:�:�:�:�:�:�:�:�:�:�;�;�;� ;�!;�";�#;�$;�%;�&;�'<�(<�)<�*<�+<�,<�-<�.<�/<�0<�1=�2=�3=�4=�5=�6=�7=�8=�9=�:=�;>�<>�=>�>>�?>�@>�A>�B>�C>�D>�E?�F?�G?�H?�I?�J?�K?�L?�M?�N?�O@�P@�Q@�R@�S
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������@�U@�V@�W@�X@�YA�ZA�[A�\A�]A�^A�_A�`A�aA�bA�cB�dB�eB�fB�gB�hB�iB�jB�kB�lB�mC�nC�oC�pC�qC�rC�sC�tC�uC�vC�wD�xD�yD�zD�{D�|D�}D�~D�DȀDȁEȂEȃEȄEȅEȆEȇEȈEȉEȊEȋFȌFȍFȎFȏFȐFȑFȒFȓFȔFȕGȖGȗGȘGșGȚGțGȜGȝGȞGȟHȠHȡHȢHȣHȤHȥHȦHȧHȨHȩIȪIȫIȬIȭIȮIȯIȰ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������IȲIȳJȴJȵJȶJȷJȸJȹJȺJȻJȼJȽKȾKȿK�K�K��K��K��K��K��K��L��L��L��L��L��L��L��L��L��L��M��M��M��M��M��M��M��M��M��M��N��N��N��N��N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P�P�P�P�P�Q�Q�Q�Q�Q�Q�Q�Q�Q�Q�R�R�R�R�R�R�	R�
R�R�R�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������S�S�S�S�S�S�S�S�S�T�T�T�T�T�T�T�T�T� T�!U�"U�#U�$U�%U�&U�'U�(U�)U�*U�+V�,V�-V�.V�/V�0V�1V�2V�3V�4V�5W�6W�7W�8W�9W�:W�;W�<W�=W�>W�?X�@X�AX�BX�CX�DX�EX�FX�GX�HX�IY�JY�KY�LY�MY�NY�OY�PY�QY�RY�SZ�TZ�UZ�VZ�WZ�XZ�YZ�ZZ�[Z�\Z�][�^[�_[�`[�a[�b[�c[�d[�e[�f[�g\�h\�i\�j
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������\�l\�m\�n\�o\�p\�q]�r]�s]�t]�u]�v]�w]�x]�y]�z]�{^�|^�}^�~^�^ɀ^Ɂ^ɂ^Ƀ^Ʉ^Ʌ_Ɇ_ɇ_Ɉ_ɉ_Ɋ_ɋ_Ɍ_ɍ_Ɏ_ɏ`ɐ`ɑ`ɒ`ɓ`ɔ`ɕ`ɖ`ɗ`ɘ`əaɚaɛaɜaɝaɞaɟaɠaɡaɢaɣbɤbɥbɦbɧbɨbɩbɪbɫbɬbɭcɮcɯcɰcɱcɲcɳcɴcɵcɶcɷdɸdɹdɺdɻdɼdɽdɾdɿd�d�e��e��e��e��e��e��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������e��e��e��f��f��f��f��f��f��f��f��f��f��g��g��g��g��g��g��g��g��g��g��h��h��h��h��h��h��h��h��h��h��i��i��i��i��i��i��i��i��i��i��j��j�j�j�j�j�j�j�j�j�k�k�k�k�k�k�k�k�k�k�l�l�	l�
l�l�l�
l�l�l�l�m�m�m�m�m�m�m�m�m�m�n�n�n�n�n� n�!n�"n�#n�$
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������o�&o�'o�(o�)o�*o�+o�,o�-o�.o�/p�0p�1p�2p�3p�4p�5p�6p�7p�8p�9q�:q�;q�<q�=q�>q�?q�@q�Aq�Bq�Cr�Dr�Er�Fr�Gr�Hr�Ir�Jr�Kr�Lr�Ms�Ns�Os�Ps�Qs�Rs�Ss�Ts�Us�Vs�Wt�Xt�Yt�Zt�[t�\t�]t�^t�_t�`t�au�bu�cu�du�eu�fu�gu�hu�iu�ju�kv�lv�mv�nv�ov�pv�qv�rv�sv�tv�uw�vw�ww�xw�yw�zw�{w�|w�}w�~w�xʀxʁ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������xʃxʄxʅxʆxʇxʈxʉyʊyʋyʌyʍyʎyʏyʐyʑyʒyʓzʔzʕzʖzʗzʘzʙzʚzʛzʜzʝ{ʞ{ʟ{ʠ{ʡ{ʢ{ʣ{ʤ{ʥ{ʦ{ʧ|ʨ|ʩ|ʪ|ʫ|ʬ|ʭ|ʮ|ʯ|ʰ|ʱ}ʲ}ʳ}ʴ}ʵ}ʶ}ʷ}ʸ}ʹ}ʺ}ʻ~ʼ~ʽ~ʾ~ʿ~�~�~��~��~��~�������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���ˀ�ˁ�˂�˃�˄�˅�ˆ�ˇ�ˈ�ˉ�ˊ�ˋ�ˌ�ˍ�ˎ�ˏ�ː�ˑ�˒�˓�˔�˕�˖�˗�˘
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������˚�˛�˜�˝�˞�˟�ˠ�ˡ�ˢ�ˣ�ˤ�˥�˦�˧�˨�˩�˪�˫�ˬ�˭�ˮ�˯�˰�˱�˲�˳�˴�˵�˶�˷�˸�˹�˺�˻�˼�˽�˾�˿���������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���̀�́�̂�̃�̄�̅�̆�̇�̈�̉�̊�̋�̌�̍�̎�̏�̐�̑�̒�̓�̔�̕�̖�̗�̘�̙�̚�̛�̜�̝�̞�̟�̠�̡�̢�̣�̤�̥�̦�̧�̨�̩�̪�̫�̬�̭�̮�̯
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������̱�̲�̳�̴�̵�̶�̷�̸�̹�̺�̻�̼�̽�̾�̿�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
����
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���̀�́�͂�̓�̈́�ͅ�͆�͇�͈�͉�͊�͋�͌�͍�͎�͏�͐�͑�͒�͓�͔�͕�͖�͗�͘�͙�͚�͛�͜�͝�͞�͟�͠�͡�͢�ͣ�ͤ�ͥ�ͦ�ͧ�ͨ�ͩ�ͪ�ͫ�ͬ�ͭ�ͮ�ͯ�Ͱ�ͱ�Ͳ�ͳ�ʹ�͵�Ͷ�ͷ�͸�͹�ͺ�ͻ�ͼ�ͽ�;�Ϳ�������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���΀
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������΂�΃�΄�΅�Ά�·�Έ�Ή�Ί�΋�Ό�΍�Ύ�Ώ�ΐ�Α�Β�Γ�Δ�Ε�Ζ�Η�Θ�Ι�Κ�Λ�Μ�Ν�Ξ�Ο�Π�Ρ�΢�Σ�Τ�Υ�Φ�Χ�Ψ�Ω�Ϊ�Ϋ�ά�έ�ή�ί�ΰ�α�β�γ�δ�ε�ζ�η�θ�ι�κ�λ�μ�ν�ξ�ο����������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���π�ρ�ς�σ�τ�υ�φ�χ�ψ�ω�ϊ�ϋ�ό�ύ�ώ�Ϗ�ϐ�ϑ�ϒ�ϓ�ϔ�ϕ�ϖ�ϗ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������ϙ�Ϛ�ϛ�Ϝ�ϝ�Ϟ�ϟ�Ϡ�ϡ�Ϣ�ϣ�Ϥ�ϥ�Ϧ�ϧ�Ϩ�ϩ�Ϫ�ϫ�Ϭ�ϭ�Ϯ�ϯ�ϰ�ϱ�ϲ�ϳ�ϴ�ϵ�϶�Ϸ�ϸ�Ϲ�Ϻ�ϻ�ϼ�Ͻ�Ͼ�Ͽ������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)	�*	�+	�,	�-	�.	�/	�0	�1	�2	�3
�4
�5
�6
�7
�8
�9
�:
�;
�<
�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������
�S
�T
�U
�V
�W
�X
�Y
�Z
�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�ЀЁЂЃЄЅІЇЈЉЊЋЌЍЎЏАБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������абвгдежзийклмноп�����������������������������������������������������������������������������������������������������������������������������	�
�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������
�� � � � � � � � � � �!�!�!�!�!�!�!� !�!!�"!�#"�$"�%"�&"�'"�("�)"�*"�+"�,"�-#�.#�/#�0#�1#�2#�3#�4#�5#�6#�7$�8$�9$�:$�;$�<$�=$�>$�?$�@$�A%�B%�C%�D%�E%�F%�G%�H%�I%�J%�K&�L&�M&�N&�O&�P&�Q&�R&�S&�T&�U'�V'�W'�X'�Y'�Z'�['�\'�]'�^'�_(�`(�a(�b(�c(�d(�e(�f(�g(�h
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������)�j)�k)�l)�m)�n)�o)�p)�q)�r)�s*�t*�u*�v*�w*�x*�y*�z*�{*�|*�}+�~+�+р+с+т+у+ф+х+ц+ч,ш,щ,ъ,ы,ь,э,ю,я,ѐ,ё-ђ-ѓ-є-ѕ-і-ї-ј-љ-њ-ћ.ќ.ѝ.ў.џ.Ѡ.ѡ.Ѣ.ѣ.Ѥ.ѥ/Ѧ/ѧ/Ѩ/ѩ/Ѫ/ѫ/Ѭ/ѭ/Ѯ/ѯ0Ѱ0ѱ0Ѳ0ѳ0Ѵ0ѵ0Ѷ0ѷ0Ѹ0ѹ1Ѻ1ѻ1Ѽ1ѽ1Ѿ1ѿ1�1�1��1��2��2��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������2��2��2��2��2��2��2��3��3��3��3��3��3��3��3��3��3��4��4��4��4��4��4��4��4��4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��6��6��6��6��6��6��6�7�7�7�7�7�7�7�7�7�7�8�8�8�8�8�8�8�8�8�8�	9�
9�9�9�
9�9�9�9�9�9�:�:�:�:�:�:�:�:�:�:�;�;�;� ;�!;�"
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������;�$;�%;�&;�'<�(<�)<�*<�+<�,<�-<�.<�/<�0<�1=�2=�3=�4=�5=�6=�7=�8=�9=�:=�;>�<>�=>�>>�?>�@>�A>�B>�C>�D>�E?�F?�G?�H?�I?�J?�K?�L?�M?�N?�O@�P@�Q@�R@�S@�T@�U@�V@�W@�X@�YA�ZA�[A�\A�]A�^A�_A�`A�aA�bA�cB�dB�eB�fB�gB�hB�iB�jB�kB�lB�mC�nC�oC�pC�qC�rC�sC�tC�uC�vC�wD�xD�yD�zD�{D�|D�}D�~D�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������DҁE҂E҃E҄E҅E҆E҇E҈E҉EҊEҋFҌFҍFҎFҏFҐFґFҒFғFҔFҕGҖGҗGҘGҙGҚGқGҜGҝGҞGҟHҠHҡHҢHңHҤHҥHҦHҧHҨHҩIҪIҫIҬIҭIҮIүIҰIұIҲIҳJҴJҵJҶJҷJҸJҹJҺJһJҼJҽKҾKҿK�K�K��K��K��K��K��K��L��L��L��L��L��L��L��L��L��L��M��M��M��M��M��M��M��M��M��M��N��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������N��N��N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P�P�P�P�P�Q�Q�Q�Q�Q�Q�Q�Q�Q�Q�R�R�R�R�R�R�	R�
R�R�R�
S�S�S�S�S�S�S�S�S�S�T�T�T�T�T�T�T�T�T� T�!U�"U�#U�$U�%U�&U�'U�(U�)U�*U�+V�,V�-V�.V�/V�0V�1V�2V�3V�4V�5W�6W�7W�8W�9
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������W�;W�<W�=W�>W�?X�@X�AX�BX�CX�DX�EX�FX�GX�HX�IY�JY�KY�LY�MY�NY�OY�PY�QY�RY�SZ�TZ�UZ�VZ�WZ�XZ�YZ�ZZ�[Z�\Z�][�^[�_[�`[�a[�b[�c[�d[�e[�f[�g\�h\�i\�j\�k\�l\�m\�n\�o\�p\�q]�r]�s]�t]�u]�v]�w]�x]�y]�z]�{^�|^�}^�~^�^Ӏ^Ӂ^ӂ^Ӄ^ӄ^Ӆ_ӆ_Ӈ_ӈ_Ӊ_ӊ_Ӌ_ӌ_Ӎ_ӎ_ӏ`Ӑ`ӑ`Ӓ`ӓ`Ӕ`ӕ`Ӗ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������`Ә`әaӚaӛaӜaӝaӞaӟaӠaӡaӢaӣbӤbӥbӦbӧbӨbөbӪbӫbӬbӭcӮcӯcӰcӱcӲcӳcӴcӵcӶcӷdӸdӹdӺdӻdӼdӽdӾdӿd�d�e��e��e��e��e��e��e��e��e��e��f��f��f��f��f��f��f��f��f��f��g��g��g��g��g��g��g��g��g��g��h��h��h��h��h��h��h��h��h��h��i��i��i��i��i��i��i��i��i��i��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������j�j�j�j�j�j�j�j�j�k�k�k�k�k�k�k�k�k�k�l�l�	l�
l�l�l�
l�l�l�l�m�m�m�m�m�m�m�m�m�m�n�n�n�n�n� n�!n�"n�#n�$n�%o�&o�'o�(o�)o�*o�+o�,o�-o�.o�/p�0p�1p�2p�3p�4p�5p�6p�7p�8p�9q�:q�;q�<q�=q�>q�?q�@q�Aq�Bq�Cr�Dr�Er�Fr�Gr�Hr�Ir�Jr�Kr�Lr�Ms�Ns�Os�P
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������s�Rs�Ss�Ts�Us�Vs�Wt�Xt�Yt�Zt�[t�\t�]t�^t�_t�`t�au�bu�cu�du�eu�fu�gu�hu�iu�ju�kv�lv�mv�nv�ov�pv�qv�rv�sv�tv�uw�vw�ww�xw�yw�zw�{w�|w�}w�~w�xԀxԁxԂxԃxԄxԅxԆxԇxԈxԉyԊyԋyԌyԍyԎyԏyԐyԑyԒyԓzԔzԕzԖzԗzԘzԙzԚzԛzԜzԝ{Ԟ{ԟ{Ԡ{ԡ{Ԣ{ԣ{Ԥ{ԥ{Ԧ{ԧ|Ԩ|ԩ|Ԫ|ԫ|Ԭ|ԭ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������|ԯ|԰|Ա}Բ}Գ}Դ}Ե}Զ}Է}Ը}Թ}Ժ}Ի~Լ~Խ~Ծ~Կ~�~�~��~��~��~�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��

\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���Հ�Ձ�Ղ�Ճ�Մ�Յ�Ն�Շ�Ո�Չ�Պ�Ջ�Ռ�Ս�Վ�Տ�Ր�Ց�Ւ�Փ�Ք�Օ�Ֆ�՗�՘�ՙ�՚�՛�՜�՝�՞�՟�ՠ�ա�բ�գ�դ�ե�զ�է�ը�թ�ժ�ի�լ�խ�ծ�կ�հ�ձ�ղ�ճ�մ�յ�ն�շ�ո�չ�պ�ջ�ռ�ս�վ�տ�������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������ր�ց�ւ�փ�ք�օ�ֆ�և�ֈ�։�֊�֋�֌�֍�֎�֏�֐�֑�֒�֓�֔�֕�֖�֗�֘�֙�֚�֛�֜�֝�֞�֟�֠�֡�֢�֣�֤�֥�֦�֧�֨�֩�֪�֫�֬�֭�֮�֯�ְ�ֱ�ֲ�ֳ�ִ�ֵ�ֶ�ַ�ָ�ֹ�ֺ�ֻ�ּ�ֽ�־�ֿ����������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���׀�ׁ�ׂ�׃�ׄ�ׅ�׆�ׇ�׈�׉�׊�׋�׌�׍�׎�׏�א�ב�ג�ד�ה�ו
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������ח�ט�י�ך�כ�ל�ם�מ�ן�נ�ס�ע�ף�פ�ץ�צ�ק�ר�ש�ת�׫�׬�׭�׮�ׯ�װ�ױ�ײ�׳�״�׵�׶�׷�׸�׹�׺�׻�׼�׽�׾�׿�������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���؀�؁�؂�؃�؄�؅�؆�؇�؈�؉�؊�؋�،�؍�؎�؏�ؐ�ؑ�ؒ�ؓ�ؔ�ؕ�ؖ�ؗ�ؘ�ؙ�ؚ�؛�؜�؝�؞�؟�ؠ�ء�آ�أ�ؤ�إ�ئ�ا�ب�ة�ت�ث�ج
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������خ�د�ذ�ر�ز�س�ش�ص�ض�ط�ظ�ع�غ�ػ�ؼ�ؽ�ؾ�ؿ�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���ـ�ف�ق�ك�ل�م�ن�ه�و�ى�ي�ً�ٌ�ٍ�َ�ُ�ِ�ّ�ْ�ٓ�ٔ�ٕ�ٖ�ٗ�٘�ٙ�ٚ�ٛ�ٜ�ٝ�ٞ�ٟ�٠�١�٢�٣�٤�٥�٦�٧�٨�٩�٪�٫�٬�٭�ٮ�ٯ�ٰ�ٱ�ٲ�ٳ�ٴ�ٵ�ٶ�ٷ�ٸ�ٹ�ٺ�ٻ�ټ�ٽ�پ�ٿ����������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������������������������������������������������������������������������������������������������������������������������������	�
���
������������������� :M-��	#0=JWdq~�����������������zm`SF9,����������vi\OB5(M,��M+�yM*�M)��M(��bM'��M&��M%��KM$���M#��M"��4M!���M ��zM��M��M��cM��M|�Mr�LMi��M`�MV�5MM��MD�{M;�M1�M(�dM�M�M�MM��M
��M��6M���M
��|M	��M���L��!L��~L���L�$�8L�-ەL�6��L�?�OL�IܬL�R�	L�[�fL�e��L�n� L�w�}M���M��7M�ߔM���M��NM��M��M��e
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������"�#�$�%�&�'�(�)	�*	�+	�,	�-	�.	�/	�0	�1	�2	�3
�4
�5
�6
�7
�8
�9
�:
�;
�<
�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q
�R
�S
�T
�U
�V
�W
�X
�Y
�Z
�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������ڀځڂڃڄڅچڇڈډڊڋڌڍڎڏڐڑڒړڔڕږڗژڙښڛڜڝڞڟڠڡڢڣڤڥڦڧڨکڪګڬڭڮگڰڱڲڳڴڵڶڷڸڹںڻڼڽھڿ����������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������	�
���
�� � � � � � � � � � �!�!�!�!�!�!�!� !�!!�"!�#"�$"�%"�&"�'"�("�)"�*"�+"�,"�-#�.#�/#�0#�1#�2#�3#�4#�5#�6#�7
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������$�9$�:$�;$�<$�=$�>$�?$�@$�A%�B%�C%�D%�E%�F%�G%�H%�I%�J%�K&�L&�M&�N&�O&�P&�Q&�R&�S&�T&�U'�V'�W'�X'�Y'�Z'�['�\'�]'�^'�_(�`(�a(�b(�c(�d(�e(�f(�g(�h(�i)�j)�k)�l)�m)�n)�o)�p)�q)�r)�s*�t*�u*�v*�w*�x*�y*�z*�{*�|*�}+�~+�+ۀ+ہ+ۂ+ۃ+ۄ+ۅ+ۆ+ۇ,ۈ,ۉ,ۊ,ۋ,ی,ۍ,ێ,ۏ,ې,ۑ-ے-ۓ-۔
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������-ۖ-ۗ-ۘ-ۙ-ۚ-ۛ.ۜ.۝.۞.۟.۠.ۡ.ۢ.ۣ.ۤ.ۥ/ۦ/ۧ/ۨ/۩/۪/۫/۬/ۭ/ۮ/ۯ0۰0۱0۲0۳0۴0۵0۶0۷0۸0۹1ۺ1ۻ1ۼ1۽1۾1ۿ1�1�1��1��2��2��2��2��2��2��2��2��2��2��3��3��3��3��3��3��3��3��3��3��4��4��4��4��4��4��4��4��4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��6��6��6��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������6��6��6�7�7�7�7�7�7�7�7�7�7�8�8�8�8�8�8�8�8�8�8�	9�
9�9�9�
9�9�9�9�9�9�:�:�:�:�:�:�:�:�:�:�;�;�;� ;�!;�";�#;�$;�%;�&;�'<�(<�)<�*<�+<�,<�-<�.<�/<�0<�1=�2=�3=�4=�5=�6=�7=�8=�9=�:=�;>�<>�=>�>>�?>�@>�A>�B>�C>�D>�E?�F?�G?�H?�I?�J?�K?�L?�M?�N
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������@�P@�Q@�R@�S@�T@�U@�V@�W@�X@�YA�ZA�[A�\A�]A�^A�_A�`A�aA�bA�cB�dB�eB�fB�gB�hB�iB�jB�kB�lB�mC�nC�oC�pC�qC�rC�sC�tC�uC�vC�wD�xD�yD�zD�{D�|D�}D�~D�D܀D܁E܂E܃E܄E܅E܆E܇E܈E܉E܊E܋F܌F܍F܎F܏FܐFܑFܒFܓFܔFܕGܖGܗGܘGܙGܚGܛGܜGܝGܞGܟHܠHܡHܢHܣHܤHܥHܦHܧHܨHܩIܪIܫ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������IܭIܮIܯIܰIܱIܲIܳJܴJܵJܶJܷJܸJܹJܺJܻJܼJܽKܾKܿK�K�K��K��K��K��K��K��L��L��L��L��L��L��L��L��L��L��M��M��M��M��M��M��M��M��M��M��N��N��N��N��N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P�P�P�P�P�Q�Q�Q�Q�Q�Q�Q�Q�Q�Q�R�R�R�R�R�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������R�
R�R�R�
S�S�S�S�S�S�S�S�S�S�T�T�T�T�T�T�T�T�T� T�!U�"U�#U�$U�%U�&U�'U�(U�)U�*U�+V�,V�-V�.V�/V�0V�1V�2V�3V�4V�5W�6W�7W�8W�9W�:W�;W�<W�=W�>W�?X�@X�AX�BX�CX�DX�EX�FX�GX�HX�IY�JY�KY�LY�MY�NY�OY�PY�QY�RY�SZ�TZ�UZ�VZ�WZ�XZ�YZ�ZZ�[Z�\Z�][�^[�_[�`[�a[�b[�c[�d[�e
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������[�g\�h\�i\�j\�k\�l\�m\�n\�o\�p\�q]�r]�s]�t]�u]�v]�w]�x]�y]�z]�{^�|^�}^�~^�^݀^݁^݂^݃^݄^݅_݆_݇_݈_݉_݊_݋_݌_ݍ_ݎ_ݏ`ݐ`ݑ`ݒ`ݓ`ݔ`ݕ`ݖ`ݗ`ݘ`ݙaݚaݛaݜaݝaݞaݟaݠaݡaݢaݣbݤbݥbݦbݧbݨbݩbݪbݫbݬbݭcݮcݯcݰcݱcݲcݳcݴcݵcݶcݷdݸdݹdݺdݻdݼdݽdݾdݿd�d�e��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������e��e��e��e��e��e��e��e��f��f��f��f��f��f��f��f��f��f��g��g��g��g��g��g��g��g��g��g��h��h��h��h��h��h��h��h��h��h��i��i��i��i��i��i��i��i��i��i��j��j�j�j�j�j�j�j�j�j�k�k�k�k�k�k�k�k�k�k�l�l�	l�
l�l�l�
l�l�l�l�m�m�m�m�m�m�m�m�m�m�n�n�n�n�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������n�!n�"n�#n�$n�%o�&o�'o�(o�)o�*o�+o�,o�-o�.o�/p�0p�1p�2p�3p�4p�5p�6p�7p�8p�9q�:q�;q�<q�=q�>q�?q�@q�Aq�Bq�Cr�Dr�Er�Fr�Gr�Hr�Ir�Jr�Kr�Lr�Ms�Ns�Os�Ps�Qs�Rs�Ss�Ts�Us�Vs�Wt�Xt�Yt�Zt�[t�\t�]t�^t�_t�`t�au�bu�cu�du�eu�fu�gu�hu�iu�ju�kv�lv�mv�nv�ov�pv�qv�rv�sv�tv�uw�vw�ww�xw�yw�zw�{w�|
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������w�~w�xހxށxނxރxބxޅxކxއxވxމyފyދyތyލyގyޏyސyޑyޒyޓzޔzޕzޖzޗzޘzޙzޚzޛzޜzޝ{ޞ{ޟ{ޠ{ޡ{ޢ{ޣ{ޤ{ޥ{ަ{ާ|ި|ީ|ު|ޫ|ެ|ޭ|ޮ|ޯ|ް|ޱ}޲}޳}޴}޵}޶}޷}޸}޹}޺}޻~޼~޽~޾~޿~�~�~��~��~��~����������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~���߀�߁�߂�߃�߄�߅�߆�߇�߈�߉�ߊ�ߋ�ߌ�ߍ�ߎ�ߏ�ߐ�ߑ�ߒ�ߓ
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������ߕ�ߖ�ߗ�ߘ�ߙ�ߚ�ߛ�ߜ�ߝ�ߞ�ߟ�ߠ�ߡ�ߢ�ߣ�ߤ�ߥ�ߦ�ߧ�ߨ�ߩ�ߪ�߫�߬�߭�߮�߯�߰�߱�߲�߳�ߴ�ߵ�߶�߷�߸�߹�ߺ�߻�߼�߽�߾�߿�������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~����������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
����������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������}��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~����������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������	�
���
������������������� �!�"�#�$�%�&�'�(�)	�*	�+	�,	�-	�.	�/	�0	�1	�2	�3
�4
�5
�6
�7
�8
�9
�:
�;
�<
�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������N�O�P�Q
�R
�S
�T
�U
�V
�W
�X
�Y
�Z
�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�{�|�}�~�������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������	�
���
�� � � � � � � � � � �!�!�!�!�!�!�!� !�!!�"!�#"�$"�%"�&"�'"�("�)"�*"�+"�,"�-#�.#�/#�0#�1#�2#�3#�4#�5#�6#�7$�8$�9$�:$�;$�<$�=$�>$�?$�@$�A%�B%�C%�D%�E%�F%�G%�H%�I%�J%�K&�L&�M&�N&�O&�P&�Q&�R&�S&�T&�U'�V'�W'�X'�Y'�Z'�['�\'�]'�^'�_(�`(�a(�b(�c
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������(�e(�f(�g(�h(�i)�j)�k)�l)�m)�n)�o)�p)�q)�r)�s*�t*�u*�v*�w*�x*�y*�z*�{*�|*�}+�~+�+�+�+�+�+�+�+�+�,�,�,�,�,�,�,�,�,�,�-�-�-�-�-�-�-�-�-�-�.�.�.�.�.�.�.�.�.�.�/�/�/�/�/�/�/�/�/�/�0�0�0�0�0�0�0�0�0�0�1�1�1�1�1�1�1�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������1��1��2��2��2��2��2��2��2��2��2��2��3��3��3��3��3��3��3��3��3��3��4��4��4��4��4��4��4��4��4��4��5��5��5��5��5��5��5��5��5��5��6��6��6��6��6��6��6��6��6��6�7�7�7�7�7�7�7�7�7�7�8�8�8�8�8�8�8�8�8�8�	9�
9�9�9�
9�9�9�9�9�9�:�:�:�:�:�:�:�:�:�:�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������;�;� ;�!;�";�#;�$;�%;�&;�'<�(<�)<�*<�+<�,<�-<�.<�/<�0<�1=�2=�3=�4=�5=�6=�7=�8=�9=�:=�;>�<>�=>�>>�?>�@>�A>�B>�C>�D>�E?�F?�G?�H?�I?�J?�K?�L?�M?�N?�O@�P@�Q@�R@�S@�T@�U@�V@�W@�X@�YA�ZA�[A�\A�]A�^A�_A�`A�aA�bA�cB�dB�eB�fB�gB�hB�iB�jB�kB�lB�mC�nC�oC�pC�qC�rC�sC�tC�uC�vC�wD�xD�yD�z
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������D�|D�}D�~D�D�D�E�E�E�E�E�E�E�E�E�E�F�F�F�F�F�F�F�F�F�F�G�G�G�G�G�G�G�G�G�G�H�H�H�H�H�H�H�H�H�H�I�I�I�I�I�I�I�I�I�I�J�J�J�J�J�J�J�J�J�J�K�K�K�K�K��K��K��K��K��K��L��L��L��L��L��L��L��L��L��L��M��M��M��M��M��M��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������M��M��M��N��N��N��N��N��N��N��N��N��N��O��O��O��O��O��O��O��O��O��O��P��P��P��P��P��P�P�P�P�P�Q�Q�Q�Q�Q�Q�Q�Q�Q�Q�R�R�R�R�R�R�	R�
R�R�R�
S�S�S�S�S�S�S�S�S�S�T�T�T�T�T�T�T�T�T� T�!U�"U�#U�$U�%U�&U�'U�(U�)U�*U�+V�,V�-V�.V�/V�0V�1V�2V�3V�4
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������W�6W�7W�8W�9W�:W�;W�<W�=W�>W�?X�@X�AX�BX�CX�DX�EX�FX�GX�HX�IY�JY�KY�LY�MY�NY�OY�PY�QY�RY�SZ�TZ�UZ�VZ�WZ�XZ�YZ�ZZ�[Z�\Z�][�^[�_[�`[�a[�b[�c[�d[�e[�f[�g\�h\�i\�j\�k\�l\�m\�n\�o\�p\�q]�r]�s]�t]�u]�v]�w]�x]�y]�z]�{^�|^�}^�~^�^�^�^�^�^�^�_�_�_�_�_�_�_�_�_�_�`�`�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������`�`�`�`�`�`�`�a�a�a�a�a�a�a�a�a�a�b�b�b�b�b�b�b�b�b�b�c�c�c�c�c�c�c�c�c�c�d�d�d�d�d�d�d�d�d�d�e��e��e��e��e��e��e��e��e��e��f��f��f��f��f��f��f��f��f��f��g��g��g��g��g��g��g��g��g��g��h��h��h��h��h��h��h��h��h��h��i��i��i��i��i��
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������i��i��i��i��j��j�j�j�j�j�j�j�j�j�k�k�k�k�k�k�k�k�k�k�l�l�	l�
l�l�l�
l�l�l�l�m�m�m�m�m�m�m�m�m�m�n�n�n�n�n� n�!n�"n�#n�$n�%o�&o�'o�(o�)o�*o�+o�,o�-o�.o�/p�0p�1p�2p�3p�4p�5p�6p�7p�8p�9q�:q�;q�<q�=q�>q�?q�@q�Aq�Bq�Cr�Dr�Er�Fr�Gr�Hr�Ir�Jr�K
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������r�Ms�Ns�Os�Ps�Qs�Rs�Ss�Ts�Us�Vs�Wt�Xt�Yt�Zt�[t�\t�]t�^t�_t�`t�au�bu�cu�du�eu�fu�gu�hu�iu�ju�kv�lv�mv�nv�ov�pv�qv�rv�sv�tv�uw�vw�ww�xw�yw�zw�{w�|w�}w�~w�x�x�x�x�x�x�x�x�x�x�y�y�y�y�y�y�y�y�y�y�z�z�z�z�z�z�z�z�z�z�{�{�{�{�{�{�{�{�{�{�|�
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������|�|�|�|�|�|�|�|�}�}�}�}�}�}�}�}�}�}�~�~�~�~�~�~�~��~��~��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~����������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������	��
������
������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������{��|��}��~�����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������������������������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy��������������������������������������������������������������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a��b��c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~����������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������������	��
������
�������������������������������������� ��!��"��#��$��%��&��'��(��)��*��+��,��-��.��/��0��1��2��3��4��5��6��7��8��9��:��;��<��=��>��?��@��A��B��C��D��E��F��G��H��I��J��K��L��M��N��O��P��Q��R��S��T��U��V��W��X��Y��Z��[��\��]��^��_��`��a
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy����������������c��d��e��f��g��h��i��j��k��l��m��n��o��p��q��r��s��t��u��v��w��x��y��z��{��|��}��~��������������������������������������������������������������������������������������������������������������������������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy�����������������������������������������������������������������������������������������������������������������������������������������������������������	�
���
��������������
\��������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy������������������ �!�"�#�$�%�&�'�(�)	�*	�+	�,	�-	�.	�/	�0	�1	�2	�3
�4
�5
�6
�7
�8
�9
�:
�;
�<
�=�>�?�@�A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q
�R
�S
�T
�U
�V
�W
�X
�Y
�Z
�[�\�]�^�_�`�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x
[�������'09BKT]fox���������������#,5>GPYbkt}��������������
(1:CLU^gpy���������������z�{�|�}�~���������������������������������������������������������������������������������������������������������
&���������������ypg^ULC:1(
�������������������������������������������������������������������������������jN��jNF�
e47652fa5e7642d21ed5f8769fe5f4fa1d3e7f416afe2b8f600aaf2ad97b5e27�NF�
70b9436a659665181aa90524926ff7ebeebcbc15038624b5a49e0657dedfb584
�

ee��:��V��+r�F�
00056c9175a4ec1b58cad0e3b3b16cbd29712335001c85d5f270931b04d4bb6a�F�
00063f470db329bdbf0defd2b9622d72db94830b9c0a108b7646f6acb3316563
�F�
000c783ad67a44fbc26df8ad81ecd49cdb80c72bac2e0468445fe1454d75a522�F�
0021c82540d24671074ea3ef5535b58a819c02dfddf7e05c15f9ae392ea8c199�F�
002d4f7023944abaa5047112477822bce1cf921f395bbc76065f1bc6ecfa3c22JF�
003c7635f8d23b7b12ec78287877a43a4ae9429260d34c92695eafb0df5d061a�F�
003d6e4f36c75c96397d74a2057705deb39e076f3fc1a18799709b07c8140187LF�
0050786ebb1c2b37bb1a4450e340b50786707ce8f2f8f01b356ea66cd305165b/F�
00608301be4450298d9a4f75fc3a36ab657c6083731a7fe1510fb0044564bb52�F�
00685f713fa548fd7e60ef95a370789739c4ef8bf55c1102f6d251548a251ed2}F�
006866668980a661dabcff054750dcfabee9be838cbdbe8f6554a12c8d2437e4�F�
008b4a8cee71d4770d3f1c7d68b7c37fc61c86104417e049e1fd9eca1270711bSF�
0094b5e088ab7669b50681c5ee1c139c5ea4b295dff26681ef9aabc6f5a119db,

ee��:��V��+r�F�
009f1e5fdfe0287c2d456390aacab52be52e77247292e285d5caa965c2330dab�F�
009f5f995347d3b6f6491ec4dd82192efd57cf782be7741597e2a9259a1b4a3ckF�
00a2d48440baace65111ae56106256b8e047e95d4a9a467ebaed09dc73f03585�F�
00c48e4de2e435d25917e5b12f697e6b79435fb251862569482e3c31793da0f8'F�
00d2bde49dfc19aa010c5926838900760b435bfe8f53e8d8ad0acefd762cafcfF�
00dbfd02a12975ec58e646015d21c1697f304b58353b1372310d96c80b2903aeRF�
00dfecc575f562ca6c58f3290ca7fda9b19bbacf629d7c687dc4242984f8bb37tF�
00ee764e0982d01d4e6bb4be901fe9d45e00ba81aada6ca3196a2f4c6a633f63
�F�
00f44bddea556d6114fd545f221ce9393e2498132e40d8c7e1ba1b4015de0671:F�
00f64801d8abc5d57fcf628994aeed0267baba42e5be15b3a5d445cd3a2f12260F�
00f6b15c036cb61966264e2a9c7ef1815399b860c29455f9b7b85bd59958ee0b,F�
0106c00d777327c471f8f9e676017d61dd0e5e5b4fe97750869b7857f0838ba2aF�
012bfa8eacdc2cdef0742df38d48737a13ab8171afc5020ef127dc81084a68b5]

ee��:��V��+r�F�
01359f42e5c172df7cebf52260aa08b51811b3cc29728a03a93dc546ffcfd21eUF�
0136b7f5a2716c2969f4dc132e19b7819af04e2aa0c5ba9bd9774ccf09c14e9flF�
014111c7993e5c5c0c955d00c5e230799fda34ca92a9b109dd0a572200c4dbedF�
014d6cdbaef0539c9b70adc727d4252d7aa3200cd7ca7a1afabf2ed85ad8feefhF�
014f5bd144904dc6d27a7fe4b1819401d5f70ea084c8f04cf734fc30dd3fcfacyF�
0150773cdef45797820d481008b2e7297bc32060b190f3493a27354e52ffb8baEF�
0159bd2e5e5911a949c27ecc4ee8003c3e2bdc4fe0074b1d0eb53e28360580fa�F�
017388e17ae8a0342ff3283f483c0f92172ac1005e8e97a4c40390e55f78d063
F�
017e2d09736a9888ed8e38dca3b1a005fcfebb65e0d3d31617fa9ba35f62526d.F�
017eff95084da1072645aceed55c7d64fe45d437ca48fa5ec6446759047a4d0dlF�
0184b3c53d99c0d7a743fc2eefaec2158d3ccddc254688d6b5fed77bcdaf78d0�F�
01a6f6a9a36d8203819ae336a672955e40e9b1c9cf387d5ccd0942ebea8c147a�F�
01af8dbfbd06ab846b1473d9c0c02a8f51af1a47c8d92957ff4e5508b3d647da�

ee��:��V��+r�F�
01b83fa31f2e2ed972aa491423479df2e3e026e54668e3933d3b8b1803fe208b	'F�
01da9776dbd5c2c0b5ee6d9e9020302a9007e6bf195079f25e6cf699c93e1dec�F�
01fb0c20e028f3f34cb3fc42c0360980946fc9b2e0f4b1cfcbe93c27779126063F�
01fb3a26a807a59931faaaabe295041a8fa40561ac74f13c180818145c68eae4xF�
0202fe311e75a00ac449bf922bf22eacbdfcbc62ea3fb9eca5285643347ec389�F�
020558539740256bcdb84e7c5606c92c374e8b5d5af9021d52cb794b0f6131e1�F�
02153be2996d05b396970b128ff1c8411eb8c6920328c7f2bb84271d28caeff7�F�
0216cb555eb5ac8bb5f746370557652aa2a2e0814f298bdf4fe756f0f1cebcac�F�
0226602f67b7037375bd2d1258c099113d59cdda599052241225ce267656959fF�
0228887c20e6cb39e203d667f60bf1e06e9496f7302af59a477a3db454b70575F�
0261a6827bcb70a4d4e0bbabff124f88c79ad1171f8d19e379a2e019e4867abf6F�
026420613efcc87726ba91b165fc0b746ce24ff329555220967db5cc979a803a\F�
0265dca6e210e12ede6c0a683df0e1068291dfc35f0589544af045bc6f7bc898�

ee��:��V��+r�F�
029155dd11073cb7e583700a754feaab925bd20b392240a64723cb67d3a4db5b�F�
029192b133954b86d152440adc98cc50c2ad3ded6b1f727f31615807b2d6ac98=F�
029a613293d1ba49b765f0f2ec6fc0b71f6fd43fb1ceff50f43e05dc84f98d20�F�
02b9f36207f55eecbaed6219e76bf38881875be99f49e0eca71ec75e6d3a7aa3�F�
02bef4b4e654f8dd811b3eecdf5516bd91608806ac3f8f3f596117947edc6652�F�
02cad16355e1d26c8bd3d5c772f181d7659d048dff3d0ae06e95050139572debF�
02cae02000e8b7bc7519aaeb70ed3f09854a6bd0cb622de6b22e75aa2c644230�F�
02cbd7332b3ce796fb31c211ff00e807700217dbe4cbf3860f61c4a3bb69beb8
�F�
02d776d9eabc5a1600b998782d8d36dfd9f654699fe0d5ed0fcea97a75b44ac1
?F�
02d7a80b905c4425a04fb580f2e9cedea180c37a12f4aebcc804d768f6a12ffd�F�
02ddd2f4ddbeafacbe9cdecd7071ce4d21239067950fce14f915e65b88e056b0;F�
02df0d560a1cd7208b8336532084570d73cca1c40562c74bcccd6e5aef84f343�F�
02e583fec180896fabf3422f69975545e3bd8d8460665b7044a186d0d5a4f817�

ee��:��V��+r�F�
02f39c31f6b85c556cb651767e2383c2bac89bab5627ec18df62fd758577a348
�F�
02f897ee795a6592d97ca15c780cbdd6ca2bc2a793d53ef279ad3f01f27d472cF�
02f9db11a20bee6dfde81279441c6b86bc5047ad9fc1b6243b5b1ed6d3a1608a�F�
0304822e8138a928f86fc2b725ede94f0fe7ad348c85d005729fc71bac0ba3b2?F�
030b52a92f3fd60b2df1b1fee6a964377bc4d80776dbdfcfae051132e0c3815cmF�
030d403b90d83c7791ba3ea26cc659f709c596898fbfbd5d5f6e4b737a1293facF�
031f000698ae93b4d5d19e31521dddc308fa90b6dfee2faed3b23620d47fd150IF�
0321354f5886437064ddff4080e65e1ed1d6f5a4d8f78872893181b71f450938�F�
0328daa881db258b5d0dcafa3d0c1f8bb4e2dd5034a74b2938d69c73b0a7dcbd�F�
033cc5d8ff989f638033f0a6af82cb11c2d68d26fc602668a0a4c9673a09ef9c|F�
034c9033d1e0262176555d3b7dc0f189885361d53ccb042ac04e98012e34b040�F�
035b347d3201307242fcde833202a8aa1505b93cbfed75f9f4aa400f16f19cefhF�
03701d6e0d843fdfb34d5135af97796623145817df79fabb6a8fb6eed7cfb552z

ee��:��V��+r�F�
0380151eff2395148f47a991620ec2bd74e74d330969f2c6d6c0a064a0278166�F�
03861872c0b045970aa5d709fc96b48dc78114b5fe454d59dff316eb4753ec08	F�
03a8c1b34a6e0348a56c5f5c1e6d5f586c514da1b01b442feaf2c7dfec629173�F�
03c52d5fc8024d804e827e048d07e835a984ac5f5d9391614c51b0905c9772a0$F�
03c6e9f83275661d1eb892af76411bc871b3f442dc65c95ad96dadbaffe84cf7	�F�
03cf1dde125c19d5d48038e69f3552a4973548aa09dc383debd850eec84fa1a4
�F�
03e1baf0c1c94f364478eb3cd7d75ad83408dfe993ea8a69481c7f963ebb1cc3
�F�
03e57a64f56503f6e79a1fc2c5923cb7b7c844a98479ed62503b92933057832dZF�
03ea957f3e2be56bc876a29ef48424ad8cc38c240505a263f9907bb55882d20f�F�
04123c3387456fe96ccae3db4f1c8332ab30d6d0ddea9994b55a58e704a1d264�F�
041f5f1e8b93254eb47e8b18434325a8ecfea6152330918662e991c8b435cdfe�F�
04338d51e121bd3112024a6e032e9dc376c437e7d1914a17d85868c3c59e8f72�F�
04343e0c734f4810fb43a53773019eae05e21428fa5cf05b99db8582265dc3d9

ee��:��V��+r�F�
0448f0190f604f767981ff4c96e3e9210bc3ec57cf905b9c65ce31bcbdb59db6�F�
0449fb732714886324a83ab5585589c4bff8fd81cfd32d8cc00260106295b33bF�
044fa462d51c4d22a5eb8db06de4ed95a23b6e26336c54e16ea3417cd87a5981�F�
0460e382ab0b0ff062ef27fbd07fe4a599aeb4704c295ef0ba4f0c14632a257a�F�
0474de8faa6866555281a93c12b25c1f8e532892f9dec72d0ccbaedaa2257d75tF�
0479d5709839258211df37f5f528182b35422b740c858e9fee588961f3067033F�
047afe9b60a6d1228931b215d26c7cc7dc637d69a40463e0a25163cd20c53b43F�
049526fdb7a05153ccc486726ea5c75e9cbf7eb168e6d4eb673555e2a2ed8967
MF�
04a4cfccd1c263a0f3de420c2200f1e9d5485e3f5734a0c08f2c01c3be01b144$F�
04aafce3a01a8ef79a286f4b1e46007f4ff2310784c8df59fa21c4b9ef862b84ZF�
04b0f0e217513325d81caf263da9288d80eb720c931507ed120b0b99d52505ad�F�
04b4fe240bbb7def555afa21959f623f37179a6993d0e6a57f592f05ab3f531bF�
04b897ee5a470f0fb0ecc0e412cc6d3910847f21d8a28f788c5515366e2ac15b

ee��:��V��+r�F�
04c9f6e177144af377d7c3b0185efb36ce85abfaba270ab01faefaf1cfa6837b�F�
04dce9028a87d078c3036031ae186db04fd35a585bd35d7aa2fcc7c8300830ed*F�
04eb35414e82fe2433c837b70edc142805f7455f68f171ad1ea43e534a94de83F�
04ec871279754a00e7006a2f023b95ed305dc36a9ff23d65ed20cbf987b07ffd�F�
04f581972286e776f852cf380fd0a4c05af1556c3d62f8ad579d87985ee0467ccF�
0506a69ed5099abb05188f0ad253ebf7fb23f9516de5789b336622a000b67e9d�F�
051767c8b8b2c33280f93fb2f1f60e7d9bdd8f44678ca6c68f5e2e59986a7ef8#F�
05190e91801f134ec5c33d7636671a93327e2f26dc018ed5ef24541b0c91c9fe6F�
052bc59d48a243df22b031df97865c1dc873c28379e0ef92b51f07311401764bF�
052c8eb21db8776433111192ff5a74c5160dfebb1bfcc701324165599256b321�F�
05362c7e6d4437e600de7d1470e9fe6c2f6f27c1292646ff6a86a8a72ae75c9fJF�
053bab8c7482789ca2a4d26eacb17ea07e87c7b88691ebeea4df085b8ee8b0c4
�F�
0546c6b078f73199e92d47749bd83c92594960b191bb14c1adc5fd5996219b74�

ee��:��V��+r�F�
056e7fe3c5a00be53248709c74120df1d6c073ef1b7b7beba63ff41d48f35c173F�
0575f05deb1df2512ee0e962ca3a090704d98dca573c138f4280f758c83cc88a
�F�
0579155d9d1a4a339ec6d119e12c2ecc135abd36aef7ba674704d62d18e6e6cc�F�
058ac0bdef709238810c53bb5fa0fcf0b4843e91d77920ccea506da4114aed3cSF�
059cd706e5668cb53ab32ca18815011ad932d1853567a29b3c7b2afca689e637"F�
05a0c90006b42933811046c1278ba1584b25ae8404694f0d692582422b132360�F�
05a1a1334799c302fd4621a4dab067e901b9fbea4d7d269ebc6e9bea8d855923�F�
05a1afac9166ad0a6bd4d12f5586743519b206e5f4bb4ce59ee057b9dff7d92f
�F�
05a40b72da0cf303bc79e3b58cda8c7f7edb3f19a201eca57225af9a1e012bebqF�
05ab159708542ab7cbdc54eec74ffdbd8cb86dd12b6b0a5c10faff3414c5ddceSF�
05b12f50d113b0a0d5208b907519a36a79df62b2d79ddbb1d4019332f3d7ff39$F�
05b66ae9aef06d6c9d64f8dd5f1ffb50591c5686b5d538f6a698b5725f8a5b12�F�
05b86a6126cc85e6e214a09707b886a17df5b705f5cb7dab4c86228f6b2ad4d28

ee��:��V��+r�F�
05ca51bffce88a4ceee7e70a17f2e81e550cbe1f0573836e157840cea3610e88�F�
05cd5d302b4787e4b7f4d091ae0e2cfc78a0ad48883502cb3bc7ec1cf2c8601a}F�
05ce97f826afdba77bdbabde3175ee402acbf40771f2af0a35ada58f14c7ecbcF�
05cf4fd79bba0f69976ed978e39e96312e5c1ed1fc98158138579aa9d2b1ac01
�F�
05e34813e9daef9255f5e02eb2c3753c5308d070ffe9608abf8367fedeff8e2d=F�
05fbad1e72d3fc82cab1e83391bf6c22c224dd3554ceed92227b792e08bf75b4pF�
05ff5981a0c8f962a35dd854d2cf3aabccd82881efc4d700b5add509d6f0f289�F�
06027d118bc6eda893d13e73a13e75851e1f01cc10ad76d87de54aa42810f00e�F�
0607eb87b1e4a72aa8d10708247befdd19963e0ca5b2fe44d7d76eda6a408652�F�
06218f80b35658bc0f58476f103dcd67638009385f21b603c1005339fbd5841e�F�
06444e0746003a76118ae6a9895e5592ab3c18c2bf85ab614b50a43dd56980b9JF�
065be8dcad1accb013d907c343f946bf2aee0c7ebe74cc8d43c80d008e10fed5zF�
065c61acd07e5d7bf4396d3bb011f0b6440c73eae51c4902ebc118cfce7b8fd4x

ee��:��V��+r�F�
0688bc15522e5a3eee9f6ec2d771f77743a5979f6ac5afa0ec5059daa5926e35�F�
06925f8c06ddc4e973f5d0c4eb2ea60c2c099d9608f354cf74311a817b75e734%F�
06a5cb180f3ca29cdae7dd9547b29c30079ef85e1809389608777308ad5e4c3a�F�
06bc77dd6c2f2125c8f8ccb6b4e685a71d97e6defb84eb1d696ee180ac974e06
�F�
06bec1b1e5fba64eb4e0e530da173b3bafb747f95f9629079d77f65567b15d42�F�
06c9237d3d292ac356ab89dc89e2e9d7f41d6b52eaa838d872573cdeac93d2e7F�
06cf0f65aa64e614d4aa2f4b52af2b2c2e8e6420e1a748807f9d326ed353d4b6(F�
06d6c8fc8acd6bccaac9dcec5bc4fadf0a2b38f66fac335962e0352a7d2bf9bfBF�
06d86e24f67250850372882170efd7d12d041a90b28a72fb952a0f3d10141825�F�
06dc7124955549934298d13f36f05d5c055ad9f2dc7291af7ea111042dff38c03F�
06de00e45a444bd8381c6526ee4a204b80511ebbca8c8b0b52bfd9d9bacec74cF�
06e4169680e37d4d65bf7fd8382c034d2d0434ae20eadb40888e7ab261de6aa2F�
06e5fb6ecf1b329364a643c5ede73c7f38229a9b7aee51b73806126d416f71e8

ee��:��V��+r�F�
06f1bb2af6f2c2c3b74476a6919d97cc43a92d7d43132345b87af3a3a4aede4b�F�
07061aa8f12ae1f09d204f2dc47e1608d9dce33042da18739a076fb7fa37fc13�F�
0709174e0519ec2d79dc3e1545a937fdee842ce5f5048538521cbcf27426440dMF�
0710224c0e98852a70afc4e528bd026d4d46bf8fa6d68af8b7944e41683ae5cf1F�
0718ec7a648c76821e1117532667414db4883898fdd43d3e8a631827814422fa	F�
0720c43c680146e7a676c6340d3f1529fb116ef0c12105b5b84f41a448512564�F�
072e6332387b7078fb53410078598cb6a9480bef04a1e72bcfd996503ff19d12�F�
073a61debf16645920e116641fcf09bdcef80147f54754057c18515f5ebe1f8c�F�
07502ee4563c4bdc09b8d0b67eba7577aae0d6c871501af53b038aad8812d391�F�
07505d8e7877d8a5114d6db605a9dc9c2132c0d32d978e2df599fa2e69887780	�F�
075385572952a26db77d6708c6b4866e1a5b4e1fcef8f0f9e2ff1918b13c4439�F�
075e649f6da15e063d52ce4d0d3ba406ef07fe22522b3b701f9577056c5cf18aF�
0768c02eab146e2f88cb0c3f41aee2d4f7b14dbdde274b3955f2155eb21cf944�

ee��:��V��+r�F�
0781ec76d6ef76f218a16289f31a21e27af4064a2fa1f213a49828a67e50c669-F�
078d626065367dc1b0c00d308d8b5d9d69fe369a31b59dbf38747ea1e98647df
�F�
078df219eb34b52cef5f93c17533da34f2eceaec30e85da8944716d38dfee1962F�
079057e8ac08393331b2846ec1d9b56021f2e524cf0eb682c033f6348fcf31da�F�
0794a0f7d6a515b2cdfb8187e15d5605671a95d2ebabff7bdf87777d0c9530dc�F�
079a8f1382b2cde5fc460d2bfb277e6586eeffb928b2d9ed2bb6258fdc6fc4ed�F�
07a39b4944cc8d1c6e61f1ad215c744f685fcf1cf0494ce979a7f28539da66d6F�
07b1856027333bf98a662c1c5c7b92d2391deb1108f57f3ca5b27d6ee192f7a0jF�
07b97f3f2c7b61f7d3f1361ef0cb40ea95320f3213ff8441345dd39ed092edff�F�
07bd35c3abbf6026fb0e99d204b230ccbed3b91ccbed6d0675f5dc885931ea62
�F�
07cfec6beda5578439d467fa4a51b7e846ea94e1eb455753928367e7fd96ac68F�
07e3f6b9b256a115590234dc0183bcf39f3cd1e274bd4d7506c4ae4992f8adedCF�
07ef29e54e22c90b43aa4eb7133046f805b01fd91030eafee283ca4db4b35173�

ee��:��V��+r�F�
0821b9fe0910e051ebf760e8df0198202117a973492dee2aca30504c0f8a5544.F�
082abb4e91620918c0d5d1da8dfb191f950c793d112a4ac3ec4f2055ca594c68�F�
0834c02bc349eaabe64a4015d07ee7cbcf7776a68766e81cd93be0a58c7d5465�F�
08396cb866f024b0054c16918fe544406f737f7ddefcecbda04ad29ab9a27a15kF�
0848e56ffcc658be84b8dc962cfae7e6e963b28421212d04c814be04b66154b4F�
085f001bc61a93bf23c68f240bd7b5c24aa41e4a9b6c5539dfe676b451ec102a	�F�
085f2174502e709dad29fc828ef0fd2f5c027de6d68e07e337607b8c77e184cd�F�
086c33b98ecb7adbc59297b29fb3fc219e4beda421611ef17471f6cc8e0a9b6f8F�
087a9eb6f7e5a03f17d35ced5aea62e436334f59bd027880ae3be3eb69257219�F�
088144b029dc1cc8f91996726bfc5e8a3ea03cb750f26a8038b554a33f1bc66d�F�
08824226d21e7afa5b192b8623609503e7928c2f070b02660b7372a5fd8999b0�F�
0884e384499ad64f6f25f663be6d416d9290f010f743e6eed115ceae93d81f8bF�
08863f9fce74c908ee529b7d6877678e4993d6800fa0e1f5ee19afd4c79373a6
1M<1|�]��>��j�M/F�
009c4fd4d1a151a215ef1a31eb4f5b076e16ad5bd1c6bed249571dfdde69a686oM0F�
013236ef5fa8a51d31d6d13a69fb89b023f7bf87400cfbe7442751e25e4a0c0d�M1F�
01b2d6f4dd3c509eda7a3396036cc2ba36461c6d867b18c64e8358fba4982e34\M2F�
027f9ce824c240ccb21c3c503958433eb772483c1fe803ce30f44f232c06eaf4
tM3F�
02f065f8fc1a7dad64b3db9dce1c2acf7f0fdb727133ffef1c209fa011adbcd6=M4F�
037e885e4b00fa8c73772c5a2e0f05aa735f04807e080c5819a8a15dade3d5dc�M5F�
0435f345b2b188c76dbb4a538bf0f878834a41e723491df1926231020fd88efdpM6F�
04c1cb44a333186da972033dd6cf11d36780a1631c165568ae8099544c2c1543�M7F�
054e750bc6d0c6d60f45a6fb60b3bc08bf7902623d269b106db0969e6a028abb>M8F�
05ba725d5c869c501d11a5e7d8127d0ad80d328b3e6147d560401baf1810497b�M9F�
067642d9046b8566ef1ed0cf884f58e8a6d4e400e732070462b2051471465a19�M:F�
06e8b2bd304cd09ba4be27cd71f6e46da23994939ba405275e37c1d39b91f75b�M;F�
076ae5a31f58ce2e33f04de674fed5086fd8f72a8e802528d833f3033c017469r
1ML1|�]��>��j�M=F�
0894834781a35f76e011fd41d9cf3bae6d4a47dcb32589aea06d68f2b07ad20e-M@F�
08fbafcced5e9e1b471e4e7dfdaf102a8d2a4b77e5322e88d818828f064c5242�MAF�
097675babe2d377b7544507d5d63c4df6766f7bfa3508a1288be59444b79ef19�MBF�
0a35810bd924f95ae2af1ba31051f64c8683e42b953329a6af07ea00495f96a2�MCF�
0b0f6b7bf49772aa7d4525fb75fddff1ff77a08c6c3cf4c990c7fcb0fd59a2b9UMDF�
0b44e2a7472e36fcf462b7b85a5bbc147c95150b55e8d7e6dc3fe4977c7cdc76�MEF�
0c17cb1415294598f297a58396280f055f0f3258f080b1ab697bfe04bbe0008d2MFF�
0cb96b04da1187dc59c06a37d73082671753740008c7d0f948693e3929f1b1a4MGF�
0d2d3cbaee9c9fdd4bf0e41db231e656141f296acbbf0480fb738b9c04e78268QMHF�
0da377da9a9dc6f3210ae58f9365d1e379b41bfbc986639c5cb7df02de772356EMIF�
0e0057ab9e8cb8424689c8f6e05bb121fb1bd2f7a3e0fbec225b582428df0176*MJF�
0eaade45e4faa7e8e8b18e0ab2d01b531ee0b40d37435cff287a385b544dea75MKF�
0f0fa59eb6e08ac74519d59b709ce746a54f5ac7294b9ef563943eea5bdc327d

ee��:��V��+r�F�
08949cdd78826f2931cedc5db7b5ecee0f22e07f614ab03c88690cc3ad353c4c,F�
089b94f213c170e875e90bb476e333d4b7d2491e323f4692f8e1513f78b4203e�F�
08b1fcdb6cdc4ebc6e4b8009023baa7759c113cc1d67ef555df1cef33880d688>F�
08b4dee7a9b26d0de63eb7b9be7383288a1d179be539eb61df3c1d005566ba5fF�
08b94d6efe931c32344ea97bafacefaf26b7ab57c499ee718b7466ba31c943211F�
08c0606b2ec5ba2bb66a3ee30f97a269ff8da7cdfc8a081d621411fc68286e09'F�
08d1d1cc28a0a4caf172ffb26c59f35532cb13b37543dc1b44895666f5c4d486�F�
08d3a3571d95f12d505af7454de2dadabca497aa265dbce4ff86b0317462b5db
�F�
08d77e2a53f45806fd7b82661a7ef4d17bedadab7f9241768695eafd2d8f6cf0-F�
08dfe3130e723092bcc8145c8b90e71cc35804a68abc5879143350368fece38bVF�
08ec368681cd5235d44e7c13637d697d5bc44aaf5cfd9f49fc33531191a5717b�F�
08eccef6a2ce6a06f95c7ad30f3fdd7db91e89b3991bbe05cc786dee1ccc9074
PF�
08f9a253bf2654c7f281ec675c59f7bd4bd0f06ed499e82831fcd79aef82e50b�

ee��:��V��+r�F�
08fdefbdb8f11e74afa450cfe88c2d98b1e9caee0e6a213c4b67db47d4ca1dc5[F�
08fe4123c9f2d5699c800a7e884d1f8f6958f6ec8448ac152f214735fd9ba5f9fF�
0913430ac82b85ff2505f1428fd1ee1c2cbdf9c4b58cc447ab469fccea954369'F�
0918063cb9b48c317391f431d587661c39613d95bd83d01ca9029660d7a1dfd9�F�
092200d5b5dde09d6818651bad72eaf924bc014da7f290860fa9416ca5d80c29dF�
0926abec8c375e818901656da36c33757d3a3e3bf4baf9195278ae3f048fd8e5�F�
09277f1295e2db1f4f90bd3fce359dd8150009233cbba997650480e544b67766�F�
092cc13ed7af9de7e0332c1da0285f190396f1b75256ecd162899d06cf9b0e1a�F�
0930a501a892602ab5d8c48730193fa5230e46803b8b20533482a6322014c898�F�
093f80fc5d8e0da79a3979e52dfdc01e24389db68934cf76c4a575367b63914c�F�
0952cfe96c702aedc34ce0dcba4f7bde61e7ef84de1ad0057e39e6750b2c0bda
�F�
096e36a0f28a54f5ad7c593b2efd58ee933bf7f9c314927179a6d0244e0a596aEF�
097333804cdbb8a534dabe56aeb0d3b2dbc4a9c4796ca5102c74fa94f597ff42

ee��:��V��+r�F�
0986dce8e3a59471cabc7ed457e23c3f0fdc81e3cbab4093eaa0426e2d5d26ef�F�
09936061a18c7bf3b0903e9e1994dca141d245478064ada19312d0d78abe44ae�F�
09b0a412ef431cf5907e6d41f5bf960d051927c73b0a292dea9a52585f306e01�F�
09c09056918a1d0fcf94103b7cc7f9728ea6f763a2c2d3db5a1a470846afc777�F�
09c46bafc8f7871f9037631642128c520e108bc7b90ffdfffbd477c7ea27543e
�F�
09c89c08debacc489fe15a2e0025630de1bd775a0f8b0e4ef911abb61cc7f0d1�F�
09cd4a65244763f9c5d860969f9294414316cc0b7472539300921b5021a3a048bF�
09d536dbeed2bb97193afabb9564cc6e6def3636f719ed0e3bbb8c0e575f7033�F�
09de0197c6db452f0fd3f28c21887416beca324b835bd991b0385a41cd819f52�F�
09f2614aeded0a8d1f7454f0270fe81a129ba048470ed9851001049d758c2a0f�F�
09f598da7d3fbe1d2b05e159dc8f3d04792678621bf6d1f87c0edb4896d550a3�F�
0a050612befea77a0541c8b1e8c5655262271ebc40a5897b3fcb7bc85c56fc53�F�
0a22fdb0f60d3be3fd66877b980e41dfe9e76361231ab306f3eb3a98c2ef3139

ee��:��V��+r�F�
0a5287477758b2371bd5090dfacaf9dd93c3f1cc379245204f8a143593599b48?F�
0a551f7e2a238413dc99c1846c2fa6ce5424327eb7cae6cffdcc8530fe613c92�F�
0a5a7250aabe9649c502bfc98a71ff102a3a30a37575ea8c1c0ae22c267a6640cF�
0a621e3a587fb00080786a7b80616e9ce0fe3cfbf0131712ea44c6dee612c0a3�F�
0a712b8f1eda25e3f9a256fe884b8e622404b2f830abfa7cb7a720a164b44109�F�
0a755493662be885a9d421b00ff08001a5d61a085bb86846d60072222530e672	�F�
0a7bd3f0caab514c1555ed06bde5524b4655f5fdc8b646492ded15867ea9f447WF�
0a804c07144041c1bb5d619535096838e17f54b6d6c4295d4b1551f45f7031bf�F�
0a8d2dafb528818f6b019015fbaf8cdd2fe3b6535d85da90f6a1db984b828e8e�F�
0a8fa0a8748dd4667a74653e840521e8d0602e1f9210bb2b27d75c59318081c0�F�
0adc9fe4603e83cc02d7181487b5982803e7d1ac319a09428f7f62c4b74d8d3d�F�
0af4fa113704a011a3594459a6619542c384a68bce85aa250f90448e347431fe�F�
0af8a6a9e3b24968bed3be9b8de12ef658fbbfc2164edfd7186a7cced585e5ec�

ee��:��V��+r�F�
0b115d54c14e78f3f59d84b00407c9b0d58b5c274afa2b7f993667bb66f3f8e8IF�
0b16a6ff0f8a8988e02b31ad560630c7d2fdc9e63b234cc9a39273f3fc61e146�F�
0b185730ee6a43395cfa0f8cd6a7a6749386e567da85ed56e884df2ca709923f�F�
0b1af8e104a87dcac9e19a39e5868fef98096447b8a8eafc1e3fe57711fabf57�F�
0b22b530fe470f3e466de0b4c9a662510b4feffc3540c2add9689e58fe543a56�F�
0b25bab3a8a0341d22387d3674f6676645e3d3d497d2de92de115a56fa012b1bjF�
0b299d62c2e3249e8aa1132f170b5b2eb81a8441f5fcb1b29f9970da5b40d33d�F�
0b29c214b8a3ff37cfcb010079194019a3d4b2e97d32adcd0571daa7b2572234%F�
0b31fcea001c43db8cd9d635933b11a63756f99e56b454bbfd3b201a1ec4a077
 F�
0b321ea4f022bb7f3c34a1bd3f7d2b5cda3bc71f527d5d4e5af585464ef88de7�F�
0b33ebe4a47333d7d3cfb619025360776f080666c4ca5b9dd7a539591cc58c9a�F�
0b35b40bf56766439cd4f160aa0bb3028afd3654b4df1a07cbe49d5a0c3642fb
F�
0b42148789300af59e74814b7d8cb50a3c1453dc197a498f2f37cdc75a6a97d7�

ee��:��V��+r�F�
0b48a1dc6bd965ac5f800c44cf498da51c5fd0ec07bf16a07911d66f89932c4b3F�
0b514834510f57ab09a2051d0b0c2be8a61777452ad125d1b3e5e90abeb6fa22
�F�
0b666836eac572662e426b0b815d751ae62dd8422c5ab5c6d910f8bf94ad1141F�
0ba33a407f36442d9f5f526712fe0c940b67897540b9e10a14271928cffed297<F�
0bb28c9f68dfa70b3b78027fb8b42c4122bccb671f14d669ce89f85990ee5c7b
)F�
0bbfce2dd7e12ca5610015aba9f167cbc4cc29d360a77f3801b7508618bb17fb
�F�
0bc17855cc6640920597c449da532b260707f9f0446c2d6c601ace461632007eTF�
0bc7a3258a261dafb1804614ca3e65cc202ca5a9607554f6524da136cb7c7ee67F�
0bec8227df4692ec640eaf96154a87faa5a1ab3d9c37856f4f8e0c0a98c88525�F�
0bfce88e921ad0a5fd946306ecf24c9d04e2662eaeaf728d05dbcdc32010c8ea�F�
0c048c74887e157b97b761a85580b46558525fc2a03b50627c102edbdffe5e76�F�
0c05547ab6db1a5fe777068a16ceaf758e35d33abedd3643f7dc8bee4b68af5f4F�
0c0ba36a5e8704ab304024f5f4bc9616e4592da8ef6293f27ee584cd13805973U

ee��:��V��+r�F�
0c3ad35e059126bc405bb6ab3f4ae6d37fcb202c2192112ede3ec719d4c45554F�
0c50466e187899042f37e621ad418348afddcf8a0b1ef74a9c42573da5425ecaF�
0c6ad74477b64388fb061cd59308e5053fb53c352648ac10728050169bb9ac48�F�
0c7bc243b0e57280cd7bdd324734b2af9b6ea05f5309af24c0897ceb134b9ffezF�
0c844b3fd55943ad6df491c0f9396667119e7d8f737d079ca70e1e354c04d769^F�
0c8cc9217954e5b7e4fba72b8cac347c473caf377f918d06fdc3c2bb7e672917	]F�
0c8fa4695663226154eeb62875404c38ac8f61913460fe2e8036ae8e76cad75e�F�
0c8fb84a63da81ffc9727d465f04ac197820bce6473ad8ca5f2d241c6cdfb9a7`F�
0c9251da98f68e439285f3e9fe1d2564f460335667000f17d613cca5310aa9549F�
0c9cd97e333e5ea85907e92483ef91dbdb08349b7e29916dcf5c08061c74f8361F�
0cad55db6dba2a060d78d5cd109fe110b948f6008192e29b843fe591ffec7fc2WF�
0cb228d7dc8544ea720f5503724f929baf79d69d2a7d1eb9dd47cf361620788e	F�
0cb275f3f74903e0b995fb60bd6d2d45b6d75c0f10a329bf957ff43cddf17096�

ee��:��V��+r�F�
0cc793e2d0f59813a9e09567f1c3af4510272946883ebb48cc9cce9189664c7e�F�
0cc9ba42a15c78ffcce2049a61fd84727a2586eca9d5215f1ca32e1a24b02bfeMF�
0cd349e9faa4208c5a06dd623c32419cde907327603062ef0197ae238ecf9cb1F�
0cd7aee9f2db00d6755f43fa30faafe7382aa8e438f5c11a40c90c0e5e8352d2�F�
0cdb951d2a540947e97b85a4754dcc8bbf1cb878e5dbd0f1bdad2a6a4626f694�F�
0cdf4d5f9455b9e3e0eeca97fcb7fa4f7b76899970af7d0fa1bdc2c1ade16fe2
1F�
0ce460c4fec36484894f526d04090272961a86fa1cadfc07b79bf7eb7f0095f6XF�
0cf6bb4e5beb49f3a45a5171babb25685cf72156e8666dc2a57f9fef6af67838�F�
0cfe90113fcfe21d6f21f6022481283b9b35ca916c02484fc39e89b88fcffa8a�F�
0cff7abce034e9ae5e89bd1f5c50241356dd38507e0c53e17d563453b7923822�F�
0d2891caee1b493f9b544af0495b535e91b27d243df3f653a39ffeafe3e16dbeIF�
0d291da8585bc5dc3d72a81e494c64767eb04ba5a938f0847121edded2bcbdecaF�
0d2b3fa57c857e63e2bc038eba8140a308abe22d4261989634084fe5e9eb73bd�

ff��;��W��+r�F�
0d30036d6a876fd21fc61439985a43f29d496b4089d41c5fa578c65ecde1d198�F�
0d33e36e3c9f478cdd404e7a15bdde7f8470d1267ae29e4c3127e06d2646a3b8�F�
0d39c362f6c9f3279419ed4315d754b3944058bc88a48263152b512ed67f0dda\F�
0d3a93f5635729a3341a43ad550bf5e1a022c431b725a9126b80bbb5bce8cdc22F�
0d3c2c589c5e9e3f8ffbf1a3ecab65c4237f0445ab4f8f1840daac3a9bde8e16�F�
0d57fe6a1b4c3013d7384f4d0457ff6aacdaf60ec4bcad0624f3d41fbaeb80c46F�
0d768d1ea1cafc2aac35e0917a8c6e9184c802e60dc7add05251d7c940193f32
AF�
0d7905c384f2eb08286c9eaf8161f50db1d1312363a1fe8b484962d4ed6e149b}F�
0d795cbf22fec282f02654f7712344c97027974130c274b8e837bec939303861fE�
0d7ee838bc95b1ca0f6653c7bb6bf7f82fd91bddf5008eb108ab46da2a4a15a4{F�
0d7fa70d37741c62bde710cf842f10260cf261673a4a7408c061b0e28d2bc955CF�
0d89f6cb70bf9117dfd174a86c11de319ac44c664effcaa3b959f00d436ae1a2�F�
0d953611a4ac63b86ca9bbf1ca0f35e9ef53094123f9e581e16919ed0393c690�

ff��;��W��,s�F�
0dac2946a3cac243477b0ac6573b491a15bcd751bbfaa32b92535f850f10cf3fF�
0daf2f065c20c572dbd4c2cd864cef8c197f640a926ce017c7343205b4e5e77d�F�
0dafa08f6f467ecca9fd5fafad09fcd5cac9b1f2f050f88329a90f3434c52078�F�
0db1ad475d57dd2dcf3165a763d246f2f2b899c3bc4bad744291c568d041127c�F�
0dc167d2f05541662cc1bfe1773d78ea0566b4fae06130399f47b0f01f34e177[F�
0dc9fbacba7b11cb8fe67dd7a2596d89132d937ce3099a1e872d630f5f68fafc�F�
0ddc672fbbf22b385a04e5922c34037d8950a75fb1cd0527f909bcc1783abb9f�F�
0de12d2701881f7f8bd093302babcb112ad65af4943bd2e0d2bcb2884f12012dhF�
0de8a90ff171bad788a3e83dfb9e880aedf1440a7e0e201037073ea3c6af5cae5F�
0de926f65070e07d518fd6dde604c0aa41ed7aedee86e9dbd0db39abed1534cbpF�
0debd7af9974202b568d8b8c1c87e8d70139dd2dbc62ba9bf7a9e72fe64c3990oE�
0df91ae3f7e140e17025cfcac0a1bbb8507f665cf4f2ae6e8e6951f0fbc667e5]F�
0dfc6e8ea7cfb111b83da1e6ce7bfc3f5f3c353f61b25a21812ba01aed81cbed�

ee��:��V��+r�F�
0e0b806579667e86ea70685a838f8c23073e5084c9c3135588b05d5d395ec9d3�F�
0e0d9ae9f3664f3a8aa2a994019ef5a1293a67c401f5fde714661afc37cd8438�F�
0e15a4084dc2ccf63f0b0ad4073f81fdd2a5a9137184d9fd3f72e558dadcb56e�F�
0e2027754d28d80891f36030409114272ec237f698e5ff38e5ab7268da1dce52�F�
0e230546571aa26c06f1097967584ab4b9e777e7ca6c94d45f8706a36bdccc22BF�
0e2842a9ef72de0a39b188244266ec36bb5efee89dbbb26d2d9b8832fdb44b78�F�
0e30ee127b67a51aaff1ffe3ae0cb616b808bc21850fe2f23be2b229a8bb8853UF�
0e46815b96448a8115c16703aeaeadf07680cb2172f0028f3a8ab4b9d6e6897d
�F�
0e50e504282d4892f5bb05084db338d47c7312f569aaa3fcbb60451b38e17abd�F�
0e5624fbb0590aa72e8ae21556cd6ed2655b7a7955c181db303cdd39320028f1MF�
0e63c2347e36ece8d4f15909b64a5a6c3b79f38a6e53f614e310fbfd86f26b06�F�
0e83fd6b33039ac7fda9317c440371d5e1d6e4173afb995bd498be0589efbf51�F�
0e9f601a50df8e60748b538e0a74fbb3fe326ce3a54a551b7a254c64afcf272f

ee��:��V��+r�F�
0eb359490eab964f970cb8d6fd9987a38a3e3f9c585348941c53fb1b709c71f1�F�
0ebd7a7d93f6af20c4e8fff8d52032fda80556a14021adf330e1c9f9e8063482eF�
0ebed7ba324c9dd19b4c287a0d21bb0ff3631197a4d341dfff3705451356c18eTF�
0ec52bd7a95347c5c330df35b5067f28cdd262383f84e176598367ad11c98a27F�
0ed0c68541bccf9732065a361a46692699a4a2ce01c4a502809c2c7c16a1d213
4F�
0ed523747db652e84c5b5a87d2207d7410229587204a4fbc5f477091cf0e9706�F�
0eda90367bc11ce10165853be705e1303b3ac2a0f5072131cbd8b2ea6ed2d1eaF�
0ee22c6eb0445485cec58e7d73154100a461cce8a0bf2a9e3b8350e6ad3d073e&F�
0ee97394870cffe996ee7e4b916ac7fd3a1843f7b577ee2bf1a309f6b5e3e325F�
0eec836c027a565c281645294b192571bfe852631d94438627371cba58c380de	�F�
0f0241e556ea298645602911fe3d8280bc945bfbbbdf05c822cbe1fd63f1641crF�
0f031938a045f2ce246507b233ce7a53103a6051e0cda09aa7d2b4feab4e773bF�
0f0f20e5079748f9103ff3e0068108043ec9079822de5e46263c2c1f09b6dc0d�

ff��;��W��,r�F�
0f15bf4e21cca58586fae47893052796624bb20d948f2087a88fa6589059216aF�
0f2573a885d17c39d3733cec678c69833ac6d49b29e7e65f7783644066ec0b8d{F�
0f278d26606d17a63d5e0da05a7bd5983a694993f71d76ab6409e00238f2d71b�F�
0f2b27230afc7e0f0e4681b53e974e613f93cdd1f542dd4b63a37b74db2caa55�F�
0f2b2ab9e05c1447b23d28c2912f8057c494168f4eed17e7d868e5970436722dF�
0f4b94a13ab49a4fb2ac8ff3106cdaa6e83e43757720457189e685e7a55ed6d6eF�
0f50b27c447626e536dd1b872545c9247a7634a66cb5763f417cbc9eea4790d8fF�
0f5a8848daead9b08962772ffcfea5205ed58cc1314cf39de5639e4757359ea6cF�
0f63545c1582739bc1542a1eaf0c5dce4c4ef0527df85045f95f6e3e58f7dc1a*F�
0f67dd341c128a15768806e3944c813d90260a364561887b61378a18ff049547�E�
0f6b2d20fc79acfdc5f930788c81abbec7863d8a4d373229f80a9f4d126d1db8F�
0f6bed5732bc76bfe3e0c85d59ade8d7716ebb9113974ea0d93511212d1907df-F�
0f6e2c2f22024dd4f9db5cb729bdd2f2744882ba37e965a50b954f861c99243bv

ee��:��V��+r�F�
0f725b790a384924e7b95b0b06d3009171c8060554b98e9cc285dabe9c324930`F�
0f791fdbdca1788b246815a870b316c43b536133a58c0b7483e09cce243dbf52sF�
0f79393bd746c2a784972b1db928fdca74d0c0324e00a1859ceede81d1af8b93IF�
0f7c4de217d674dd4adcc5ec84c9df840a974061fb940697d0f1d2c3317bca7d�F�
0f8617080bdf5906164380f70a90898bdb69a7910d8fedcf476ef4c3300ccc36�F�
0f90f0d1b094fbfc4ba66750ee90dbf63d119647ec2239d5614a604299fe4555�F�
0f91ee82a0f353071438675ca34ab961c867b90d20e8e45c2472604fdc1165ectF�
0f9586b6d0d300edc438c789f89bb5cc08cc5ad9ef33210f4da2aa9cb0977f06�F�
0f9b27fa945a2929eef54b26fe1fa8010d7cbd461cd3c645fb8cc62de85d5a8b`F�
0fa3ba7dae428c14500eba9a62de5fd03fb07234b8db1fea572d45fa78f0e0d7�F�
0fa4711e307981d6c9174ab9d2a6a3091cae2a4a43da04ce41a45407c143d240}F�
0fa907c7a6165ea080e9b32810b7f06b8576ef3ab9fe6df734c98ca91fd4ff1cFF�
0fb81dae84cc52ddf4eb6a080d15e4a750ae48a9057d60e0322152493282eab8
2M[2}�^��>��j�MMF�
0fbc642e2648e77838d136eb26008e221d165a8465fd50b51c8e7ef52d5c3376�MOF�
104ab2ef65171e91197d612304922a2a41a03bb8e9cbd65666f2899ffca2d489fMPF�
10d9cd406a9424d6ffedd18a738deca45a4e4eb8b3d7040d57bae575915dce5e9MQF�
11b4c218357ae653cc94b8f934d6cb161e9887b9f18ebd5184628d644e2ec02f
MRE�
121ed67b550b9b757c921a1f6eba668e72a8d28d183054b14f8e1d37b81b602bqMSF�
12a2e4e010484b9e7bd30fc89af801f0e1e212a2faaaa5017acde6e83cd52964�MTF�
1333d18f0d5f36acf0badba03a7250ddf92df7f789f4674ece2dfcfcd925f3b3�MUF�
13c6b2ac5e5019a9debc589efedb039c95513584922436476bdc65f0fa84b5e8
%MVF�
147dc35e6fff3dff6a81de8b9ddae7411d557a2f80bb93a6b4040fde544b5c73VMWF�
152dbbf3f7f9f134af6da2865820367d78a9a9699d7a81d9166fbe3415389719IMXF�
15c7b778a896d0c127b0468d18a519b750dbd5a649ccba7fbb6b5b215b7243d6�MYF�
166d7341007094fcdf2e7262d74c699cb960d009945a221df4ba4a33d63ebc76�MZF�
16e7fce47c141a06695e847b179e86c984a88ba42655eaa04388c7494d0b92fcm

ee��:��V��+r�F�
0fcf726d57a4432750417154846f7c22cecf1bd6d6e09cbccc91d48290d7d69f
mF�
0fd4e46db83e6ecf64c063a8c953be3ba857eec99d069a0824fbc7cb3181c25fF�
0ff1974a6100b7f2cbd7eed090daafd948fcf3710a299e3b612fb23e609059de
�F�
10051afb3f6d2fb5bf647ec9390076d0e4fdf72b804eaad8ed489a50c74d6237�F�
1006b3d0a088752eeb2598abc422708ea48c9813a37b05520a479db06e8b6d2cF�
1006f493d08b88033474d82a195562d019c3fcf80328843dd0d8bb351e49ab25�F�
100f1234d4c5782b5913aa69ba66a3d90098ad06808fb39b4433d80beb94075d�F�
101d4c439d586a23bd095ccd9577412c6ab04356eb16a1563922718a2e88282f!F�
101fd2608e35308dceb00d10e0a0521748cb0223084821b2a0bfdf550b1dbb11�F�
102055158159425115e1f789e5fc2320b09a7a6f4b5b764de3614f437bfa3e71F�
102ed9eedebeacd4ea5f6fc19a2a0cffb500ccb7516b4f616a67ee86654acde1PF�
1032b8922d675f553db7b6424ba04c52bf5594bf148d3c80cf447060379be540!F�
1039cd93e11117af53816432e691fa32ce9f5c6aef8a37f44ed3c7b1291ba097

ee��:��V��+r�F�
105a6b516b3b76e51de1f49c194fc9e35f3a871f57878abbb5b6a53bc54dbc8c
�F�
107322552a77011bd81b348ebfbb5f9181eec6a6de74a1a746e6bccf9773e1a6�F�
107479062ac7d45131a7f63b41712cb8d8bbc15a68e65ae36bc4612536690957;F�
1098fb31b298327e754a43c15283034ffb6c1138ed0b9ba0e5547441891481dc�F�
109d66ff27fd10890453e0e8e39139cafcd73f6341aac559e6f00b019b08a12f�F�
10a06eabffcd2d73d1de3fa1821108cbfe10fb4977603c9f495854984a91542b�F�
10a162b74ab12cba105a1556951bb59dc3a6fe0ead031488abf12f3017324716JF�
10b16b350ee16d3d6b97cb71b8b4c1f23359036277bb481e4ccc7cd698d26ed4�F�
10ba9a38035d22f8a1ee9eb610447ad60ca74948c3e82cb712eb09cf97eeeceb�F�
10bf18711ec31e124e08d12cfe9942edc9e512ce03fb9b9ab9a4a20d6d665b83<F�
10c0a3e8cca4f6a5ac8100afa56a4ced7e149d3968dfd722f8895b6144463313�F�
10c12fcdffb2b2b7e1abf077db33b288fdffac49a4e0acff89864f7742b7dd65PF�
10d9b8b27ee08f5090cf1a5d694548af27d8f6cdc826e69807773aeb28c9bd11	s

ee��:��V��+r�F�
10da91e17808a066fabc928e609db5fd20fe65299ed6b8fa0337fe213a70cb21SF�
10f4d4344b761febc0bc92621104b56e8002faba2566c0f27a1152a2951005ed�F�
1112275758e024da6aed300ab9d35464cd221ed62c67a573bd71242d60a699bf�F�
111c3beab8a3058046e42edddf8655dcd4e30d6e71bf5aa80d2a92dac1df6951�F�
112b6e97fc16e295181066cb46ff1a9262b26431c1ac47354e7d5d67d3fc1615(F�
113bbd026677c12bbfb0f6803e303c762606f5f0c0dd003dac3e57e0a598d8c9`F�
1140e209585f7f6f824c94f984cfe8ac43ee1498adcb74c031ce6e8e712d43b1�F�
11476c0df825b8cf64558132ab6c00817fd04a45533f011c2784f1a0df797631�F�
115dde7a103bd42e620ddd732d36ef609984603c7103f803f2d1d8bac1bef6c9�F�
1177f8d43f71a392da046005c8e1d337cda1f625f0dd12ae28400acc668f6b53�F�
117dfa1e07c65b202f4bbd0243e69bb5e24c7be31b9f971550d6ed083315bdc9�F�
11803c3ea95efe8e996c12cad83271ef43838dbf25dae72ab9afc3954d65639bmF�
118a4f0750f04814284ed67586a40ab0b954a4f4ab7d694596131eb54460a3e2�

ee��:��V��+r�F�
11baa7d4bdd8079b0a48c38698900636641b8648bcc0beed5948a501e512c0a8bF�
11babb3c74159846537e70da4fb01e148e8741a334bdc4689a5eb16b24a1a181�F�
11c4d1e2b30e04a86c011ebc0edda9c30a6b0f8a2a4c493606247511a8a39184�F�
11c70debdf0d39261740ffb0a5c8d3cfb7a03d7eb9be61a0ab8b83fec450f182HF�
11d2a53897da8b2f56ff7a088f863588c6608a98701a107ae5cbb6d5b7b2e588�F�
11d3ad095a9838e98b8360b005aa07fa292cf9a71c4265bdf7c5adda14d463b3jF�
11d3ec6a7cbf0f5ab4a611abed3a8e577bdb9e6c35243dff95e929892554069c�F�
11d891b8f8df76c76199d0d95bc23fe7ef53c80851883e2f7981576c44654966XF�
11e7a9eb9ad854ce3901deb76ff9ab3e462f87d56766b9cda133c1fbcc89d812�F�
11eb54ccf2baedf7ad57449921954e6b13044b7677f41af6fba598987dda022f�F�
1204cfb28866866392e87bed4b27492fc16eb53791f205892fab3ad27a9bf935�F�
1211808e31a2f8b4a08003a44553ed8f98d1397772009e18d3edb51ea7c89fef4F�
121ae3d3bc314678d6d4591403f12a7aac992b4097837f5c93e9dfa346814e6bL

ee��:��V��+r�F�
1224b4daf58dc2c0d85e8536fe7e439c784d857c15e654ad9c5600780755947e�F�
12356c5566012c75f7cff8722dced224c1aa54d1c80a99482b0c3ec180432929�F�
1243b5c5c37f8cff61bef905abb14b3fec79b4baf0f8804006af238bbc09108fF�
124996a9073a9ca8c3f0c37ffc32039a2cdb8a8eb5ae0de982fc65de11708c2c
�F�
124b95517eeee9deb9fa4cef2707b16c5530d6c6f263462b2c3deb2f8811b3d8PF�
125ae22f4c9e8e637d89b849935d280420235c63f848bc2c66d739962c4cbf45vF�
126385b940d5f6f201b6b30130139b0125b1d44dc7842c59cc7cbba5a9a4404d9F�
126e1f4ba7b91116dc2de61216743f423ed250ef44140f20c97de01055c2374a�F�
1282baff4a36da2985cd30f9ea8f45ff5c8aa9ed747e858cf20363a7b30022abwF�
12944ec5810169ac73652bcbd5cc441c1d5a084cd3877df22452e21f63a8b978
?F�
1296d51c39d8f5be9667a1c80e53bc0edc3a1395b7d75cbce793d6ca7fc9648d�F�
129f6f9ff00bcf11fa14cab3ec12d80bf9b9612f1194adc7aaacead1b3e7b651QF�
129ffba6bb846528ce31e13c3c411fca71678d07fa6e0e112e5862ec25ba2827�

ff��;��W��+r�F�
12a68692369968ab2848f9b52e492d4de687d092607a4bb029d6032c6b8512d8HF�
12aa178b2c59b3f4c2d815f73b977ffeb7703da8b0da0e7a3a6f02c9aebee2a4F�
12b6c2912b246899401394c661b0f6d550c810ec67c1a013c5686bebca186c0aGF�
12c0315c9a306dde2cbcb74039dc11f2dfc2490f50ccf2ab16411ba4c3093b63�F�
12c5efd45c7ef298bfb73822c8f3f30c767fb03f40e504e94e3519f825ce6216fF�
12eb69ce3ab02b67fd35247a607d73a70b5c657c3703598db21a9ebe26e45a42	�F�
12efe5e7e0fc2ad175b1c36f053e1a4532e1f85d27fe3489623cb945a5908677�F�
12fb546150a8175c1aa95419a75e512972cb4c6c8eea1ade84e3319b1cfadaea�F�
13134e2ba51f0808b8c80f28f0f4a95f367f1ecef286a2a63576e93a76453a03E�
1315433f5602796463c98742b5395f6bc95f0716a4d9322f2131b5bd23a0bcdcF�
13154f5e2510e00d260ae211027b13f44ca11e49508ba2237ccccda2eea337b2F�
1316ac625663f9009c64a89e399d60b4191a5bea7e69797e85132da3ccbcbc77�F�
132ce82de39a18ad1be89af9ce56bdf2cf2471eddae86a469dfbdaef42478652C

ee��:��V��+r�F�
133710e665511ae5f9d0928eba116d6f2d1f06f71afbe0e7013e3d46a1238e21�F�
134406c95bb0e98bfe18a35cc06ff8a3deca7248e9196efcee6eb05a7a0dcd55F�
134432ad69b8ff48c6929ed4f645153058d8cb0020dbb0be3eeb7ead882052b9�F�
134ebbe6274a1c839f7532e6c8c356f561d28c58fcde4685da109f394c8081ac�F�
135902f9e5faac7a0682e6189f5cfddf652759007d300d8dd5ccb7d527fec1f4F�
13620c99b0846a322488107d5cc07d2d64ddc79b24d8cd7eb307378a759389de�F�
136c98f13aca8088f8a6db32a4f1c09e88ab4e875a90611b2c854ca63a7db95a�F�
137fd6acb013717c21df14d056e3aec78767919094b31181c949789add37ed5chF�
13955770f0ef1cb7ca5e13e21afb4cd0cce8b0b1d8181ffddb7f3fd4fad797e1F�
13a2da96e0859c06d6b4b719445081c65053460547c38ccf8f0a2c1e06b039cb�F�
13c2180392f13ede0d3e45cf8895eb123d78ede2ff65fcaf4c05232a7cba595b�F�
13c3f114dacf10594cbfa9365b4107f3ea7e4dbc3dd4f7d0362049b983ea8f56F�
13c47236e82fe68997766cf6d15ce0201350f4f534beee1f7e77dbee3e461cf0�

ee��:��V��+r�F�
13e6e0aca27ac928a13a8392353c51dcc310d1458f84cf2c8811620996c73fc2{F�
13f0a70db8c30427ac5dcfc998ed9c2ea98da56b6c4439d62d54bc51fca0c198�F�
13fc5f5dbb279c4648c8bffcbb00b2e14727ae6ef9cbae25e6728251a8b2644e�F�
1409a93de8f33913e0adaf61bf58a25d2d2e6253e503e532e910519107835c33FF�
141f11e739940e647d36915972ce6be77e89f7033f570f3ce6cad86a511b9f3f\F�
1427f803b91f38e23ae66e6fb49eb6363167e457e76054fcb63fee011d6763b3
�F�
14290884418bd83ad4955aa6354b2113950b766239244a06bee2f2a364ba608f
�F�
1430b03046652a896ccac617100d4beab44c1c13c0d245b9bffbfe91817ea027
�F�
144001826455a5ca11b8e1701396ee66db5af5d0c7831453aba1309eb708a6c2�F�
145b9d5084c2fedb67f97a86a7a34cb159ed3eb46792eea9e063b1c632fde672�F�
146ca869c5ba405509685e617aa2689cda961f933ee72947d61013803f3d5fb8
�F�
147bc1295714b7317e539c11b0c800234b512dc4c8c7c1a62598b5f4204f4d68�F�
147c8de55409cc60a709e9f72364ee69759e7361564a732c0fd192e6fdd46d75�

ee��:��V��+r�F�
147f560470dacac3f89bc4c5cfaa3c9d32364fc302511f2bf1a13025a5875621?F�
14915891af23de39be92b9e4e610d5fe1f11d691b6c0bd554ea4f71e130b80a8F�
1497a77c838103e684f02aef90dea21228feaeec08fb162ab52cb8db75cd682f�F�
149c020747f7a669eb88245d5064fa806ac7462e9cdd3a6c05414ff08bdd43e7 F�
14b4703549cb70dba8871814b76da451a63a067a0c48cbf78c90a94b528e8071�F�
14b5a03ea26d2ce50c3b85067c66d70c255d308324891750f4deb390e7a68518�F�
14c340f0dd683525dbfa9cc780253e123ac8b40391caeeaf7b12d5f35f96d7c0�F�
14ceaab30f17021789efedfc14f87608192f961f1318dd5bdb9c1278c54aad96*F�
14d75975f6b77789e102a09b3e0c65a16a5cd38e795fdb34c4f40cf970a67b93�F�
14d9d53643fea7cc10917023b99621119465b51a9152b40c8803e3794b562f00{F�
14eeefbe453cdf299889c12f5ada3a9024e4bfa0a7a528348d4799660822a0d7(F�
150b5e83d6acc1e5a6e22bee18216d6c7e0c581dca489071a61aab70eb9b93fb
XF�
151bddd3018c3cf341e45301fea7e855900839a749c197c0037edde602eaef35�

ee��:��V��+r�F�
152e52a9fea9de88492276d62ad1f3197d8720d0caf399f23d096b827375a6b5nF�
1537999eab86e331b7616768bea67b873d68628c73c3287db0880ce0846cdbed�F�
155a01df2abb9e5b0463d2bbe0314d3147245d1540cc0e5026de16abc670d0e6lF�
155f2a67548cb8ab54265b28dbf3f1e731e26cf182da45d98c95425930890046�F�
1562216c2581239f50ab2fbbcd1a38b49ace932313a42d97acd2fa2767606ffdF�
1563224cd55060ababda0629baf763138a4b5c22b82b6494721b272e3e38a000RF�
1563bc40289a666bdb5b6b948e788815b2b17e6ae8e32bd7645f8b2183f82d81�F�
158e955d20950ef61a38c645accc22bd6cf37c7f31e06cdd3313c2bc5b0d969f�F�
15929d57409b9d810314750e5974d9d4d764c8cb7d06c8a05aa72c3a1e815adeOF�
1594da41bb4b69a611ac9e605dec625b69dd2f867a53943a544a8babfb76594c�F�
15a85325dd91b5d41165cb155f2faac7f1c67c75551d52a664027fc559a5c62c�F�
15a8be046768a2968cfabc11099c94d9e4758a47f1ad0a4684b5381191fef135�F�
15ba10efc121a3ed0a0eca1fa166dedb998e453bd44dfab80b4ea710432aa8c02

ee��:��V��+r�F�
15d88fa90e0a746ab04810e8c5001282b587b8a21da83e08f7a05195f6fdd775TF�
15dbef5a2991f085e58a23e6a7047ea54e528a6f93b07a28839c0b6e3ed48c5eVF�
15eee91d297a4a3b7715b991e5411fa38326f5c44b7a58895868067a828537daoF�
160346449f601718afb8de2d7f7e0aeb2ac8a5f4e2163d2f74d1b98233db4002�F�
1612a4f04271f95f905580cfc4cc94695b1a11ade17803d000750d518bc0e3ac�F�
1617a73a615b21a99cc94d4baf19a16b3e787c5cae853c5b1ca7340d1dfe84c94F�
1619875cba8598818f4bb31d4ba22a7d88804cab9b8ed1e66cb4cf18b1b446cbvF�
161f535137bc7817d8e0950475afcc618e67819ad26590c829257f75ab51211c.F�
1627c36660c246a28b1b4c12b7bb6265a2948ecc122efd459f7d3a78959935e7�F�
163de5925a8b793540385ac13a1624df2bd90f757dcf6374adaabf2b88c60647�F�
163f0d23cfe8fd01038ccb7746a4af46b5d8859204698181d3dcc73e81d8fb94!F�
164f86624a46a2f71b3b2a951d0544b44be7971180929255dc526785acc3a143�F�
1661002b4d684efd2898ed72901055d3f780eab559156150f5421b5f448d823d

ee��:��V��+r�F�
166e3f5af4c284b83976badb2166ef9cbf7ee9204cc585ab900bfe28006a7917�F�
168aca43a6275ed770802ded267285a01db77e46803e6ec90dad47985d8145eayF�
168bff58938382034bb054ff55ce6aa5b0976326389d6260fbc85840fe154bd8
JF�
168cb87176ec6a7a6805dcccc50c34a22945c1ebfd027164ff0028a1a140a637F�
1699532891581ac8f26d0ec07605ccb1d294d5a52f3b72ac2d996d064199d55e�F�
16a78c16f102931cd4ab634fc4177b99535edda6436721529c1f30e8ec464b9amF�
16a8541fcf4b2cd339c282e65bbae76ff488caf5eed0840a759841b6e56ff912F�
16a9d3e7ce759abfcc7721bbe369b46acd4b3c511910e0ac4f61445d857f52d8
F�
16c4eac47cfb42c7b2453290f21172024727ffd7444425d48a2170493b43db784F�
16cbd958b4cd93617722d3eda68b3a078e46f235e47a40ceca9a90151e5ee683�F�
16cc8bcd9289899b14393eedecdb5d31b11e6a4d0c504f593037804de5878fce
�F�
16de628b418b1829da4235fe7e51f4fad2f0c73137e1c5cd7fe972ff2a960f53�F�
16e1a4a30424173e656cc48c68ae55bac63aeb586b1cd0e94eca634d8e1f153e�

ff��;��W��+r�F�
17166fc5096e5f62c88e7eff8f2e850bf452600e5d52eaf11a1dff4bc21c285fCF�
1724001fdb91ff6c4e1fcf64bccf981017dfd7ab649f21c1333810e6cbd8e9c6�F�
17401dca64ff03c547fb51c7e83d60963cc03409dbba4804272853959d2b9a21	�F�
1768bd5acb4d22e917fb9f3d2c5b2d56b9563f0d453dc52f436e8ee1fe717ab6F�
176be26252edd9349f87c81796fa0c0c19ed3e8dbd43a82b201b7ebab75624ed�F�
176d124a27956ac315b44b6b42bb13fe2fa7702d805ae7b58731b8d634bc0a2eTF�
1771d7f870046fcd2d0c96d054f425f3032a0f4271dfb54c5e5bb22cd2f87d11mE�
177ecfa448785c1fa6fae690a5662325ebe3e141bf45117920f280b5a8880a0a^F�
178ac00cbf99e924ca4b26e5bede47496404e34c1fe48906789d80dd955c9793�F�
179672f8c8746404f915bf9e8645d88839973a7f5e024e6b7c6a3e00ce2c6f98}F�
179d2c236a9c0fd2a6c44145f3d47c793b7450b2e9967fb4caa8fb636c2090f7F�
179d7e14905a53e3d09515993644464c53e8bf4c10bcd829502d153744fdf666	�F�
17a03afe739f681263e0d7a0e0adc83bc4c4a647094714cc9176e4e82ca51df0

gg��<��X��,s�F�
17cb2cf3a7524082c239fd29082b6e294757fdb6175dc11ee0f7a52fb4e3fd76�F�
17ed16fa6fa0dce15c8b3485e9d01613b70ef05e54ce42b4ead591c57c7f47aaF�
1802f181e6589961ea6d796ae4920da55d454d730791ccea8f2c37d1dc609c37�F�
180fe822e8d8229970daac8f8d746b4a0b83877121f93490003022ee941544c1
�F�
1824faf3f57ad70fa29640a76cd08c71a18f5f97c91c1117929ab588f9aa44dc
GF�
18263e1b0a03802679269ba3b6efec82086ba491183c1ab84bd9de4e5a98c0712F�
1838c4a50fba6cc7f01b473b8ebeaa6c7edb92cac0662a563b2b802ffa0fb3aa�F�
1849014c019076934853ec6d7ad795b91829e59d3946c36ff4c13951f53c6a67�F�
185387ed3f5744ba48ddfaf8a3d5ccc041f095dff1ea382c043dbe6835d3e739�E�
18552d6d05e89198db7ddef073bf9f88ff81556cc037c82a133b0eba4e12c71aF�
186d5436f6365f279482c72b48d2038d776476514615d06d9fbbf8a163f36dfb�E�
187145d7bfd310c612f73b86a31e75562cbe69306dca7362841fcb038b52fa3bF�
189ac4f6255d2b5abc0708dbb15227064a2197770e4044055b575c335118f124�
1Mj1|�]��>��j�M\F�
189cab5bc603286773946e73c42d38c539c7a0de2d36fdb6fa6aba0763c86a44�M^F�
18ff9230e89f660287403152d255b18ab93e778ca6eb16560d9f2a33b716775f
lM_F�
199c200e85ae57dc217530a09f2172f136c763583a9869d518e3dd7c2a2f3c24�M`F�
1a5b2d18101ca9a398c7873900403ed4ffc7daf7fb801a9ce1649c3fafe185cf�MaF�
1aa7058dfddcf6000119e4d89f90da91d35b7562587f5a8c91a2db80781c6303sMbF�
1b461b4e217ac5f51d8990aad583c7f189e73fd3220a54053124772b83c42eba�McF�
1bab4a2f960faa0a69de616785116c776e018a15bdc67d8f57416af2a12896db
-MdF�
1c844415d79cf4e5509e9b7ea70274ecad4b7e52cd6d0810f0df2dda40106afcMeF�
1cd93bcccbab328b508e869ff3ceeaa30e1ab5ac781b7a6c3b91207832226025	�MfF�
1dcdc8db1818ed7523d6f6801be8434b3245034ec83d045632e076c4f10742c0�MgF�
1e46d6b60429dbed54c038855d87f27518fd4c4f7f6e66a15ff60a3bda266f78MMhF�
1eb686e8a290603d5223ec70ee6fb522d7289f9e573548836dfd8858a99a978b�MiF�
1f633f20c7b2aa6eafb4ac8894d9cd73727c40432189eee52f62aee11daf62e9J

ee��:��V��+r�F�
18a12adf2bee6b8b9f5f9ed18be2ae1759d9d9d3aaeac59fd9a62973cfd8e759�F�
18a2c3ea2e2d5c5ae12660bf9eb03c2d3889e23de31d9b4ab4402b973dc2b813
�F�
18a944fd24888ada7034062b23c8096dad6ee599c3c1262ac434394919b64aee�F�
18b2663b932253d1cd4199938857bde269a7f2c90665ff7782c334d88b68f7b7�F�
18b6542a7872436ef0c7efd318aadaca8d2c6de3a49d4cd5fd54986bf4b9109eF�
18cd5d8d39b9aec1631228c86412a11eed902b967a26b6a64c816e4fcccaff89WF�
18ced00cd6c1f923fc88ba96abb6a1ffa4ccb1baa01b41e22d2c729310d6def7#F�
18d2703d9432cd3d8353acf0fb1f852fe4c15301b3d49fffac3f0194c6a4aaa0	F�
18d655d9234417eb4a995a66801cb9c7ac35362aadaa734d8674f8e744986b8f�F�
18defd29c31366e3f3fc7602eed4307dcdd1028a8e25fd6823379fa2ef33eb6b�F�
18e4458c6be87d024a157c9233b2f318b21378e4939151e17d4d302d944b059bxF�
18f14d208b245267c6cc29b0b7074e0e030ee89e895659c26047d4186135bd94�F�
18fbc0b4bb2aefb2e3524107d2daa21178d1d96eeb51a3421ac5e3aaae21aaa6;

ee��:��V��+r�F�
1900d58b22825187824aca7c1c6d194d7a401d5fcf0c433dc2037ac97141b1fd&F�
1900e396d24a404c2bdc5dd7198c7a0a6a08171c7ea6e2c4eff77792f3f335edCF�
191e06199dad5d65a5b31df32a668436cf290b67dd7cdebea120791a8af5661a�F�
192e0475321fe56db4e9593f45ee8e350eefc332f30d7e62d1412741c38ef09bF�
1930ee508064d9fc5b82d42aba3062a28da268f293b47a7af9f89dfc9ff3fd1f�F�
19575eb2feb5e29ed339c078e462e2a4ac7a44f0888328185fc248a30681b82e
F�
195f9b3429ced50e475e3f14ae59ece2ac1f581466cf6713231c9da9927283e0�F�
196df95b9b19a08f79321b9b3709379e9fbdf71dd5cdc4d74bd313d84468f412
�F�
1979501bae62e6070c0c6037b5547a69c4342485df1f9dd821ad18a174b0bd48KF�
197c0516912c709ff341d1764b675758fd47d18d35c0f69234271e78366dbad5 F�
1988a7c1f3496679d0f5155d1ccdb326d4c38efbb8e673eb67c29ca61004a3da
�F�
199014d97d9be442d1dce91e30112d132e8c5ac82003d8631976c1607ad2e159F�
19978c4af00a791c32ebd350c7567fcaa35f1777bf2095ed486565c265b574f7�

ee��:��V��+r�F�
19b1bcc147b66f7afbe531c0ce8c1100de0382c508ad062a80e80ce061782f2a�F�
19b2915a18191474719e65f30ae39ec3e32b24de808caf1144908d5905ec22db�F�
19cc17be5a8b2b11edcbc35b6648252c7d5913d500ab82bda2d44c47f0d3f440kF�
1a0a2c585f883eff1f329e4976169d243f39b899c3b430426cd6e1c996b89624�F�
1a13b258a98c48877d221312e7236468718d76e2db7278d2da0271a016036278F�
1a19777f00999ca9d5a879d29fb67c078a61e7584353514d1ff9875c172b83beGF�
1a1a8ca0b3ee1af1eea431740811a8a48d9564e81093de7dc250d46e47d3383f�F�
1a25dc8c20fd98c6b44d7a50ee5bbeab01a9250c1764965613176ca25661a781�F�
1a363c8575a8323b1e1cbafa08ba87655572c3b032a755bcf5cf957927fb9a70�F�
1a4b2811d9710ab0cbee6c14d0d65efdfcbc1fb050caa3686160958d16c06337�F�
1a506ab0d1bb5fe446384f454d2e3cccb4d626df0d87e0effd61680d6a9d026boF�
1a53c3292a73f1254003ddafa161c57842ace3830adbe515eebac0b44ee7d99a�F�
1a57399b3dc42160f3044e768ceb0aa76dee84a8c852b6e9c99ec3568e52eedd�

ee��:��V��+r�F�
1a73f880c24703aeacd0795c62a4ddd8fe4db2ca199a961180176c9713e3fdf2gF�
1a74fcb33103de74d5129a6eea3fe37137b7cbdc136b11a49f79822b8fbd6194	�F�
1a762e2d8882a0c051d0a322eb97ba3c2fbdb843e16699bb702cecd284f238faFF�
1a7644fd57be2d7e96c28f3c6603e556bdb0d939164b61e085301064464d1aa7�F�
1a7fc39e7d481badbe2fe10dd40d290dcdefdeb4f572a8affee7880a751d5805�F�
1a8201b73f71ee44efe72426328fc48ad33413143a7f40a898fb7b926034487f�F�
1a86cce369d4fa519dc82e79409e0ff8f027575c7dd5f588f2c3ca8ed78e840bF�
1a87cf953d16581b70a51f9c131f6f714e364e0a57dee8b2856b43aad7d89104�F�
1a8bb6d0d5d3a9bbd2452e189a4bddbc5fb7dd910ae645de886896daf57d324b�F�
1a901043d59b38297076c304b82d8cf36fa295747a7273a0009f8566a93e0988
�F�
1a91953e84dbe2c03ef4d9284debe9f3fd29f808a721e032346b19d8191151cc�F�
1aa4d5a6ea319219e3813cc9caf102cd6341fa2aebfa9e4b9096e4e1df7854d2�F�
1aa586cd752451a887e64054c0eda881403fbc6b7e9c6079ce1e356a839fd225<

ee��:��V��+r�F�
1ab3f90a7eed6a0e8f44c9833e1def98bdbceb194f37062e21cfb6fb030563e2cF�
1ac0a06d5f14e63729e4206d6934c71f032a9d594c6bbb5ecc1c0ceee1abc06d8F�
1adcef07e0e83f4fc27809eacf51bdd1d75267095f0cf92832e1d636e04e477c�F�
1aed659e1e3bce0de9d3874074bcf4fc4df05a8018e054fdb5ac7209dd8ffad7	KF�
1afd010d898c09610cd98864d1e601d56fbb031d59f51f0e0e1a08fc482b006f
F�
1b0076a98d327d7bc0db69b985d05e02f9d0e927d5d7645ad2a14dba64ceaf52�F�
1b0d419b8d0ecbbebdaf88198d39462c8f0babefb9b711f46865cfaaf19e8ad2�F�
1b137d71d271e1a3ea8da17a90f65d981a49674c7781a7491eb07f02fd41cee6�F�
1b1b3c99c21402de3620ed1fecbd44518682eccd70866a5c3c361b33f649f188<F�
1b20547bbbfca3c83fa9317da6351d845a3f6ee818efb377f5a74fe92ae5a2fdcF�
1b2a2bdcb8f8539c6b2c875f6eb99acd1ce16f662f02b83d2dc3dd8e3408c5f6zF�
1b30b4a38b3fef0e81dd1879d3e9b159f739eadedc3e869eb5947a4bd3b25968�F�
1b3f8f389416ac835d75a09fd6027e44daad1e8447c349cac349b674506ce80f�

ee��:��V��+r�F�
1b481cd6a6df8a141bc7064b72ffee022095969d0a25a8b9a57bfdc1ec3af7be	�F�
1b57cc987d64b98efbaa6f796a3df838d4f4cc4a2b892e4e19685ea37ea8188d�F�
1b5fd99f401b83a160bcf8506fd135056203e2df730c72f49440fe457a1ec20e[F�
1b6f592d463f10e592cc2b035e409be816bd6dc189d7457574d5641fdcf767bc	CF�
1b79cf7e51fdd270ad47abaf4877bf5ef54856e2842af27bf476d4129bf130cb�F�
1b7c83c31498a1d9eec34b76e89035fa039c4d34cdfb507851df956c9a5cb86b?F�
1b815a5f718f4c8aa2b5ff3b119fa6fe64709eeed08150a007a61a3d9d4c50ee�F�
1b927fc58d94ad45dc78d0926b1fb83cae72958110a6ebfa24f75a5d5a9a4b4d%F�
1b9318b477ed42cea383e924a42367b049b54e29451b58ab4f7761a1c26052d4
XF�
1b94bec42529799dff727dd6082c4b038c96227041b81d95f21ee5457cb4c089�F�
1b9fbe198a3af7e79bb697022c8043d39441c77daf5446b0e0b8e7f5c18603c8OF�
1ba4f8757a2691d9efa669857ab5fb078e658b82755130941f6240d178c6b8ee�F�
1baa9cb2d4f8d4300ac333fbc7bc130dce9145c67aea3bd6efa4a0354fc92b6d�

ee��:��V��+r�F�
1bb75937417ce4c985d73d9cf214bfece58dd2abdf6c21d4b1cb0108f070e2ff	@F�
1bc4e395f855f18adf61d113affcda6539558d534fd9b3ed379bfa03301bb5ddKF�
1bdade2f19c49a1f75262e570473159eba076e5147708897ef26211f4c3e6253�F�
1be054e17c50261a454bf852731c5ce00520ff292c6811df3d49ab473f540a41
�F�
1bf8bba46b2c5ea348a5a25ac9f2104263ce970c23bc3860e64178099e215f79
�F�
1c0761e63af4f982fec4bf5ddbda7da44c1f6472883839db48386eaaac902785�F�
1c18af2ea0813b4f11b632925aa26a45a80769bbc1970188c2088f2a572d15f2�F�
1c21a4bf7dd0a9330e1d0f9859575f2ab5436413cea65a4a73f0b1991f3dd1ceVF�
1c34f59825eecb09675665b804b5fed5cfba3340912d9fd887d39770e7d0ae60�F�
1c3887c7641e7d177a4556fa5d66b74cca92bdb865265509120154804c5ddeab�F�
1c5b7d04128c901ef27ab4d83ef677d205b161991be8f9d8b1210a92bde8b3ab�F�
1c7643a1efa2eb22c7167b8cee83405baa0f986f5f651d3226b0e0e5a443279dF�
1c826c2145a30350f476ab5a9a6151bd349415c6cab19956813fffb3b864a331.

ee��:��V��+r�F�
1c92e98be2e233ea55c194d01aa73ed4184d0ef0f92f289e7070396b6ea55cf5mF�
1ca99a830f21e3f243a3f20099285c28e83738059736b8931da396f1b77e1b0a_F�
1cb1df73a2743fe17a9ccf9a82ba1339ff309d7912d173c10e2a3e8ef400fcff@F�
1cb47e9ddc0c4d017161325b321b5a50d4645ac07758b0d9cc09ce6180bce014XF�
1cb65029ad75fd77a7975a1a11ecf00d33c40ae006a565c6b49188cb7f9eb6cc�F�
1cbb2208fd1a88235398a0429e2e4dfaef8c5ce0593aa8b550c370224ca23fe1F�
1cbeca0135b7f2bc07c9bcd75fc0fe3f09797e00adfb9350ced9cd89eeb77a8e�F�
1cd00988d4a50430747550422159355a53806a543c45da98d1b08a6114cde7cd8F�
1cd1ae8c0b9506f0a8066d9b0a935712889175386de9909062d20b0523e2876bF�
1cd646bb6272d044e00b987d196c13c7541d1e953946dd96356956e301fda53f
�F�
1cd66f531b9b7e67edd8521e39973708061ed0dc06e81bb64cc48a56a3115cf5F�
1cd733c69fed61cd28bbf528bf31510db3dbaaa4cbc45ab7ed8a654264b298aaF�
1cd870f8b1c30e2f168c6960a8dde4ac59970a62aca538042b33d37a679f1a3b

ee��:��V��+r�F�
1cdd1bc2cbd53aa25851e70a8024e7e85db9b9d0fcdfcc2df323c89e5944ec7a�F�
1cf3973fb3523d1d1a511479268703611131014d54aec79f628f19fb4b486117�F�
1d1a5f1c9af127056984dbd611ad930070668a97c33632c67e5261d7e1cb2491�F�
1d2c5ccf5a54793d996b971ad4448b1d95a72bf1270703b1cdd944b0b4a82932�F�
1d31499d687de8d016bd60a5b2fbacf8065dd426d5a48f4060f427cccd242680�F�
1d55e611e9d8085d8a329b27450b4fb96d5c488a59e0f8043df68d8765940b62�F�
1d64801f6bea041340ff67b2461569f13a202632b966b9ca8426a8027c14353b�F�
1d8a98543a1bf0ec8722595afa191584c9cba8432bcaa4234ae07105479c78c7�F�
1d90c0cbed34ba8bd0787832d1c7deb1024fe2c25a4f9accea2b95c7fa1c152a�F�
1d9aa0d9b3f62047faad0dd116b485d64442f569bc592a53a88f39ac5ba871c7�F�
1d9cb7ca8c804f9fa970b5e2df8cc163112c6d02f4769316009d22c080bddf91�F�
1db80fc0b7ec4ad66d1f7b86e831c3ed4d4386b1db1558cc7afcecf08ff5184eOF�
1dcd5933cc511b7268b7c46d30ee331788e825ef5dc6aeefc373ae7708e575f7

ee��:��V��+r�F�
1dcf380a319a132c90457bf82f10d67e9fb2f0795535e4a430c15eba981edeefnF�
1de65c5f5091d176efefe324dee42e11290463e4e9d6a45c2bafe24ff7a3a8e7
�F�
1deb2c2c595359a6d9ce1c3cbf28785cb264b03e34a46f8a05bb2c2922937dc0�F�
1df29b4610f51702868338437a84151544ec5f149b1abd3299bec1abd9aebb57�F�
1e050a70197e546f07c1f78ed2e33fa01d93756947ab17d6c3343eaf08eb2702
�F�
1e079edd2e893af3264ce1312a543eb600f7324169393765ef4fad6463caad42xF�
1e0e7cf67ede91280fd5a1d1a63490ea597c590a44d12ba3e9d2c08a05b703c1�F�
1e1c43fd5f02a819df67f4ea70bbc1d3725d96664de7ae2da966f9456b5ececf�F�
1e1f0a4ca49b831262ecfe3ac11e0eaf955da130a0d8c2a9887d17d6514fad7e�F�
1e2e0f37c2f3a9f903d1952f17782bcb4362107488cc541c0bb3de118635d8f4F�
1e384389a357083eef224ca9752df57e665959920ecfd6720d9f58d63924b0b8F�
1e40420731f3976bda8671ed42244cc12837a19a812572d663d3731cfde54fc3nF�
1e46c617c397ebf4bddf22b24fc3c9121739db329c756295e2c7fac068c4aab1]

ff��;��W��,s�F�
1e539eb940638371c11f0e077bf6396b4c0afe2d8a5e55e1a10d9e05b8865487F�
1e67462d537e085a22099169bfc37a18a1e6f210a61839b9e0b229fcde3add6e�F�
1e71ddbce6e19382bbeabad1c266e4c7cb09e2a56d99175af4ac9ac047af3945
�F�
1e843fde687553231eecf687163be424f4d2df8b4398e28a34c6dff791e1b161WF�
1e8d63f3eb80cd678a21631ab2ebcb9b62ce51bba0f293bfe51b327fad1145e2F�
1e8f0a4b4a44bd6aebb338ec755620508f9ad59babc55b9832396a5439cbf5832F�
1e8f86c76054032814d84435dbde30e74557bf6a1f7136131394674bde65ad63LF�
1e92ab11dbfdb95e9151c5fc2f4ef713c7bea0d91690886bf35bb75cd70c9870�F�
1e9916f4ea1571cb999400331ff1a0186d71b4f21844b0f5ed33712e42b454de�F�
1e9ecb13d56ad5c7fa67acece7a0f89c452b11bad3fc66a7589eb57a67fdb766SF�
1eac2001120394176840294e989343eb699519e8284843a3cdd14f5fb3f39a95�E�
1eae80c524fc2bc5a90ced35062890a40b5625b866e658c984d2c21a6b84fbda|F�
1eb2e0f2ab532fc7491714b9d8dae34bf6977843c4b9649fe0509d2fc7dc3b59�

ee��:��V��+r�F�
1ec9ab3e99e2c5ab2c09573b75bace2a32b399ef7f96411b8be713b0793225de+F�
1ed3b35b8ed762f11879c5cfa1d97f379a6268de2ed28fb8c9b9c0cfae430cc73F�
1edd338d1d20b130c1a107ea59652842ef0a8167393745468301105b2a59ca6d�F�
1ede1f94ef149ac05c9b87696792135237e12c4f7eb09ed33fcb232bee567817	HF�
1ee43730cfd6c1751ff45f321c91c0f0965e683e47cb52b91f87ac210ed93c1a7F�
1ef57080cad8889aa2a957bb771d161af38b61bf4aec83a7fcd19e2dfe510079F�
1efc77004111254487934c32f189a3b3fc8b1baf00a6e8350558183281f3855d�F�
1f08621d329170cddb192cd470d84cca45c4f102f80f2763f6ad12bcd7d94903�F�
1f0f6113c67eb17059e2588bc76ce4d1ce793113d638c89faf42684d92ac2c3e]F�
1f2763028ec3d49595e594f3c26e4361b3462c3391db1c8dbebdb12aeb792896�F�
1f353580c9e10d38968fb29d6afe568ae1887002f902073726b229aacd22921a�F�
1f4f286b0441b2c508c416f72ee52c1b323a1ba12aae4579f986c007ecde653fF�
1f62ae8c12fed4f7639f910b2b5ff758d169ec26fdf5536df0cfd5d6bee2d247�

ff��;��W��,s�F�
1f800a61ea4b98c012916d84ad280573560d18bf31af0e459b43494dbf907a0d�F�
1f886544574d6a8eab00de815966c7ca8a7292ab3a2ac66dcb19ce07dcdf04e0~F�
1f9b0f9eecf8b7a6008d7136a85ba783f0bc60894d8d724b0adb44f56d167728F�
1fa785144303de32e2279da8e40942e02967bad3724f4de700446c1ac09a1b64F�
1fb9ef577f0e9e4a896981792189019932788dd1325084e83bf11f422ec11e55%F�
1fcad50692febc35d99fcc084dee4f58b8bcb6471e12072b6ea2bcf2cfe49dfd�F�
1fe72164363f910c775d358dbfd20b12da516c49d28c4a4388ff663a5f4291dcKF�
1ff119238acc93098135e4601d4178d8f681c72ad91be0993739d0774b0824fc�F�
1ffc8e6c986e1cc0d0bec287cc7ad4bbb77cd0ccc1bcb147a4d5be35dbe062eacF�
2009ebe5d0c47032c5784190a92c5dfb2abdff45270eabce812d7641915b2fb6?F�
20135be9052bd1b2d8da133fe7cc987b80d4dc2685146012968f6b8e78e0bfe9
�F�
201819cd83614093dbe14240fec542722aadee2886e13b2006ee8f6f0c063950�E�
2020ae44e6c85c50fdf7fbfec19d2bbaf6f8395f641b1b48c4743285b9fd8bdcr

gg��;��W��,r�F�
2031956532e4c86af01a9e7885660b200d3432a40e8aa1938e571e99424f7b1d
&E�
20385107dd6a4623cd7aaccc57b216a7fd04a22b8f56bf7e874d9fbe49095bf1gF�
203db2e870a8753e2c1ba5897367c0822ee2a5c79b866fa6486effebd9f23b96�F�
203db3d0d6a1ba449e52187f6910583ce0b23cd0c8ee52676a996d6659236bd9@F�
2041fb62286ddc1875cdc0396db816edd188bd1beeb362b3e99a3166a7bf8179
	F�
20693e146f5e799d72526af73b57a86d3d7d316b6f7e0678460e69cc3c684e1eXF�
2070f81e2419a997f63d16358fa5bce8d6ec0e00e5999fb5444e8c6f5fed72c7�F�
2077a5a2df3692687ac9b3f892005ec2eabe97368eec05197fbf1f961f013442�F�
2079fcbe2c07aa0485612a667be1c81504654629f2931e7110664db306550787�F�
207aade4092c5ae2176b6a08df041bef38194b9beb887c0eecd8a4934aecb6c7�E�
208142489b5b939b70a9d0d5242ac84ad700f6bc7f8549c1b26d447993c66b86IF�
2085e16e3688337145397ad071965596e29a2b506f9ed495de26bab6e9ad7e4elF�
20865c1814ad86f27c05f9c958a9ea1303c9b5b7762952f4c5f8da12d65f4cce�
1My1|�]��>��j�MkF�
20887cda88d458e236a1d13d68fb01b10056907594d573f0342d40b9bd677d37�MmF�
2111718d7572c52cddb1070151dd723808174e0f46528dd636ee9dd3afc41523	�MnF�
21af3e26269599f29ef700b687a3e84539aa03ffc025f0794649d54f0a041582
4MoF�
225dcf54b58bc05175127f8b4645952fb99ba04b377f788b193dd25888a029ef
�MpF�
22eb2233053a534b388c3ed8e39dfa1b4901d5e8b1e278a8c843c301c9db2488�MqF�
237720a4e9199e2738ab3196d8e7c59b9fa4ba4d4dfc2395b09b8670e45f802cuMrF�
2445bee7e1332244f8b40961bfe9f59880197fd2e4ea9800c0b288239d229acb�MsF�
24b248d1220fef75f61061cd2400aad329970e06b2f254507cdd35348d968aa0�MtF�
256f88bd5667a9d5534690123098dcb92c0e72a1a20c14cfc7fc6f93d1c33891
�MuF�
25fa10449317511df1bc80c25c0cc1e7bede87a02929b5c0676ce9957353a8d9�MvF�
2699d7c26ffc9f022f434f324f0530dfee3fbaba767104e9902922124ba69b63�MwF�
27200e5f598a44637d8820694fe7f924e715e6052b300a7ab49405cf2a482a7f�MxF�
27aff6d12be971449c18fbddaf62e746dbde00a72186da96eeb19d8af6a3783c=

gg��<��X��-s�F�
208f92bb62fd7e69ec6decb3b63b18a2c7e51d8c1ea83099de63b56163c9d1d2�F�
2095e4e98eb5962eb97eb3c3165dd036bf0cc42fbb1cfd2c138811047868000f	F�
209916882b3c80523545c0e55445deecfae6f7a37cc100b47fc3ef29971078e6�F�
20c77d771507c889e3dc80615a78f99df44de70df4d11450949897b0fb73e028F�
20d48e214a59a2848b7152ea8c378eda0ab10d93902bef3627ec70603b8ad96f�F�
20de254161b05ef02d837d21731032c8f4207723f0eccf9665c6f04f2b1e2866DF�
20df00700ce564462df55efddd738d3298f0144e75431e267025497928e55dd6�F�
20e9c59ba021cc9600dbade71b83e1e1b014eae44d6ba273d5fa6491d9508f08	F�
20f4ac29a67806ff93314f45fbaeb1158df4cfcdc8bcedf26aa23f8d8449da24F�
21074e40c8578a4e4a866f138184265b3827027519d1d1574e83df6ea2d30c71�E�
210a76b6e2c83684ac3c106fff35849b22269be89a5b895625ac4ca5bf489796%F�
211028daa1af91e1fc841cb5b76e2f4edf63f510630571253c89635fccd41209	�E�
21113ab4dcd135895d98e51d9d540e8be477abdc44e185a460a9a835e382a7c1p

ee��:��V��+r�F�
2117399e425ef95fb4a8b8d38c39a38d73b5e0ad8f8212f6e467901f5f05ca9c�F�
211c26bfbf530d58f28b3bff1ac40338e642a96b7252fd6857fcb26e533c5790�F�
21239c5b9999cc70790783421ae9dd4466f9017bc973479de248a20ed5447111F�
2128f5867b50e91bf6e0f43a02f4d16b03085189d8040f386c115ab75f5a842b	4F�
2130f82985059fdc1825e34c818c10ce54691d99d56fb5b663cd8452c750913e�F�
2141ba5b56fde898fffe70f5ebc0e8dd7ef3958b68e0cb81881c570fbfc2a0f2	>F�
214fc2bc53e4979642949a2ce8ea6bd43bff20e98fa27016ae4ad1be3c189b60�F�
2152a348fc6d94205b82143e948cc225b5abf2e72debfedc99a192d0540f8dd9�F�
2163bd81f1d4891e8048088136ac2e2285db8db7bf8cfe2aeb16b8fe1d7f8085�F�
217a929503c5b9fc47654c4bd44a691380f40b921379b5acb0c12f913296b4ebKF�
2185f211100a288fd632f43d7f2b186da452c6d0827eb87dea7ac3154a5e94f3�F�
218cc9a564ccf2b06cc13a609ffdc007f0f4e45e935a32631db3d78e1c63ccb6�F�
219e0773f6cf831ca0c2983c48e45797cf1ed6150a23e416cebe02b6c43d5d35
�

ee��:��V��+r�F�
21b8e6781d07f056a511706388aa4397ee3bf2578eb1f6455af17956f29b8a3c�F�
21c9f734ac2660b9ca8602966521796728c6e3830a5aa75fda5d6c6674d2f5d3
LF�
21cd1d5d48d73a90f3072f23c5e4e21283dbd047dba314b528013a884054068ePF�
21e025565c6df51abd78e6c98b69d9f5be23937f57c5a64c76d807474bb9cb0b�F�
21ed5458a8abe02695e7c68bd4c068debb35056a454d12b095dcc9c2dd435449�F�
21f326e5f1282a6a5e71862e6a10e53257b80f7942532b86fc740c5060bd5d66�F�
21fa1a95375af231395873580adb9f748d65f91c14f7835244aed1cbf60db644F�
22218edd785c94ee6fbbe5ded89195ece5e0450abc17b7afb225b4677b79f3f10F�
222af4af29ee9e4dea368547514867dd1734fdc205d9dc9b484dd99e567f4d75�F�
222d1cb4f63704dc1cb456a7733ac13be509de7210e4f3ef68095502f871ad42`F�
22368115a8dd7ef1ec13ecc12ebfa7ea254651f0f7e10223b188155bfd2552f9F�
223ee648bd84e6a7bd0e7a0a189113bd1a3af31a18ecd5529530b10979cd3328xF�
2244aba731b0cc66db6a9b851a8fa413e9243bdd8fded42aa81fcb9d5c9beabc5

ee��:��V��+r�F�
226ad3151c609e6c6ae4f2fcadec7bd71f08fdb6c976380ebc8d8c0eac5afbfd�F�
2272979129fdda737c2763fb9bb135cf5763b18ba685523ac289d17b110c0dfa<F�
22822221e0cec5832d579c490f43f73da5575489c0b0fe6c53f5d0ca3ffda90c�F�
228b8ee7bdee5b627106d8959417f2a8b8b2a44b8b631203b220ccb5bf160b83�F�
22a2f90a540cd9a8330a6a4c96da322865926757812e4c0fdfea538a351e6f5a
�F�
22ad74d75ec657ae1c2e0ef0ec2331caf9bbe77cd9d4af628f4350d8891164d0F�
22b030d124eaf33b5a95d386b50c0b6eb1b02dfa96a1333d4af435fedbe097b4�F�
22b2f7582ba663c4bb9f008bce4f7a80e69654b30b05c0571864b3b8292f8ff5	BF�
22bfec4ae12f95ec0baa30ad642504987294442f2a28150fd5c850b8aeb04373�F�
22c712c0742c37d17a067192cfa1bcc35a1d96fc1200fdddc0f752ba8df52d72rF�
22d64046fb95580843be1a65bdeaa8f2a9beca7721f0af5f20f9263a59cc2977cF�
22e3e72ea0793e34fa431ce4f6c77af3460b1cd5e67558a3b644f1e438900d99fF�
22e7b5d6e46a23025f394d1dd9e25e4e5cfd1c5dbb00f74226f20929ee065bd9	�

ff��;��V��+r�F�
22f6e0dc0621a93077ed64c276366eb9c44393ec755722b64a175a9ef296b112wF�
2308127baa502197469a17cef0a36622ccd5c528247af648e424284943e73572BF�
230daa889ac4a0bede450aeb0258b6c9db6746486271506eb2037b877bbce588#F�
2310b0e53fdf17749832f558cf06510e127435a1cce7658a84665de1bf9fa2e7WE�
231493e830d00be6017e14f2838a22163835ecea8facf688b9769eed88f3c9b2
F�
231c99ff7648c2fa512b52e36ee21cfb15033bb178cb5c38c37a3928feedec99oF�
232113158f29ca0be28b87fea599e2ceb671ea597d510b952fa9490d78950783
�F�
232b24511b4ca567b436255eb6fe7f9fe68d66f2514a25334fc5cc4097d48238
0F�
232dc47c310816030f4221dedbaacb35004dc24f0a8fd53b574e4aaf87fa67d7�F�
233182440f451ea41600279219e708b82494832752dd921ec2f2e4c0ab2a7353F�
235100bdba26a1af51c7f66f533d9318837d01dafa0c5e822245c8e0e5469978�F�
235d7a11f2bec5ce59b3207ad420c1a0034747f77ac4902d343951c7bd4109d6�F�
236b16f4eff9a720f06ea780d58be74598f1326a04d143dea2ea6a3bf5dfb061�

ee��:��V��+r�F�
237858b698163e9a4615ec1ab98636d66cd7e26deb3512708bd88164019a1994qF�
237bcee37560d0ebf83c164ac3467d48d1c0e37558d2608e16c324a417061e16F�
23872416b1e3fe4aeba522975174df37b9536f0c3c2394d432e0af7788af80df�F�
23886775cbbf0f0b980d7e700a1fa3cce9ae8149522a191554e770fe0acf1813bF�
23bb9783bb909c0cddbbcaeb08d2ecd0d27ba3325b65571783ef5837be019a60�F�
23c887a392429ec463dea994475481a04b8745d5f29926c149d6f3f48c5ebde0�F�
23e60a3de6f5ccfa5704efa5c39a19b795f04e65312ef6af6e4264233e4fa953bF�
24039275da54c6bead07277fc20529befb42b1c310557cb1598abc0ae73b37f4�F�
240ac23487f8ee37fa0e974ec81a99ac0f9ef344259c12e512cbca60992948bf�F�
240e9a52eaeceaf3760066a892aab0f7a74bac5492ba14ced65ddc253119eed6eF�
242b3c3eb9d45d48b5e607845d5fbc380afca79449f49cf9cd801ea4a95ef419QF�
24374c0fbadcce0d6917a2e88255f302cb3f4a155216a45c8492da80d78ae47aYF�
2438f52168e5bd5317e5aae571902a59d445fde074f9fe592ad04c60e7fb4d82�

ee��:��V��+r�F�
245bfc9c157989c74777ef47e429b5b2823da6b25f940cc71fd0fae7aa230185#F�
2468aa7b84cd02bdd3dadf04f5dd64bbffc5ae57ff7ef4a973bc74b29757bf6f�F�
24699358bf47868256f0864e15068069f9dc2d6b473bfc07b8c40d1a5f0bf3ed�F�
24769d4968eb49e6106e6ccec86baf5eeb3e053dfd03158fb385fd0bfd8b3cd7�F�
247fc0e92238ee99057179d386718ac73601d9dcbbf86ef80e98ec27d4c7d86f�F�
248724675fc45561c18b6906dfbeacda8c1e9b4451c512be528649e3e34c63b9�F�
248b2b0bfb0de8b031b61088bfef62e0c0553e6fbfbf409774f977e6aa73b58e\F�
248b6271c4100aa6ae97c9a74a7d3b0bf217ed7e074e51ff84d4eb50183ea9a5�F�
249e4941a5a5071a668ba290a7dc5e28013fd43206a9a9b2a2a236220aee04dd
�F�
249f14138ea4a9e978acfe243db005efa9310dc87776a7c89364e9d0332dc70b)F�
24a29d91614a01ef8bac9bbf460d34163c334449765b6003400b4298035f4ac3�F�
24a92c5b29a507c8439dd16dba779ab76d6b93fb7f92021e42f3de1dcdde9308(F�
24b0fb3cf77c1414e8d4be523ab73cb876049596622b95f63dc9c7aa989b80665

ee��:��V��+r�F�
24c85de4433c7d3441a0b4765cbe8e897ea5e9178eca2d1f545940ae96e7f940sF�
24d9b1ac9ee09da7c86076a3d26116d0eff8b39fbd7ce382098d1fb81ce2481b9F�
24dee6e8be939b14900bb668c0f5908df2590d8188545bd59c83122ddcd7a785F�
24f07a4fe7e067974796688aef2936d4d3134d870c6f53a7327a664da0d208933F�
250a28dac3da0fc3f250e7d3e7690254c46a1dd5d2663f2573ba5efdae5e0909�F�
25140183ca7e3bbe7db7168653af8054b00324b50e2d6f28041960f5bf914598$F�
251baa632d0d33e46681b76fba3f93cc9ea07b9084a6dbc7bb018c50a1abb9b1�F�
2520a8d9459f82ba9401fb0a86ddb5154277672b55919b252535b199ef9fc3d4F�
252358bff773a45f41c33ac5e89717fa9768dccf112a04337a33f37cc5737ac4�F�
2524b4985525aeeba914c2536aa270d378e6159677fc4a6e6c2d0f5e10cf03b7�F�
25391ffb1394e063287420508e3e0ba93134a21e2a4cae273434eda6c0613fb1!F�
2543d29db08633a435d64df84ea00c6bdfb481a55fd6621a7e31190ab94c1ddfTF�
254d3dd41b5b9214e5ff2838cf5688082478f2a5e8e8a104082720ea06bb1921�

ff��;��W��+r�F�
2590f93594e0978b11599b182212244c231fcb0808dff97b691b518fbd531ada�F�
2596d8e58b7977e350ac45b39a8c22507bf5f23a48e5c5af3025b81016622b58�F�
259d7d947d78e3105849ae7a9929d030e772e103b7c652d987701a6a7d08f78d]F�
25ac1048044afca67ce7c131d644b1fbf4661666b58a9bf482f289e5b1905c0f�F�
25afe9864fffab25d5ffab54abb193c47e76f577fe26ccdeeff50269d7b964cc�F�
25b247bcb5f601c204d1a8049befe95cc84a219558a504a5e7412cc129f8cceabF�
25b4bbbd9ce981e8e49520f5c93c5c8ffc7b6d26b911440cb79a134719182d2c�F�
25c2ea7e33ae0636ef4ab7f805e637c22a39efff5c74c6192209cc229e03cc3f�F�
25c4de241ae499bb87004a0bd23c0264cf0e5ec7003c83fa57962fc6ca0fff80�E�
25d8cb3d83565ead22c4bfc3963acaa10f44a28286e88bfd60ce16ec510a113bF�
25e553164777a8317ea8977d7a80cabc995d717d2c470f08b6c043bdce419cd6eF�
25eda2d5ea8c705770886b5cf7cf2643b509f198fe1feae97607f96210343f0f�F�
25f4706211e06a217d7143f0aead6ea49f2a47344d314396d09e691a83a51848�

ee��:��V��+r�F�
26057397691d0e4487c2c746c43e15367dce434090f9495b535dab7657e51a9c�F�
2617375bbb0a52fe637164f0f40bbbc00ea29b150dd35ba0e0f79447454ad604
:F�
26284ef9814e9eefa37f15d0dfb0ddab775cc08083594ba1bd43d0b652f61680F�
262dbb7f2a09156ec1388f48b84cdfae97e0c8a8a47a0eabf39d4db7348d2f88
iF�
263ab19ddbf99ff851e5ec348f81b1a2fd27b14a82e84c024b8df1092fff99a7;F�
263b13ff1007ce0f1a2b919dcc679eaee72fb8105b37c94235f23c5f710eb42d
CF�
2660a3b1922f5ae40d7ad5ae794ca536eef7602567dd9c6fdb63dc9e6eba432f�F�
2663e6a78d254c25af0632b96caa6ae85c1a93cf308dc522b9e8bfaa334d9f2eZF�
266ee44dc28b8838740a524e7e79e747a4f52b1e9c6c56a1fbda8f8ac816cf0c�F�
2670e3582d71b9a17efc9c2892e66a3c54a3160c71fdf742693ca914289185fc F�
2676b39f946e027f903e8815ed686e37a2b8101f353ca2063367ccce93da761b�F�
26770336a22190354f2629a10f4c6c2d42e78462a5b8b78e24159743658c844b�F�
268b5774f4a3a55f845738bad78c64c2e69fcd2089e893ce164ec299ecf563ca

ff��;��W��+r�F�
26a68d26adb827543aeaad6e4d3d44e9427ff343621f03ac95b3ee77567a2791�F�
26b65e8ddb2e0f1b106113ae92e86c40572c636fadb1825dfa21ea13c21ecc4c�F�
26c0bf18af70ee3cb9525c40bdea17bad250aa0b3b0200dd8132b995dc4081a9LF�
26d3fc7fdf6a25b2590dc3f7c8cdb80f22bcb6b5d68c1dad9f14e3337c0ff45b�F�
26dd5513dd4b2211aa6f24f32382b86bafd5ff88c0d642448cc8725093a58146F�
26e0a18b1adcde25239343e4537dc1023fada0ed64e1d72e8b7a98ac795d90de�F�
26e499c5c940c85a9dc99a8198b266b67825eeb218071c6b6d0848d7e3ba9b92
fF�
26f837f65c41f6f8f28c88fd6f276825f409b924d8a0007694a7b9c158cc8d83�E�
26f9837529ec8886d1314252f193f695e2df988f21ba6cbdef62da935e15848fF�
27091e98db08364ca7ce67c92ed7fea1f2ef9a1b64dd06f659d6bb1cf563d729�F�
2716e4ffcbb6db566a73fd0c27d1df83f2082b07e88c85e2e3382e086a9d8294�F�
27194ef3e88b3dacc48cebc87ff15160878a2198d33fb8689040549b6083a26c|F�
2719ebeaea38face0d4ce2a92221526737bef4b1a797d1c4a93a640ef5251600


ee��:��V��+r�F�
27258fffe6d62545a0a0c40b4e07b0f92e1a3b79588415f8f1242624918720bc
�F�
2729d48cb21bb132a7a1c8ea58f36f1994b4d757d2752e75e27d2266774a0de00F�
2735ed4ad4e07e41a6e6b59da981af90e90b0bb1e85343189ce011e147af53cc
�F�
27381d0aaac8bd4271fb0d07366118b74445a7c2e330a29bed462dcbe88fad16�F�
274694000767f81dd075fa9b55a09e5e143824fe75c13fb69a510889a95f7f25TF�
27534a1920262b79fa35a9509e192cd19a2916bb7b11d0db13f71ae7cff375a9�F�
27554b9b56bcf99ec38c5aac4a10faefaeb0b46d53264ec179036107f7c5461f�F�
275d7c54ef8b97dfca3a0aeae434bcf2bc9cc690357c78c2944a06043dd90fbe�F�
2762293f4b83a93a76a349d261bacbdf67469071936e8daeaa3979de38b05145 F�
27630533e7ce471a5218ba93882e15e857abb3262a57b550aa04a27de283e57a8F�
276df6b2e20398eb1acd7d2327f480491884ec450b49410d4cad1f010cba2e36�F�
278b669b053892a784bbbac57d1b11be6496d6c624a0350a7d5628bcc2cba7a9F�
2790ee1f2222b6bacc39245756529d819aa586d22b8f921a30392fabf1e845cc4

ff��;��W��+r�F�
27b3a6d5e1c664607297b18087e7b61c8f79281dcd08b501d6a4a98d0f06ccc1�F�
27bc90124c2fa6f18a9edb3748c392b723f315a736b6b34038195625871ecf2b:F�
27bf800e475fe735de26f8983bba34eab9261ed1b48593690d77e5bc7d0acde1�F�
27c88f137de5866849397dd80af6fd026191916624a901d7d157db89d720351b'F�
27d1ba676d3d4007102e714f71f0f4e97d46890c6eed54e5f10720ff65e7cea8qF�
27d4858f1741f00448f919a33388f3a4ce77d65c758523ac1aaa6845fcf67c97�F�
27db2217dfdcab84a095b8363c3aaf36fd751a336577cc3de811d0a747c37feb�E�
27db2cd3bba9e5240c46f94fcd95f8d419bad9f865a7b32e02a98759ed918be2F�
27e369dd165f3e4ff6b99227422febe5eb07cd10c6962ce831eade5566e16b91�F�
27e3e327ceafc04ea5e9faed37c22dbb650fa79b11eebea73713df7e611dfcb8%F�
27f2bd3c549d96fc721458ba0085c54f33b57ffc368dc6a0cb33627d326ab37b-F�
27fa8705d3dff1a9ead8a72326edbe7713a85aef397c766654dc88099acc1354F�
27fd50136804eda5f0c7bfe32a61dcd680349725916fcebde89f0c8a2e549767H

ee��:��V��+r�F�
280bc79dccb9b2223e4216b8dc257b35f8686cebd950a724747d1722af5d8582�F�
2825f16fd21e4445da86539295790890cabf52e583783c3a52aaa3c565dc6ecb�F�
2833f7d8c4764e2c4c247d5f95bf07698e64f2a6dc53aba92fe3fa1f92affe42�F�
283e32e5ae51636ccebdf22a1c2c394d89be5d20c981cb3d22cd9353e90c3fbaRF�
2841663b99276082da78eea8a950fce8e865e7bca51a7bb46703fc30d76d9768AF�
2847971791401757255fc2092497c37efa1f8f7440c3ce7fc60b243b497e8094�F�
284a8c6f38b53f8ec780e1374c2a59b687177b7be9e40b2a673f14675843b17b�F�
284e903527e4376ba342697bff7afdcf76804823b3344908e0ad3589efb08d0e�F�
285022f2d97dce4f3ed1d27af515d776f7bf7d3331bcfaee0f0945955f738288HF�
2872eebb01865b8ead0f4f8bb9b8cda849c0b3a564ce459640c72efad9cb6f83�F�
289a95c54f089f8ce63931c0b1b113b2e0f6b74f859eb3900ce19534baafd6d4

F�
28a4508ffc1c1668b23b1b346fa1d8f6999482b63898c282fcc25247623bd55e
�F�
28a4c9399dcb130222cfa30fabd302b361ec8967c075e982a44603e492358e57�
2M�2}�]��>��j�MzF�
28a98571198ec6a28a437669678c624aad4fa1d5a6a2dd1bfb4884dddc584a5c�M|E�
2952ebf67510a8da5c648a66cb72fb82d02a871b1b805e3fa5d9a1ab8d1377d2
M}F�
2a085ac87e43c3c43e031cb33170bfabf4fbeea917c6492d513aab56393104b5
M~F�
2aba6dcda4b716437cd39f662b144aa8fe26ea6f15b54f36ae5c7340a33c8b36�MF�
2b66b267a753255256f090bf87977338168b89d26c4ffd982c87cd2f91b93577
�M�F�
2c1c518f7da653e7d7a53995c92f4baa7bf0f6fd4c51c0856182ee1c7e6d613c�M�F�
2cb819274f11f736ace2eed931cc816e6c1833a96ebefa661cf5f185432be991�M�F�
2d58b75f307b928bfae35e0818fe5449c542ed611f46c2ba4663d50f304c0295M�F�
2e548be4d940969b8feee6cc4ffb8dde5ac295e684713eba0f96b20f287e7b40pM�F�
2ebe4dd6652fe19a01c6576bd236175a5952205b51f6f3c76a25a539af114ca1EM�F�
2f160bf3a57455fd82821ea858e6ab2789596f1ae502a2b3968383670f17296fM�F�
2fe8803bf3b71fc183107689fe53ca7b40a655e57b4fc6531786f97143f55b5fM�F�
30c32ac3292a24f2136302bf5bf2d8ebf572bc2b8c57b4cb3c50ffeb223e144e�

ee��:��V��+r�F�
28c2a5051272af63a8edc3a8a14de5ce766ac890e9ece13f89e53bf7481f9f51)F�
28d32718cac59baf9c4162573d291af2345e664d16de912661fa18de7157ca63F�
28d98e71d3a3f5bef8abd07f0acc8353279545bf2aee26db49d58baded52104e�F�
28f3f06dbb75d2a2fd58b0494a47a36def1dde4acad9dde4faf9ec2d6f7c9321)F�
28f3ff68224de0783083894b44eefc57e4833a53461ce91f1f4656bbc1b0eb9f�F�
28f85ca5b6e7c2b1e3ab7c4b31675583e8a72c18188f86f288a9a9bc046a202c
F�
290f6f5895e4d30a12a9560261497d6ad631dbba6dd34aa352f5df74c5b51a5fF�
29124a79cce7024da4f024131a66f80d78a70d73c5fafe6456617633e5b83560F�
2924951f311fafa5d17831ab4e1bd85bee2bd6d9ed591445149b5fd70152d077�F�
293f6c4af159003426f1ce9255f1bc981d24fe6d1e848489c5b960eb8d9b7e85&F�
2945d0d59bd61b57919da46f45e6437971f4b5d914e30049df9465e3f9159275
jF�
2949f6a1f906f0892e15a8ee8c20f69ae5d4957c01b49b14336b97a39682d8d2�F�
295238e79bcc60f7da37eb6e533e39f157bbafa94bbd0724124a24661cfe67f7

ff��;��W��,s�F�
2953e2a9ba9042a9c5ebb93523d595d91f7367d8b83dc5b40a473e85572478b2�F�
295c3de68a936013058598624efdd7c0f37f4f950b68746738fee46aab824fcf�F�
295e1258aea3781299e6710ef8708bef6a5dd8bc6617af2cf2e7e205f45081b0�F�
29653969b83d43fd83befb74a89b5811c1b7b3d613637aa64efa39a1d4b2e76a	�F�
2974a1f35f8a1dbd3f46361c76fee7876402f098199e8208407a59471c892340`F�
298d464e537220ee820bd7139581301c828d6e60d9deb0f490ea21510f3a7884�F�
298ea0c2efac5573e322e25503e2c30d52bb589fa8ef1cc0df2ba4f2bbbfd3c3EF�
29938eb53cc7e9d2d0198a3a51f899d7a6d63659353fc78aac0dd24310a2cd39�F�
29afed10faa9e050e9b84ade3202f51f3836b8d12289ddbf91099a716ea0838c�F�
29bd25debd6689e7eb9f2261280bdb1b0233f6d1bf8099f49d31d530c4432eb0�F�
29cf78c6548f65bd34d75b05924b962409425d231430172907211eab40e38cce�E�
29d3baca7632def182f6a6250f76f26476b491b66dfe819eb6d94008003dfc3d)F�
29feb5e5f9922979d66fabe2aac8bd7fdd18f1915777acf5b360bb7e5cdb0109


ee��:��V��+r�F�
2a26d447506a770f081b5fb28e25fb0f7666bbfffc7c5f065c200fda418823ea�F�
2a27d4cd848272f9c9e4251b28efc591660799054bcd62d321892c0a8a608f9d
�F�
2a3e32785639d588761d6bf2e56e7121d3b1a72e11b62d59b95a594bbfe19836�F�
2a53fc6879935314c27af738cec3350d3ceb42d0ac3d7163f52ab94febb50dea	qF�
2a69b561a8c58b7ed126929ce0f305827b54da8604e8f662568fc8ec96090f26
5F�
2a6f1dc296b8103e565b9c2b18d2f04ed098a133f239f299f974b5430b5cda97/F�
2a85a789f09834655fede0beff4a30eea8c21356b1669e49795509c63d513254%F�
2a94cd35eaf2c096188c8f30e38bb1ae656122294b6b2f692f185e9533bf7f02F�
2a98b158e15d67666730cc76ed42eba2c909cbdb8c3d93ede1374768389a48b3sF�
2aa040acfde2b250770d5a5742e1a2a67ac343654200b1286fcf39302661446c�F�
2aa53317687b50178bded94e1bdf4d35e70e1210e700ac30dff774aab3e3736bSF�
2aabb9b7280de41a29a8a6d2e099490ab2248876bb0e907b1ac88eee12a34093F�
2ab47339de73a640409073095dc5c6953e2918938b772d47f1402c12c8954584
~

ee��:��V��+r�F�
2ac60b8088805d258f480005417e5958a86da93d764c9825c111401402c2b72d	�F�
2acff987d578fb2dc7aa7309391c70d97bcea8f1a44ee74b888c44fae20627773F�
2ad5877d7f45633aac8fe2c12d2a6f3490fa224374fff1161e930b4f55896467�F�
2ad84664179e15d935155fba6042722c65d3395b14c39b9f1b0c8766d4fb802bF�
2ae808b4a690aa7b3a3a08ea73c102fff26dca7c8554dd72bc2269c985154726F�
2aebe9981726c0cb957fba5fd53f20dc834ae5db5bffd674f3e8dfd37e300569�F�
2b0dc7f8c8bffbe06bd0124f1cbc07bb9eda4e34b45db595e6101d68eee5ebed�F�
2b1a27963b4d2d2d4589a7d96e361c8f4359cb51ad10f5e108215c381d491ba3eF�
2b1dab8460db8d4ed73a10ff93169013dc92d4a6925455ed9bafce32fb719ae7
F�
2b4e66ff61ba4a7722ed44b9ca9487b146ddcbe7bc27c08a8b07be8049b546e70F�
2b5152401ce98d5b3a93e430dbe5819aed3a19a15ef5104214f16d8171c990fe/F�
2b55d4f35dce819b798ee136c0dfb0c453985cfd824a8e839552fa2112ae4123	F�
2b65890542b472692e7023dc8a29b0b0fb54c80adcb4705c53d520b6c66c1c4b

ee��:��V��+r�F�
2b6dd64d39816de5f6fd5330c2e6b95ae66fa3c853d61272092b0a027fbd1da3IF�
2b98912d64d86fdfe8af76dc95ea23e41332536c8e0ef98223e9a33f2d227f22�F�
2ba1457373a2cd07d465b437c0f82ad35d9f1c92a7e5ea5465b0e3d4ea9a3c0d�F�
2ba740802cbbc7ff23957b8b2a38c06b773a113b40708d05815b6081f7eecb19
QF�
2ba8ed563d8e7d31e393c915f3705b7c8c4c991ca337616916c90e4a14049411;F�
2bb0b6d6fcc0774c8edfa188a222399464a6b216f7edf3776d72aba9dd432b37�F�
2be7029195f42dbcdd8ba97e167624b401660f10618f61457b3a4c7a18a0add5@F�
2bee86d12902723756eafa82ba6cc322136c4a67a78e0104ac988e14eb7fb5a1F�
2bf6c6071be41d65c91d31c9399563bd6d9298e9a9911c2cfff1bae35d4209feFF�
2bf9825999c7f3930c1032ad0b77786e49c18ee2996e142adc2d28d3b61709ed,F�
2bfd2b5c14b17c0e7510240064a110b33c36b377955ad7f1245005118f4dc0aatF�
2c05f80ee0d06dcbfa8d83439b41cacb2acbe096d4994aed2e9a4b88d43c309cF�
2c11742cf173f5b0b9c866fa8aad7037f8fdb604c6cbbc7c9e373118871941df�

ee��:��V��+r�F�
2c301bfa4814d7a20e642e7fec605dacbeef49885fa13f382cd7c85e03e827dfKF�
2c6107fda911499372be453221b095232c40415491b307e4b96667feea7e85d8�F�
2c612e423c3e3ace2108965f2996ecb1002eee8415cdce8e05c58aafa5f37306	�F�
2c64dd985521f02ada8ac0415b1d852ab79d87ebdf2950e421d8258a4d86d153	�F�
2c656f5e90d00ae998a2b2a6a9d7caaa9328030aefb87a1ce161d941af33182eF�
2c6bfa0e8aa6838cc1b81537932ca579cbd93cc93d440a8a7c84b5342ca0a123�F�
2c6eb5afea1c0a0fa2d5103b42a1dfd64c5d9d81d7974ab2bf5adbf20f29033aF�
2c72fd0a8014e13440ebde0c0ae037cea29cc8aa567b3723619486dc2040f9e5KF�
2c799ceaa86c1f7b721be3e99bb1bb146d316ec6fb045e1a75d03e2bd335a85e_F�
2c8b6a3c06bbaf16efe5dda84ccb23687cd29b2f04bf1f640024f805be0dc23b�F�
2c9324974a8a0cabc911ea21fe71581d404b5d397c0c010f06880df10520bbf3�F�
2c9b86ff8b1784c1b3fe907125539409c664ed05d051c38e8a810200fe93b330UF�
2c9e65472d82364af217344ab0110865c917422d27b922d937affb01473027fb�

ff��;��V��+r�F�
2cb993f044a866a8d47b449c45f92f04540a139e5b827a0b845f6c9600d83af6F�
2cc2e0d90af5e45dd0446328fe940a605fcb5aeaa3c115959be8469b6f134c83�F�
2ccb9266c84a96525ac6a03cd1a8a0e14b45062bede6bb3bfe7c4e72a5b63280UF�
2cece1860f84d0ba0608689920352f54328bbb5bd72c2369c2023db772c8d3b5�F�
2ced5602fa70385602b80de9a0a4dd9347186ade416907e8bb7fd066af18f6e3uF�
2cee495ddd05e0808ca1e516d0b1ad02fcdf3e46ede1dadb81a285b96ab3648c	%E�
2cfc157959dd7203260a2f727d8590878e5ebaf061e1f17210e36684e46916d4F�
2d1f2caacc8bdd289ec4d9a21bbe90c08d63cc088bec34c32f2acb2df58d2761�F�
2d21d53b305e30b058ca88d8778bda67000a5d52ab320f04b35e63f6a78f2163~F�
2d2d708e0066e80880184f19ceae8aceb4c6fdafaa3674831f96b0d35d4f1fd9}F�
2d39e047ddef688bbc3b526d384126a7602bf927866cbbd6d9306cf24221253d.F�
2d55f68e1a5fb1da8eb138aca00951f0f028a8f3db6a4427488b57f1c043891e�F�
2d56375cfa3857fe31113c74ef70da90917d1f03086e295520df01f2c0424fcb�

ee��:��V��+r�F�
2d5e71a837c196e47d9d4ea6dfd48be8ec78faaf662f54465992a8340399b0cc�F�
2d79f11c74a72adcef4f3407e674947b25332958c8d3722a976ffc2d712fb812~F�
2d829e46da9b44d01cec2e07cdfb10a09d198cb3c3c5b5bb26d4f5db8f2a7853
1F�
2d969a1909d01ab5b4127c7c6dd5f7523026eadbe9500b658c5c3749db47612dF�
2da57e3f11f7feb8e50c18578d16794bb2a9a020b5c7c2a5ed12d4c49a0e597d
�F�
2db01b2d2f442ec2b3ab438e94ca56bfd13bc67b07ac74f28b1b9d2435418aa5�F�
2df02b3bb45254d1541c757afacad26d93c7abaeb07503b155a89e9094ee1e18�F�
2df5c1c5020f78e8c1d592e7c531833f864133f64fb76513eda7fa4b1d3f8a79YF�
2e128ce7e0b40d016f4c989a929934ab7599ef1aeb57ed1bb868a609e4680dc3
F�
2e1ba328190cee6e94f98145224aec06902152d1cc3188f06c1ac84dc0887d0bNF�
2e4e3b337d65ebe2475a8b0c521957f5a723460fab8ee95aace9f4b6433d25c1
F�
2e4ef0b59e648eed97f857dbb868a2e14afec888dc7074820f587738e8085781F�
2e4f169246c2ce1c02926c3021b68913f273ab5b7474087d761d93b81e98eedb
6

ee��:��V��+r�F�
2e5a211202f039bf2713d7e2e1bc0fe2c8e9ca6d3e7ad3b3283b64df474b99e1�F�
2e5c474731992282d7faabe7c8d55f7253fbce05507a987f3bd332681c4e839c�F�
2e6658df1cad274f8acd004adf1a98e57338b7aeae5ac65e2c25e78bfe0d2f99
;F�
2e69eeedc5aed03c46ec6f8fd3d7d75c65c5f88aef5cacb89a4b23aa19c92d1dF�
2e997f7e17c861373d0fa5737eaf371bb9187d5db73e8c89cb03ef342029cfaa	�F�
2ea0d8ddefec1030824b74aedac593962bb24222add6f70b3b00533ed8993995
�F�
2ea9b64c6b87755ded68455e09101ffd22979b77f06e55588e58f91c9a0155d1�F�
2eaa174ec4232e07070ccd4b7aee3cc74f51b5f55922176ea0fe278584f8dfde
�F�
2eb32fa5c1642715eed3bff00d204b72790f716770349e1a3307229ec9f1a88aAF�
2eb468f0d5d765cc3f6897270a1abde77e76fa366c6ca1473a03ee15bc47748d:F�
2eb85e9cbd29bebc8ce3cd107af06c6ae0f59fcc9a1056aa9226b8201c309a26�F�
2ebad179e5985efceb7d0129bf95c5bdb47be73f2fad61d7da432bf901ce14farF�
2ebb08ac7cb76c373713ca2bd23cc2232982bc402088afaa3c55fff250bb8869	3

ee��:��V��+r�F�
2ecaf9207562dd4f4767c7e478f1e8c603b1b90864ef3d2b0d210d4f60a1d9ed
F�
2ed0b9cb14b8c09ea2a369592a8ae716f4f5a0d7a288dbb4a4fa9e6089e40760�F�
2ed2fcd8e79d8a62a374c054083792b657cb4d4668e39188deeb1ad3d72c948f�F�
2ee3a5da16c04faa9c4d68e73e214570e6b2a709f6222ff6e93b468a2b79f084aF�
2eeaafbd3cb22d15a16eddd840a62f042636325ea6009b82fbb72f520fc834b2
F�
2eebe28ab1f164eeb8573869c86de47b750d8a043f1b3897566fe0753003f2a4�F�
2ef14c819a2c602bcce68d1f84b1e8143bb560f7737ba254e3b07d9c4302af67F�
2efed6a1834b9396c783a23359a0750766c22f944cdc5953485f45050af967fe(F�
2f00c2ff15b5c113c361dc4ad8be22ff7ec2bde7c1098b7abe496171dc1d7b49�F�
2f075ce3d7df67323ba3022b428490fb252d7a5759a81d0f53e6570ba24dd777yF�
2f096012ac594da690f66f1e3c46720188e409c2af7f791c49395822c50dfb6c&F�
2f0b2cb6eb70e8325b1e26082c9f953fa3bbe383a04e9bad22161bf475931cd5
F�
2f0d2a97bc011f105608fc115346133185d5789361484a950ec00bcc5e36bc70

ee��:��V��+r�F�
2f18acc2929e31dcc316b54ca1bb28829287b1d12176f94d365d38d1a1ef23c9�F�
2f2f67956f80076c79a81d009a5aee971589176deeda7985a84ca07ae0164a5a`F�
2f2fef32bd829834efcff997a91ea78ebad9913aec9b94421efa69579be8f39c�F�
2f35a9c1bf11fa8350dfd2b02c990903292933bde6dd81da9a05921d0265d756	�F�
2f36d8b2e3ff73bf61ed280b55eab167ae99178b23f186fbf6d4721158eb5a5a
FF�
2f3a77bd6bf53c49e09304c30a934f3f38f8f85bb51455216f94ab7eeb5a0502�F�
2f3ecc42146a179224d79240ca93c8847a1d18a128540feb63355af3b7ac4a671F�
2f40644349b7b023a5ac1b6045dc14e19a4d5af38ffd90e8907d4b98929b12b2�F�
2f6df5451338232fc54158e957a6c5e4c1ed718d22490cc1d0031abf1ddb128e
�F�
2f740a705cf289cc730913827ebc04cd2b4e26e229696914ddce3e48bfee0552	F�
2f7c6c553d364083a3603f33a066c8031c3bc2f1e9c8bb2d64b355daf9a42c2b�F�
2f972c76855cb2639dc2a960dd3b2ab524ab364a74e37c8962ab8772b4e8115d�F�
2fda5e0025c27a97a92116265279bc7592a072372d95f68ec7c2e289e884155b�

ff��;��V��+r�F�
2ff70d59a80bb5a8d198a023ddeeddd3d158a43054e77660764247997d9d5529�F�
2ff94d80fcae8e5f2ae6416eb0e955f4149e7639722b5426b2b8f12150cc14bbrF�
30090b57be5124d284a1340b0f43017ad484be4f476f8f4103506d8736eef996�F�
301d479dffc9084746269cad6d9be379a3c01fafa139c9203aa5c98ca7e9d79eE�
30212ff031337cd6d1555e594dd9bb0d28c9a5c7c25257cfe0770146ed77d1870F�
3034b99da622294d9d3140fc599314e5bd6267cc30dcbb8d88f15027d96d7fe0zF�
3038e1befe3903f7b2bfb4fb5ed1ee07a0ba36db33ae2aae4ba05e4040d2b65fwF�
3039329a21200cbbf7463db4cd240372bb1bbd52f6a2f4db0f5c59e224b39a1e�F�
303a240bc1792e6c5e9c0d96992a7156a5d867e461081ec7d99fc535e81cb3a2�F�
3054ca1c0cc8eef5f08ce1d3be56c7a39e97d92361e8bd265bea14d06f590219F�
3059b560a681189650e415ad7288004812bfd2e3c70a86249b7a9650f86f646e�F�
307213631a2c91a2525aabaa4c385612cf940c0756076d44a20f99ccf48fb1e3�F�
30b844415ba647e65a9810574f3ded5e1fc1edd02e28f73cc44ee2c35e97baea

ee��:��V��+r�F�
30c56f4f794204c049aed74f749c3b0b0739f232b66c48497f125252af988405�F�
30d47ccf8c6af77d81b8e9bb9bbeb51114e301cd9a47a8f37a3077a6b1bb08a8LF�
30d6b8cd40a40000166c63a1a2cf163a33883ee83f065a500e90f56de33f8e1a�F�
30da7f395230fa024303c27e46e2a5133d77edaece70586694945a12275a23f2
�F�
30eb275b4ea0c87a84abafbe22dd3006c16cac9a0fa0c57de243a23c72d28adfF�
30f252a9be101e11f5009f24025e69ac8850c0e429134629fceda20f9508a261�F�
30f27f7cbabd3d9bee929e1fa43a3ac2a916c5a427598ee5e816dd100518994d�F�
30f3aba3a19b56a1f1c066cc1e427359fec9c66a1a27eac68b33d9e207a2c25bBF�
30f73d4f8a1abd8421100fbb68de1f107a838a542bb020b5e22316b330a1560c;F�
30fb1512e1cb3b565ab1bc735499011c641766b730df4ce0ba6baf035db92c70�F�
31030f948b4de98b9532d047d42d0551f372894911f715fa36be3ad12c33673b�F�
3103d16f84c636f0c9414dff8107cf8586ae75fbcb90a3f62b7eee6412a9b821
HF�
3119a1efea41b19b200e56173924d777ef2edb1f4cb0722d9c9d99b5001de9b2


ee��:��V��+r�F�
3120b8ac49c833eac5d65d84950dd53543736014e6974e6d7d1939f63c988544:F�
313127128dfeab1a78ae930c9890aa99789694b8356bad44d6b56c72932a543c�F�
3135fb73649247a469c3691a2239b2a4121aa0631f04e3bbb0f5c25bac9f93c7�F�
313a86e45fc4b42084c618c11f233c1ab6950f5af7ce19f962ea3fd1020736ebqF�
314863a27a19049fe9480f37f1d931ad115a3966777cfe9685ce45f0eaf763a2F�
314a81ff92e3f3500ef8c7b95dd418bbf2ed11ea8d65031d6e8de42e8e43ab73F�
31535d62fcdd33c68d7c941c0b2b9e56b4f4749c5c04518d19b67a70214a8012�F�
315bb4f6a8cd60a7becf60b599198a41a19465d28cc706d98dfa3b927f357dad	�F�
31678e32384951f2d0803f480a17916c8967a20bfa4c0a7b627436b112c717fd�F�
3171334483be56275cf95caaad81576b0625965bf82c2a8cb91be41784e991d1�F�
317a76559462ea9c4e676627bc07ad51cdeabb16ed71de9e1006e9136d921666>F�
319595ccfe3f0ebb45ebf6df0161096bcff75941edf191e4b985817405996515�F�
3198edac074ce72829e22b3fc0c16b2361413759b0418cd6443a6a5394eaf84a
b
1M�1|�]��>��j�M�F�
31a00a78690dbd25c399c0d6dc257233ed9c90313969f69bafac3ab599e0a3f5M�F�
324eaa8a27d384658ffb3045f886fe533acdd20ff60a9dad14007b9f07a43205M�F�
32f2360a1cd39e18ee281e0776cfb076b98630d9d2f537026ade2e9f9781d773�M�F�
337b3b492087333d675bf644cd7cab27fad998fd2eb5f3f1064b766e5fbf85c1M�F�
33da9fcfa473611ac5db46a1be964f5a878cd46aa94bc51035801bdb2ee4b266�M�F�
3442dd9e3cb39ce1bccd183f239742f4ae9a9499d4772d140b7b2a2c451d5507}M�F�
3525be93a809d42aa8d6b8563d5762f4fd6f25a1b228b65589656a65c2bbba4a�M�F�
36100cd15f92cdafbc93a99d22267147437baa08033156354f656dfc64b59e9eNM�F�
36700e5bb7c0b78ab0e613260beefe4a8ca7dcad56b18461ccd56a4d671e6938BM�F�
36ff4ef5c9d824aa0dc623200d80aad9bf2bc1f5d992c7cfd42bd6eb14264c63�M�F�
375ebea7e1dcf98b38f838956b03b236dd23db4b665522d9268223ed9b4e8d3ddM�F�
381a42f9ec21ac9b849c1cdd79e2900f003e44319a05a25427dce938f720c548�M�F�
3917b6cb3159c03532be12c75002a6b66aa15b5a026b3d9613b39cd118b668c1�

ee��:��V��+r�F�
31a17cc7c43aa0aefd3039a43028118f0ea8b11195c232e1310e14547c07b77d�F�
31cb8b4500b30fc437c8e439643e9d1afd49b8c687a8be5c9b39c44c31f51d44�F�
31dbae1dc23e561a169170b6a4e76e5abb65227590e305195a2a4c4709cc4a0dcF�
31deb0ef8475cdf1766d7273df81d1e80842c260ddc7eac34364361b4b00b974LF�
31e074062d36f692f0ee2ec64a68e0193b540bf85cc09b3fd7a6f3384ab55806MF�
31e1c574e3fa3fef3b015e2b2e1d685b860a8b96e7151d331b9ef708986965c3�F�
31f1aea6422bc6b0072f7c26fc3200a90ac929108eee513f7452415171c8a9bd�F�
31f3f35c713ad4fecb47ca4bfcba6b22a99a0311e91687edac989c0a717ba2ec�F�
31f46b22cd82ef4ccbb472cae30cc13508b35a42fe8d5807a5d9fc45b18a830awF�
31f5687f8cf2efb346cfb7c6db63dd20099ae55c53df37eace7337114a7ab96bKF�
32249537b076dbba37c943b1b65d1fff2e87bb54365e3b33c003135dd728a178�F�
322851c3e3042c4bb07d4bb68b94af8a35852bcac51ee3546cab4f53bc08392b�F�
324c9d5ad49eb48866d128a022079508c40c45aa4d4176abc382f606369448d0�

ee��:��V��+r�F�
3252927809ad349b76f38136eaa163f3abd94c46df6a5933f90e8bb2f0d633e3TF�
3268859dec4857e91df2b98be2c4c1039a81c1208032d1627ffafee642953fc2xF�
3268b7dcf19f5e3720d65d039632fa15991336537a37e486e37ed194609102b2(F�
3278f8dbfd0afa8e751afeffde943cb66ed2c2a57495f39ce66a95c3bf852ede+F�
327a16cb84103e242030ecfe69ccf4a3d6b745ebcaa6a416efaf9fd6b57dbb18�F�
328461666a24e217d010ef9c4a1fa1802b6a66e769d41f06e0f36ef5390ce3b5�F�
328f46b687b75e421aa0632db00bd3a424a9bb575aee94e2ddd24cd9fa19ab14KF�
32a6e9291813e4daadd971db10a8925ff8233160eb5a5a4fb45d5590f18f2893LF�
32af5400af5619a7e1f0c43f574170ae98cfd7cdc7e831f572b8d05530bd8913�F�
32c5eb73c64b93d71f0a965e4b0d4b50cc2363ac261d96c97b1440fb668e3e0f�F�
32da1842a79bb4ed02be3e6979ea97d79701733a3dadad668bf35bf4bc617e34�F�
32e1c67e1aff171de13642d103f733792e12a4c17c9ee64aa931d2315b08e1ec�F�
32f0185e8d6a9ab586922827519f1f38fb921fcaff260385904d3e61dd029d44�

ee��:��V��+r�F�
32f371a2fb734b59d724e7f158a6b7786a4e7608c6e9200aacc4b1624c2d55fe
�F�
32fdc77032a9de115471b54289fc5f0fd4e2fe3f428c90a14db22d18d246a781�F�
330b8ae0aa3720eeebeb9d9321a83a407e356101f5d7cb524b333e0a138ceb96F�
33233f04e60e9c664a7bf40da5737db125bcf521206e43d06261d80d1b4babe37F�
33293b1fe8b0638219c4a88ea8d7217eb55c5b4e227d7945c14a9121db97e4d1F�
332d0c5fbd59617b2854c4ef7acc7a7862676bdf591666e519d3b09c2f3435e8�F�
3336d0c5df4e7d13b0a72ba226318a764a5ec8aa70ecdccfb63e3e01fe7dbf426F�
3345891d8547aab466be25914ccc742f1c11210c09ab84648527d4d266971c3c"F�
334b38af49e56e5f0435be05785e022ac744d9fb66965fc0b8baeec1fbc47653�F�
334cdf2e5acff8ba4421fc51d46210b1cc6cca7070a3a55c0b71135ea842a3c7�F�
33522ef6344e2c23c9585439f96860fbac64c8059e3fafe85e39f00d654826bevF�
3358f19c8ca9746105376676f9d44c518ec567358ba86b5a92b874dbdb9c8a448F�
33747e3cee335e0df270058b70d2ce33f91cadb372c26e1a24641083294b45b2�

ee��:��V��+r�F�
3391ca1aa9dc6a5e4ed248a618ad059946ec5c65625f2566cbe9773d60646f54�F�
3398d3a8a0f8d7273ef408e2922e3b985aab4a0398a30203ce247637331432d5	�F�
339bcf68cb37a454eddff7218aff4153a36bafc0d36e2b5b6bde8311c6f3eed8�F�
339e96b8a52bc311433f3ed0ce535dd62f4808232fb75bf0eaf2b4f0cd82f726%F�
339f233813e1f39b24e1e909a69e3050071f267633c137494ad16972ff55f201ZF�
33aa4a6c127c0c756e8327baf78c7d6040d9adc0e92dd42d324a4b1625c99bb6�F�
33aa69d7f9394b9a6d1d03cca5e79975ae42fc6d8a6d1794ebe7bfcf8d3bf01a�F�
33aea343791620e71f600e75789b92a84ee5b9007aaa3aa71b3cea849c8c069e+F�
33b524d6eec3fc82a17df2220b596193025c1faf20c5939c4271809681f95803	�F�
33beb19a202929092a6e1605a3f6115c5442714589a627267a8ba12528865a7e�F�
33cb91f162bf1272cbef0f8ac3f812a3af2b586d5be6e77a0a773db69590044b
F�
33d81cf734e717eea6795c7c41a630b5e0eecbab4514f5859db6609e50ef0447	2F�
33d941826eff0dae2edb97052b2bc115956b725729096f5428d558679c2c50b1�

ff��;��W��+r�F�
33dd225ef7b01c077e7d0977782fa69f3d8fd4cea6363f4cde213cc37694b3a2F�
33ead8c29c4da7be1c35398bea14adbd1069eb04196df8a75ddffab71562e778iF�
33f79495a144745f0bf779634202c2e16ec9ce1d545d08ada1d51ff124397d755F�
33f93263c696ee536e808126745c9fa540fc61ef70ce1cffc4848d598c98eae1	^F�
33fa2846ccf25385f17ff97c1999aeae26f83868dcd26164e5524c4255cb1ce1�F�
34157ccac81b1fd2400592605aa6918ce36609a1d9a3b2cf1b602234d548488dF�
34171e7570b3702011ad6135ba344acf87732fde15fa9714876fa317e1cfd747mF�
341b7f6c5352eee2a98665ce78feaf6c4a52626e0322ce9b65c82f9e08190f7e�E�
342100bd7ce3ca8e951285697781ddb9192c0a02dd56cad55d48bdf20a74bec2LF�
34210a0ec25b1987cb28b7719bb7ab7d7eff1adb56711dc0f4835ba89256cc82SF�
34255ef50bd9c16239a9a579c23a1bc1f046428a2aecf0fb06e04340b46af985
zF�
34269e92e56a1ed2e47570b48ed01530719dca4cb561baa301db389d679afdb1zF�
3430976f8acda648d8659eecbc9ab33a1dcb14139a6206b64b25c7a1129d685e#

ee��:��V��+r�F�
349059abdcb4206de241619b0a997e70897934335a8863a2070dccf45c49f019
�F�
3494247306924b94b55f3da45af759539e2b9710c85996ca25ee2b838ccaf8d9
�F�
34a08308f948f94b0ad18d9d233e22453d984465c89a58935ec1185d071e7f4d�F�
34a441b65b1e00f9aabba569dcd45ab40478d9681269cef9566513b8b0754934�F�
34ce748bf1845ac8f646607f3776e2995f16c3c1b8ed68775327e24981f1c217pF�
34d206ee003d27edc3b435c9aecc9569a8efa0cebca782b60e595b2c78f06326
F�
34e3369ca1560dc34b862cce4a9fb6a7939494ce15ee0f68fb76edaf5fb3ee53F�
34f10adeaa6be7f713c3b688736291759f254661968bf607fab161503364705f6F�
34ff7de8a4ca78de046e416a969184543fb961e44c8500ad933f5d0d9d71bdb4�F�
350bcc459207279a04b2e6c772304349c7c5d63b58f4b52efe0c5856681203c4
�F�
3518ffcaeb18d70ca1e7a98dfb39cdb789944a2791b29a154aa0a970188b0b33�F�
351bd76d723a1fb9939e1e952f343ba53068b239d463ccd75fc7b724ffd4735b<F�
35254d0cedc9b7756462a8c23a1b9bbf476fefd2ec13b879640bcc09a53504b6	

ee��:��V��+r�F�
353fc523cad5efc4cbbcfc1283eb522f0f97dcaeacf8fed02b5b71b895fe4f26rF�
354a7f6dc710763963d56fba904430a98f75f770240185bd954597c4338b1d0e!F�
3579555a0a1408bf0ffc0c41aa84d2045a42a0fc9536c5b03f837ea3080086a2FF�
358ebccf9931f8222e5503aa6255be88b2b6862a1cff9b34c0622117c0fcfc97F�
3594f2b7367495aba0e2ad40d7aeabb3ec7bcd176bfa09127a9021573f936f66
�F�
359852ce38e0555b23e78c945070ef67c0599138eac0c52de77a819e8fdebce9�F�
3598b7d61bba2f202c95efea45958f70f97c86c499e19042f49589dccbf233ce
nF�
3598bf42bdc531b55ad9bbe89ca716bd42b7f2e4ff19fa4082235369c9a263031F�
35add167f7cb884e0fa8709237307f4caa3297832e3165d1530bcf474ed45e74"F�
35b3f04497e7cd33947d10c42841c8a302879e0665aff842a760e318a83d90aa�F�
35f5c229e131ffb525fc38628dbe4dc399fd7f6077f047e169dc8e5ddcce20e8�F�
35fc790f76f1d12e738a6b5cd1438085704844f9c267638a15f9cc080376b10dF�
3603a5475d52875262a18bc253888633c218b9df5c6fbdfad0972c07da32b981_

gg��<��X��,s�F�
36101de00585de431de07579343b064018d049adcaa3bb90ae0c55e997d8e1a8-F�
361435b0149d64bce7ddd96522893346319af483ba71ff2f7d32c353614b224f
F�
3619f7bf9f3566d19d7252cebb96f571e998412d785249dc7108dc067b00c751AF�
36259b436231dc4bfc0fb0c9db4b4bcb6693260e26b5c858fed3e11c71a5be0a�F�
36410412b59ca22b5708b34c6f8dafdb38024efff345c20c4dc28c75a7eb8a0a�F�
3645870dc323bf6f63b5757d520178a52a8a714d71e280c47014f095f2c2fe69�F�
3650ca3ecdb13198b3e14e49b52b7dd911c3839ba77826f5b2dbd315026cc82fjF�
36577f1cf5cefd40798e73d112856b462b3290fa90abd70553c107f45542a070sE�
365ab6c383dd555fe42283836abe7f7014bf20c41b0828d72f1c13ab138cc1d1GF�
365bf20a36b4781a7a21bb79b446907366fe135f7e5616c550b20d174cc96d1d�F�
36621778bbfe07d63cf5e8b83b198171e5f1bcc467910e9ea517faecfc1e27faF�
3668549b1c43bc2b0dd420108f4ebcc8bff57ef08d4b839f3f8e6f9c4691f314	�E�
366db37e736f288688e2f7de25a2589d720f57d0ee9d9147989b609d9dfea648v

ff��:��V��+r�F�
3687a70548cbd4d02fcf7f26b82c06330dc5e341e67504643b30e20c257b33a3�E�
3694e0f350aab4369f5eda09dba8aaf0c4d0128990509c2eab7a69e8a99c5400JF�
369ac51f105f8b0b9fb343deb57c8ed97f3e08bbb535d683866ddfd47b058675�F�
36aad460808510bfa2e38f113711d7d1b1ec88d77ddb1badbedd8829e5c8dd02�F�
36ad5a43df60889dd9c1134cb0e042317befa64f7293f44bc91271fddbbfc7e6�F�
36ae65670b57a81f320f0e21426f30d359715f401c51ab27568393a36e6d75aa$F�
36cbb6317ac31a74661962dff6944ef7630e01a16c0c3426f1e58b4a6dbd259e�F�
36de51c65d7a208f69d6a68ad07d468a5ba7dc6b245097eac3e9db107d5d6ef4�F�
36e226643adb16e51005fd729514451221b0570727d946df70bc555084b1ab43F�
36e338a02697b1f86cb751a4d30e96bbb9a01a424dfe6f050474e28f832d3b2d?F�
36f13b26a3b985a2d5e41a86724a23f3387adf18ce34902378ed32345f865d1a
�F�
36fd57be259185c71e4768b2cd69c293e89e53afca9359f3a04c397ebb715d25�F�
36fed680eaa8454cb71901db4b5393c54c16fdfc72c0901bc461231559e164ef�

gg��<��W��+r�F�
37036b6e228127d501401f8546d504c70f6e51fcc1271a33342effbc6d6a62cd�F�
3704909dce1c80a6e3fa47ea59c51797dbe73c34511a242cf1e0756e078fba23�F�
37146ed7255163cbdf3bb94a0f5e8ea9cb46eeddd0d269546fb213017f212548�F�
372372d382848eb9ecb5e551dd606aa646c12d3683f43b876ed5191e7a529c3e�E�
37244afa6bebe0e93a5dcd0ef3ea1ac9a76f734e116ce8c087a5f791ad1136d3/F�
37356ac1734506c064e4fdf1e87d69a442a12767a7e98626e8c9c571fb460198�F�
37388f00a7d1fc6d93e26f1ef6a2ace5b99ec8b0ff895e5d156253d00fa59db3iE�
373ae4c777d075890ed70569cf89dd0563fc99e76ace4281502f4aed12d4dcf61F�
374186860ba10d433ef1b2fc521d6b97c48570d7340740cbe2e83f73df0b05e4	FF�
374238fd13c46caa7cbfc40bb0504875bf89695119fdc6cdbf33ab47bd195079�F�
374f721b5f41a11a081cd23537162130ab654a02ece3e8c55f3840ecd8f839a0F�
375c6aec9492dfeb3bf49e8ed7cde201a8d10e0a725c713f6131c221f187519acF�
375dc1e4e253dad77a1c726888c330f2d32bfac978fb2501318c810a4fb93843r

ee��:��V��+r�F�
376c090acbd7598c0ec397a027eaa7db2374a09ecf6b7d78663cb04b5f928d57�F�
376c21e2589fa7b033d3dbd7673defdb1d5e23c6ad32b112bddd31ae3915a582	�F�
37726d4a426ccbdf697e55aa4f02f394d32283a3df6de51d99714a596409ae64�F�
377ad2aef6a59ddb2c292a6fac9feb315ee0b1fa109bd47f5aca3c6b7710e3b8�F�
3791b9ec0f2a83fb568d433ee44df76fab4784e85ba1e6da6172d66b8161511e
F�
37ac533da616e343432c0f1378f9e585ef3a6d8ad632bf56c45e59e7cbb1076a�F�
37c1fc32da75405bdcca093c9fce198c021c7868450f7b272aed38def708857d$F�
37dc67f68342f587481c58ec0ac8c6ada7eb0f9e8b5e356c1864db3cec910332F�
37e88e4bf1d956c4200c41a6b0592a43ed17ce9e8ba6f60c8856ef69516f2d52QF�
380017b2933fbc2a789cf7c1b00bb0fa298bf6b9cb61d88aaf52bd314eaa1efc	�F�
3805c7e453631cda2c446cb60a6ea941975f89b2d544824c96b37f874f6e5bacF�
38116fc986dbde5d1071bccc99bf83579d9cf9cfe210af409971b02a8225df2e�F�
38165265e6956a27cc026b542a5b84342b4e8d479263713e10c9a0b0871d9705


ee��:��V��+r�F�
3820c04e5244db590096c735cfebaf9c275d7ef5d644f71712940bd565f671e7�F�
3831827b92fb33007bdf9bb579f1947d04221cf988fdfd40615012e00b9500a3:F�
38375293dabf1abf54765991dcbdc6f2a1cd8c3ebe3d7fabc2405e566a16c5f0�F�
385d88da6f3dbafec168b9405c82b40252b4f9d9df0ef1b7328108f1b7de4898
F�
386bf9ac5cf0faeb2ff2784055e2032e081a36e7187d99c1111cf03fac18d874�F�
386d6eeb6ec186c7d3ac868781a062f7659e7f29629bf7919767ced443ced16e(F�
388aba1b0bdea4684f1db472cbd84cc4331e3d51543a84e076c8c8209113539e[F�
388ece9ac8d1f44fa207868af7af9df39a1479ce72301c159bfb9ed3f436fd61F�
38926b3705d3995333fb2ea6d22cd0d4590578927040ef0006aa35db2898e209"F�
38d054f054325006f87cc688b0f258c342122a6a0a76a8efb07f3c1ff8cd20dc	�F�
38e563cf1d4db62856dbadb61d0f77927c69dd05e4c6cc79a131fa4eb2081514F�
38f6f38400a02dfd304ef361c147ae8587357a50cec7a0113047ebd33cf7c5e3�F�
390e0d90e7a686457526470783a48fb4b4555c09798e0576afd065c0488356b9M

ee��:��V��+r�F�
393806557640081ee6c9dd7dc6ee00e307d9ae676a1a267d20fb4793dda538d7	$F�
393b6f38ca21b31f198eb40d2fbdecb79a43ca0306ac436c4ebcc4fc8a15043a�F�
394db1fa5c7f0d2612ba1c758328abe415aa0a5677f936aeeb8f95543e5c4110
aF�
395a33a57a17338d844c031715190aa5f9cfe26cbff564eca64617c5328e167fF�
39769e7385d3d8eb28ca268acbedfd9c29363613ab7fa8b641d5ad4a91230f51)F�
39839baa55b7d0e9b82004503792fd5f8c0608ae6d937d375d2febb11a92f830�F�
3989ac4ab63df7b51e1ce010e2b0d2368a33f915f06ae6b659dd6861d3dc3721�F�
3990236c7fd1972169692ed6297dee2d25331fe73bf38ac66bd45bb990ed139a
KF�
3997f8bf7bec69e2b9fc0ff0a33790347a77cd30140b40f7b9a36ae91591d36e�F�
39a345eb07bae6f35b9362289fb910cb39998826047249bc3991a0ab55547bce�F�
39ac208f2aaeedee724d09ffc9d779294a7721cd83807bbda081d0114bd94acd�F�
39ac6caf2f744acfdea88f8f05d08f1cc0f3ead1b5cc458a36db4d7d5553972f*F�
39b2ee3cdead3a8fa94b2f7fb082014e56dc28992ac2740a46795004ac7dd6c0	

ee��:��V��+r�F�
39b51aaf98eda72373e0ad8ad89a206476833813b0262e2e149bab9f2fa4e4b2�F�
39bc056b01daeb577a1d13e5d56959179803eea2c53c39eeff982663bc189df1�F�
39c2715a2db8a65b7a5d313ddb5b14fd5c9c71fa1a03989786099e82c0e41522F�
39c70285432c56fe5dd79f0d155069d48956d10fcdcac838a4590c4a44b0b521�F�
39ce1d8d6ffa3efde898b475b2be150a92edca9d2aadf7ed8d5d69e6865175f9	�F�
39d478d2186cad86df1a7e0bcfb9ec33d5205653c9b51f111a67f541511da671	�F�
39e6418349394ca9bdce4ea754f217c46186d4d7ac6e256c57becbcf78cb2932
�F�
39eda1390e30c1d89d4a235798a2680748e9b2b95ad2b6a7c76d547977b8afa3�F�
3a16156819b55d3d9e234fe19ee8f016b2394f4d77627ba4be2bfe06f19a148f;F�
3a214c9b7993ff445157cc339c9a34103eea57c31ad42b15dba0db83b51bcda9)F�
3a2ad8e88cf0956c1a2c89acc48514e79526a2cfa14023dee71a714c83ea1779�F�
3a576a2d4c9d495a81817e62770bc36d792d089f36be65e81f5449f4f304415eJF�
3a7a5d5027216e07b3eae0f5b2cf013760700d03cca8961ca4395cd637ac3c5e�
3M�3~�_��?��j�M�F�
3a846ba46e8a41f29b08fc2e10e3f6ea6459d1d57fbe6c19523bf1269d7754ff
M�F�
3af5287deb01c0880a6d6916b3fc0ecdfaf93e576369b1b9cfdcc1613bc22a7d�M�F�
3b822a517d29541cd78da3a94ca8b9ce8095283d799bf7d7ebe96461744ae90d�M�F�
3bf5af40702f37c01b474763465e7acba66d1f9cca53e59538aa92a72f018a35�M�F�
3cc12df2dbbe22e4c3186fdf10fdc4f4f176bdac5296996b92aafd1019a8fab1�M�E�
3d1f2217dd6b5ed505a6858933c562175be86840b5c6c7328291ec8c31333a56HM�F�
3da02ed3dc4e5e3639e3507426c68050a9d7e1896480c46dd9016e2bfde917a8�M�F�
3e729bea301dda80bd7dad924182af1a8859d3473da42b7cb9ed78adebef8963PM�F�
3f5e731ad10b48db0b27227b5dc172665bd2f7df987c4805e234a12851c320fa
M�E�
3fb72ac0367e9afd39874f48b9a0b356b9cbb0b86d41265538358ef72583d32dPM�F�
401c21fed02d492f7c9f4ef47e8a82e8a7bfeb0a3e08789c00a7220db5e1fbd8JM�F�
40ceb41cf108321fdafc40bff1168cbc4f3e85a9ec271d6b55e946ed83697fb7�M�F�
412317b2522f388f60a8b9846d99020fa2c884e8557b0552ad09b4218e97803d�

ee��:��V��+r�F�
3a891b3b430fed933fb5c51f4dabf4aad4986782e238208490c03139368c40d4�F�
3a8eb48fa6a00af9e9dcaea80df8b2f0afdff3c5e06bdb7f02f38db59317e110�F�
3a9368e803399e85ff27406fbdc5d6ffad6e000d636a8540ac83b236273b5d2a_F�
3a95d1dbf8e717a5e29b32daea78a11867867d80343e09ffc29f6c9dedd70720)F�
3a9691f067f58e1bce93011bcff272d08b255c1d950fccd1a5aa734d7f8b7050�F�
3a9e272508ed53c6c3ca36cc4d1c537b9a6096425aa6339399939cfb7a44d1c2�F�
3aa4e1ccd9fd1a78767f931c25659037fc4cc3726f2bf2f979ed6ea52afe1815?F�
3aa88d01f6198efa435e94380ac7bb30d03f89a522b7860137a566276cea51c98F�
3ab460e6bd274b4d17b8de62c56e1c66dc26fda6159f4e9f57be04e8bb94bc1a
F�
3ab4d0b3d34008809f0d657e9f4732dbc33963cf480b77f6b3afa455be2b0eb3OF�
3aca72fcb712db6bcacfb3033aa1cee51230819ab53e90a5d44e468d36de4777�F�
3ad9c854816cd51073279e25d66deb06e14c0f98f40cc6d468a2d1aee2d2c284
F�
3ae0d9e3b7846210244c8d17e6fbf04621eea150bfe308a6b23c21561cc38acd

ee��:��V��+r�F�
3aff8eeef1e22685460bc0aabe262f29bc20ce164b68243c87e313c98c1e32e9�F�
3b04769f0fca70f22717ac8026b0938bb9fbc4229eece6d24f30b72db5e9276dBF�
3b2af1cbe29d541a936e2a76af8f1cc07780ea069f8cc04404f4b2f85184abfc{F�
3b2f3d7b1d885c5edc646e442aa9d94f1445bf4eedc14e0b85c4b0d8f69524a8�F�
3b37792998533e55b2ebe20d10052f6104ae209a5db1a84826bfde614e6d7c44
�F�
3b52c38e47ee82671fa761bae2755fd870054dc377cb23f09b0dda2a5da96a65�F�
3b5672f51204c1617610ae8cd9b6f52811ce9c9fa0d5d33100995554e954e356
DF�
3b5a17995e4660d4c305944c4a13cd1bd8bdda18b9d69d13031b2b1044e1cd77bF�
3b66f1712118ad0d41f8596409e86a1e86066cef3804f7bdd83ef8c519cbc003F�
3b6744ba25565e7f93733bc406e01364aff0968d6eb153c58e942635400ed11c{F�
3b6d9c55ef22a3afc1250d7b0a6f4d5e8599880d7982a85aafde17fdd2e4ebee�F�
3b6da3b418fa4789feaf744245bf1f8d61ffecf40017e594ba7ddac0372332c0�F�
3b72db221eb1db189edcf9c97b83663b0494d24fa1fe73c09e6916b1baaec8e6t

ee��:��V��+r�F�
3b84e45c8f431e6aced2faecb97912cb424f0373293013c739154621f571ced8�F�
3ba1c872bc9e60330b7b4b28cf7a36bdd1618d3c55d034ccc2f1b537590a34b8�F�
3ba273d4314760eb122b0661daa6126b87cb2ccfa2ee5813199419415261ca9foF�
3baf28c0979d5f90558e58f7499f8c92082cc8e9b4e8e68acfa4d95a6a902be4�F�
3bb061745bcab5ccdf7cac588403affcb1f45108fd78412872bc78b646404b98HF�
3bb0da4f1c883b5aaa0ad687bcc2022ba9573d912ff906b6657bc7e96676c5d9-F�
3bba9df9a126294f1b6d125afef0399b652648e92446de453d3f9aa966726dc7
�F�
3bbbdec13d548901746ce3f8e2bf282000598614b5b70523edb80f329ec935e0JF�
3bbea9323c322a5179cd1dc270e81ca0b7012086d4d12c606d5f71993e272e7e�F�
3bc9984dc4e0e90245e74d760cf04b6707669b3289dc3e70c040cdfde4d44319pF�
3bd639121f6b04020233f7f81a713e0fdde89de7bd7b34c14ad4c211ad5b1560�F�
3be8775407bc08f4fe54e5628c556d5472f9d4ef0d5b89d29c9c9b634121cb07YF�
3bea27ba9e28b7b2fc421da397e966e4cec0ae9373ddb86b7cee9186fcc5ec16W

ff��;��W��,s�F�
3c12cdb5717ff04a0dcf949d40ddef5d878342fe63c8cf26ece6f2f0f56c9075�F�
3c1b09a234b987d0d6b7eeda50bfd65fdd56ba1cd18a3d7bfaf6c502e6a18295
�F�
3c1d7d5a10b6bbb96820657c57af7a774ba60dd1acb011d623b218102b3251f3
9F�
3c2c5a9be0e4c30b02e5553db78d0a3f434bf544273422faeab125baf392165e
6F�
3c4ec0f5afdd9b9d8e623857335cfd73d8e86540fe7c74886a0fc678fbf926ac�F�
3c68468d65b23e5a50cce88db5e3d11674fb488c8e0bf375200f6f529c438a203F�
3c79cb3de74e545373941c507295276cafff95e505438c0bb771fd73deb0cf11�F�
3c7a4b80b2ddae9fd2eea4d9ca2f112f0086b0f0366fe20bd37a1f21328467c9F�
3c80748d03286542b429491e9861564380252fcbcd1d92283ddfa799fb2dc3f5WF�
3c93170cfdb435ab3bb64346b420376ebaa38ff8f2252277971e3b6117422fe5�F�
3c96054de3771395180ce2ef6da4dfcd565ee2d14573da0adad58ff76b63d77aMF�
3cacb30cdf9cf8886bd3adabfb82541a6334ec3b33f75528e73c4d209bb76917E�
3cbf76c62b3dabd78db73ad0e95a34d50022e61f36e7a967aabcc7f9c3f4c6ccs

ee��:��V��+r�F�
3cc29a69aafb39574532fe2809182aad0e720f88cccd15dc57272ac96c7b2417�F�
3cd32436440b9a64a4f9971f907fba98209aeed82000b3d7441689e93ed58cb6�F�
3ce3178d47c0937ca4073ad24a4d21e17880a93c83bed7d7cdde515bda87c789
\F�
3cf6225627d15b57e6db240be4821a47a55d2bf482e4fe8f1928862282e7998eF�
3cf860317663bddc14b4af70586d0e219e8532bba47638fb4b72460e2bac69b3F�
3cfc9f52a00f0406e2e427948342a30ca2cd4762712b56ebee9d8bf24018e163cF�
3cfeeda763854fb5e06228183bd5e587f1bed1e4d625590a6b4ac06187c951b4�F�
3d08be30af99cb4e2248e149d75d36071c2dfd0806f511abe5c972b4051fe7d7	�F�
3d0d4dbcbdb1f804aa9e133124ebb735a5037654221d45f8e93d4e81c3cc2f75ZF�
3d1213d433cc4f76de4bc1d38f0920c5716b596dcc3ced3dfff4e9e143ba5b59
�F�
3d130588e8e704895aa41cc1d3a57139effbcdabe57ea04b561e8d3b1d252e41F�
3d16cbc8797f49fcd4f8fd66dcd9abf0441a825f9ad6028f0548e6003c0e23661F�
3d1a72d4d1f896acb82915d2121ccc8032a2e15e43ba9390abbf0c6e1ddfdb81�

ee��:��V��+r�F�
3d240ca1688d3b6d6b6371756d97a6aeb744a9a8557a0e554507ed284c013250�F�
3d3fa496232fa0f5bb5b56927dea03ee514808271edae94b35d550e3dbe54772ZF�
3d48adfd65237fbd521c95fe26d5d4f17e03f7af968c2b5cd036e099d635d188=F�
3d4ce04e90a019a713860f38b262e7e948563f62770c6d7fa6bafd59e0ad0580F�
3d4d0d965fc073d950dd63507c1b1287648ef59c103d02cf09891c04bd99e930�F�
3d75be4567f3055d6aa45834620c4fdab40240d0eac958aa3b5401832cf284bbOF�
3d77cb8ffdf08db08553aa94df7707d9a0b2fdd0e4b233f18189356e16f26f6d�F�
3d78c1d5498c9bcf2b022b55d7e3cace4f911eb0bf74758e0eaf4a756e5f831bvF�
3d8ff28a1b05b9697b82489f71fd9ccdb0c088f4ca37c35263925511db5f5c7b/F�
3d901cc9a4697e9c08105de93d1a190650a8439e1dabe11a97d17c67cd1d951c�F�
3d9697b9d1df6afe1e6f7753c817927e77aab45d8ae4e6b00aab690614c170a3�F�
3d985b2d2ec13d506f3e32f82236c706a953bf9178605bd7e9c559e99fe33c06�F�
3d9a71ffb2359ea5a0dc6d4ed6231ba9e22038c3542aa2e129564b7029b25277�

ee��:��V��+r�F�
3da43cb47b5ad18f1ce3f3b8c4d77981a8aeebe7eeafb778c043bdf4d7883d0eoF�
3daac146d8edbefdb34bcb729d74336de8f1afbaee929dc55464706da7615618�F�
3daba1d2ee59a3abcf9723759cf79cb532243682a4ffdbfc3dd7f5b29a3c046cOF�
3db35ae4792e6efe04cf89e50aeb71e9794589152c92cc1de54f2c92dc956b40	eF�
3db947e6e862b89a0ca5b23880b8c910b68d3c16831d17f914d62706e4e337db
�F�
3dc3c0c7d9f3c7865360c72790fdc0bb19b96e9e07fe98300e5e7443b0c5eec8�F�
3deb7d3a6136871ad159d05ae95e27d8d744b7e3ed0cdee2668d0f7c847daaa5kF�
3e01c37b17dac632211d855274ca843a3926cde218387315d5124f7b90008656iF�
3e0a8c76f0c416e9b2f67cade48b3e2606a3fc3b47348110c033aa2cc1835a00�F�
3e22c1e91e6c946f60aaa437911042d67c7e9de92d77cf458a51d5660658186cF�
3e3655960230e1c13e294b6c96c6ba573e155deb76a3ee8c62d3d2ff7b5bbc06�F�
3e3ebfa1eb1b1cf926276a074c1b8bf839ea1353d1334f5304dbd50d4721979f�F�
3e669a493af1a126cce0a77eecae0864765c9b701b5640962ecfa5a8ec1afc30�

ee��:��V��+r�F�
3ea9a16edeb166326b2db578b5d4fbc8f9700179808b798dd4c33c6f0d273bea�F�
3ec6e9340959cede8f65ef85eb65d48800aad8e51db71b9f3bd47bed04cd9c3a�F�
3ed462219356a67f4b4e61ac7fe20b5177652f7b0016197ed02c546f91020c7f^F�
3ed9d0bcbc1cf0d2a450b8b6e598051e1c685e052cdab05aeab562c3fbd1094f�F�
3edc5c8d5cf1dd51b987f3178aa2e996847bacf9b48d9d5f96f0831a21c48b97�F�
3ef3e8c076f637b1c91f85480d4df87d7fe63a0aee8b42f8fc774dd84b683aa2SF�
3f11637118683c18d64ab08e86467d90916b689368a1c29e9b095c9b7c8e2633�F�
3f1d1aaf2ad1912b72db538da9e7a824ec1beb3f7eceb8da6ab8b296c810b913�F�
3f3a9c60625ad194ae3406fcef007e24a583db933f244ad66404e2ce22e8628b�F�
3f3deff3566c606e953d135ea14e38e49de5f579a679c901193204c07cb123f1F�
3f51b4953396f40f83ef6281561e6aa2bd69daf5e98921e1562160c40eb64061hF�
3f5208ad5e6d40b1cdbd818874e03c204f1a94371bda2f9525511fe0a0803522@F�
3f56b1a9c01d9d56c7c61e5e85f89f379f66270b55c609f84ba58194ac11e489k

ff��;��W��,s�F�
3f67c1b26c1f278f9f7675269681e617b83498e50e541a04d9a936a563d20506wF�
3f73609586cbfb03e673487d50c8317cc03657e173b51bd38b9491c79062a838�F�
3f77e8c91079e010fb161e28eaf613452e1c25d2d67b0367cb344f3141bf3cb9	�F�
3f7b46638efdb99c13fe45aa513af69cad728c4ffca568196d21fed273ba7f970F�
3f7e486965cffc49635b45bdebd92b770f1cf0549894d2014fa5b8ac030c214c�F�
3f7f1d7529325771aca130abb3ada20b55752fb8168b35e388cf43ccaba01f5a
F�
3f87a8a259dcf40c961dfad59240eff08fc35580ae718952a8849e7b5926cfb4�F�
3f8e4829e35974784aa21e86171e8782ae787788130e87d8098084937f4a1a3b�F�
3f9569f5e76f2c85ea0b8843abaa2fe4d295bef235b8e3c6c65588c40bfbaad2�F�
3f9a0f21e2acc0ae5b83814ce830b1a500157b9c6b68efd957007ce368622288	�F�
3f9b0f657dd2581e1dd7b33d31ff3179c309539c7fadc4275ca679411bbd4f7d^E�
3fa609f1cadb881d127a3eed1c7b8f2fa2ba4efc32cb2e34e025b3d4215af9d1[F�
3fb0b77a99715fb931ff65f91089240046d339752c82495a1069470792e26818�

ff��;��W��+r�F�
3fc86cf389acff5dfff9dfd65e25b9d96d358214bd2bd236061ed31d647ad9bbF�
3fc9b311cc6984896d03711ca684b967577d4370b4c5b037efe81245cfc9a5f2OF�
3fd5a3ec93bfb1ba9a34a9f68433573b2a39224e618b9e9c02aed4cb89de5c48�F�
3fd85597715ed99be96dcdbcfa10bedfcca32a7ad600f9ebf609b83a2c6d481a	�F�
3fe92e24b021f0064189e1c7e735a79fffdf4d33994fb8e504bcdbbd19dacb339F�
3fe9c9d1c5627efcbd130b935885968a811be55b5028953a858e8517243e5d5agF�
3feced91f7391352cfca0debae0c2aa43febbeee7d24929c75cd8d1d5a6b782e�F�
4002815b3af5011f39413ce958784b1f26655ab8f66ee5e65f83422aa955b381,F�
400558346b5b54b33a80390a5849a1a330722cdff9436c07acf3e168b477330evE�
40080eb44ef8aa6b4771bc9e085e56264b9e562822c2bbfbd713b6887b64b41f:F�
40085a6aba324cf85849d9d215ea0210e30299d2952b61e18b07e9bbd0256068	6F�
4011ecba5e1b135d1f741f84948ead212a82a060f0cf75bab01b2a37fdd319c0�F�
4016c342a85401eac37beabfbb025c514e077802555e329f3f4a77d1a835864f,

ee��:��V��+r�F�
402c8ad0ef6726c780c90655a28c409b5f0ea3b0d5b2e1562caeb06dd9062e22`F�
404156845f116a61c9627f44cc1b924461c60e723c92dd3a152f2840e6e9003a	�F�
40519a4b9f7188d9987ae8efcdcd2a6c382d6311c8aafae7cf914313e1d5eef3�F�
4054f1d88ab29666683f77b8b9040e7fe11145c8e91bccaa37e202661206d524�F�
405c83aec688febd1c01afeb7dcce3417c406be86016fef5342ad46668393522
�F�
406370b48821a02c6cd77913d2bbfb9b1c8a38d584ee789492dbdbda1796c482F�
40778cececacdc153601f3e0bdde3c295376d9e7a17eef328a28fd1f1d7e2f2e�F�
4085f09e7be4410758ded16aeb5fca59795cf4c2ad37a1afa78cddf45bef6806�F�
40a0c734dea8e1bcdc12a1fa49951322a06ea7216cf06631e2528d597a596fd7!F�
40a441051ed2bb80ba7bf16effb6ef562dc02cffbcb40be34952dcdc20a3b66c�F�
40a9bbf97909feac9fdb52ebe77bd0ec92e96ff00529d4803ce6c56086f78337�F�
40afa7c237d384eb15a196fb651eecd913e28b743ba7734e05849c45323ff597"F�
40b62a1609bf1e6b7221ee088dfbf97f47ad76f2533474c46260a24ca3439cdf
e

ee��:��V��+r�F�
40d5b25bdbe536d2fd38b5b64869d82f574e42b8d756e38bc4d749bdf8f6ffe6XF�
40e08209c8de5003d4423a0ad7ed9c6b0f8180f4ac00c11d42d96a7a5069ebdb�F�
40e235c4553d138143d79a740ff6929dacaa7d0bb99c84caf67b643e58c12a99�F�
40e97878099ade8002e5833f16600e777791b1a319a702abc746d9b4194aa4da�F�
40ebdc19d1f43fa0892059019bcdba4bd97351c6d146ef74e530e00dc4732c4c�F�
40f292198cfd1d640409908c391eac750a799c0007158bd95505cc00794862e8$F�
40f5419ef2f5f5628caafd1966853e3ed258c5f6cb1984c8471c853323bd793bcF�
40fbdb5955ea06836fc5cd49841d43c8ca177c4a345a3731b7fdcb0e482fcde0
xF�
40ff738de8c90ab572f7f1b75bd512df524c5b0251c9fbf54e4d81783f7d5a34�F�
410ce04c09d80f22a31d904271e83d196121736299e85e3eed33da09b5e99399�F�
4110581b81ae9c5b81888451ef2d92b364bd02c2919a96ed2f541d4b690b1932
|F�
4112f1f23e8f476ae869ef1e7ba7b1dcd072616c0fcd173ce6f6a784d7d9f05f%F�
411d4dcdad36f25940ac90a44c595935da1b410049409e9047bf8e5a0d896d00�

ee��:��V��+r�F�
412cf05f06bbad13dcf4147fd9d0fe36f85f1ac4e736a1e70cceb3317d6375ed�F�
413133e05ac7cf1be0030800e9f11f9f92b4cfd832e8cd453bf6a9b75994fe86�F�
41389a794b7cc04dd2e3fd21ff891d278296ee4aefdfda8491c6075a8b52e2d7
�F�
4159fb078456195a5426e0c1b4c344097b8cea15b93d89a5b0edec624c3dfaba	RF�
4168f549a1eed91719335c29e0efff79a7747ffbbdf777b56e435e5123a039a7aF�
416d63eed80ece67c95210f8579b267e2d49d197964c16f46abc57e43e2e7cb4�F�
416e2bda192d4d2ef653af8a613b3317548b4dffe2455e834970d920976316a3�F�
417df6c01f4373a219da10ea1df04e2565b5b27e4710818aa6718065c174f25fqF�
41923a544cdeeda959457ff656dfdd7e871d90f2d4f234055c2bb0f1f3996609�F�
419a628252f2a83438fabbadf25cbc862ef23160a9a3d32fa110f61a1f1f3930�F�
41d3b70e19103a25ac6a0a877859dcc9105adf2602d4dea078e3220d5fdcb007�F�
41f4c18963dcef2f45ef879ee1b029b4d4e655031847de4f3052176ca15d7892
F�
4206286662c3bca7d5dec45b6571835c5c580374921fcc382635bbf1caddac77h

ee��:��V��+r�F�
421c0198c864523a8a97b579662dd5f24971d1c8a60d7b2146b913582652afa9KF�
421f399d269c4af9f6ea67eef863e122a920ba76ba5b890c4591f7adc604c2bc_F�
423fbdf1d86a2b10618e98f380c62c9e34640a2c7aae29c80960b34008181a8a�F�
425b1c0988b4a82a7edad5a994ae16e7775d36d9efe1e2cfab48f0893276a38c5F�
4261abb467f2744c5f43003c5dff6813e00cd4a52c72325f233dddfa3008e983(F�
4266dcf7867c8c57f9684916eb7d5867aba2298775bf2e55af86bb7d8b4ef39c�F�
4276584eb593d2fb304ab50518d7e2c4f955abe8fc5b3d1b9f0dd053d363f298F�
42867004de7a228cf85955e79762cca11cfedcace4742b7caa46109e8131839a�F�
4286ac1c3d65716ecbf4c7210b1ecc94f1f602cc91db2bab294138fe254b2621F�
42a032cda37e42e63ccb183ecdaa7710140521828aa8549a8f19dd0bc7fbea36�F�
42ab3de394252ea2575955dde550d26c4c2d82245f48145c1880b3eee1f049e5eF�
42b68ad1d87236d5de03de1b7d591b6a993c1067b4bb54558ceaa48a68fff9e1�F�
42bbeefe5d2da9855ecb5e645b7be4aacf43260cc22bd95b02da32fc849a989d�
1M�1|�]��>��j�M�F�
42bea60ba5a685f45ed8675f855c453f0cc42f054af12af28b5201bf1a660ffcGM�F�
4331d246086138c76b626867bfe7e22ada968505bcd02d526951cb2236da0d31�M�F�
43a65f36dfe6af5466184f30652144e3c9c8793fa34ed3f819d2d654e01edac9�M�F�
44366b0b7affba7de64323741418475b4e65ac775871a7709bdc2230e592c5af]M�F�
449fcca21f14ce7eafdbe53266ec3665872f2ce58cd9fd10b5ebe923ec7e12a2�M�F�
4535717be95f1dcc2921d19bb37276451f877f99558ee69df6a67597d545a010�M�F�
45af49fe978be47c6b7dc1d84f54b54ddf45d39e67431887ec68d47802feb0cc)M�F�
461a3ca0afeaa8e8ae87e2d1547a6874187f8e530bf5dbfc39b6c0c22d899d43�M�F�
46b7ac1c6e8834a1d46051b922ee8bd78569b89c91a40bac7b9886b7f75ed974M�F�
472b850598b3b222ab19456cea632da56a9a1a5433cbd99f43868e6e98595701�M�F�
47b2d4db641e0cb05ac7567ff73f91567cff400dec134469086e86b41ebe1072�M�F�
4857df90d4f9aa3520255aef6c5bdbe887f7cdaae0d006c15b15db7c418b372f"M�F�
48f161dd4b8ad99c1d1c53c15b3b1e64dea4116e9347fd9464c14ac1742ff5cd[

ee��:��V��+r�F�
42bfea454da2eacfb32d84a41908a2e6d89c8e46d04ea6a5ccefa5e251b3f3f9(F�
42cd49e0abb9c9f367848467f27274693443d3037a447b74cde10b94706c4a80�F�
42cf93b353c32a2f1ee4496369b7f3181e00c033475ee1a6ada5dd1706c96a78�F�
42d201c11113e97e1033dde57dbe80c43d0b96fe2894ca9d7448018fc605c871F�
42e22ddc4f5145c86fda06a008ba1415e8c40c3caa32ca21f81ce460fa3e2bf5/F�
42e5dee7b0556011cb8bdc92961b584ecf210268b03c4e68df01ba36dc1f30e1F�
42e853b9aba262824af1f06fbf3521c29f339081059d0bab496fb26bc0f3ab17F�
42ea2b85b1cebb4239ade45fc36a1b309a29b95be50d26bf314165428aeb66acjF�
42f1179fa155a1a3b4448c2b7429ab632d2e5b7216612cb0f5458e96d9c9e738�F�
42f4a67a0204be33ee75b48a1f31717570a6e3cf9551930351d405cd614f5ecb�F�
42ff9328e94163ac1555369afb66d510954eee171420041d8a4d8bcf504fe3f8�F�
4317de17f229764365281623322d3bfc068eeae3772e61937438e1e190c1251e.F�
431b22149fa33a26bb336eee9700dbf64d3ec3c03e9604c4203a06a8e35aab3c�

ee��:��V��+r�F�
43424b0d689ecfd0d4282dd45e7088dafcdd16f51f968cf76021b08f5a1060e0�F�
434aa31c1e300108134248129540211cac97b9c972fee7b8a5c1247a8c318c2fDF�
43561875a5de2607f06bea160d4eb38c49eb95d2de1193d32c75d69bbef928de�F�
43570d8e293bd93001cb8c4cac3e4b2045b3024b7f3e08f4449735bfb9d206c6GF�
435acde66414134bd505e6658dda39972f87e643ec0169c1f4c59a938280fa39`F�
435f966aab54d076f8753e805379be8aab3e4bb69459fff3ce7c63cef6a043c8�F�
4370607a6da65b16c10efee16a7e7dc47d3ca219e5adbb651ea25e3150d278f4�F�
4371a5846dcf1faffbb4329cff76c64cdf7cf7f9103bbdde6357e230e6f9ba83QF�
4378731794448fc800d324e71a41beeae2b174ba078b23eb78ccff27fd8d5764�F�
43797987bd1c6a7789711b4d44fcbdd981073b3086621718cadbafddd9a64625�F�
438402ee92c25f036bd2deaa1cdeb1a00f4983754853d65bac78fd9adc101eab�F�
438a67adb5128df187df7f5745a6afe2d244d1571ecaf4159b03356b32a60436tF�
43931a5196450e67afee8e240f59257098e4480d715afddd7ca69d04c9af6240*

ee��:��V��+r�F�
43a8791d748c2ca3cb5e8c1b6682319313b8373bb0e84e9e545ba09dc9e093bb^F�
43ae4b92ba776ff7c0a7d9e6c5837380d87b103b8cafa435c922bb2e68bce68f�F�
43b09300e3cae57123f6afdd23ac7e88411c687be6f131ff215ea718f5933e1c{F�
43b68e9aee5969d0a7628cb49b8b9e8a4b328432cd2bbf3a542567a7d9be9cc8�F�
43b8b70412f6c494314d9177182cfca0820391aec220e38ecf47b9fb9d4acd86
+F�
43ba47c5fe93e659e2128f88d812fbff89a0212d3f97b085a69f6ec65e2a1b2aF�
43d76c869fe744e94bf344aa66f638f4afcac144a43ed4d8336d4147ae3bb81e�F�
43e5f421e8e3c2fe23f7a93bd002c12ec11faf3194b342d07ee3a9f9fb37a875�F�
43e8db14504b7b1b92c33224717880dd9e4ea6101787efd5f0da89bc9bf2d7a0�F�
43e92b9290406137c9b3c56768f3269a089b338a410de4e2879c249fd794ac2bF�
43f50cb7c44309253c847a258d592992e250678cda19887c482849bd67b447e3�F�
4402a7fcf865ee506196d91c722ec2875470f134b63f3912ac69561ba10e5113�F�
4435a2d66b8a1b83a30085a0be118a8b93bf7989d924736ce0ab0c1085446d8b�

ee��:��V��+r�F�
443c9cfc06a5f4f00f7780823a1f4d236782b838c05109edde4737cba50357cb�F�
4459ade066985609ab1ac51574d24bb466645a717a2ff3a30e417a8b91609a87�F�
445c2d91fe49788941d409448267b19e014c9f6354238fdee408aa1d585cfd01
=F�
445eab0d09b92ba9a49ba8c3bfd3c3eee915acfbb0d71c89b249baf899d7fcb2EF�
44600066daf3f3b57b9e269737e0b0dfcd410f3a524fbbd74aec3162d6f84f7cF�
446b4bb7e11daeccdf09a55cd6a749365497b1d1ce2addc86246a46f9de47af4�F�
447681bd8d74b001a4a5461694a948bba8dce453c2c054b8fb5d38408b7888a3�F�
447af92c743509fb44207fbeccdb5f8b9f35865517ad94009935976e7e5339ed�F�
447bf3552c5156b143306396c3569328e80baec97cb1a11315280cd2f3b38e0e�F�
4483963c33f057bfcd4b6120dbcefdc634413263eea9af2c988563522cfa5127mF�
44904175313b13552ac962d42d456dc5d52bface994ef485f56c33f7f6971440
�F�
4499296b0da4f8a6353fc0b32880c2dd463d4a440d98446b29fd4d12a5a2ed28�F�
449b85f4d50008df3b5663b39feaa09ec5df8f99f0a2327e0e8e846345963022F

ee��:��V��+r�F�
44ab9339bd5d854867709f046ee7265cdf470dcab6e44935238e9d85f50a3ffbZF�
44b24b7b0c7aa6f549efcc0d2d645424850f626003bf441a5cd992eaf86c7fd3F�
44c119ffc1f4001f24a6905dc7a8b1db1b192babbc6e3390b81e54adfb63b7b8
�F�
44c332e4f12eed26da249463f404e2a9b0a26965d3864059eabafa8b359ad304F�
44d06a1ca389cc452e21dee550e31d9247c635c403355f8fa7df144b76f7ee8e*F�
44df7609ed5e477add5d58e49530bb036fc2ff1d94098c85b2111eeb85a31168�F�
44e365718f57aa02dbc0e6c0f884b3e6dd15e03acd28ab5154d917184b1d05cerF�
44eb1405754fcd4ae144cb5025d91b3ac8759293ff1a0f187ca3a1e153137223�F�
44f231fe5f62541a6b45943aaab6e3541465a25fd0a14bd3c846d9df73cdcd9bCF�
44fdf0fd6b2ea0867e2530297d92b753e9b67534567ffa09595ff50bc74c9886�F�
4501c2327452af05f97c309a9269b764df7c26f9118e1c6cc2594f1660aefb89rF�
45190bf945897c615199c3c6632ae316c3c9299a53118705ae10de934f61741f�F�
4521dde116f75afbb70beca46c5f369e56507e92501cb8051a6caf5aebe62def�

ee��:��V��+r�F�
454bbafafa2ed6a940377a73f755cc70525a8547533b1c20ff588842216101d0
3F�
4552c0e9031fc5f990a165feb17e2cd243461f760cb80e75769c837d1052f193�F�
4555608cef90da4d409d7d09f1176fc6cc4348f516c64411e318379a54137083�F�
45631c9c56e97ad1c34577b8df4c774f108693f67b52f45cfe6915a3e3f40208�F�
45664af56e8ecd30d4df0d0ca03b53d10f0840e2da053735655a3283b7b1fb6d�F�
456aa067cc96e03aaa605e52a86cc973f7a8dab09337cce112097a4608dd143a�F�
4579c7a7925097881dd33b28c72cce227a024a5f071fa4cd0c5bb09cd76d8ec0�F�
457da3dc935ceedbf369f8d8283038086c61d7ec599b6b13c34f1a9eb692decd"F�
458a2e4662739309c98eb0b79c83a8348f583ceb85c8d0889d5b32448cdf18bf�F�
458d8d0ed05bdaad8b13b09c5d860beda84b34bf0ab4c5673194584865a68103�F�
4598455c105686eb7e3fd9bbe5dd3d1c3e012036441206b4a4b2c4cf8b7323026F�
4598ab08f211c59a2ee7f9d85a2e2c7a4f7b8845e0d7ac7dbfbb570230111cf0dF�
45aa06d1829f4839d099598b630eabc9be0756f534ae4a81d0d6b7ab5922bc09�

ee��:��V��+r�F�
45d71f9f39e70560b9d5baa82caf326bdbcb0b135c3f872940bebef466ce91c6DF�
45e140c5fc3aa4f6210be1b434e86df569f40a99aa8d64401a5ee00649f3b677=F�
45e4431fa6444a15d0292df48fe285761bee76d70d5eda0b7e810f4052b8ed92�F�
45e9a1e7f70a5fd4ccd35c605d9412dad9cba3c4602e350da0bd341a6d217b42|F�
45ea6e4e3244ee8c391939ed27d9667af07cbcf7e683b8241c444b5dc4340f93
�F�
45f0406fbbb55abe1511ceade8ca9fb297ae44cce197166c9a3f70561dbffc30F�
45fefc5e38fdda8877b262c158dcf1558ddd8b48fca3c2cd58b21d90e637096f�F�
46014250185344e990623d8284713f5bcea7006c7779fc959f7da3d39032c89b�F�
4602b5323f417a87240cc0e7d73bd59b5353a8e84649b1ddda629f812a651716F�
46064f76c45b401ff1197bbdcd32585b704afcef86d2dad3fb76250749b3ef7d�F�
4612dc1b815321d8acda2baafa9107d32d2e88453f1c98a341c59936db87f826F�
4613273bfc2c11c9816fb2825af9aeec01ebd5785d69700793afafb364fdfa5bwF�
46160c3e8468e10ca76482b787522ad64e1f769900fb6947b4bc6690893303cb
�

ee��:��V��+r�F�
461bf2c4280e37fa28f8577583cf56315e10dc6a8898497da766b5dffbdb1a56�F�
4631ab28c6b9c4fb1461b0f98b9c1de4c06d08fc1e07b0e42d44f966c8d31507�F�
463481903ff9ac36f08f2d63e5bce0da7c84afc7274e5f35ea4d39f73cc6873e�F�
4634b74cfe7dbc9b83774cbbc50314221241227045a9199072df357ddda72bf3�F�
46604e7e63c82851d300be853fd43bec9f863d6c14a9a404185a9c0fe6b88932�F�
4660a5a7faa79cea2990c384533fca3da9b3ac6afdf6f55b36b2cad51352c3e0*F�
46649389b1065af3dd7807f1fef23cb1e6f50351ea151d97424e8b8a75c616f3zF�
467ea07622b7bd1dc0694405f23e3047a904f677d60e58b4778fc8e889c2d224�F�
4684e767f94d3dbc6eaccc3037287d441ff4f9d0bda6586211a7181edd68f6a8
F�
469ca6e8993db68735d7333e493a80dd4dde10f37d4c15b290e072922a543da8�F�
46a04b65f068cbfdca98fdfb989911df818cda7f362078f3f1fdede4d819cc71�F�
46a11b35c33059224764ebf871842b0fb284b2783875ccd819e16761e47dc4cb�F�
46ac94286722fc2f6f68ec4c0e70152b3d1ff6fac6001d2155f8228d91126574�

ff��;��W��,s�F�
46bb7deb87e89f41a59af551779c4df4a4f0afad8e7966438568b1534c02fc3b�F�
46bca967117d9441489461b3e6c17e9d3e387f3c3bfba523e30b819bb00825ef:F�
46c46ba8573d8f101c53fe10179a66e853ec151d66f5dfb686fb60c5e75aa610	F�
46cf410604f7938205308a15957f49b1342c994799e461a129e01bd216d7a933'F�
46de5f99129eb78da5ff4975f706a21b2b68e99ac0a5aba0c19ea1b67daa44c9;F�
46f713cd31041330e2739c5a644e4f598536096f3e39d6c667a6d044eaa87893�F�
46f776adf7f88106a8e818889463dd616d261bb3462ec68346857a126aee742egF�
46fcca6c6687e1d7465d0f99ea219de21f84bde74cc822721a5e55a13bf97a0c�F�
47005db64df1a2026edd49418e5714bd0cc4b55a22af61ad08162f38d849be23		F�
4705cdec550031f6ee8f3f2c0c78c72c88ec88a70a3c20ebb27eea168bfdd9af
�F�
4706b7d5da4cf50b5e9a1e2b512bf1746aac5d7ff7525f047e6a79a392d7f548AF�
4709ece2740b527335e0d4d46746a1f8ddcdfbb92aef8389bef8e6944d560ee5�E�
47174964aa424317b7623852dab6eb134838bc81b1ecc6687a16e8461523c3c8

ee��:��V��+r�F�
472c45bad9fc5ff6c17193d9dfb942a7291f6edc650f2c9c6c14dbd3dbd515b0�F�
472dfbe984defab2da4d391865a8dad49409470d075bba14d4c3b8ed3ece9e0dF�
4735272f88bc3a162accf0ab7bae821772bb319cd6b136ca5791eb1cef2eb048�F�
474549f2d0c95b83d89f1d651d078459863a9e1f202ab7c4c64e77e2735fab8a�F�
47479ca82c3c2c2c7d65a383dba4f54f39f315bfe0571d1d9129c0d4101abdd8F�
4752988d38c83850c74c74ec19ca5b7e1c79f8817544be00ab3fbc407c01355a}F�
476abb9c019d06d8fbb8b7d20433405022b208c2c777b1de0c036fff3108fc7e@F�
478b6dae53400cf32a4edf127885888456e0d40687b130621abfb48015757969�F�
47969fe770db3c0a761b6cada255644049a5915767baa562e1ad4010e338fa35�F�
479b38bee7280885a7df789a1472c2d43e1a0103f8607f0e6d3fb26c2ae13423	F�
47a1d5d0a1ad064ec478ea6d44b259972b9111eefcf4ada7bbacbbe6aaf5a0be
KF�
47a66548a049d52ad8e7adcde0de98e6768596cb771d5b8ee590193dda421dd4	F�
47b080e5a77e0a4e64120cb62ee1a56fde234cd979ec9e29cfa1488c409e4a88�

ee��:��V��+r�F�
47ba59d4b1cb5b673b1229b14f41032935be9d093380d4ebda5b7a3a020d1829pF�
47decaf77cfab5ae9ac6ca376aea7b186c9ab835d41abe31c6bcd91c3dee313f`F�
47f19899e75c7c9a5b74f30643d69d0ccff2cf5451546d7ad1a727bccaaf0ea4sF�
47f52ae65081a918aa822fb28261dafe5b707b012d7f07714f3beff7a4d49f45F�
4800c473b78c5271f956b53fa3f8a3f696c8b2709fa3afd5457178a5946300eb�F�
48050d32a9ddb2c79d03c638c04cd306724f7ac310231a77812108d47d170a94
�F�
4808002a70058c1d3b9c495b731f8403aaf27010bc15e1e5a808639ca82489a6qF�
48122d3d4653fe0fc63133e91c130b529db55e9ff1940bca669fbe8d0e04f223tF�
48329854b7d3d8bc442c5246bb0589aaffd665388bbecfc7c00032cfffabb222�F�
483c0e526fee490fe5e387d8f466ba9336f13e99e38a22801656db9f0ef6fdbf�F�
4846ff9c3501bdbb24a3b5c855a6e385c608a7387446302cb070e7c305b0a087

F�
484cb9d2c6a1b098378ddaf70bdb38133dc17da620e66106b68fe5d774de37f0�F�
4851da54ebe84600b0c7af372a59c38094992018f2ffe45bec040b2dd5d380bd�

ee��:��V��+r�F�
48733bcb59a63cace889d40e1387badbc9621da7fad0ddcd0d198e83f214e41f3F�
4874985f1d75f7c43dceb6929982f36fc7a9566042a70c22a42bc6e3e6a65b58�F�
488103f93db3517ddb11caa529814abccd07f454858bec9681eec8375c544207QF�
488bba15bc1daaf393fe105bb25934f4e99b57cd9d0774beeb3fb7bcd72df936F�
48a43cbf24e5cc56899ebdd66e5c0f3d2fe213629ce3c7debc96435077102d8d�F�
48b1742bdd262f815457ccce6a8412a9c65dc9affb811fc52a31da14b7fe7f4e�F�
48b28be8658e81953a40daf5ae041fd07fe585facbf0a5c985d98cee88b3f0aa�F�
48c1cdad82823961370ac3c16ed4a93a8b8b46bde9034024316e1a72af9522d4�F�
48c7292215b233ddce0ec673e57163a6f867a0e6557f4d3d0ae79f6155792fd3F�
48c754619fa5b6636c02b2b5d79f0529027a96e638760d84ff74df57ece87bd25F�
48d7e4811a291ee31fea33ff56b5e11082ae3d2a0bee442c7ee6b29212f72b3e#F�
48db0a9dafc6ecf4c0b955075d04ff198a44fa5b1bdea37a0f03af3d9d75e1a6F�
48de10d35c7c78cda02151a71c35178d70d58dce2c1dc876ddabcacf02451fd3	9

ee��:��V��+r�F�
49113267f534c7bd5e707eaf237fd29c16d11aae9ee70d8a16d8dd33edb75084�F�
491db6a3e909d355ebf2f70d1e83753a0ca5ce5a0a294d1a7903cb2e82a228c8�F�
4920894974a22381aabd54732be72cc0879f5ab5e7584a6e9ea403da66101b5cfF�
49275f52aa1c71edc688e6802a1f2c8b136594807077f4aa90e4e2686edd8ddb�F�
492eb3d51d30fb1af43e49282e578161b5b19cce5b45e3fad31bb1affd621cff�F�
4933dfa26c52c90e550bd7f8821e6e879a155babc9e60eba5472271aa463f60d�F�
4935d172a32f8bef9fd07236702a965e4d14a6e86b534e6c52fbe4aad6047e03PF�
493b003d3ae9b9c7add7127460997cc5a69ceef2b8884c9efa668bd7c7cda3a8�F�
496ca22ef6b436dbee6813613f31f2ebe1718fbe7c53d90796a6f3f18ee0a331�F�
496cf5c5ca7cdfa69a957f1fd58b42a7ca210246b35627830c2607273e22b7c0�F�
496ee19b0bed3aa542d3fe7473b517f0eca004f3306333e343b200c30cdad5c7
<F�
497230bf98b04ad42a5e86190210020c9d693a673e748256dfdae01fda278f6b�F�
497675cb6d7517ba23fea71659d07fd3761c557cdf9fd151aa544223dbc11237�

gg��<��W��+r�F�
4979bbf79b86bc451b21e72cc74db0991153920063a30b01bef2f9334eed1607�F�
4985ef8243b405acb259897280bebdf83951ffe71af3db3fcf8140797602544b�F�
498b3c4385806f5535a6ebd9a444db2e30938bba2f9b1f553b35189edc73b0e43E�
49941263a7a0309c58b3d3e00ab81c56b1ee1a70b49b873188cc23686f5d3d9b@F�
499aafdde42137b651f07de95acdb9b2b0426c0923756ba0bb98c74731260deb�F�
49a6803a256d5206d45f93d9583e7333cd4961a731881b7a82c761bb7ea7c9ab�F�
49a7e87cdd6368571e9c30b74a1800f53df55d4cd91fc41ab8073e666edbda38wF�
49a94cfaa934548d43b739e469156d5cbf8467609c08c9d7583ecd18912a49b7"F�
49aab94d53d2b184f6a56304123436d4e5036e2f12df6e2e89bef3f8e09e48c5
�E�
49ac1322f5ed8d216331f29c35eab930dc5be738f27bf00fca63036fbce5de80\F�
49bbdc6d250ec47750ab688a1618baefc947110bdd51d0ede255d5b1610a74fd?F�
49c502046e8fd1833a810286c8db37a87f18dc47667827f45a56267aefdac60f�F�
49c62aad693f852c4a093519a3b829f4e69ae106375d2be0eae07159b97d4d48(
2M�2}�^��>��j�M�F�
49c9854872e8bc5ea2a45b52e2667a2d8a44dc7c1e42f73a3ed483d4ed29ddac$M�F�
4a53adae3dd3a8d933f2ec113b7303ce7d9c782edd612d17b8d3badf4c04167e�M�F�
4aea4b143d8173155f3ca2e53011c25de372518c46da064056b3507555cdc03a8M�F�
4b35cc37198ac1275db864e9be35ef4048337b891115e699165a85a519fdd7a2�M�F�
4be78491df030e9fec9f5e5789c29611f39d783a9bf1e70cab686d996dc7f9eeuM�E�
4c39fd8baa3677dd6ae1debc1bc8f2bcb012f024717dc7b97179d39ba6e3853f_M�F�
4ce199f03c4016f4eb22b3d9b8711e1cb1d9864540849b2a5a1c4df4ee5552eb�M�F�
4d3ff47c13cc9874693a7b3fa026f1ab176d6a2d2b0a14b6d2ce80773ed3fae9�M�F�
4dc25e03c0a0a30babb3b4e2d1e9e2f11733686d656dc393fa7d1a62fc9f6fc3>M�F�
4e92d3195efccd7f140506a0902f4b658d5fed14a465e7c9aa46b8ecca2996ac�M�F�
4f181bcb90816497b5e18006556c8e9c5e26bb5a1da4f5be2acce0472c81866d�M�F�
4fbc6610c68813e5bd6ae12f052f547dce477ce710dcf0757d49212f8415fe33SM�F�
505e596b1b77d05f545fd3684fbdd8591bf9ca308db67ff0a6b36dd0a1341c17�

ee��:��V��+r�F�
49d7fd7bc99dd196b6ad0b23effba028c00ec83384e764f0625ec4d1a888a932F�
49e01e923bc5d1026751341c9a01ab8ef4d50d8b17e94f179de33afcbfb0b234�F�
49e9c90df2985998052c0402a2bc848b5090e19a31cd9259e1fd77529e6a3505zF�
49f444eb43979988b55286bf011d39ef639f814d68348b633249b8d4d229e0f3�F�
49fd4de23b8c381fa2c7fade2fcd21a022bd86e95b20a8657eacf9b0f27664d1F�
49fee1d14c58251ceaf27e463d004b657ab809c483a44ab5c2bc0bf22a098086�F�
4a0c264159f020e612793ba279b544a49c67ce5644e4673d6a1b7e01986d8c98�F�
4a1eda7aca52060e944393a7b40798a1e90bbd8b4ffcf3bdfe5779ccbe2acc43�F�
4a1f2f949b103bdfe54eebc6b4963f047de93b1a0cc47cfa795070d2edcf457d�F�
4a27bc911920120ba55850208fce562c36cd54a517a88cc8a4b4adde165bdbc5�F�
4a28543a74238167f9429cc3669d937bcf9dd1f1fbbac1543897abe810b13539�F�
4a2de0d15d4fadd42283d48bfb0d4abea9092c5e82e168374e117d6b6d7b27d4=F�
4a40dbfa3e0e5c2e7457bda18c82a1c0d3f49f91b8d548c568fea520908bec6b�

ee��:��V��+r�F�
4a6ffb39008edd469d4365bb3bf858f5f5f466129eb9e330d978b28866906891�F�
4a74ed8e2ec25ff2f90a460ace450f1f5f9d8ec2388840ac54190eadc8a43575	zF�
4a764611d924b3be2baab6d6ffd5fc562fe6a7c2c08cede4d58bb7259f7a0f35�F�
4a8694a364e768699fa73bb47949f8b4f66c047ef8c5ddc23bde156d7e70f7d5�F�
4a8faacf86955f2abf551cdb070907bfb67ba8d81e0df1c694adb79e873aa809�F�
4aab05abd1b63222c6aa994c3754ec20a9d3258f4769449d5e105f718ba5f442dF�
4abd16c4ab5141d33e867b7f35275398808b6ec6c8b49a01a8fe2836089ca1ed_F�
4abf0ebc2127e7a5b5dfb595fa447cb44f339ff023ce88bb0a97992bba4cd3a9	�F�
4ac5393de035d7805106e39277a7b7b6ab0713a00553bee6342fb42b71e80ac3�F�
4aca2e6c6e4faa4ced065ea161be76f436ab64e5f16cd84c5a0378ab451f1d80
oF�
4ad0b71e3a6468fba1b43ab82fad024415b5296c7b77d1348fb9afa3f828f98eF�
4ad165c06922e2252a43f8ea8424a0e1ad01faa0b3cc0656d5e88a5bb3bc053f�F�
4ad790401b462e49852b64d52ac831ef97ef989b5b507c46e6711cbffdc8e689�

ee��:��V��+r�F�
4aeb221b696dbe4b67c7b108b689cf26df6c7baa673fd4a529bd4df444eaf4fc
.F�
4aeb4ec586ae68b258e3a26e5bf455914a1bef9bf96ce52ea53b74decb9d1176xF�
4af524ef4c3174e29991b9c0e236ba3d89b8d2c935d9359910aca965ba5001ca-F�
4afd47d6a1f2abe50950226f0ebe58f8973c16a4aa727eadd72419fda729468fF�
4b031b0a3b505796cae1f7221a96821c6c953c4e2f94f8869bfc2a6139af8b2aTF�
4b0430168f86ed2d3205e156f91cb895de8e9f80a08f08355aaaed21286d7be5%F�
4b10b467e7f7d3c03d65a1978142de23e7d3b60c9c6729496eac6cd915d2e83c�F�
4b14173ba0287bf249a3f49d9d5968a1bb673fe58f4a0ee8e066a9aa389741bd2F�
4b1e28830cdeb09548b5fed9c3021450437dcf28952e709628dd86397bf78af4
F�
4b1fd0ab7ed6265d09954241b71684d0db26d624318d6cbb227909a3ca804bfcvF�
4b2789795e0561f07932d99dc35a224a5cb2e2fb4ffc4d3c3b1fb1c9256f2f25�F�
4b286d1b4cb3c5b51e8b4cc94f6e08beb1728d48f042e99fb51808ba50156970F�
4b31ab8ebd6b1481a2299adfff2b7d616abc0233760f8745ec256b96b86d0077�

ee��:��V��+r�F�
4b38bac5d80fcc0063946dca9ca07cf5eb6d0ed1e82eaa7df1715a790288016eF�
4b4af671ab41596e55314e4e7f8cb70452287460fc44b844405f9035b7823f84
�F�
4b5b55c14d140a53eea4285b441202dc50e0ea78ec297bd568befaf65e5582fa�F�
4b6626a337fe2141755d1e57f9afb5d1914f4b0d752fac9cb28cea90640d95d3	F�
4b698de5fd7e0a64306106f3018e9d00dedc1f7a46d354339f012c97d004bd0c	F�
4b8be9f1166188e6844902fa02e3822fd56edbfd5e5043d22efd3d39bd199f57F�
4ba6b6ddecf71dc7d8295a3fb4185fa2934f07e58716d8466b73a50137c58a53�F�
4badd67c65c46b09cdfb999c67dcf07efbec0e2b1b5ee21318fb415d90aff27e@F�
4bb74807b09db308a56c244e21970f4698de871955175c9b552234229de92f91�F�
4bc4f9b1528598d166b590b62bdc782e328cf226edcc858a3d5a60dfc73ace54�F�
4bcba3242efbe299d1cca855971a52ac841ce3d6656543283cb9ff8dfd08b70dHF�
4bd28dce0b162f8a2da3d74b80a28f0bed475feb3b13bc07076dbd9447d2deaaWF�
4bdf983ae009a8ef897188d860d0535c00a5071923c33261e644570fa2d5cb9d8

ee��:��V��+r�F�
4bec36ddbf5963ce6aa8fffba7900ae727da0978060620165937170bee608f51-F�
4bf12266defcaeaaa70a5bbe431d815b7c435f5f95d2be12d8be7de214533e53�F�
4bfbeb71cf3639c4f6067ddf6c491f06976bc93d091646bb825481dd641a719f�F�
4c0432991858f896026445ef401636f12a857102f3329b8a5d034aa2e99e2bd4#F�
4c04f9c0edd59e74074f9a36500741821e912b6a5865fae5f59b76252ebba71f1F�
4c0b51e89a2551de7942fb433c79d0f9aa1a872daee24a3859ba5e6e51888012`F�
4c0ef9ca78331cc0b0d030d525a258c4b4b7b48e388c2a3e3c8cf104d2f410ef�F�
4c0f98326dda59f363bb5eed1feaf1425f58894bb5fc4394be480c3fd35ff517�F�
4c0fe67802024d085939269a1da54ef7d9c6feea27bc2b6b94c3c64d18835d38QF�
4c1acd8485fdfe86cd47962474dfcb9f59d713caf6da198b738ec4fa3dd0c38b�F�
4c33dc16f8bf9f19d59d71c209205c27c9923c2016d5ca5f3409885c95bd8be4�F�
4c3662507f01c062009127bb3ab45ab19236e6dcc70fe08ca363713b45cf9229XF�
4c39d29f58affbbc0dca6ea29bd2dd9b75658d24d46f216c7de17b46f021b13ex

ff��;��W��,s�F�
4c4e8afba69331a45497c224ebaa7b237c5e25c3fa2dba00bb45fa49fc41aed8�F�
4c5528d38245aa14b33d05948eb02c322e95528485c9970733d2e5a577774d6d�F�
4c591b2e577a321d2a3be5e390eecceec9fe2e18c4d4f269ef41f4ecb0ef6c0c�F�
4c61a98e630cf29009706ab099ff7870c3593c7eb39e9d0edb5e059359012e52�F�
4c7a4b1402ce62b471994dd364f3e883167ad5ba8ebba01d67f8ceee2f63d6a5�F�
4c7d848c14e00ec553e54a225e05056fee56b5df54a71ffe45ce122d6b74625b�F�
4c86c1c3d77ede8a23e4eef1b4c3e4de9e50b799ed8dc0e6a6091ff032631cf6�F�
4c8d4ec39fdb607061601e0e4b1e5230323ad72c01643e17ec55ef571d886e49�F�
4c928cbb9b34a074f2c249f56cfc152f8e285cd974e184b9f5ee05214cbecd42F�
4c96449444e550b77b9d63a86b708d50e9b146f62a64f89fbfce2abfa49c871f=F�
4cab2e9389c0bda9927bc8ffb3f5843f6888147fd2ee09109c97a50a8e313dfa�E�
4cae2658d6c984132e253fc1cb8af035251a3acc79acc7957fc3c92111b0f643<F�
4cd8e9cddd54af538fc6e1a395c1cb5338b2616fac4687ec3606a53441b3b88d 

ee��:��V��+r�F�
4cf62f2fe312ff9b70310eeb760aecc8141285cba4ffec167b47f1cd26cb8fecF�
4cf77513a445cacd9183e8004a68488a4038ea670b7d8afe41da213c440c508a|F�
4cfa5141393a1004bc9d7885fee9a606293ee21216066238700f933afd5e4598oF�
4d0e360eff9294623b345353bcf2cb4623c50a3e2bf31ace6ba05141150d85fd�F�
4d12827b417a44adfb6029689a3750767d051d27bb01400addcf87233d9c73aaF�
4d1bd70c6b0a083aa5199e8688e2f1a51866cd56dfb5c1d7604347e2bce43b18F�
4d236aaf4435c04e7eca7641052df2e7fe956b46c24fdf530db5d3367025b1f4
2F�
4d2980f737ca5c15f4f33e1a43a82d6b00ca06a5c6d284643ea2f0b2e7928f76�F�
4d2dbd65fa67b8c23648a188f830340cc1da72b5dbc71795229022de0ff9720d�F�
4d30dcad5eaa26754ca93719c17a0897f17b0ffe1c050c78afd90769cefa027d�F�
4d32b8be0b3416b8c7b225709e77847f3eb420ac65b6a5a1c9c5f7bf13033407�F�
4d332cc4ff11d1dc4a0a7e039eb49da22510476539025c6d32b9a5a212c7cfc5
*F�
4d378775c38c6fc1f731d1861a287e0d217101b8afe07f3c8b0d015fc2a45e89�

ff��;��W��,s�F�
4d459fe6f652254e5a835c98f2be03ec668f7667a2f0789647fd5a2e1ec01e0d�F�
4d49a5d533e4c753cbeaf06a490dca1f72f5462a8fa7f3c634484c68241ddc7cqF�
4d57a9eb757639f05691dc0a674b6cde76770c459608cab6a9a6bc054d091f7f�F�
4d58a246d4453df6a19b52d675c58ebe8d648d62ede5f2fc0cbcb709d686a098F�
4d66ddd3b79ce560d9eab146d518f751de7e9ef4d667fa701a868a978f1342cb	�F�
4d7007f3cf68064e511dec0623843f0d41c7dee3f69d1b581ca0a6e9069cf098
�F�
4d706aab7c08c3071b31ae66919573e924ce2400aa7bf07fb5eeea3a69a8bb73�F�
4d766c79e706152df781ac169a04106c6cc571faea5ad9beef0fcae6481c3a5cgF�
4d77c6049313415fe1c4aab3e4ee43727167a46b87e28723f6c79f4bffef36071F�
4d7880fbe60e6c8b83c4e01347b5e9ad274f8eee38feee4a3d7c3f8410c561aeQF�
4da4812c211785ed6403e9aa77dbffbe1dd3d4a923d331a118e097ee72e34831�F�
4daf83f9424e98f68f851994a49d811bd5721394db482d92ed7f2062337bafd9�E�
4dc1a1327e468460b517ab53ed5f213f2ea0b15a999fc2c3f80d7d5b477118cdc

ee��:��V��+r�F�
4ddc7a2a317dc75228322785e2290c04acd3263ac771458097e5f402bb10508aF�
4de0f5c0f1ddd055c4b4b2635e35081b0a75f314bbe5cb8978790bfc21cebbc8
�F�
4df06b794b26d27579781dfbefc5c00b87d84844c334da58b364f3484b878593`F�
4e09aa7b08c80287291584ba0426ddf0d69699ff7e4f0bc6cc8e1a788e10bc57�F�
4e0fff288896ea81f4c997cb6ce0c357c6515c6987555c53ddbd8c800177f083NF�
4e2af30c8cdafabdbbd71cf0b42194118f3297380446e1e39471402c1358b840�F�
4e2fdfb11cf1f7b0f724741e7730e02c2e6ab6bc2b306bf41ace3283e2b8739bF�
4e67706fef5e2721101385bb71163dd6a70a46cdc7b46ca2c10b2007847ad2f0�F�
4e697ffc60fca75a99deb8089617f94c12550b52fd5e8a07ec885967667c7541�F�
4e6c5997489d089dba27aefe96602ec7208298c2e48067c3ef634fd5a6da5f0dF�
4e82685863559181e2fb19cd0ab050ce5c0cc72aee0aa23484c3c8bd3233a2ae�F�
4e89a2934346fd031ae25135a0e99fcabcba01ba6e6d9efece1eaa54d9929e59�F�
4e8a4eb320294b8d3f17b50efaf7163b718c714032a6266f8778c53722127d3c

ee��:��V��+r�F�
4ea1017b5a921ab782e09ead7f9368a70cc11716ebe116ff1cbc4c7bc8cddf99�F�
4eb117f25866c9e447c845336fe608b5c30ec80262a6ffb3dfb33756f0001e62�F�
4eb469f0ca30f89921cee1b76ff6dd7b1c0025256c9be1d13e2d2c4dfbb1b927
:F�
4eb98f8f58cf6cec17799f6df6cd52b55de57ac3aef90f330df1e07c1f8f3702
F�
4ebc55a9954ac2afcab8fb9d5afd7de1ac28a66e18e635767c73d22ff0bb53eagF�
4ec201776d93e717d898e90c7576b88da99dbbcc0c2c4e7a0088d155ac4678db�F�
4ed29d175fb03385533dbaacc9824611743ebcc84d3ce5fa6f376a5568058d49�F�
4ee55b429ec95f43a7388f2b424b8db5a2a637fb009b640ffe07fc328900315e�F�
4efa7633b62075aef43851141d38c2ac3929b35c36aac708e648998975d72298�F�
4effc7564fc196a4c6411751bedca4e9e01367a459bcaff78bc6849dc7cf71f5
>F�
4f005504d21283f588231c70d4fdfecc7393a4b60fa72b1498f6aba2985e1d0b<F�
4f125e807f2d9654af85653665201a2fb6833421172f030513ae09616ba3f069
wF�
4f162133b3536d798fabbd26d093d1126b87e049d6687beb758da8930753e4f8]

ee��:��V��+r�F�
4f26a49ed12aa41e17cd5c146486cc8db5796101704d7b492066007312935250
F�
4f2b4a6fe32be5906b5f4c7f75b71adcae776bcea3e6698d3694791b316cf542@F�
4f2b6dd685c3fa625585b5fe41f9b3277cb8925b675a3b8add0c89efb81b9de9F�
4f2f74c8de47efbfeea14ccb4e01899a829a67121a6963532b82205d11eaea8b�F�
4f37e8e35d62af3023fa7e8393ded5ec181f09c19bbdf8f8210919d800c883ac�F�
4f3a3cf03d964bc88b6358c7506edcacfae9e90eca37a578abe76cb85f497a8eF�
4f490fc935e1622edd8f29833cff99546eda921facd62b71d30c95acefada869�F�
4f58b903b21acdc1828cdfde9dd84d381db27ebca47cc84a8a8225dd657221ebnF�
4f723648476309de9070d25c30df94bf8d0ec5cc665cf947714768e3903e6677
�F�
4f80068ba1aae1df0b1a343be00c4f8225667afd61a123bede56704529ab3f6c
'F�
4fa63e9cbed9669fb646f612b5c9371ba7bd3f11e6ce5059f28af1cdc7da0780bF�
4fb46ce209b71d1437ce790ff6339784632c86ff1c34dc42c88780ecc894575d�F�
4fb95ce0e3bb960c9c63b40c2398ead5b921b09764ee630c5e15c83ef4569e24�

ee��:��V��+r�F�
4fc0e17577976ecf2487198134b9f2656bdc36caf8e27c75efb6aff14204088e�F�
4fd4ad7ed695ea67c7d6d97ea6cc730d12e1d50fb6da365945d0f6255af4bd45�F�
4fdc56dc0f2c90e2f3e04a9191f8f4da825b37f6ac25fe246820e255ce02e8a1
=F�
4ff26a4c002984d75b6bf2b0150de3b528864e2ce86be2ab94743d10ddef1544
�F�
4ff754e3b0277c5062fbf7116cde18b1ff4c39ef530dd4fecc189d221739fe28vF�
5001584535af6ba52a00d1913b2b5f60df1239116a2cbcff84db48a9359bd3a3SF�
5005ebdd55f4e6e5ffc6888045041951f173c1227a635bb776b918e888efdfba
F�
5013f655f5321c66d30f6ab553d640e8a1df541105200e36eeae415ca903a7acVF�
5016630a65d39bcfb9fe686d8dda94e2b896afc8b8c41f7c29a6bc5d3305884e
yF�
502759520df3c6fcc6838d5f2158c4dab3f4aada9ff9455473132a5be1808ca0�F�
503b6775fa6993e20617e140090892909b171ba5cb9cf102f14e12e8e3722fbf�F�
504528b2f64bf9e246a93ff851b9fbf624d77355d1d57587ae1acaa4522c8fcb�F�
5056d3b14c1c47acae89cc110be58d13ce5c372f2467505049cf09faeef3f7b3A

ee��:��V��+r�F�
50637eb878b9d983dd9ef2ddcf46fd38bb751310409cbed318028c6ff3c514da�F�
506818895cd30b93e3417b8379f3afc7f80a2a69c7739886bc58648f153fb9e6	�F�
508911ce79f98f5eed94b7cbd546f0c6e54fe284ef02edf721f6bdeea590659c
EF�
50933b6c70f520be21299ca43c2f9714dd3359dc1c4ac8f96290b572eea4c093�F�
50988ba783fc21f380b1867ef9c2f3753fc650d74ce1e24f4f3f94a5284b4dbfnF�
509cf9ac14798ddb50f8710817ee91492ef1e1b1a27d3921e30b5434858dc294ZF�
50a577d62eed91a0ed5c686f85830b3c9252dff331c94841f673d8f19924250d	&F�
50b41570ec21f348d3c7adf1b62909fcf0674e4f13126166d7667664345d4f42�F�
50b46cc6de592b1b49fec6ba38878c1a368940c367309a46433e7015b68a5184�F�
50c11af52b9c7aba5a74a2beb07e802550af036c3a37feb00b9bfca7b241ffa1AF�
50d0381894cd1165df39084b17a13d53f360ad62fcfdcffb2c1b16a1684643ac�F�
50da2508f98f265f7ea4063d0f2a29fa9248b1aab9b37f54f9278b1addfc22be#F�
50dd826f883ca6e83a5520159702919e8640813f0006c32d9ce6531b4f92818b�

ee��:��V��+r�F�
511a7fcece3cd644106c80e487095e7d8ab9fa20dc09168c489f175eb63f9636�F�
511bc16b7002a23d4c2365e7a369074e23ce6ac569f14b967ca4c8b20d29400a1F�
51252d279ae23e76f0eab56a60f8b34948a2cb91859a5ebcb4dd70f5b140ade0�F�
514e7d973b405b3d0028fc7df9e3b46ac3dbc49e864417967dad13ed6c1a344d�F�
51531084503ccca2963d7cdc52e607efbbce02b1e36cb9bf5e983279ba6341b1�F�
516201be4c2a553028eb1f983417912a1b05f800b8989fcd30a55f89623a57b6�F�
5171be56dca06ca1e7da429b0b918c643f00522f432cfaa4d67aeea0ee796306�F�
517ba6cf72ceb45dad798a989a8d5555073598c3fdb08328ca70ce3270d794ec�F�
518082fd34ea1c14e44917a04af17aa6e3307369f369dbe369f0fdf4e5b8e1eaWF�
518634909b8077578379878100a6cc50c82ef6ffa0726ef538f628609f07e436eF�
518a5be8d1eae8953da4a54a8b852ce6fdf3a22ed2fd22c5b4db85cd4174a5f5�F�
518ebaac264e510836e723892b0b9982787bf6b242d9843e5ab09ecc5c9f642a#F�
51a15a1f28637adcdf2f0d13e8d6a81017809612ab5a6a46dda8025be6f4aeec�
1M�1|�]��>��j�M�F�
51a53d551be2e1872620790737f76e64debc40419b8fd39d769e922deee5e6cf.M�F�
5259da8d02da50b7fa77e6a85337bd5b220b5a2f13fdffdf6bf2245e630017c8RM�F�
533e33c4dc57038b0d5c6ee8639e010a745908371d1295b11c0afcfbabbf8231�M�F�
53cf10100297e3ee9624975cc473fc78d64bd6ad2a0106e1e5fd695e76c2ce9c�M�F�
545b84aca9e92f936ab9998e50b8f869519ed25a9b0ab3b228ca86046f34160e�M�F�
54b72bac2daf97a8d1ba79e4288be55712b5b35027f2df547f3e0af93bd9b6a5�M�F�
555f9e2c01c86b0dd1946344981074918e29ef0848b6ac14772ed9fef57c2115�M�F�
55ad97e23070c92807ae6019da970533404496ea9c55b2581bb34f2be3b54cd0�M�F�
564ac561fd3290312c3e833edb5ea883a24d202539893cdb0482247a743750b5�M�F�
56ca48ac0b31c1895271b0c78a7c6fd5045f217634b908660f5d61925af71252�M�F�
573a2c4f5486b06a893fb7f1e7a97a45c7fe7c28b4314f367ca8116a785809babM�F�
5800fe1251af68096a15f87c737c6bb60eea189076391a14cee6c95f32fdb304ZM�F�
58bf74631393f9fcc43410a3e2bed3cad154da2aa6ea87017696651917d10727B

ee��:��V��+r�F�
51af7b29f1554b6ee4cfc1be4f18e91dcb17d8795d87ad960cb26d3fe381cc64�F�
51baa210ba3ca7c7a874db3fb24682d5b524662f17895952c53f472c0c1d4c45CF�
51bd5d48aea076879005b6bb6ecd6f14aa7212f61f98a0ad49b0b9379badb17a+F�
51c06da7ce2ef116cd43474b64056e939ccb0ae0e6198dd907ee842fdc5005b9GF�
51c0c235f8ee720c1949dd34f66d66bf7f5b50fe1c37d366fe724ce644b3bee5�F�
51eac9ff71e53c4175eb210efa8bffca4476cc9cd86104293d1ca7f714062a4e�F�
51f9017134f88118879ffbdb248450e3b3d9099bcd70dd6c20b9044df41ebaad
#F�
51fbacc2e26050a7772549f1fe16c46bd8063ea187825ad89b237c34fa9b4250�F�
51fbcbb6ee3318561a41b9335488c8645ebf76f62edb08fa951189b31ce14afd�F�
523d10d80eca952ef1884acfb524e844fed7f5ba15040c03fb8bfd7e54beaed3
�F�
524031feb4b382103cd67a6e7a15219524577b7af9ecf3f8b7e5ca443bb043aa)F�
52427e37a69f9019c71338e82cb47b4093f49f6cbe7aaf6c7472b6ece216b3bd	OF�
524cdd869b6f342223fb2289ff3e3ebaa8408bf57bbd257d0349efe0946b9dbd�

ff��;��V��+r�F�
5264ebb9f634f3266ba74ef377d0db45c52877826efb225687b1430a60c824fb�F�
5268af6fbc32bf7411d9d0df3379c86428de9b0d25cbcbd8a6f1703caac79829~F�
5272882f683e83a910d603b0d6b4d2bb3031f9b793b125f6df3208740a29d2adRF�
5272f52e8e18d2702e48f4c1ff860fc6d052acf1543d9556f54efa55bbe31535�F�
527d093e43a30a0f0ec3101a8926eeba2b14e4496c495e70a1d5a3ceca45adbd�F�
528d0642b5b6549b3084ad519bbeef6aa4048aa69d52903acce6a22132ac9303	�E�
528e29a03538329527c3f4082c917cb49d0bf14f6f4b401f793a6ea83f3413952F�
529b379f29069f8d8015829e0ce51b950cdfd5764b3d2de634462f2f45957b29�F�
52d1677bb4b0b6cf9d2e5dcd4c9cb2e58dee114d048654302dd20d27a8d31ece�F�
52e08c5707423c423c562574e04e5f1da46c6b67f3ef38f30e4725f991a49a12�F�
52f37df997426edd5eb1185b3069bb6f0cbf59be802e98607beb40e5a32434f3�F�
52fc84afa30b500c79c2116a67a199c3eba6bbed1b7b171fc4fec483dc2c9f4c	�F�
530c5e0227cf705a60da80a809db414020ef88b26923ed6828fe285d4f1b5e18b

gg��<��X��,r�F�
5343570a081f4c1fbce42a13f928cc48ab03be8c1c68a418094e37927e1b78d5VF�
53452ad31f9655e8f71a0b4c49b118b9337855433c50f25a9f5a75b92ebb8a8a	kF�
534afd073131ca7dea6b8cf23565728f280489bcc5783d53e1fc4f3e92bef942�F�
53566f9e1bd64ce95963cf88dab607767e896835057ff6634b9a8518b3310365�F�
53777bef4b884ec988d12664f72eaadc76fa2b24890080c6649e74f9c9769d94�F�
53785b577694f90da1cd6542ee6cd7b90b33ac6f11db3ae5b38c3a417ea82085�F�
537d165748ea34474b3c9f20b83e298df8f9c60a97f43737c751dec828963330NF�
537f6ca06c1c64b8b443ddea71e5ed3c2e491cdc767579a7e3a42473aced25b0�F�
5380ad090ba99c100379b2fc1cf54a62f85cdfe390b04b6e5e0fe4c213aa4661_E�
53bef7d8f496ce93d095af2f28cf9ea690f7d61117266073c87080d1457a56e3E�
53cb4b1814b006d5822769285fafe984c2312ad59f2a1efd65a648bf4d1f6df1fF�
53cc61153b028eb77eee99eb4b318593a92007ff036a6f6a823411e1ac986690
$F�
53ce8c9651b597aaf7b719c2d54b58fe264c394bd216587abb5e3c9981502c35�

ee��:��V��+r�F�
53d8438b425a4358f4349cb5b43de3ceb51d10df527995c1c37a7d1598e8e8eeF�
53dc295cff436bce362e2f1ff515b0cf2e97a55b54554ce10fcc04a18e480028F�
53dc9de016bb6fc2c1a005c20044580f8d5de2f99f77df7527b054e08cb02e1e>F�
53dcd4410dcf2e10fbcb28e2ca530d42ca4402dc531e3e719f798111531560f9LF�
53ebea1b387c7333eb49334b5bf8e867d5307742f502d7d40091abe8eb42387b
[F�
53f19e6a64582f844301bdf853863da54891f234bc44dc77426164612697903d�F�
53f42f617e8184218d75676860dfcd10bd810905d61d6d241b88ff372c208b42�F�
540ad2675ab792c4e347811b9c59c9dfa46be5932ed582b6b0748c7a27660973
{F�
54284e0ce96588259af1165cabdb431f59b260e11eaa00817d54fe6be8d00a8chF�
542aab85e68ca0ec1ae3084cd0af6195d78adc16d93c4be11b237a264eedb1bcLF�
542eec90efcf10ac7a2c505eed834595826e5ac255df60ccfed65594368d644c*F�
5435c138b53b3d77c61b682fd1142b6ebad9946a7aafbb1f722f6f9a4896a265}F�
544b35d1b0c600d66cc166c5f116fe849ac376a65105997c84d89296afb22861�

ff��;��V��+r�F�
5463798db8055d74e5cb4403c06751d747572157fa2188e01c3f8cb37e714148�F�
5471f87193fdfe4646e6c6f388c9c498da8ede8ccdcade0353ee7503e8299e9c\F�
5473bf46793bafa1cf84c7ae24ecb341d287d12494cbea04a1fd46c81fd5c2c8^F�
5475ede3cff8776a20cbf47c4b3c85074267733ee7b25756385442d60aa680c8
�E�
54773bd4792a30ed2a90d50d65778c4d34f672bedec6da03981162ca13109417KF�
547b0510681fd163f611bd36836750eb87f43894c5f7c7b2578765bbcce090bd0F�
547e7d5fe595fcb6ed9634585475a0cdf56327add42e4ccd74358d8c4a27b140KF�
548503fcc3f2803339a5af3de411713359e79ca6ca3db7aa4c0e221102c86c86�F�
54904b5dad92e58cb221e767835398cc72621bab301b2d3964a854595d9e6d60�F�
5490d928d2dc55d285caa5eaf9606be884605bf43d81604819679bc307219d29lF�
5496c1582c68c5314603d320dbb44e5435532564f1a4c6068e8040f2767a1797]F�
549ed9d000ddff74758b2c4266ac73c915179f78808cb685c1812d5cbe4d3c36F�
54ab243faa67657b5614c4deb2cdc3ed777723a654a2faa316fcbea81f89ea3a�

ee��:��V��+r�F�
54bf6ecd682245bc83076c67fa21c5c7db62c883a50972dc40dbfeda8a121125�F�
54c6e6aa53fe175c25dc35fe3f6476d9b195d85a4fc5e64d5625d1731cc5b1ceF�
54ccdc7cf35a5a397da2776db1e3698403ddd8b7aaa89e9bd1156f4f0b376933
qF�
54d67315041544440edcdc1a784b786f749cce152edd23d3ed953826b64a5b3bLF�
551d2065c265d1e53d4bec46b49874d3aff2ccc0e5b50f98b64fb49c31c77700MF�
552aefa94572e48c27a350e1ef2936db101b0d78eba2ef8d8369a651e1bbd1df�F�
552d8f1a349abd352ed882be0cfbe9423589f98f6621627e58afa84d6c83599d�F�
5530c892f1f2952996a03043005582fd05142b2402c3d3ba2d871149e6f6b902�F�
553cb086c6ccc5df943b00d1342272a201f6f00d3833176eb02708135da3101e;F�
5544075a70cc259a73eb5555c11efef72bbad8385da2d376a511efce351ff5df
]F�
55556c4993ccacf2204ccfa733c8e105f1bc1cd4accc50b36960aa8c6a339aea
uF�
555b9b32b3933d547da1546861b8ba783cebcece9d878cb604bcea85de993e1e�F�
555f6ee454fa312fb09d6fafbe3c2aa2f876b4599c73856eff9aa4d9f1b2f06cb

ee��:��V��+r�F�
5562431c48cab67aa1da614c3d19c3f6becfbc386d29c7133f40bcd4ec21c3dc�F�
556772de85dcdb8d7bf429e3cca280e03ffdcdd1ee99bff14fef8b64b6c102a5IF�
5573691deaca712e1478b3d889fe322be138680d8955a04b75e3a0066e099ca2
F�
5578da34b6bdd59f584a7e2baf29876c99b00d2684ede1967f37ca2d95b787a3;F�
557caeee2f6ed8008504fde4f489a621524ac25488986c4d163e7ea8b153e0c3�F�
557d4fb63564285a746012864ee4fa67be9d0f1756df5771b7f9380de46393c5vF�
558dc0f83e3862c9b965afa5b391a230262f95f6a63563d97c9110ca4deccd16`F�
55921bf220651db8e53c670393336486760efc2eb102ac7de7bc83f6731698f6�F�
5597c86554e7f88c701acbd24766aa87c93c449673c10e38cbd74b8bbf5e84fa�F�
559d3f3c580f94eb5e25df5db277b1e4076d0d1911bd304941680178b21d9e5f�F�
55a15d25343aa48f6f67cbbb7365207f4430960b97fe22eea6521df9ef5f6e1eF�
55a90d093b44adee52d01531fa0e512335d53d71c5d5b988d4bc903982900cd6�F�
55a9b8612201e7db7b7823d8075e79401bb12973850ce1975a877189671c59f7i

ee��:��V��+r�F�
55b8fbe53a3211935d82bafb555f9585fbe02d4aad743ea7bfe9b68c31fff322�F�
55baaa197af05067cb206423655392e7b0a52e3ee9144a1fde30de40eb599d5a1F�
55be553fdb6b711c94e1f41369abf744fab2d8d3938dc7af09ee75d2249c22d5�F�
55c1b8836656a45aac1437e8175add10dff725b5c7b26b850730b4562282349cF�
55db8fa1e758d5038aa9f74ed8982f1b73505b989a9643ef81f8b704f975fb8cBF�
55e13fc8624f8a63b785b5194281c38a4670f03113b0ff2b8fc1df1ca473e1e8�F�
55e1830d8be44d9b010552a3d903913d14a27e26eafcd4cfb45fd3106ce59c32�F�
55f08ad739819e709de85f5c4527291e0f16eaae36d650b0616bbe2b34dda6cdzF�
562577dc40b07d4f6bfc5f0a837b2a0772968b369b1e30f1b6c11338772ecc1a�F�
562d2ea97d59915b01db3a45495b50c8986b34604a13ff652057a9548b0b8c30�F�
56345477656cfcf05709f7ed9a7e36814bd7eda39a49f2d5fc436d774aef8e06hF�
563fbcd370477439a58af9940298f2c82a2b3a37e487abffaa7f2cc6dc359b31	�F�
5640bc5d7f5bdc1cba31958835239b6e304ee9faabd531c630f74e9e6867e32b'

ee��:��V��+r�F�
564e997b9c790bd2ccb1bc895a8ace373c5af426e771063ebc24eb3ac892b979aF�
564f2d36422f90238f6c163afa40b0bd03b7f8ed4505e447cc0161f41b6507d5	F�
565a99b9e94164785e21e6c316bc072e35df5c03df3267601461e2b96157b0f9IF�
566646f7e600ab8480640215904fa6db201c8d068ab3d6f8b7e348bf1ad1fd34�F�
56771785cffde9bcf2a1b33447024e6a12a3805c64a69be7e940a45fda1e2824�F�
56773da33ba948469db1f7ab9d9bc267d2e29b3458b2d1376573c09525ad4581
�F�
569c3afb20ee7aa02a316df5870c65b53bb314376059e9e761ab3e81622b3891$F�
569c75b83fb8869babbff7da458924e4ef2a3cceabd9c1e5b1274d1d95ca521cF�
56a814e3eeaf048c77ba188904c435aeaea3d62cc3a5cb3e815e9921e1d60166�F�
56b0e8da36b334813521cd572d937eb75a589047d4c9a956b630d239792bf4e6�F�
56b6f928a45667b9da2599adf7728717580afc5e3ce24bbe5dfa41d4e9881447�F�
56bf7e797eed9d37f2dce5d87422a5e569612928a7a5e9eebbca059550ad9245F�
56c9932aa2318a64e391b3f64c794e77737aeacd923b2b7d8e02b450cd58abd2
|

ff��;��W��+r�F�
56cdf3051f5fd87ff809ab1843192abe235c6093bc0a83213f73bb7ebe2a0f2aF�
56e522d6f6a849ac7522778022a72719f7d1b252990db7cf3bed6b06f753b096=F�
56ec7e50303f9b981bec76c83f17fd6d6eaafaf4b44ba798d7dd4592b9c6663d�F�
56f07c39bdea546bc3f3eb930711eb7562fbf0cd8fbcbd9f5e3f7fae8dbf2013�F�
56f09419cecb436d408500ec34950196ee1969ca1d67a1140bc4453bdc7db16d�F�
56f9a2f564549616cc842c446f06bff9820333e8cf00b5f21132bfd6597f6be2EF�
56fdfe56e71473fc17bdd4e12e6ff4713e56fd02c7595517593f0cabc98308f9�F�
57060ad1d840d5c5b714fe83a3d14486758cf9d186bea54eeb40b00a53427f02
�F�
570aef75009a72d1f785eeeb0cf1e9b1c5113c73c46a3a7c2eebe0f87a44655btE�
572d9ccefce27e99905ba8c221c2216b7ba572949a397e457aeaf3e65ce8b4e4RF�
572ff1fa3f621ad26e4183404533f0d373eee24c0a12955ab2ab39ca102d691e	�F�
5732a4798be4c87badb456e95d85a69fdcc47d79f536cdf10bf8bfe8ac5353ab3F�
5734c3f66c0d576c4dd6f560daf55c682f147e046ce312efb7cf7c0428164ede�

ee��:��V��+r�F�
573cc1166190452dbe3b43b1be7bef29a1ffa0ed9f8dbfd29b063674c60834d3�F�
57519dda2c881614316fc810027c0c66b31bab6e5e16dcd0d91cf84b6d63fc3a
fF�
575a71de43d9ee448ec1678d6e6396b7c3cc5de05454e3681e5a3f900c5dc4bc#F�
575e728d855d72fba88b860be7518db2c8fa0dc1add9046074dd5d320e1156bb�F�
576b6cc00210001f9cced4b7f0a9cce611a7ec4e4294bb24f514f685685d994d
F�
577c5f15aa7fe917fc8073ef1e9b96c46ff667b05714023b580aa56ba79395cb�F�
577ce44c27214c84f76d58a38be32a4a5f165af65c0e77afa334270e98b8008d�F�
5784610bb7a7b03cfd4ed995bd2f9d4785cdbc6dd40713274e6f1ae158558f20�F�
5789e9eefcb8257802229f6c4a0c33ffeebca3524e72f87f7094d6126e171b3f�F�
57975bf3b85630da395b3a5f46aa15caed57803b4508f1391c84aeb4ba95541a9F�
579a8660d11a9685cd885b48ee54281757a07a1f578e4d25da3e9a0fe38a378d�F�
57cd2f70db38f1fa93cd1038f8b78c691635c9ffc591f01d4c77aef6482048e5�F�
57e3a74cb68c72426ee6a022b286950bbc4ac0c0a450be5d5e07d0a0ac91fcc0

ee��:��V��+r�F�
580edd83e305e9b58fb0cceca959a21a8c59ccd3bc075f075211019108f73863F�
580eedc42430dabee13298aaafa5f6d0828a7c8ee03e48cc34e248044b273c98F�
5830fa7abe16fd9ef562c14318f17462eb9ebe4e2473b4b94827dab6efc8cb5b6F�
5858767f54c2120e5d407542c3960c0bcdbe0ac20b7db144d540566f95fa03eeF�
586962e501bdd67c2893b8019c9cdcd07d6767b123c3fe8e93e64e94439c832b�F�
587553122ef589c1cf5063202b40fd092f24f3f9b50a3d38f3deb36d00ed7d2c|F�
58790e773666a310f1c4417f46de1fb127437bce225ed0d9cbf6b4a08054ae98�F�
587d17ef9061cf41b72bf1d3a0c8b1ef5bd5fd3f8fcb45fcc0b4af9023587f45mF�
589706b3e3179980b4ac5c2328bf6ff3d88a995174ce4fa64d0ad480965e67c2rF�
589b285340071ac5a04d6fc61453fbc9ef5c7d6c4d24c934c944d51787ae5966"F�
58a27b52c09a126948ce6287661318459d3416d0cd51071d3b438cd6b8b6f5easF�
58a5f6025a63f07b9dc9793ec13c58029a3502315d1bb29d4c7015091c9e8dbe�F�
58b23e3f8226650315902eba6ab9e2d2a81f816aa85d12cebf74af56a8504c16�

ee��:��V��+r�F�
58d55e76b88d088f5d397d7b1d908c6ffc3f06ec1ee82d97c1383fb167104aab�F�
58d8a7b6d0fdb9777df76fd29a92c1c249ab8fe602e217d454e4b89dd8a82452'F�
58dcbc8296bbbf5a241618ee45e73e4be9870a429bfea9339cb245b68523f7ab�F�
58dd6ecca9f9c38c402d46c56efacaf2a8739de21c64f22dfb3f9887f2de6c94�F�
58e972759347ee479f41461c94e8a34221731d3f5e4a517f3472362a853548e8�F�
58f0137ac65f40eaa3ff281ba91bb68d78f71041a8ab7a9d08578d3ba06cc792?F�
58f7cbee25a91080d46dc3966e5de2b34323527c46cc8b78385b95e36bfd5b1f{F�
58f957357894f41ea8dce27b4768e570d26ebe184ba29202236806ebd3286af2�F�
58fb7f4dacffd07cdbe657ec86f4af0d40760828a968dd894a92ea0fc7028255�F�
591c8ad60cbb62f0c95441ec820072142ae5392cedd248fc81f71eb1d8a699fbF�
59270b3d96c02888cb8fd34bca5e596de497c24051804658439170f2d9e36fdawF�
592f30134c5a086d2102c5e64047ef6d7c337e0cc5d5350cc6f763992cdde4a1
�F�
59316b28cf9e6cac60f1962177c09c08777c01cdecf6df02042c2f6d1ec3b15e�

ee��:��V��+r�F�
593add2cc79905baeb70c882cdcad64327b85acb067b1c40ed26d9b81428f98f�F�
593df90370183706f3bc69451b1aa4c6cd88b0a4d1d3964bc1b8e621b3d67d97|F�
5941cfa3708aa1d7eae457e8f0abc55a55d5a84eadb56473770f0a82215aa495�F�
594bfd4b3bb5ccb47a34df5c0220769ae40a50c53152652adbcf1803d747d0f3�F�
594dfccfe823bf2e7b0b092a49e9599e40606708a101de2e67c467258d6fd21e�F�
59502bb5d4a7b0894afa700c66752b3529c815f645f28c3b1c2b321d7ddd2629
�F�
5950600c8fad63a2225e6de0a7ee94e2ae7e8d5131aa6b799923c80580f5f7d5YF�
596130fb4480b497134f1ceee905500a7718c15559963c2786a784a511011077TF�
596e62671849cfd110b4ac4c57b171fec5bb07301be496f20b9b86d591947ebe�F�
597a98034f38019a6ec047dd5674188fbb428a55fadfca294b210b303125fa02>F�
5989f8701c6fe912d154675a3f7ad276f5dccc5afc8ccce28405408ee673c16clF�
598f5c1de287046f5cbd57cfaf3cc1d9daa8acbbcfe94363eda1070339b435a8�F�
598ff4789a5b089a81ead99e67555f293c41e08b2771cb5d1eb4868f669d0894�
1M�1|�]��>��j�M�F�
59a052cd2596a592fc02e8e794d976aa238ae34da00d247445d0f51bb9e87bccM�F�
5a42bda7621305ca3bcd588a0c84aac743aba372ea8ee558945564b62173e3f3�M�F�
5acff1ca859e33437e5bba88b3f8e1335360828b81bf51c413327aa84347242d
M�F�
5b93e870e57b80682109021a45ee40d59a50ca460b054a2fdff648fe118c7ec0DM�F�
5c04fbcd46e3e025d84e9e8ddf45f002a83926d8117b74d5e0012aa43c934978M�F�
5c6e935d06978bc962ba371367424881edecc7735e2833f96a64554589179077:M�F�
5ce2a0af968d496cf93f82d5106b30e2f55b8df48349636d27dfb49c14f8905b:M�F�
5d59acc61e4c24682f9a5b9b41b1c5f8974de87c4a1fb4e029e9131a51888c38
�M�F�
5df62ba637b7f77964da2d97a25f63cdec28f90a8dfa76b05a4080f7aa03b3a2�M�F�
5ea1964ea7cdad4c1675afa57a96c5cca4a574eb022294b1d38ddcc08e6c6b3d�M�F�
5f4ca284587783143968fcdf3917477a4d6a68b7e9106aa1c96b92591e63a261)M�F�
5fe799d217f2dcf27b8e40b81b8417542ff242f26f79a7436f2f1834b7ed2461M�F�
6085603dfc592d80718a8fb07a369da5c47fe019535a490c02e8e0eeac89b9c2�

ee��:��V��+r�F�
59b2eac344b965618bc03745e27bb5c92278b9fa7c3a6327c3f89fdda6289a54F�
59c284ae5662792cf83c5c6b3c1f1a903d45dae94e28667259f016a7aec17a9f�F�
59c66abe57e107fb07bfa33cca0326a2a7dfae6183e42d0d806de55598f76776LF�
59f3e6ecf2f05648af5bd7cf1479e1cb010929f1310143f5e007725c4773c36c�F�
5a07757ffcab76dc74eef1e1537c4ea823f723bae2c05ab1dd29679d95478db1}F�
5a07e58d6cda56dbd47d3a94fc14aba56df74cd39ba554ead4b6dee97ef05e5b�F�
5a103d4f3b121195638cf61cb91fbc034b9c2a6deee845296612dfb590ef0859	F�
5a11f15beb55665259230a77f5624af4b896062e2a61b610d31d355500431f88�F�
5a169173d476ff530595d0ae6b03d7f7fba5bf999d95a008a477896efb71218d4F�
5a1a14cf6500d688cfc898ef4ad3cdca51ca829da10e098f412a9a7c63ce86a6�F�
5a34d2e48c7b78b23d4ae6c9697fa3094d3e9bc3dfdb7d09f1670206a32b7e46�F�
5a4016edab2fb96b11729042f640f939d31bdd1eea435240f269d9ece5ab72d1�F�
5a404e4d0261a2aa45188a169969665640124c8587bfaff7eaa4706a5f16727d�

ee��:��V��+r�F�
5a559d47a300848514e0aa63937e0ec7ba4d9c80c12f1947a494d7511dac89dc�F�
5a64f67b760664231aa056ce36899a472656f882e163cec3ee2c913fe4b34140NF�
5a66d5d5dc478ed425ac3150ca54707625780a2e26284391fb1ebfb7924f88e9�F�
5a74a6ec4e7d6d8944913ada4270edb09c6f3b75a0b4caba77d076c07bc64964FF�
5a75bd391a4b8675246d8051d4d1a0e28e7ba932456d922c9e6dfe78320bf4dd�F�
5a78d8d35284262a7fc70c262cad28716a7f9f4557e122fef43cf18904efeec0�F�
5a7cdc99b9d090c26ee5c769f9c02bcc2598cf3c5ebb4b9e0d041e33a5f8334ciF�
5a7f183ea8444e1f7ef2ca3b7c8339565f6b19fb23f0968b9b3171b2d50a64dd�F�
5a97b7da594519145c772a191ec16781f3e65f7befa1cb1697ae9bae09c6be3e�F�
5aa6c18760291c5e22fa5fd2f7960f92c9547071b62e9766ae30bbe111f5e714.F�
5ab1da2e283d1df09cccde7a8681441b9f5b20a027b34d367ff19dda331235d5.F�
5ab6cab7d848d0f73216a7e9da6f5e67da62be1a0f2777afc4314eabbcd350fd�F�
5acc0609a41df6553c86c09d5b59189c6442930ac603ef8674a29954ae4a3fd3�

ee��:��V��+r�F�
5af10f82c939cf1b8c13d3064e3ddfe2de4add71af9db95263ae64050efcaef3�F�
5af6b82a47585513d5a6a8ccc974d524ebc2a67fba642652aa75b566045b004c3F�
5b0b31c3c4aa723f9a677d0ccaea58da6ec37710d6177cb930b490c716240bf8�F�
5b152b26c3cb00751f5faf6a0e5bf8cffab7cb953c9a7a44d5c064beadb2c64b	�F�
5b19e42e03ab5ffdc24e71ec6c71dd0d4c8a557e482b142cb58bd7eaf529174aF�
5b2d852e11af1f062bd27d2ec053f7544ae75e75c9c69a0eba94e287ef60f044�F�
5b66719aa307b84457c7ac3edc58f4b71cc65248e0ef006e5fee0c3e52896b5f�F�
5b68af3481bd9ec99e96979c742095c04ad5a420aca88d0278499ae1949f56d7�F�
5b750b8f5db8f4ebe68335063aeb85fc0c687063ea49ab0c7ba1275baf6245c9
�F�
5b75d2143ffe291c5183924ee30ab08ceb34c6da47f540b55f39025c5123e419	�F�
5b81f0de16b9e09141c5ea31f902a18f54277c2e168b86007146e71b8f29b163%F�
5b8e30bc61877d67eb0781546eda037e3125af2d61226ff947eae46d951dea87�F�
5b90034629bafae7fc40e3688bcd096834f9ce5de48a7f47ccb507c4f1c06c93t

ee��:��V��+r�F�
5b9aa9d2efdec945a27722458f45fc65a0105bf5378594552fe8bc991a4e86e1
�F�
5b9c35a49f05bdae1d6d9ae13688adb2f1aa9eed15604ea80e3126af3ad89c77GF�
5ba93bb7af0fa5612cec66a27e5736fb8c5460ccfc0e32ff2e9e8c97c2587a3f�F�
5bae0cc126abb5ec4f6861872ef8dca8ae25c3d7c3bc9d186d3450e8e5f8cb469F�
5bba5c2f7eb1e8689b410449cc9ad15917af4897477ab8f44972e6e8c0298324
5F�
5bc7e489f2286aea26973b124918a70b6f8f29e9936508ee68e5fa89b453002b�F�
5bc9838767e0c9e764e7008304015cb982d5e4e37860284948034ef17d6c3b41lF�
5bd8a5d4bcf1a29dfa914ba710c6486f4e0c90ef8486e5e85044a7488b9ec75eyF�
5bea05b28dab5f6e5c851855e06049b7d5dcb569c591a728efd7ea42b4a9ac8e	�F�
5bee4fc25b489a427e91f9972dc2c6116c2159fb420fda53da7e793376b51ff1�F�
5bf6acef9988011be2fdcbfe74a0c08dafb93852b5728854c765bf5d29f344b1xF�
5bf6f0344add69eb5397aa58808fbb3f7473db3d8ebc8a33268d40b93fcfe0cc
�F�
5bf7fa347b641deaa5b1dd5752635a5a43ee644e71cca2e924839f74490cf862�

ee��:��V��+r�F�
5c0a4fb7b658b9dca77b858ff98bd534bbc056c94aa438b11b253b1da80720a4�F�
5c0bed31f5ed7d1cccaeb6276746900d9f0fe837b806759153ea696c3b33b423,F�
5c171ad6a96c5f3feec12d0ec56fecf45cb0e8859deeb78966c227cc21a25217F�
5c264476a12da876822ba10518576ea9ba06566847192d58c4642df8ad70f0de�F�
5c3a51f2cd800bc1eb63007add93f02cb14e4acbe93b537fa3fb5d1a05f91cea�F�
5c3bcfc599ddd884790cbf5e2d8043339f4cd5b91ad9595afa0db6b779424c22
pF�
5c3e30fe5f331dff8d929397fe55cd6da4c97325fd1c26f6c51b2567a15414e5JF�
5c3f57ee8f26430a0967dbc9fb3d9d5fc2c5dd13b98177359cedcda6874b3799.F�
5c42cdde11e5b38683d6da4d90fd10c1431b5c27c563bd4b7bdcf251800b7272WF�
5c481b40303686e7be3e1c4fb48c29d0e1c8d41c8eec46b55771c7970af95954>F�
5c48f63f55884ffae342bab8da56b7300ef3a1c678ca2fd3ed60b450b739c9d0xF�
5c57f76aba32a986317ac294945a789bd49f7cd09491d4a66c8c259b336a13db�F�
5c5cbbb79d474d8a08d41a7a9eab16454a6204f748c42ff97d2ca8776ea1fbc8	!

ee��:��V��+r�F�
5c75d507373106773899d8f085ed0c9921518de33190dfac20ba2aa951e5b2c2
&F�
5c8c85c382c8ac22f1c5330ee708bcb6604c6ac08bd86bb0cecc265c1123d786
iF�
5ca0ccb7e4af7c807c1f99c10409892524195addd4cfc1d830e5cc351643409f�F�
5ca34c751582faa8c936ab6598cc2492a6b1853a7b3f019060e590b86e7b9ee3�F�
5ca5234e59243cc5ced75e11bc9ad434a82d86c5fa5eab71a130bd3c3ae49334�F�
5ca852164720791fe6e270a360e14b479b57e0fa1f71c93c1e582a9179353c61$F�
5cadd6d1e44a896802e1df30ac84a484345f572bfaaa938544b43458dc6d80bd�F�
5cbb74a2688de09192fd42f0956329cbe2c77efa2ec5ed4d5dd90ffcdd07f898�F�
5cbbd37d7f37600583b60a26e2cd6b0287db9cbef15816447152aa601ab00a32�F�
5cc00750206f4e78afabfb9b056e174bae1ac30245373825f150d87b55a7c6ab%F�
5cd33852a9e9061d05228552a9fa6fe6b3b0667fc738828b9df7e633dbe46bd5RF�
5cdd011988bd5f786fd69bb2f85ee35ad72937f71784e3c1b95f7eaad14b4e71
�F�
5cdfe7f1d4c546122d7808d352018750bdf5bdc270398c9f41c3414349e3f861
�

gg��<��W��,s�F�
5ceaceb75d9c3e12ea45d4a97b594b8085dcedb0037193817a44a30fe9ff98ad?F�
5ced3b05c339804924a538a2b874f1a95cbe14eb2973fd4bdd808a14f095fb07�F�
5cf5d9d1af4c78ca14d14daa45c998d5f75484a3ab878d4a4e8caae845ff0c1dNF�
5cf93be19fa91922ddc7ba9806b15e6fe9b422f89ed4b63465373a0a29b17e95
F�
5d10762096ebcbd7efdc8eecb2d15ca2b35d49c6fbf417a3f85b555ac622eafcJE�
5d1951ec0080791e7902a50f19ea2eab2f07b5ce3efea78f024eb1a197abfb77F�
5d1ce4fa6ac4356078869027bcaf729140f2ad908b655471ba65eb396ac94887�F�
5d2375f20cc25e073efba76f4aeff505ebc4d30019f64ff6c16696cf30c075d2�F�
5d260748ee7254fcf65c3e3312e541e2f9883d21279926f45ee85ad44eb5b4e7aF�
5d32bb64c9e38540fbd1eacb34c8a893d190ec02b8c21d9b8c07c84d9afbeea0cF�
5d35f8e8e692daf8ad4f89ccba227841148704f4f1a52d100f8d5555f6e2c562�F�
5d4abbc89df8da961aa64935f5a986b89626f1f1e99a8728467557a6b761decf�E�
5d56166abb7686fc795b62a2d6600a144699caccdbc3ea53b082d1535c2834b0

ee��:��V��+r�F�
5d5db220e9130b6d2c5d13730c7f90b5554b0201e7fbeb60cfed67b092ebed44�F�
5d5eaf30c36d5edff16d10d59883fcd24b4d915f4f6a332fd0a4498d47a9abe2�F�
5d6009ff10b81ed847436f4edd71eb726209b7ed8b9c98078577cd9ace844de0WF�
5d6548300fb6f193fc969c4a7b833ac0ebc9a04231decb2ff8f853bf5fe358e0�F�
5d7e06887d90404f63aebfadc1d4b6b84280cfe7082d40d0288f3d973a586453F�
5d92d36050c5d7174cd65358882ce23f7eab51af6a02070c42917f77f9dcb3fe�F�
5dbc6a254bc8c77e947deecbb35eecf6dd6724e8271f52c60fabb83775d0653cF�
5dc4485c972bd78d1637297056bbcc819f90e800c1681f449d5ab226d2b8772bLF�
5dd078d9c34f67aacb48cc5f22103833d14b4bfa4bc86f6a4d5ba09de9cdbdcb�F�
5dd24758d5e830a0fbbb424ad112abfec1537db1194a06f3d33d97dbc8be9831�F�
5dd9606b0cc78d1b1b9d016a6fa1467882e158f9ff00e4781a33715ab0889212F�
5df1a4e83ab5135939c23e1037e6d05b3b83a60b3b4a06fb6e85e91959657cbdpF�
5df1c4a4149790ce8d3fed738d0a047014ad764f90ad0dcf2d4fb022afde1ac4

ee��:��V��+r�F�
5dfc9505dc8c10ee2fa6b344d1a86a8ea57d43b15353225888d1f9888a840220dF�
5dfcf8baeded2f96a2597b878a1006d7eb03d4d61927a000e1528dd9008b0671[F�
5e128b028063e43ec93a59c4107b46344a43bc260f99578b7c4a2b788885cc7e7F�
5e130e7019c26fc26493cc8b1c227f57d4451afda99fda03e0dac4bd46628980�F�
5e35c68daaac093d3beb1bdd57551b4b11d68962192494ead3ec78504bd924e9F�
5e632ae289a07749557d914455977eb18c0451d2f3b06c6f4482d91ce046ec68�F�
5e65bcb053440eb744a0b29be0f36cc5c82a7fab303e26ad6ee2a714bfd4651c�F�
5e7c13e7ca9ceba3ee4769206f16397f62fe367684d347573b551f0ff2c8fd6d
�F�
5e7f113d0a50e93468c406b83d0079441feedc8fdc94a3867761526c5cf7b4ad�F�
5e7fbcbc653f613c746c3e1bb2b62d8fcc19ac0cf1d92487882d5541de4284c0F�
5e8f26bf2d3c10f7ca2d8567b9777801f602ea250b6d32ea056853058490c39c�F�
5e9fa6a9c3dc6c925f58ce3d112f48e8d7a89835f56c85fdfa648a880246ebccF�
5ea154c824570a42b00ec0dd66ecba1eb3ba53a7d8875b374a32bfc093aea76f�

ee��:��V��+r�F�
5ea661034ba07766b55a6d64aeefb1af0d3e0e6608e4f50fca341a03abf1f701
F�
5eaba3f50062813592c389ebb343e248af7f03caee550d7cab3599bd3e6847d4
�F�
5ec01f00815a52d61439e813a4a0958fc52c9c59500edb2e2fabac3c7fe068c8F�
5ec120d1c66453ab1a85e5107b0b4457686f595cf2e8dfc5ca04adcec4f0ade0	�F�
5ec49c65245b5b4768c2ac475d313f22f92daa8114cbfc555c7189d5844f7b24nF�
5ecc9b46e51b23acaedd89900ee220b11e9dfca92b98fe38fe0234b8ff1221424F�
5ee8683f8c93ce6cd407d16531478f99660fed0dd9f582ce317a1aeb518e6484
�F�
5eee4ed6f4cdcbe1b9de452b76bc924f965eab492a06b0b7f5bb0bbb156d824fbF�
5ef15604ff8baa8611a443eb38e948c0561633200d60d93d6ec70aafe375876e�F�
5ef7809b46025089f784a5c5eef97c5cb1c0ae4576bd7a05f04c657f2231d054�F�
5effb3b9f9c3b2e58564ce52ef1e7d855cc8030a6d8903d0d257eb9a2f166a73"F�
5f044c5e59d547e3073ad6d5da425845c091f6e24a072716c7f61b3ecc5688b6�F�
5f3727aea86f6f83c8535492e9334015510770ed19b3f3a98ab88000dfa6b9e6�

ff��;��W��+r�F�
5f5b887dfc9f6ab8986542411f965a160cefec2bd50e34635046cb950eb7d93d�F�
5f5c399567e8888b62c997c08412e019f0c5ddf8dd28c78cfa0128928dcd853e)F�
5f692d98607238270b572db3bdedd64d8b9eb468b0cc08cead1d6b23aae63718SF�
5f7b92aac28013990bf6ff5dfda904b49259d332381f6fd3a71b635df396f7e1-F�
5f7f4b24a0e71345d5407d27b3ec2dba93f549f3873d99c73c1a6b6d5527120bCF�
5f884150b5350047089be49bfa331fcf0d8fbd783b21c01062b4f7a03626feca0F�
5f9ffa10d0718dbd468c695dee255d77d9ba1a9b0d1b7e44a156806dcdca67a1
yE�
5fa6b764fa4d36de1e4b14029d52584b86f65e0020290798aecbd853fb5b4ab5OF�
5fb4e74677604f4bdb11376b47ccc1642147df00b0cd8d54f349ffc0749a8bf7rF�
5fb69356881606ecd95f99c9d00d35c86e20c4e0489e6983a59445f286cf8d70eF�
5fbc333de175a0adcac5bba533d0d772ecd8d8c92ec3a872c294bc9c25c7dae2CF�
5fbeceddf0bf8f98be4ae1abfe85a15497949baa0f03eb2097d8bd245122c6ca5F�
5fe18b0b420aaf810ed5edcf1e1fd4fa93b6639632315bdd9348ecd11d6dac60�

ee��:��V��+r�F�
5ff60c9fc8d59e0004f0a615c0b3b023014fe0ba062442fdf0449dd359e754b9
_F�
600d4f94f14cc026544d704f5a8190f1e11d4020dcff350bfca31fef4c037731ZF�
601f376aa7ef59f60e13ba11f0a9a7286b883a945173b5b829fe2e939b6b3d1e+F�
602cbf2e2644ca8e5ce215838f087adf2ca12992b3040f73b33fa5d3c4c91610�F�
6032cf77d642b54e8e24ecb96c2f6ffad12f9b165c3bfdeefdcdb469f79f5f25�F�
6043225f18090a8529ea90341ff21d58fd2e2a85ee1c31af68145a7c070803c4�F�
604d0dced14a23f9e7eefa1abb0d32242d50b5ad9b6bc699114284e55ffc288f�F�
6055927e846079a3ce12f1dd26324dd574b3c9ee5586ac850d83353548a1f68cnF�
60601627ced255e03b49d78f605f8c7726747b2eb27ab5531b5296d0afd1b2cezF�
60639db656637bac71a8495c83b9cc351c89b200e836ed3343dfa6bca29e3956�F�
60647855ba6fb280673a3654ce82ab9610ce8bcdca3ea825ad3ea4023b200fdcAF�
606cd78f5ca90a81ab3e934fbd5a9355ef4e5232694e0583575fe2c6144e00da�F�
607a56f5829235f4d97bd2c9135a74f23a25422c6eb8e64ad1a207404f8ce181

ee��:��V��+r�F�
60b33a8a989840613908660e2204def7a4fe9b0d9cbcdf16e46b65bfc1c9bb2c#F�
60c42c4261b381295acac9b8bad53e4d11b07aa44a6886d268acdf68415fb2e3$F�
60e80bc431d4065eaaeb5d133dd160c01f64d7e9543d7cbfdc49c8799a6b079faF�
60e92e4b5eccd578699334e15aeedbd39648619e8c4fcfdafec19e48fe080697�F�
60f10f4641f2dac4d689ad5b1ee25cc224768eadce58b7f0d64c3eecf32b94ff�F�
60f47d3d5a4d59ab230916a44b7ecff881116a21de176de5276bd96e52ac5c3e�F�
610253d61d946788184230adb18227e8e92b245a2c2244a5d929b1b096fe7faa	�F�
61151006ef84f2d4d9a7972cde6323a16d6ef02ce23105493ff8386ffb7d7708�F�
611d2e194ff61bd1597a7136c77b1cf881bf1473268ee08ccf54184adcc4da79F�
6123edb3ca2fb4af89e0aafdcc06a518dc2adf261f69c5208d7e0dcf72996887
'F�
612794ffa4ef73358d2f49bc1d041762afc275c2285eaf7eaee6f5e3c360d415F�
61357d6eb9ca6e939f89412cfa01e3e26beeb6e28a3f90998db4cd5808430a6d�F�
614205bf0041e0a5d32d64bd0743218a5ed52c6dcd8e5880076d87abff2016b2�

ee��:��V��+r�F�
6151436b0cdfffbc9de946bc989ec92ce8de7794357a065c433e0c8dfd3e7fdbjF�
6164453fc73f06d895ca8df581d46682883daa8322bdf6c511c25bd367caea15[F�
6167999a4aa9b0b7fd775e20f7868e663374c2934e84072c1c95adbb617120f3
�F�
61679ab7934366aedce5be340b71089ee0a1460bac5c95cb884fc6059f1bb7a1<F�
61772a9e48d677eb7feb9225da4fdbfa417f99764a26adf0ba4e311baad2696c�F�
617e115047b71db008189f9a914bce3674313e8fcd3e3ce40564fe69f65c44e1�F�
617fff79ce97ec5ee66c7f45cec546ea2429f9ce776263cf40a0b246665913e1
�F�
618179611cd44ba685db172d3afd1dc0248e66533a35b8e46cdf118d812340d30F�
6182e47b9746410469ab21c90f69c924a80ceff0a394abd6a25a441e8d6cc49e�F�
618bc94e003b50654a567449109303c221bd56c7f188de529a8d1ab1d8e20fd8	�F�
61925baba4d4105a8e0a3e4da4f567f21fe8f341492cc4f0d809f774ead1a48b�F�
619978f4cd3319fc56335a010d227ac9446de3fe27758ad4f22319183b1a35bb	�F�
61a1892c950bfc4a208064a4e1d8a4d65876ca4891cc730ee2b045f0f37f7794�
2M�2}�^��?��j�M�F�
61a258f5eb7c2c013c4eeb36791fdc7dc8b813c04b4ae5b0d1a31faa435a58acM�F�
61ec12fb0832b09ad331cdf362aebd011e7d319697b112abc7430ee0ffc4bcdbM�F�
626a2e289d1c398ebfec878eca2a5a697890c2e6865f803db0f2579642b2b421�M�F�
63037d9ff075fdac3127a74533eb74eaba6a3dd7a6b714768f44507fd8962d88;M�F�
63a16686d243cda459362fe273e2bf3e64a84899038415039c265f34388b8257�M�F�
645b31999a5a9633d017660dd3029d098a23145a02bcc776967acb3d0414464c=M�F�
64beb126b2ee27d945966c6e8ed0eb93929053bfca0af0c12db4ed0a2219389c�M�F�
6574b4b68f18c25488f8d81b6428bc0c2d58438c98a5e53c49f813717763e9ecmM�E�
66236b68ae255104741eb03ff98c372f45d1070837fd9f390037488468b9dd1dM�F�
66c291b64d8ff006ef287fd920978e0b901b0947dfa61d8ee3b0f3f76f242480M�F�
67464059f8d9ef6bdaaabcff4bd255af5760b16b8ca9af7c4e194e78ab73d9e9eM�F�
6813b3fd706e79a0721cb26c926c2fdd57aaf1300c3f48cd8573cbf02eb06168�M�F�
6862243c7d4e91bdc68839fc5b50b2fe2d9be11cdc30df983b8506abd9bd00ab�

ee��:��V��+r�F�
61a3387e568e2d46dba9932a1b959d8cdcdc17e7ba5ba6162d1085700bca40bf�F�
61a8eaa6a0f98be8585a74fd7663aa37fdb6f542080f0ee3e6b96844e82564a5AF�
61afac8f37a4ea3ff4615ff2c44e669f884f9d092a45699fc0fd2dcac09465d8uF�
61b97c3a1622caf467be58d602a85f34f16db6320e94c9d471b9ef874ce61982F�
61c74a7c104da9dbf65e04e0cc9a97adda225fc72f10000914e503e0bae407abVF�
61c886355da15df816e8e94fb32990af3d0e4c89549b100c128c54b438924eb7OF�
61ce4b03660d33874c07cc8931ddbfe63af33129c020331fef0850ec847167e3�F�
61cfa80ff521cdee2ca184780c2e8e55454cba77894c18944b233eb145b6c262	�F�
61d16044997c74e9f5ddf1cdc61b0e3f9e8d5e4575baf1378072e0338439530b�F�
61d2fe31693bd543dd103cf15e107e060b04ebfad13d914865e704aef9a7bfbc�F�
61dc6bb4a8a0afa5abfca5dbd6cc89799609dd46cb583de0e51dde496c7b2a305F�
61e6d58d8d1b2b2be1f5bb1731c99cf450b81b29303d4f3e1c8772d9b04d2bbdF�
61eb1f5291daee31b9568e4897e13e2fa0260d850c62490f336ee5f55b31703b1

ee��:��V��+r�F�
61ec99762a4cb0f13335876298ef0c38a6f690949282991213f5505233899d63AF�
61f2ce61f188dc44b4bac40752a37aceb51e5ab3ad31e9832585553728f1153a
�F�
61f3ebaaeea6b7aa7f2cb2e4e49d7030e15a0242954617931c4ca2d74e49c807
�F�
61f9945c76bfd6399739a4cfc42c3e9b350ca70cec8aab0875d6618d3f45cece�F�
61f9f61c18480f59ddd7ef3382cbad48896469ac9da6dcfe2e3ddd8195e737d0�F�
620e6945f7639eacc1508005775c37d66e64ae3f5ec915e87d132a17a45d3999F�
621d13e7c135311f66ed8669c828821fa8da5c7b602afb4066d01bcdddf43bc3�F�
622141e5636c218b10a59ecdbd66106cdad2a25b673f891edc0d4b61ac7965f8�F�
623f1a82453fc1bd44617826a88974cd43fbbb30a2d72e47bd706b0deb895254CF�
6251257e2c5253fdfcba671ae6cb37b06e73d7cd02051442ae5fe2d66a63df83JF�
62597c6811ab1a4372c93868c223a056ac2947a911f6b318ab3df4ead1b06de3_F�
625bcfa68a8612af0baa8859f0b08904bf96f2b85129d8b178500dc33ae0d9b1�F�
6263d570ddf0f6cf0247a3e7266a7aa7caae795462727dbb4d747261bc4aa1be�

ff��;��W��,r�F�
62730a490f70fb743015316019c09c1992ef54947750f054eaaf08ff9a387163BF�
6277ccdddce2fa5ee1ecc12615c107ef3a280e1716b89c5bb60d515fecf84416|F�
627873cfe317368f11a034089c743611ad85c7f5985f6c68ca714c1b0329eec3�F�
6288171549b2c71602c97035ef0f1d087455361c00d42948b460d82d0c0c4387F�
62bf471ba14072212be41f68548e536d8a022b8fffa4c7fdf94b4dc26c4d7d3a�F�
62ccf282c2df0d4b0fb164fedda7d42b0e9be1966f8da03fdcebfb08cf4e5456�F�
62db43a91b2c1f3cd0407729f5c13f51ea098fea0aa9b90e2444d92166d1817d	�F�
62dcb9c05fcad8a7e7f0588dcf5a7500f9fb5e4b2cf0250f64430bd3a95b42f8�F�
62e79c444efc16b710b9f1e149bb3fee5abb2dea036b57e363ce6cc8d48b4c6d�F�
62ee7eed9057a933f386601510a2ee1dbe6cee295c00a4e75c1d5ca32a0e17cd�E�
62f87a828471cada41da0e65515893c663ffb4843c97b49a68ce916292d1f8b2dF�
62f9c2b74b51bf8854ad9eb25a2929d8ce7ccc484972923e91b52d1a2e026a77F�
62fb9bed135072100886d8af661320bffe7159a6a42c55a6edc43a35171437d3'

ee��:��V��+r�F�
6323899c2cf49904753b9b4050225498b3bce1cc5ae2893977e1201c90220e64
F�
6334cfed646e36032d28600310824098963bf8c4a3d59a3dffaafae4184e1d56�F�
6335456bae4a6531a1e5a588c09b5fa47d70ef61f6374951aca147a452b4eb029F�
6337008a1e944b28b17317dcde8003b1ccb848dc5a09a17a27903c4e32e60846+F�
6341f007df657335759aa49bd308613667e9481106e29eff6fe1a74abfc9200a�F�
63558d42575ae3f93c0f05594402264ff08a7344fbea29b0340f75e051de0cf2�F�
637c8c01ec07ac21fcb709f52f870af6526eaa83bd2915683f8a6f983072e500F�
637d3a56cc4d58c44384c03a0e5fd138ce60d2aafd7d584dd7f66e53cbeb3049qF�
6384423635a67bb9f927be241ed3f67b1e101743ff36d4f239fdca3de98d1474�F�
6388020c7ae6967173c10e44d5542309498d0c339891675e68467cdd71ec93bfnF�
6389f5f5c812cb020dd4bcf4dc948be8137ffef92ecbea10a81268530ca43c7b�F�
639a97b21ae7b51141fd76f2777d2f3ea1bd758549e53130764657fafe2daf7aZF�
639be57d983a29004b74a7f3b753de3e62c2aca8e576d15d3d5b4ca2b847507a�

ee��:��V��+r�F�
63a41ccee737a4e9e6d6fb1b86ec39bafd39ebc8819e7fc387fbba943d9840f4F�
63b1ab146204798dae708a4ea6d4d6f395bf1e1c9926c9fa14e4498aa40b071d�F�
63b78d16ff05658c1581a33fcbba6aef6d587165c3310243fa9aef6ae820ac57�F�
63bb7c514d317f810847e161cd7afb196f824e9b410a73c8e0ce05df376c310akF�
63c3055a3e9d4079dcbfedfed3e049509ed10bdc0f3de7959902ff8cfcec5e9frF�
63c82c1e8917281adf931c995b90cce5c368fb95285f2659b691785c1fdd6a86
�F�
63c934de1e5c85819654daeea796881641d8431d74c21df7d4cc109514cacb35�F�
63e5114d5fdf7fa2162781d184e8588d2af92fd268bf72cf0824edd0ad85d504�F�
64083e41574124b62214c724c95ecf69227a63f84cb8ea3c1b91c9e46909d214}F�
641422dc7cee4f12cf22bee612253cc8d91ac4de59d08779329152d5b123cecf�F�
643e8a5dafaf596ced8be2e0be3e3edb692c0c81871c46db2a2541ee4de4aca2<F�
64577751243751eedbe850fc528ea04d250e8a953a86f23a1a44bf84dfdd8e77wF�
6457ba14ffee5554b41e56b32c8a9f8c2873e5ebe04d17cbb12e0e3e6edd3933�

ff��;��V��+r�F�
645ff71bbd0c6801049154ee1c5338517839d23b8146501039a0a919dd696e33	jF�
6461bbe99176941777ad3a8221e32a189aa802b7e481a45accd4ea4f5b8b1377�F�
64701408bd6314de93c364f1b1a6d1f58f607d97f62aed713456040f9a7d6a21�E�
6471268f8ca47b59f93b0c5a8b8bbf5e9a7d6cfb337f2a89a19b76d82ac5bde2+F�
647a613d1c2a1a76e224f9b2858aada971c346c973f46566c503a58ea2958063eF�
648278bb5ec15af8835f0ac633c1ae82e1135e7a6bdc7ff8c3723b9319b41e7dWF�
648913500d3bbad2fc637cb3b8d8bfeafa3a89bbf0fb33504657bab719b25763�F�
6489c51c51e8202231b1a3e24f6328463bbd952da0cbdede7cfd828112422e18;F�
649668855741b2c9edbad09dfdf69374c2011e1b429ea28cf0f6c96a62a14f57�F�
649c2ee77e6ebe7b0ada06b4afab6acc21bb572fecb9b419d681640d40847bf0	F�
64a40a4e60c03c1f3ad8929d3659cd713e7b869eb726d9f8cabf080ed73dfa6b�F�
64a62730fee8363341816507f9171c57a6c6433b7c7418501dbfc6686c446190NF�
64a964dbf122edcb897186c8824b60976d45bd7ddce017d938404771e1396a1e

ee��:��V��+r�F�
64c5a32d35ccc6312c43d89cfee42872bacebecc43ec10e09f90916daedb80daSF�
64c82c743b0aa34d2ad89724607562e8cf196bdaec58dcfd940a8f728ce9c7541F�
64d308b2273fa36c403e5a4ed7c61854903e74760d31d9b214f1bf89fe0393e6#F�
64d39cb55589918f3c7cc7eebfd7ff6020fe1f126e87eb124bd3399e6a321938mF�
64eaa7b016a8e2dfc63c23045a2a81e467d7e0553af8d19b447d9f84265a2b26�F�
64ec5a21e706505bd67ed2ff5da8b90fcfb71ea07550d90a777323f49c8ee5d9�F�
64f15baadb874e4dcc756fc50e0f361c704a78fb0c5c3e1dee25e51bd7bc0347
�F�
650dc5eb73a88b8297704da202b361a3a2367643c25269a9d667ea5803dbc397�F�
650ecdc0d3c0f2d221347461dc47da74b9aeb8041326a30662c310db8452c289fF�
65199e9ea2e12be16d067a95704c987d84ddb573ef4d2dca215c5cd3a28b3b2c�F�
65584369e0052524a4788078e14f671f1ab55c3f0e2f3ea69702c77b5242d309~F�
656525e1205096365c3f08ea7899826e736d536330910a13a0d12adff683e362�F�
656975f5968fdbaba0a643e24529b3b0762ebabec0f92509a22f96017cfcb03e+

ff��;��W��,r�F�
6576a71997c6b88e455bd9405164a03375ea03ef6dfbfc8c070d29e8de1f5324�F�
658486f1d946fc518624c59a2badf6990f524bb7d5d660d1e34420cc78dcfe62xF�
658e256dc2a855fce160722fd0be5cc972233fe8bec6cca01cba74d0e6277a43F�
6597772d1fa9bdcbb982220b4e56bd13fb3a65b1ccdee0a911f8e5af3f58d188YF�
6598e08634815038cb179701fefe7d97564cc4df49d4858c66ac323e5c9c5628F�
659d1840568aaaa0890a8531c9387ac75d19acdb5849da0093220059585ae3c2�F�
65a42ec733799dc8d274d0582c47380210b9ba82d7d6c4e9bb2f2cc9e93e54ae�F�
65b46c58329dcd3a310fbfb4c8b9371639bb59c96629f150e82a7820305f44fb�F�
65cf532a0d956c5b90633a7b13857b7e3092f374d67c465f3126a5fef5cf70ae�F�
65d95beebc4fa859daf899819187c19f9a0f248d4f60b30fed6a324c4ffda665�E�
65debf30e942beaf68eeeebb661030f709a1c53b1981536c005e8dddf29b7da6.F�
6602351182c085c415d4c05b7e325611057898b48cdc1249a54c5106cd0735fdF�
660894a2c18d390472d0f133b53c845c1ecffde9327004870721603cd1f91b48O

ee��:��V��+r�F�
6629074551d9fb3315ab487254009bfbf5ff68dc9d1c73b4aa5c866e5448129ceF�
662a9d17ec8e137ca36a020dc0efbe8ae088dfd2e1dab2436cf4496bf31f3c75(F�
662cd360391f504282c0f422539c52fe0554845bd065148bec2cc7ca32f09fceF�
664e7cfa4c02ab9121f80adbb03b0b47bb258e1ff0c45161da3208d48bf6750a�F�
664ee953022453c5e78fe8b0d4d06dc2c1ec406c0d52a232f631aca0f1032abc�F�
664f64a4a6b87e761d7b0bc0efba577178e77a23ec390ffb222b9caee6c3206awF�
6652fd59e1328ff5e8f2141d6e091685a4e2cb80366a0f729537fb40a17779b8F�
666bdeb5237f9bac4020a4b5da35bdc2b27ec3fe6d28b4e3823d1ad165c013b5xF�
667a197939b4f8fb8e33219958fabfaa7eccce599d0e0a365514b76cb20d2a60�F�
668aa02abd3ff0859bc87b987a759a3a31fbe34f12aac062a8c53a042ea273c7F�
66a4fd1fe3f059fdf718b2b6cfe2780550bd2ecc35fc7e05bfc971d08dda1d24�F�
66aed3864f29912482e74e2a3bb2ea45d7402aa197018dc629d10fcebcd960abF�
66af09f68408482637e668b90619392a27fa21b7d4ed06f3c3cbc60d87ce1d78	�

ee��:��V��+r�F�
66c5f4e48d6872789f81a04ef48fceb67a1705aadd369b0ccff804cb0eefeda9jF�
66c9841543e52d2762a3f03b0bf340fa1bcf22e9038a8ad6659900270e97843a�F�
66cc35a05dd83f4129f6b3bb4f774d59fc607704c381b660b909ab3e3776ab96F�
66d5ac31048d37a6a1e65da7b344292d028e8fbb82d4b9d710ab79080280254c!F�
66fb08b8f23996f9e3c5ff82303886294a5596df60377f29eaf713d40038fe52�F�
66fc4721d3b2689eac33494f18ab2cf85d9ee8d1dd8532c964f11eeff008e9f1IF�
66ff6d3d39c89b89cff9ea3640241dc426267d705caad62f73e5fb5ec36489da F�
670e8233e94a81c11ff801e9565903257b0694462a07b7f8724d3008d060ad94�F�
6725bd1e0d020512b60182f153b95d2f6eebfc10cd5929625a7498254bd56f56�F�
67269c66b7c5a0c291c9f49a9ab7b1185370d1686cb0538cf41f90cbc4853472�F�
672e68e45c4b7fe8fc13c9120dc86f63a7501b0671c31efd1bc7fca754bcce6fF�
672ffef35a04fe32b016bba89b95e6120a868c7d27c5054cb5fed31aca0fca0a�F�
67364ca692de365478eee5a94879717c1fae2b7a4ba46d128ec04f0477c8c2b5
�

ff��;��V��+r�F�
676257fa89a2415e1fed624878b0d5c3f3c334c139f75c44938d08415b9e8b3fuF�
6764ea39a74b1ccba4e77eeb2236358817368cb8f0b3064e3a6fda6da289f363�F�
6765ca1b27d1b3812e3c6442a00515395c3887ebcddeefb849912f45c005c54e�E�
6777f22d398c85f89da0f1efaa40c7fb3d16e1d72eeb8ae99d1e2dc818769d0dF�
677cbb3bd9f4a461b86460be4a5a9ef23ab126d06907725c3ffe789009559936�F�
679e963c7906dde82f6ac27f545036d5c38c79be36b3c643018742f7c21953c3�F�
67a0b1ce4f650123760a584297eade73a87e8a5cd69ee80b0de1e46c6734c7e0�F�
67c66396a0ecb57afd6c3a2f070e239f41c72943e3c3994c64e68c02a4cc1829�F�
67cc5f25f8e6a42f9536eb9dbe7e22e3fab22c55d87d37db23cb90136913067eF�
67ce50ba914619acce9365d0d7d6b3868526ac655a064b3e74819bd54992e79e�F�
67dc839e667e3f5b861596b011039393d6a243f7dfb880c5c787ed72ab1e601f�F�
67dceb0f183dc4e838b1ec1b27236a59cfa08a537707ff6eda2a10c5c9601421	F�
6800883f09c022594a86d5e180d107e71cc758c3f5f307af8b151a36b1f98818D

ff��;��W��,s�F�
6814c1585ec14edaecfb3a1c411a60fa17aa216d2f668964f68de8ee908ba367�F�
6815b9d123a4214f4d4bf68b7d0d6c2ea059a5ed94bf0abe1b157d1e14de7f6c�F�
68163138ff814f89bcf82178fed4293a777a5b62ff3a006bf4f80cc95692ff51�F�
6817bc65309730ab6a1f49ab977c2ea11a9cb5a2f623376008276eeda89f41da	�F�
681f16ea3fafb50e4f8583381026ef08759cc8c327b923cb4b822515b1d02144
ZF�
681f9ded8847701dec6bf5ba7ebdeed4dc1b38b39177a2f1e148695f5ee1b1aa�F�
682b34f9ba65eb2126b3140d6fe7319d11e990cef5a3d74f66b79f00719e6ada�F�
6838d1704d6089791d6b3d53de842f0901465128bc97227e71cbfb2073418234�F�
684af720a124815101b07a8a52109e6312fa2da52e6a2f276a425b50b688b7a4RF�
684dee15b7f2949d1127299fe87e939137acab9c8ab3a3b6ad0e0604573ea8a2
�F�
6856b6c454d9ab38557feb769e9f6ad01dab3cef1e61417d841eb5c243932401�E�
6858631f1ec62fd357122548e9196427a27ee3daeb8bc9decbb2919eedf39730;F�
6858b0825e7c10d48e4a834df4baf94b38ae7f99b036340669e3abf74bdfc689
g

ee��:��V��+r�F�
68765f29d06d31652e80d398846d899e7437a836c1fffeb61248afa76e51b90f�F�
687ed68537f2f9b2bc7c1f4aa45d061f8e36a38d93c1b7144cf2b6e35157001esF�
6889ca4b0900ba23876bca7cf204adce1bfd41a09d82a67b81254773908cb5d0KF�
68ad96ff2728b35a2bfef5e46685a550d379ee6937f9081450a2c2f4c5e5c68c�F�
68b19039b1e53465dc3f08f0e56e24f7e1672b449a51dd05f8ae10ff49416b66F�
68b647f3d90f5828c04a513b4561ba0866363b42452fbf73668418e2faa06983�F�
68c5c1e442cb8c8c7a3e075f4f200477ce6b2f53023da840209a0d79dbb16cac�F�
68c911318f2dcbe594b8475d8adb5d700b385aded343fa7870ca41d70e302681�F�
68cfd2b5e2aa6b9bad7a4040def6ccec2aa6ca31c6acf4758e98b507e8efc105
8F�
68dca12ceecda33b2f945d88f466ab32954ff89b462395ef6346d95a47ea375exF�
68e1429d8531b268902804fdf15f6eb8ffcadc2d36315c6090a3edb14eb2ab13�F�
68ee3d48388315e955a81bc549710f8201b486ea8413b2e63a516ea8d40e5534NF�
68fdae357028fe930922530fba8f0491b1f04b11e6ce8cc9f6c7b362bfe37101�

ee��:��V��+r�F�
69372e8180b47681712e917eeaf3777bfa1ae27641645b1797b5e61104693c4eiF�
693e3ce2908adefcc2bc524795b6cde949103c699866ca985fd42a827214dd0e5F�
6940a7ecc43ade6a78b801d66f177ded5fb4e3631de7f454dfee50cfca1694c4&F�
694a1661be3ee29b44619821670f2826998a9100cefc0efc36d04db24b211e47�F�
694e41c94c00e68912502d5f6c5bfde8a366987f5381e5d31b889a6b3928fdf0�F�
6964dd0077dc7a05fc63ad2b2e02aecba267ac20fdf80589b768e01146960b74	`F�
69714123fc4f27b58c1e15a2bdfef799961c0c2c3f1398116a458d05cf87f618�F�
697fc862a611518e9a75fc2d3bd296143b53d97834fbcd415d05c6cf3c77c118F�
6982c05564f03f4db81df93b42eeb29b22e1c82675c42eaf1077f90bf1847c7aLF�
6992344b5a8b6f8518b34b8b6f7488ab9d8930c89df8401bbe760046a494d720IF�
6999892560bc188d71af958078c8b9560ffeb626747978ac0a90a392c446598fgF�
69a52650aaaa5549296f7aed59178ab2f5ca948416e7e89b182107dc728f0387AF�
69aa633d0d57b2f5e92a58731547bb1ae2b44fa1f61b2a529c041ce27a603f2d4
1N1|�]��>��j�M�F�
69ae41a6c3ac23339ec68078341f79bf409340725c4349483ba59ace78f79028�M�F�
6a2860de3c6856a89ddef7db26248c1132d0358c047f0d29f64cddea617e46a6�M�F�
6abc3f24e051fa25828e517e1a6999a1a3612b5f97a13d8e99553cc31d24663d�M�F�
6b5e660e5d0921510f1a69a4692a914101958749fe11fe52afc2dfb4f09213c4�M�F�
6c1525a5d4f0e9045c028f3d1abe0c4e7e9aa2e3216a1472b79d3f60b02d135d�M�F�
6cbada440eaf05d5c86416fab118a0ab641f93992a6a4070b19938894fcb8bbb�M�F�
6d01edd55d9f52f8ba1366e53274676bc33d48854b4465e49a15f474ddd0672f�M�F�
6d7bcceec43abb616cbffadcf76d1c208a4f658a0625d17e0b0315b3e5a4c252&M�F�
6e01c854832108abd04704caf65fe4bafc23e70ae26e9cf272872718eee16d87CM�F�
6ec6b4d2ab3c7cf65dceaadd6a13d91e6ca7e48b3d6bf5712f0c0bf3639015b0
]M�F�
6f484446414072c482a1b896884d3548ebc69e39b5a32f1817778985ebfe7054�M�F�
6fa281a1277a0474df3c2033953900cb085700242c41a44cda525992e8b7c5c6HM�F�
7040c353b5fb82abf2f6a8f2ca1f7dc6752192e19210070275d4676cc61318b3�

gg��;��W��,s�F�
69af040152db8a48f4976d9b63fb954fae461308585661d36105e126da985f47�E�
69b46c2053c4fbaa163f2390003a89acba1e45f20c75c06337f18474970f4943F�
69b52b527f2581aac941a0d4fa71d1bce28da1b79f2f313b12818e1090892dfb�F�
69bfe28a120aa3364ed2beefdae50126ff4e6b20ea1caf0f10549049646767245F�
69c2b3156d7f7348e92c9b6d94a15da2b8f77e0597041944eb9741c941e07001
�F�
69c508f0e20fb539180c31753dac2b1ea06cc63302811dd4f870628b72cc3f78�F�
69c9b42984d2a52a135360b34ce4482f7f1f7c83bcdc685dbc6cc7db28136840F�
69d4fb9319ca5a9e4cae9e47996216cc1f227003389290e9e68c05911af73d15BF�
69e3af51dee6dd3aca7ef07201a7beeaa6d764016a11afffdabce904928aee48OF�
6a0c97cc57949a9e0b7e374e73c9631bdb4a96d91de5560c68e054144df60d8aSF�
6a1b6459f1f724a4030deb520745ead7657fcaae71a35ba2905022d5da341997�E�
6a1e8e996df86eab01a9069d9b5a346d8a727e6c633a9f89b1adef59b208e01dyF�
6a232fa9ad8c17cfa5cf5fefe213336bbd9160948ed66031dfd0a65edc56190a

ee��:��V��+r�F�
6a2fc5bcfdf2c8ed011976da11bfa2c4e64084e1f45d265f784bcd58fbece989
�F�
6a3415f454a536cd4bddf7dbc03ff8c17e3484e1d6e9df356fd2660f6f7a96b3�F�
6a35640d03a1109ec551440c9e15e05aac57712c85cd6644b826678181e23b5d�F�
6a423d2e3e4b4b0cd81b2df3ad65109a6c7e435cf5f4d7b65f79f895ac7dd281F�
6a47e214a36fc58ad9b00ab50073240c79076c8bd04a01dd01029f8ca43122bd
�F�
6a54b11f2a8b565659f8bbc6b4fdd6ea12732e30070c5a27c01336f48847fffc\F�
6a5560cf575ee9bfa9cac85044e94e3bce3ea85e26431c99e41877289cf82b64NF�
6a5c15723351049958d68d7476e529ec68de1d64478a1e66f36bbf5a50e2f0d9SF�
6a5cc17610dacd423285c7b8f0036b7cdcfbc9fb0e513eca14b1d7d5ea047f7f
�F�
6a6db0a030199ad5a8e0edde0f8458ca5391f94ac4ccd7a93c3c186326026cc3F�
6a71d3f89673ae6444441f6f1e25eb47a4347ba95f13345e2fcfcdfda313670b=F�
6a841f73df251cdd51f2173820d7aefd9cdad93e87f34531d4856379e80aebfc
F�
6ab73b9be208b744fbb10e2b4b62ee6782dd5717e49b00d2c93994bf8c59e499_

ff��;��V��+r�F�
6ac785b4fd5c3fbb3f1b4107b21e46b2cbdc7e63216e249d74bdbc43d05c70c5�F�
6ad05aacb55ec137da2b221c99a490660a5f37778642d8b590d33d5fbb093262
BF�
6aef55f22ccae6cb279470d28bd97b90a8ac51e8d3c01f08c9363be80465a5ed
�E�
6af757b1f83a00f0551ab69c27a637b1a7fcd95125d64c9146be9158ec4964c4	F�
6afa61594c5b06f1ffc4710ba8533b869a889dfbfe0172d8e3cf6ea56d8269df�F�
6afa89d1f93f0c18b712d80864bb7c05453680e7c2ef4267277d1a05fc5f3ed5'F�
6b024502ff2b69fb4876076ce49575439e5b94cae11c486cd7c59b464106d8256F�
6b0e694fe0bd25769497d03ebe96ad15e93d707736bcee6eb8e89bae4d0f77c1	1F�
6b0ef069c7763a3ba0b61d3804a6919fa06467de6088cbbcda7c568dfc3309b0CF�
6b1f4e0b7d2eac0f0c87900cfe0b6ceee898b0e7fff0ea37a318fb2be0b794aeF�
6b2d3f3ea7403045cab9e0c8644c832cd7c229b54f24e41a1e5e35eebd699e08nF�
6b416b00b5ef6cb53e5629184ff45e772a8c2a837a9e0bb69dc38ebdd07ec7f2GF�
6b59b214e1d648dd6450ccf97a6e02143f15dcb331b6d520b32e3390c35df31eZ

ee��:��V��+r�F�
6b85f79e92ef0c82246378fae50f149f91d8ee31ac8f97a53f0333aef59c5632�F�
6b870279912b279a310ff11d1024fd1270f6693d8f6ed22ad211f11ac56455c6sF�
6b8e84e40f76c1ccc98e60f6fc669dc338d056f42c48ba13b6a52100a4f94564�F�
6b93ef98f6a4d5466b5be6c353e9339237a7ee06b8879ce1e25290af5e63339c	wF�
6b9b9395896aada874edc170d344039f28e922ef896e327a1058aac608e3bf713F�
6ba3e0dd497e559f7b44eabac8136c12499febdb7526dbf3ba89a7b3627aed84	�F�
6bba16931590ee051b717e6cc7eaf6319e483746bab088b484dada27e5f230d5+F�
6bc5d11d6925535123b8762c2ad80e64d81a9fc384b6def702e2585966637c24+F�
6bca052cf755c10a9a15dd05c1eba4a527bd36e88354bfc05d9a678661d7d827.F�
6bcf5f3e89c2755d81da6331cde8d0f4c05fcdc2ce0250804be9609d9e125125�F�
6bd554a06d2cacb7334035a74ef3a0a10379a000a628cc964aba4a5a4c8d82e8
�F�
6c06e0b4e7b36d4a64097557ada558aaa42f90b60af6f66d06329756c6ea57c9�F�
6c0b00e1f00b1bfb079fb63ec314dec78319b2c8c2820688cfdc033017e0dc14�

ff��;��W��+r�F�
6c21b000ed4eaee655f575de1d380dded8d228f9631df396279ba89debbe6fae�F�
6c2a1f394c23865716bd975554c638950ef8bb2b3efd23074290f41ebd724f20�F�
6c3c6e8e517dcf759d5a75600d88260d972e071d18adcef801da195de54076b60F�
6c557f44383a709d2f0b400c2b77b432a965e5b7d4507ed1ecaf15fd92b55760�F�
6c6c39f0c94adba5ee8c50460abf33d8b6c2d1741b4e3882ed1436af7ced0d88
wF�
6c72e414ed7ca2608725b7230e3820171e7ceca0b47d1c5a4623b22e410f9c5e�F�
6c7c9ba4877418093e491bb7d8133af21eb702e5e6c5220866cf64e6755dadb3�E�
6c8904697fe6c2ee66e07070d91ead8cd93c7f2b07461f411e7fbb303c278589F�
6c8d7f6e3e1e16170883c18ddcbe50ef6eb86c9a8222fb7fe4f75b91670adc57GF�
6c91bb92ae5a0ac8598c4281307b9ca0d51ba4690e5f6927ebd9bc857c360de6#F�
6ca8c118a949900b7ee2de435dfa29344feecf178d19d4852cfd3f958da2ac14�F�
6cac781f27cb3127831f0723bbd81603bf1aa948ef07042576138eded250dafa>F�
6cb04e523ff2e6b8d60ef0c4e8df263d8d56af10fd076b4510daa749d0d1b65d*

ee��:��V��+r�F�
6cc655263da0213df7eb5a2c6c63b5825361f55336855a67a7b33881d10ca955F�
6cc9689dc7dfe51e1de149a22559946854b93c2f46f3d9f68ea4bc070cc665ae�F�
6ccf9907f4606b6cd68c6c6cb2c66c9cdf87b17f1ef8f2839dbf76b985bdf369F�
6cd18c7d7a47f7f1e42e63865172f463162be9c7697c5e7b1953c41099a4d25d	F�
6cd37a431fbb8cf1ad0ee95e2fbef2ca533dd95e28fed9e9845a74acd29cccbe
F�
6cd845a6c8f106877b1240c8be24cc3b931a354a08536833f36917d64f2c3a8aF�
6cdebf9c4780af0f03b80b00c611402cb25855be68d159669e31cebcae14e948
FF�
6ce4b480a292b7fa51c31777377a1711c2537597c5cf02d8aa14b345321b67bf	�F�
6ce9a07c50256531ba281b344b048ba26881b6d3612f2c4ee5f35d0801d8be57F�
6ceb416b5532f415886858adab254c77f6774ca35e5bf9bb0d73e58fa794a0ff�F�
6cf85cafbf0ed8b58696a680262f819d5ebbe64f5d4ce8010a037a47a9f1ae9f	�F�
6cfb6bf58c05c3d5623f5406c5e146a76aced8a97fef4153ef7d295cc5776298	�F�
6d003f6bec920c3f0353f927a0e4ce5191ad4e906e1f42da6845c022fe42c6c5

ff��;��W��+r�F�
6d0aee209b29a68899270b50fbdb5657444b46017f3f4b39ff4652e77f30292cRF�
6d1470830d621e224bc916d1ef07109d5e9c254b87795bc6bce9f712f138681e�F�
6d1695ee0cacafe8f21952e32e2db02bc6e264eadd5e68c3e8db3612519ab13aIF�
6d16c50325196936545ac4cbb31f743a7fdab2589124f05cedf47845149e1035�F�
6d1d56332454173cddc2595690e7c56c35decdfd2263853829c0fd32e430c247�F�
6d23e0e03a7a536fe3cae17f34dc45960c361e2ee84b11158681f3db86dbb0b3\F�
6d31c249f4ea5cbb99f5d7d01050aeaa157ab3eb14d78071165578cf70934576�F�
6d3e0ab4e00db4dbaa9adaaeda6959ba06c02854163d2f14ce6376153c971409
�E�
6d4f5821c8a6634679262138e6c634828699fef39bbd22f409c545e572e816bcSF�
6d5044b286e25a56e8f05f0e476289cd678bdace8a5cdf6c00b7b99df760dd47�F�
6d5b1649b1e98557b5173af9108f9a86fc71dcf1bec82baed2b16dc82c6491d4+F�
6d6d3ccc17a9eee0b41995b6db620df39e9070da91831a1ee3a9c9f9bf6eb135�F�
6d7a031416a306298ea9aa3f89fda52e0ed56ff1a48e7c9aa6e2d05c299a912b�

ee��:��V��+r�F�
6d8bf16512d109e75893de1fd5c3fff8aa8557a12556eccd6e6c8fbfd7f184adF�
6da0086ed5fcfe18e8f92777f56bc0561f7b8a591eb03c6f38ba815464fbbdd1F�
6dafcb9ecc7ca14a4ae5417e71c1fee10a7213e0ebf3d3750cbd23a8cacf5eef/F�
6db6194f7a398d0d7abc7755a2f9fc2b6887cd20921eaa12f12ae087c8d48816@F�
6dce221414fb5a6fc2d69f0e321ab26390708d0c5ae297b2b4a9886bc5ba834c3F�
6dce766bf15259d4d1a7aba1acd135a56d9bb61b6d653cef2da6590e890d9fd9�F�
6dcf38b2dd21eea79940f1fdaf48332d6c3ecaa1fd0add17464537dd24fef021�F�
6dd07a33a81efe8c3709098885698f104928c810cdaa6390f1c3327bd53dfd94jF�
6ddc2c9687b0552d18c038d01ec287088d430f5ce898b65fb0fe065c00b8ef8f�F�
6ddc8fea6aac5d2cf395f1d06506d529fc6fde104aa7ced09ed3d16f8996db76BF�
6de2aaa52ef36e3802e22e8f09a0ff085d85520f42e12fcdb9a095686b4d365cF�
6de667e5382d2e35f18b69390c3e03a9e718d8bc403a5db6c6f6072e6bf683c2�F�
6df17149302a2cb98a128880ea6df6fe1092d0cd169dda5bd470cf1dc5c73494/

ee��:��V��+r�F�
6e083d21d81ff7ba6c8b92912ea5657be3fb00255a52e7d3ad7fbf5f49b55960F�
6e1413f213a7c818dc679fc121435a30906e97b4db03211f3cd23acf9e35b88b�F�
6e22c4b0aee7e9979b7f739d1db74f8609f8f27a72d28c139c4b20648516c712dF�
6e241bf0dc50bd058f110b48194543b466e895d9ce51ae777aa7f7d34f994e08
�F�
6e3bb564a139de89aa75082746181d125ed4c599326591693741010469bbd88eFF�
6e3ec45785f4e53b2ba5cb144820351bce901ac38bbe5bfece3b71293c84197a]F�
6e70e53e5187df893930a8cf3cec44c126d94196925b1a43fa27f481acdeb5bb�F�
6e73c8cf692c96778253ff1dcfb1fa2fbff0c5bd4b3bb64b10dd7cc1b5edc4ac
�F�
6e90444675848a4c5c3119f364cbb66d41bf048c40ae4f2af79225fe2278dcb4mF�
6e91279c2c56161f7ffdfd5a8f8f361d282238b249859e57ac7e8d4b04a799e7	F�
6ead86e81280d56c02e90e7af54080a1b332b55814bf405227418471a84c582d]F�
6eb48672224acb21d0dbc83835af74ba98ee85d8e9d3991623af2bc0d57d6761F�
6eb6b0f0d64dd44ca445beb920426e0a8262e18d4611f37af0bcf266a49e7ba1

ee��:��V��+r�F�
6ee3e1f10e89d75ee121580fdd4238d1a9c783a16450d6b30b08f4dae782c4b6F�
6f027d48513d5431e3da6ea4365a8f77b28f4a40c5d6c2552a5ab6817c5a1c2f�F�
6f13f12c50ed9a62d92967f246f2c8b9f5260a7546412f06126b024aedc1789f�F�
6f164909e08bae70614e499ae419c8240f745a3e5a7212281901e38d69a975d4	pF�
6f168ecee0a2bbae92e0564565c3d22e1bae72f64557c32569a7bffd94b76ca4�F�
6f1a8e6e9202d70c194d4aaed3c034d719a85eb53ac63f8c6235756a9646a2fa�F�
6f1bbacef1dc67ded3f5dae9926f3a9422cbb14531e25cbb1668f8ac69d00b8d
�F�
6f203af825d8187dfb775adef80a3622f5216a88db513e0ed31eafc3db4c7f54�F�
6f2e6d0fece31e7231bbaae7370f0f0edc484ea6e4bb69ce105819e1f85a83e5�F�
6f2f5c5aaa6b9cf8f21471e48aa6a2516a79b06217aba938f508f1ec9e32759dF�
6f4280fe77b168975f638489aefbd874e08a1bcc00b9b43792472c51d7f9fb1c�F�
6f44954e7559753b1cb37504f1b6070062ebd03b2055d1a1becc6179569b8472xF�
6f455484f1eb5f3b6fb66db239a002b80058c5b1b96396b1f9845be413af51df
�

ee��:��V��+r�F�
6f4992979d6450182615d2419ce9c9ce044361871407e1a88a1c9911fe497221gF�
6f4bf52463b1c528e35abf3e53489d86f0214da06151240744c0ab18b50ab903	;F�
6f4c1e2f1a4962df4b746e55c425cf5ae75b8d5b8768adede04c96f2e00ddffe�F�
6f515d110cfd49f16feb45eb873662abd7d90f7d6a9521856506cb39bc3ec4341F�
6f58c9c348a9dafbd677a7e56cd3f98765ae140f59756077d92d757199b1200a�F�
6f603069d8c52e3cf80cd2299fead7f8539598c42a9cd85ae42363724530da93�F�
6f66883f6d03f79791c375ff0cdc81d646922c4276e97e30803dff62b55b566dTF�
6f6a33848cbd89fc9434117312104d1e8bcbc065f6821b6b24ebf04def7bf36d�F�
6f7cd47756fa8dfb7b6cb88b9a65c779de1981cf1b2707b6326ba27ddea5138d�F�
6f853b40dd81bacb35a8698a21c1a1d6663fa911cc8c99485387e4e10aa1cec17F�
6f89875815ef474fc2dd49d33fb56f30d070a424491a2ab970b04c4b3a36133e�F�
6f9c2eab5630c71a827f71ce416ea6cd0c6b2aba734a2d023f35f7af3d415da4
"F�
6f9f0808ad0d78d8f4557bb41258ee0a449509e5f0cd09b1ef99660661d29109�

ee��:��V��+r�F�
6fa692d6d3de0571869dd57603761a3835f55a4a06091767d81757431cfffe68kF�
6fb636bf5fc99a0e0e7c9660b447ddb3de9d1e93eab0350986882884d02c9a69�F�
6fbcfd20152fd53029a53f360639d892f5a3daa9485dc2be94c27eed6cf2df64KF�
6fc0812fc250d841a58cd125c88d60ba6c53d4c751c3c985ba925f28e597e5adtF�
6fc93f49bcfb356742bd0f053b32fc44739f52e356d8575874ed5e03d9fd09babF�
6ff94086763de7dbc7a08197fae9ec80ef7dbba995606dc86e245517b4635a11F�
7003e053072c0715532264432024d1fce948f74d5ed2f2cef63aee418dfd47a5
^F�
7007758347481b5bd5b486012d4105aaa620968a412da55bf70e5eb5ee4ea52f
�F�
7013395de5d70b992ff1cb20c5fcc916c7f545ed46a9021f6f2105e575039bfcF�
70147742c172a9a706e38cf38eb04c08145498f9822bed40df6a19a4dd171abf�F�
701c51272a786e3642f50a00d1af86a89ff81297f2f58e485eecd9a7ff5bfe96�F�
70215dcd3ae55ef64ecc4091cf3625d634872ef001749ced33e1b98ccf7a9b10{F�
7029af1412cd34983bc590c58b75f33a9bcb75cb2a5bdf5e6514f8ac4b8089e6�

ff��;��W��,r�F�
7046aa1eabc63c20c57732ab2750fd10c21bc29fbb4198fbd9497b0323bb525d�F�
704e68779e898e44b1324e899262e104a830680049fc89a0fc633372c94879d0�F�
706b5941777a2e74d84643c364c9bf33de8003c8ccbac339a0fdb62fbcc0e38dBF�
707c34f7fa9d4787f56722da43ebdb1458d9855c217691d5688c6bde0306a2b7�F�
7086a3c094b4e91c8ec76f30de930c4f4c0d0eb7f9617e94c419d74aabb4f793�F�
708ae9f5c9f58b7f03e17c41afccd5768e49cb8d182d52db3c83077d9a7294c8F�
708afa796fdb709f3e98d685f94be58af8cefd4ff05ab6d0a215d63d47cff237F�
708df0316ccfbaa7713f5cc4d0174450936ff711924ac55e5527b630498ef3d4kF�
708f19a2413ea0ae0ab9a7619a05c06675c69004d477b56b71ac6ec988ee1cc4!F�
709d5075348bcccbd422a85b699ee6d907bff4255b77146b10e04b6ed5924e09.E�
709e283813b0f0f0fdef0e1af87059ea4abce1a31640b490109436fad941d2dbF�
70ab660529559dbc0857824877d03fb7953ba5e86fde837ba44bd5f6d5ee3adf�F�
70b5a86232c1ba2b2535285ea1e7951e1c2ce4779402d9ef8b14a9e2574922c4)

ee��:��V��+r�F�
70bbd71ba6462d9f6702322739a79ddf57ab8a23f41a3ae1e2c47feacb60d0d1F�
70d313100de0a9a28bad9868e3267b01f56634e7b633d7519f3153020d8c77b7}F�
70d4d64cd1a4bf0b8b9ccc8e2cb0e8bc239ffd0632a796d2c869f55b6626defe�F�
70e1c9c7b7313acc1ccb883850558645a0cb1025e1b3d02d84b62ac7a8bef574F�
70e9899b03ea3d4adef955f81b9ef893b9391bf9f209434d85b8d5254d3b97e0F�
70fef3e281063a882efee9c52f35d342cd008f1417571c2af4e4f52c5a4439ac�F�
712ab01fa46be5aaee9891582b7f8a686291b410d047f9e6094789f904b00faa�F�
714b86985ff8c757c1d759dc240539eb7226c4445ee4b6ed010da90d5449c6a6$F�
7174a32cc247b70e650aa36730fa976b5d7e498a9fc59fde5c06de3be20d8da3�F�
7179cfedeaf917db1ff4e9e2c9261746c977c39ff98d06e7bed342cca2633c45�F�
717c6856842ddb6b4eca2817cbb3adfce002d371a61b322c8c74761e57ae5bcf�F�
717d93d915b4145b601363d9eea5ba57a7d532d16a4390f52cb99c069c612c19&F�
71ab07234942e8c84134be2b225f1e3f417e7974f4dcf6a080e9820b68b1b81c�
1N1|�]��>��j�NF�
71b7e0dd87fd725a96f1b8e998c7b16f7c063cf2f5888312df9191de086378b7�NF�
72415fc89f5dcb558370bd92e670638fc9add9ad19ba4ee77ef546520c9a9e39�NF�
72a96620c19fb6a9a585ba00fc0f399375dda07b85a42c151bddb6c1323b81c9!NF�
7359842aed62ed18b7e387856697f0a6cf8b16b27c7c68064ba6567b32c76b6b
�NF�
73ae0d5fb6285b4b0077f98e47a68f4b9fece79c2d81f4ee0718940d27177616
}N	F�
740cebdde7c6823d4f1beee23080215f1f12ef9577011c88461d3bf597d1931a	/N
F�
74b69c0cad0206438485f298e20a6d074c6e227e6785bba46afaca709e38ef8bQNF�
7541eb5333c72fe17aa8e0d7dc2f7f91d8769a57129608043af2b098b5741661	
NF�
75d06c1bd614e9afb5bb7ee3df0687c26dd805b2c3b4430087f9db6565d30371�N
F�
765577455a2956ce537d4c4d5768286fbead171668c41853b5d6f0989dd4013cNF�
76f4f248ab4aaef273c6428865ba506ee4dcc78c5a1d7c81a8d95a729a9ac4a0�NF�
779491f4aff62cb66747a794b7b823e9645eed730e157ff87a8425bfd96871c9[NF�
789245b54d2cc37181b3209ca55431722601a4544e987a98c0953c1b64660406
�
1M�1|�]��>��j�M>F�
081e9334981d1b4b5c7b0096cade8b94d105829885494e80e9e2ca16d37b30a4�M?F�
0f703e8cc67838485cc773d2d5fbbc55f6844c4144d32644f69e6d0005d860f6MNF�
17bb69c6badb60ea50ca06dd905f5cf912769e8d8394ed0f28e46698ce95540eM]F�
202bf466967d3f4ab327e8e2dbe21c4696c4bcd058996baa9a4cc4a00c10dd03�MlF�
28000a91ccbcd79237e5ddae52f2c4002be7344262fc0e43ce86378d90823bd7�M{F�
311a90d5eda02bf4ce86639848bc226ee6a17f1a66b1f15375a48b77a3d6b9acbM�F�
39b34f1245a4dd4e09703d7a8fa93bb27414f909eb7514764f934e9248878ee3cM�F�
4214383e3e5d362039f4752421a5c4dd66c7a5aad772859a41684a0b984c5373�M�F�
49776569805f34f9417a664fb394e7bff8444fee386100309ce6306cba1c8b1a.M�F�
5105577688287233ec925ee639d92524c00f6f7490e2c5501c49eeb0f07cd511fM�F�
59322a58bf2949a46807f44a970d90fdb94b2e15f2de040025b4cb5e17568171 M�F�
614857c396c65004fd986e7b0b3b669ea5f8880fc93c655a69ea8ff5177d58fb�M�F�
6907d4d091a1107f3bf16ccdbf5e24663641bba18bd965f06812680002457959
�
1N�1|�]��>��j�NF�
7954c520b09dc7bfb10b62124f03b0340cfc571dc7d61d91873543f3a413149b�NF�
81842832fb5e2ebf0b8c4d8f9d6e5fce417deee396059e72dd09a8180b6c94af5N"F�
8819df992dd160364ba0aee29998326c7fce6c403594c9abe3dc7e8c293bea83�N1F�
913377ddeda7e9a87688016fb775cfe7ac678ed7b17cab277996497a766e6c67�N@F�
99f0c52a65a75ef09c13260211d703963aba5c4870dc9b32bbda82b9a3a9fe18�NOF�
a2b140586a9cd6744d897271b92c1c28166d43a99eb058d831c0617399959558�N^F�
ab5ba7db71da82b8f11f7725428c46b6cf857fa74755c8a4626182781ec2a388�NmF�
b38f765f577317761aaaf492c0a93c317974aef18e4e53fea2895acb530ec50e
cN|F�
bc29e9309d0d6c8bcbf454c1d73fd5eda133e3cd0a96c01283bd3c2830a03310N�F�
c472916040722df81c63f7a4b84001545fcde6fe7ff88a7d90493dac79e09626(N�F�
cc9a0f5a5c96b17d6168b3f922ccac3f1d0d73520ab3386c2b40ca2263835c11dN�F�
d4e1ed8394af297a574fede15b7e0b3dcc28d263998175257f45e728f22fca91	[N�F�
dc7ff660e8cb322dcf0a071b2f556dfa57cc7a3c0a543524ae2c9b6a807d8262�

ee��:��V��+r�F�
71d5237e53d98bad084c2240820cd15af03b5f087119d5b59e92f1a002d4386cpF�
71e8109b89c2bfa0c40687b649c02bd70e7702214ec1fb76fe606db76ace6aff�F�
71f02e63578770de15752f8dd63988ac82d645cc84914639679034beaf9f41361F�
71f20a3e8a0bfe010564d4b6ff77d4b2647ba8383e62e64a557c131359fff8898F�
71f4e4bdc94d32ca413c40fe3666b5b8b0a092fc42d58ea96801a440297da553�F�
7200ad28455e7f8044a9521a187ff712e7d782e9a38db84d1c18e9b54e7a9a28�F�
7202bdb3eb9b58bc979d8ec45159b6e39ea0ff80df19efb9cc6274a852beee11
F�
720ce08cb7d09fef55e566296d6985f0a465fbdb1a66bfda747f53f178f67f3abF�
7213d0af79ee2d01cc5036dbcf46247c7d1adf8bfe1cf77ec8fb28e3b0dcc05c�F�
7213e6e2bfdc556860c8f1e0dbd57dcd1201fe9556912fc6ed9c972b00af8306AF�
722785536ad769e0f2077e33c2c6aa02937baf01e2357433b6873c7a444503da�F�
722b0dc706f7600d25c378ec61ab127376170d2f1df9446acfb02d438beb9e18{F�
724104b78d65c37a7c944beaca3bddc2e94e0e2766838104816b951ec6b107c5�

ee��:��V��+r�F�
7244017a6987e7001fb62931332183a4f84646b24773d5ba2acf5c799d15b1fawF�
724795eec6065da1df593d22a6a359fc5b241aec5a3916cbec646ff78f2196baFF�
724f57980c52e692722c8586a68fbb7ecfc81812bf1d923a920abbdb04014943	7F�
72598a2a7205cad8abd1c6adb36033bebbb72e0537e83288ff0a562511b5e061�F�
725f41aabdbe0d99f4ff043c8413b75aec1da746d9c27e7540b090a7120002f3F�
7266766000b531cf157295f474f17dcfde3f6c02dca1c64d75e027774c33560fuF�
72669bb54a42016961de3ef8bfcc2ec60aef58f9897e239a330679bdcf828e86�F�
72811299e34ce97ab4abb454b8e728ca0bcc192a314cab3cc6799df21cc7b92b�F�
7284d6fec357299a1772944305ca58f5d48637a3031733bcdd30849ec50f7a98F�
72866ddd3fc9bb8286ebd7b4f6c5d977fc3e7925268a253cfefe4511c6e90150^F�
72872ee299214c68c0fb449a111ab5178f764ab24db86850448332c6b4fb7cfc&F�
728ac150acc4c81d235b89af0449b11ae268d8c5ea5df6ca8b54c4f90b3deb7cF�
729bff77f6c7fc23bab8a062cad450e4fec1ed72327936a033ec519b4a1f1a5dM

ee��:��V��+r�F�
72ab9b204a4a984bb758843741ab139089f24553cac0336f08a7b1d1029030aeUF�
72b814596920effa935ebdde082d64181b5aa2f44485a058f2535c54828f931eQF�
72c749a3e397bf18c32e697dd5d3adea234b8aa2a9755e5fd2cd34140f3988ee�F�
72dc266e5da09e38d19f4c3904bdb983146af68adbe466120ff8bfecdb4567bf	�F�
72e40ba785c31c8259b00c65df653253a9d5ea138de40dbb02d655d32830c0c4�F�
72e5967a31cc0ef1edc116fd15578c5e906edd2f9c5485a13dfaf37b191efb7c�F�
72fedcf3bf921b3e8efb6e27a94cc4edfe624334e5b7a143442d707cfb625b06�F�
730a731598f675b1827b85e2f2a963fb1c75d82ea0eb61e2b544a1c868517c7a�F�
730e3f511d99634857cb8c6d1d6a2bb0aeab30962a144cde1567228df8e3ff7c|F�
7315923a129e703d18cf9c04318c3fce2223c31b6b9d9f8742322e1c2bfd100d�F�
7336707319b5f28ace3e7bf0ea8751a0ba448a98bfa2b4875c2d08c7207b3bc08F�
733a34dc60cdc0d449bbed26105adcf2ede2d935f0d054e31690592628f2fd4dF�
733cd7b64f33a955dabc853a4b1cd0c8c37bf1e8e726fc0bacb1d1ce4472cea3n

ee��:��V��+r�F�
735a91bac6263309ccf5145f1e264cf16d27bec4da5fc2e9ab42e3b055fc46c5F�
7361f0c9de0e2a09eb70e5f1b83d027a808b06433ca9e73208b44184ea5cb1a8�F�
7362e3afa20e7270f6bd0843928dbc50fc58aee6b6187699194d02979a9c9b4b�F�
7380c6641a8e803a62e76e8af53969ed47f13f90aded491ee5e72f1947b0995bKF�
7383213f19577210f9167fcd27957f9bd4763d172ec1509e90329b4f69c04a81�F�
73839ad166f5daa6f4e5a2a9b08686fda05962283302afa1963df3b66c4b53e0�F�
738674ab7d423fde7ddc0d251b0d8c8447088a4f7f39ef36b39ba26c41f4a83e4F�
738ba060f72edaaec140a48f940f7fdf573a9f888afd244b937e86cefba2f1ca
�F�
73952b31447b02abc10d1c2efafb6def58e9237532ddef9eb3a691baaa88a495F�
7397d7ada85a990118fbb29a019e0229dcc123eb73b3d901e8a68ca2b7f2da53F�
73a833b69925445587e5e902cf5b0432e6cdf5d8c184064ea6f735ed11d28452�F�
73a913f2c7fb75a15cc3b74e08df90f3afc8fe8e36e918044a3fb407b7cf85e4�F�
73aa4d41c028013891614d9b96e424d2511ce51af87ead1125bd84075eba4b04�

ee��:��V��+r�F�
73b613dd48f531b02ef3e8b042c6bb5fa7f517faeedbd0883ebda2f46aca3135
F�
73be1cce35dd9bd5fb59093ba5faf459b1f723fec8ccad9d13b18e6e1b249b10�F�
73c486ff61695559ce4daae66d613f19b44873db66b308ac0f3d693c35e6bc5c�F�
73cda0f598ca90fe3470940ed62663a7a5a1091731757b8e057fc929d3c1a209�F�
73d0fdb5a95bdec295481af2bf2057fc8d78d8110d2f95f3bb7c85577a034eb7�F�
73e2cf9bb12255322e5252ec0b918e3e62d5c6df5b610dd7d2ecf351b34f1365wF�
73e6c1345f450c5929eb00e5f4f97abca74086756ad6e3bd8c36e85d989c8283�F�
73e7e5f1dff51614ddae5538cafc528cb724c6dcfb3a9b9459be4d82230e5160�F�
73ea554de089905aab93ded3a974f753899d2b8f0f3f3044d9f41d44a86324db,F�
73ef9f5aba212c3f0d0e055cd597dbddc8d7752ec301de688be47c0a416b5a6dF�
73fc0c87cb3098d277406335ceeb029508b87e5d4f5c7d1cc89eeffaf0bc4009pF�
74038c223561306541466c5407569dcc8055567f3cc9a56e7ec106015d2df942�F�
740cba8784afe4330523ae1c3ed41bce93c5537dad8f467cf1fdc17ea21f53e1�

ee��:��V��+r�F�
7423f22c87721f8d9e25856620d67f6482cedf0716640fcf8f7e8f609797cb2e'F�
743d9e213a14ae1fa06bcef18a210a44805cb5da5b65c0f584ac8098ed4b81e6dF�
743f6a2f0afed6f677ea24028a9be02fb82801ed898d3523695bc6b923a302d3FF�
74484befc2ade710df325b9af62b87ffaef3b2b13a00935396297467ec8e98a8�F�
744a4dba649fc88cac73b711d32a121916093d5d15e77ef286faaedeb4a661675F�
7454f4ffa83154415c00c37d9cb1e5e253feeb7dd34081b445318d2340ae4e42�F�
74668b90f41c424000d241ad2f9a624d6386a447a8d58add20fd173375e09b32?F�
746af4568fbd4f2bb6981f2e903fd2f1917f331b5c6fc90f7504882525070fa4RF�
7474f32c17d8003c3366608f1620d6945efdcff859c4f6900ae7da9ce3f9585bwF�
747801d0d750e872620c71b8849522e592cbf713a0e5acaafe2579d358550d242F�
7479424a5b57460d14eb031904fe5f6c5eacebff7fa6b708fb1b98b33a6b3900�F�
74820898155583309223b3ef4e3d5a41b76e9d492696051d4ec79f981d16febbF�
74b63c28e824b50dfd7c42b254636029cedf22dfe885fc3017c73533680e434e�

ee��:��V��+r�F�
74ba5dbc31e8d072aad83ccc34e693990c0625ce81a367690bc1cc6bbdbdc121�F�
74be24de7bd01781535f8ae78fba77bf331f0afd97e69de054496dfa406689b1dF�
74c5d742dbaa75738c5c52f77416c65b88472bdd5eafe0c39fe63d1816522476�F�
74cf9b03dd4c4fd8b948481f59523011514a6b13612c953041fe8c112c7aa0d9vF�
74d5c2dc05acd6045abc44a395a51bc278efcd90d8b9949118c7b18193eccde5qF�
74dfc146e5e4ab219dba838033e3a2a983e2ad796cee5a175fda1b6c17653193	�F�
74e98e4966e80435f954bb2859be485730a97c3e547acc848d76d50f49af0329F�
74f4bb31b79790aa5a646612520c06cdd181b6e3e39b90a65dfc2634c1821260�F�
74f6bb5bbf891159807474196fe08baee6d2ef51b9508b2bcec100949f6a756bF�
74fb87c43d42d2e134909edffc5d2d759fa9ac176e342697b6d590d62ca8a11fXF�
7506ca728020b82295ffed2418c27fbcdc236ff1ef18d4ad5b231beae0f3defe F�
751fbd8677147721988c4cec90747030a077b3dd3211d87dabcce6357d612e7a)F�
753153d2c6886bf4e0fd54f9652da1247fec1c0ab4d58a1aeb4bec8ebba28d9e	

ee��:��V��+r�F�
754f6af1bc5302dd16280e706cba386ac96e7198be4530e907559fe08ab098e3�F�
75518cc294a25dd2bf8e7d7c0883cc13f46fbe3694ee431b5e7ac646eae722b4�F�
757772969a2b13e5983aef925c31b673696df5c322b359714f2a89267929bf4eF�
757cbedb5a1d0d38a9479759f8661ec2fc0853efaf4ef184a79a5f96ef5b7a8e1F�
757db012689225d59ae444ae9fe49b96ad20d6b478e9a2858bc9c4a3c2ce5b7cUF�
758b00bfddac1117f7a640983316c5c512053334e60eb19cc2b8b9bd616cc3411F�
758b5cae55b3ac82f5e0a21bdf123b49f2e3ddee46a47f58c99a1c2e02d78f546F�
758d2c3a908dc2f48b1ab2c25ec323231a54e2b646281ebbd88192b61617775eXF�
758f0b0b263f27bf6a17362a156e2d236f0210bb8fd11a69dbd5e2d9ca1be328�F�
75989f565f1e52c44012dd4948e788f9b6b90cf9a5a649233e43f199a47b4e44%F�
75b8e9f03001f9908924df507ac906625eedad84d4f379872e8537a185488c11�F�
75cdb68690a46ab40f6949579f2ea4df2f3e811398a7dcefb77813e87272e899_F�
75ce644c70ec9964e32bce8017125212233496a086225b0503cf1810e717e333\

ee��:��V��+r�F�
75e71ed053fe00917b68d0c20c63e517d0ac97df8a4844808522ccadcc94f568�F�
75f984b4cdee8c054416401d8e1a4f00cb8d0fa104e54d12456f8884c58d7db5�F�
760d5445bc23c3428607195fc5e872474f29cb02a1ec8cc53a0bc41b6771e204F�
7614360f2f41c4a9acb375c65afe79453a28906b14eb8088a9a89a96d3374218"F�
7621e69d1f6a5287ec45f7ae6e9410b61ce65c095de32ed792b022a4520de7d1�F�
7631dec5bfc4f885319322ddf28a8c174bd735138c0021a996ea89b80e010ec4�F�
763431d569a4717a132d38c72d98eb0656623f04155dc15baf5f8face7a581aa�F�
76398082a1500552d12445932d6e5689e02b1ebdced0a38e4003a7fa56871ce1�F�
764049c60a710f88bfffed5ba17cd51ea7bb2822f89390f24d0db26a94bb9220lF�
76499affa56e11ce8cb0b60296dc990f3d6d2f235f5edeb8261ed147ff7a3323�F�
764b6da4f9a89bd034bdb5f3c7e3d13f7fcd081d64b01ef179ecd51b31ec0e20�F�
764b877678619df456d5a383316616afaadcb63072ba391f1e306803942b51c7�F�
764c4140bd73b1c0bdc434edd88f8c15595f4b1c04c426277e3e1b098ebe7d16~

ee��:��V��+r�F�
76640b341c1b50d068385f178412bff6541f41c567500e0f8e16463cdeb30c40�F�
766b6de38798e8e6035b4c0b18df36607cccc2e988be356ea2d9eb9c21de9b6cF�
767a5d433dc92613d0cab0185b37f0fa6590e1823a9bc7f2ece1abc592069bd5wF�
76813e1abc18c641eb46092531885c18b9c6ddd5e9dc4e228b79d8c1701b18aa�F�
7690f944ed218f74b3624308e1a4d4ddbbef310d2d09257774fdfdadf5cd3916CF�
769518511a9626c3f684d9b19a35320e0bf5eaad8dc6377c966be0005c590641NF�
769a4e98dcdf66de7159dd3adbff251c61fcb448ebdacbcc474122895e9cf709vF�
76b71b906c9f1af8e7860bcf78af0d724ef72c918767fb655b3ac9f2e0e6530b	�F�
76b9c89c43e25719214415b156394b6c8108b41639e8116895753032c1480241�F�
76bc9b2f317ca1734d3d4a20a64af355a4fdf864a86b43797f7bf7ef506f5b34%F�
76c5012bb1a4018438b2d42ef73cd3f71d74224ce2b5eaba5a63f6a8e7daa068�F�
76cfa65febb7025f91800c11072204ec3748d9a68501cdf0cfde5a6c5404f0e4CF�
76ef31892a454a03675c6f23a831bedd4e585942eccd9b529c271b8ad2e600db

ee��:��V��+r�F�
76f7044e7f7cf0b257e3f983a0bb8457ed7e60c7c386096fd844e8a43f3614ac�F�
76facf50f1b80b009a8db32a440b75f305a0ebb492bfd12472396c89645ad637
lF�
7702850f4e2e80c04e6c3466c990e0b651afe9da7ec148a25504e6539b25fcfa
�F�
7709c0d2acd7ad42cb32f7de9cac262193958bda0a1f863ea37484f52147282a`F�
7712f39d03fe27ce44ff48e5aea72a3011bc46509644b864641c2f3fd7d54e158F�
7724d8a7b5c53b6b19107130e41d127672ad5e6814dd6d9cdf6130a27f22354bF�
77269448e020f6a70c9a9ee15224c6dffd91e47f8c5a0c05dc8281dec47ff3f1�F�
772df4394d584927dcf77fefe3909f14263b4a632dfec53f011d34b412b30d8cZF�
7733397737d974f9005123481470b631bef4144d428a07acd29c461f8073d83e�F�
7742bb9e3b59162a644886a0fa900fa88dfa7012386ae583ac5a8bd6c5ac79f4
�F�
7744a295fd69e27c223298b284d7c8853f441d6b08e8333049ec0bbc9e32287c
GF�
775f41c9398da339ae50faf7692eb4b9de783c58e046c6c24f659c666b25eb48F�
776a13c05abec92b93e26a3e73b33106410100566b5e395d5a22469f660365ab�

ee��:��V��+r�F�
779af39181edc4bdb4e091b266ec46176447a4ccc0941c928f999ed3fa780cacfF�
77a2ace1d206cdce59078a04e1d50602e60fa9783490a87d7d894bfb57c1904cF�
77b4a6262e01a546f91e92c40dd8c101260465ac9a037ad0ea84bea77bf29201�F�
77c36db32c50f15916ca53f42fba6ef0360314d11a2d6e929276d3f8890dcf99PF�
77eccc75e9f9bd1beac93212452f411060218b9f17289e0f6bd3b293aaeaf916
(F�
77f8b56d670e17fdf230395120c7cac1c190ab7df682f7afe91f4299ef0e0357+F�
7804215d9e8fd6eaae4ae7d7fb360dd0ec85e87ed93ec488ef3d1cb1285ff33e	~F�
7813e68c7a683514d7f3a5da05d9e10253ff77a5a4efb99321ccd3176db9dd97
F�
783b344765a19ddce5583dff7a5df7639ac3de2a002a21d71a0528d6aaae8258SF�
786d9abb0444f4e1a0a27702f0bb4b6278bcf8c30e15093e909b111eae35842c�F�
78721775026f8ae9ad659054bb6aa8c453a791cc260f66e1ea959649a8f8d922VF�
7878e948667fc382edca199743ec7e4e3bd9f82c2a0b2e50af7f93121264ee6e�F�
78923c044dee6993ff55684229e266296bd04b772f4c47761a0e197bf8ddada6�

ee��:��V��+r�F�
78a505e2bcfc16a350b57ebc21548ec930762a04126892a45b3a16320eab40bf�F�
78bf4a4e4e5885b5d88e541e46d3237eddae49bc51b74c8c40c52741b0ce4534gF�
78c54e3e24da878a2395d1db2fe940598eade355a2ed7955fe408e1151a3bdeb�F�
78d3877b596cc832e4549e218cae35c884640fcb1d8e5764ee09a774a110fb45�F�
78d39bca758e7f5e4b5122c075cbb2a2c1d8ab9c258b4f91f4744f9ff29a5e8dKF�
78d5b1f2129f41fe187e0ac04949364deea63d749d50862bb7767f1e00444a71�F�
78de7ead3aa002c4e670d2a6bb86af61059a4efe2b86257958242df65bc50d42F�
78f9c4332b1d2f19135c616b66d43dfc85165cfc47974524516f8cfde4bb96657F�
790b5c852e13d4b60fb3844c4e81a28b8500aad7ad521d07ead00631d519881f�F�
792164299f57de7fad013d1cbb4d0847d3228f6a89e6ed330af88b4f95b4e458�F�
793ed94885ccb91d3de9ac0ee3c6ae228181f6d4d90d6c2ba44aeecea596a647/F�
794055514a0043fb0a97d85b7e623b6862a4861b6e488835385596d392b4f24e�F�
794a3fb2e476acfb436f4d7da625bc3f96841861ad270f795c67ff6046875f47�

ee��:��V��+r�F�
79588570ccbd1df263463cf10a5d97ef323266e2abedfeb2fefafd34609a08df�F�
7961a17846adb9bd4b8dc39c94b3cbe82106b9f14b61013a3b4896b7335f2e1e�F�
796aeedf2cba1ce6592411175e3cf65482a97625d933bb4da8a28f0d16cf34f04F�
797abce4232e5ed3353b7d0733cce5d5aea1134edf9acaa37b6028ef6bcfbc3d�F�
79973cc33f53bcaa66861b86f5ca88df66744a2b5a58c2f2f7f0dc2e37c67a36~F�
7999b3417dab3aca80a1f8a57c6a7b9f98efab7f9c530e0131e8ee2cbd026459kF�
79ac9fe0cf39a64255d82fbb10c0d150d68cd88753359d4d13150cbb094c9674F�
79b1198c3958d0c5aaf003eb2c5f482ad658aac62e3b7fe05127e6498153d891fF�
79b31e2851cc21f81604266da5f6560bf26df1d0f6c6015f28b51d19463bbdb1F�
79d0f0c2a70577d228a2c71fdc289b4a2944b4681bf3f5d79f9b04862f3af683�F�
79d78fa443907f0ca28a70215cf61c47f965c37ef5ad56c02db408bdd9e238c2
IF�
79d7dc58c2f988ca4128c170279bb74b7e02f4d11996be672cb921db54e36161jF�
79da3fae5743d2c375b344832b875293be6e093e0f5535dbfd33978c82e7d095�
2N 2}�^��?��j�NF�
79de22a187c8d6582548815722742e3d7cc19659ecf90597109866199ec5deeeHNF�
7a5f1f1bd0da49fe22b1022a7bf998826161eacca343e82125f1b036b9cdbdacMNF�
7ac006a9950b2c1cc710083732c5cc4a33e7c20c3699c50ad6f24318b5986edb�NF�
7b7ec44f73e60f1826d6c1d04e2dd0dcdf55c7db06718558d74313208c397656NF�
7c0a15ef78a1950328029433601564ae9606ccc8e17e7470a5e84088ce0cd908NF�
7cc876a75a07e0764ab0c3b780afa6d07f9464d369cde9a0a7fa0d5514a397e9�NF�
7d5c7ed2663b8b4d93ccdce3e87fa7b84c42697397d9594170591871b706c60d�NF�
7e50ed884e06e8b99632be1537d095f84b2961978088e061936f9dc699a523b1vNF�
7eee4abf22678a8043377d3ff29621b20a1dbe6da04bb0918068ef07eacf23e7	�NE�
7f6f935600e1b0c0b16538a2e5c86c076209ebb973e4d33e6f98c66d85973c9e9NF�
7ffe1e93feefa9f0a3fb660a77c95541359f3947d165e16a808a69bd327b5ca9VNF�
80846d26d36affb3de74ab705faf20f1ccf2d552bf0f63a19314ff38efed5522�NF�
80f55b0df82d9eb00f5b602013b5219abee2198b4d76be5dbf7622302dc2c749F

ee��:��V��+r�F�
79e43cf434b3dee8dae9d367becc2c0025c3514b0684d27a2cfe6fbf9557c019�F�
79eacef92a2947aefaab902e53fada60dc27d9c173b1e175f1ce4db04d6c653eF�
79effda42d229dffeed9ec2dc1067ea15c3d1895c9bdfe9d24064abaa134d7a7
�F�
79f1fedc8c8be3af6f1d989940ed7d956d779d3f488f821b4f08032ed83b1f3b
�F�
79f38750b9d405228c1da2c38370aaa60d7421ed5671c4a1dbd4e0c5308606b7�F�
7a01c8e4b4c1eaaf03f29bc31b1fe91b81c17591f2d6a358c7e57ae3b8103eb6	-F�
7a0d7cf0562ad8c11ff90029a2c2cd9fd83de148afbd1a8db3fb79e0d11ffbfa�F�
7a120b5dad1d3423bed8b8972e2921ed34ecc22037b1ceae0e2a44fd7079bfe1\F�
7a1256ee4fd271d588649f70d8aa4492d3967b0afd9d82a145275924442baae0uF�
7a15e89049ae929f16d7970980522d53b696c61a5d5ce15d47c614ac40e4e05cF�
7a192ba7047354c7646edd4e2c5e44dc140a332186434319479f733ea0d3a469�F�
7a53443e34cc7fe98a4371e9025389c86bc36e38ca424a98b85b4224bbcac1c8F�
7a5d98b836fb6cbb743996d5dd4c13cd9fe0b108498811fbc5ccf1dafa7797efP

ee��:��V��+r�F�
7a692eca430d652a3cc0c216034cbd84562dbf07b12cc646e4c6e4d5ab7c2fe7�F�
7a77df777aa49e715d99b786d4ec6329b8453f637359c0c17c35c656462e7f18�F�
7a7b265708dca056a11cfae6ae29db41405f54311ecc3a62636751d2e8044546�F�
7a8603cbba23f0fcd47e61e17dd4bc37f62141da71555814f5e89555fe2eb8f3�F�
7a8a2950c90f28d4e41ed775b9ba97a61e78927e387a936edd2bb1ccadd3bdc7F�
7a94ec0c411357ec66396223ab1a2614a6df7dcab88aacd0aeabf389ad0335404F�
7a957336373214b86e031556081bbbfea7f560af4a8ad2dbd60475b20bc824d2�F�
7a967bdf7823255236452e9a45977d7f6c253c9f3c88f18a80ae1ceb606319fdF�
7a99b195e228185309513ea38f47665d85c3f48be1efc08b2131eebb4af1771cAF�
7aa980726f441dcbdcee2948aec3a75da1f5fef953faeb2e9aa52c3d5818a4e8�F�
7ab133f1d96805c9be74317d0b4bcea3e9eababb5fcc413f08dbe0176819a8c7�F�
7ab4f1b0aa285d3773fdbd8bfc529969ca101a627d3ea88bea1f99a42093e132F�
7abbb0853851a20592aac6a51b52bbe28466f3f0ee1d83a240a39b4e4f336537a

ee��:��V��+r�F�
7ac7d7acc2695d1247889b192c63a490c516efb9b8c1309543008402c549f1ebqF�
7ae117b77c126ac691263ef8d207cc3c2dd9ed5f34f138e411d09ae4a6122407�F�
7ae732734ae47230b9ee78bd90d72d963f85df5663e2f2ce2377f9f040e2ced7KF�
7af082c81c1d06e353c77f01f35f6d3cd695a765a542d309f406079af5f14000�F�
7af718b81b8f45b39e82ed35fcd1065c8dd2f178f9310777598dc5f3544dd695-F�
7afb4c27414189dd2a2cc1df1ce6c80ad77c0eb59aca381a22a3f4033f950c67�F�
7b0c0a663c4992773363ce6c177e9d75ad05e8f8ee19c76a4d1f71fdd6a97da07F�
7b1c52bbe226abacf3c7479ca52c3d631af47e215754ccfb2ad53c6226e13392�F�
7b215997f9c81095863133061f447c80e870ef64f74f3d78e13b7f9cbe749027jF�
7b3d8994d78928ac66011137e013e2d788ecc7712d592ce7c08306cfd1728489DF�
7b45707f7663e49ac7b9284020212ac82fa961b018eae09ce504f69ced527ca1*F�
7b4f34148e411ba03bffe54c35102df45b1e78e1ed461d8ba62a118f517e96d9\F�
7b73f05a3cad8a9e27146ed66584c90db157d3c8dd9073156714b06d53ae16b4%

ee��:��V��+r�F�
7b812c97766f36c2e477c31f7c5cfaabf34e7bfaf746d34a7f6971d6abc3e95c�F�
7b8ac8b33b435a9814ec099de17eab143568599d591c4426da4cffcce26808a6�F�
7b90cb8bc8d2c7faf537d5ae45a0a5a1723647451341f52d133cd54aed8e427c	_F�
7b92de985a23ef4b67bd11135a92917ca99025920b1e4db59517205a2278c3f1�F�
7b99cae552eb8e3aa9044c06a0c67601794c80300cf140324bc228da9d9f0c30�F�
7bb7db4c0e3b5dbb711a2589b4e752e8fe25c9b73185eaa3eecc00450d613c21PF�
7bbf77456d5e310210c4bd541fee70097c26568f34f44184c878e5874e2b57f1�F�
7bc141e86767fb1aded5e84e27ba2b03fae8eba8456610294def618a96028c69;F�
7bc6360b4ac0650d8d43651e36f72b8c9c1a393ee315d2c1ee3d3e997ec61b5e�F�
7bddd4fb53bfa9c6ecfb51584e6173525154d1432fdd23c18162b8a5428fd9c2
�F�
7bfce38ec77185d1696e388cecf4163509c7884933ded369897a1fcf77610b49~F�
7bfed40726a8044b0f0685487bd9f5131499f3c91242720ec1c55565601abd18�F�
7c03b652e1b0cb7c5ebe1d7b4c4e230bff7b2cc8cb68a40c51541d017458d4ac

ee��:��V��+r�F�
7c1cc6ce8c70a7a3b07d877d8ba90c49382b8945d6695e986df3f69e3b59cc32�F�
7c35e147b314a2db86256a9a76e58c2eb54bc2c62f2acdbcc0dafe986f0caff8�F�
7c3a5727b1fac7e2de0318d8d80ec9c79f8d4817cde856564f2029e02691769f'F�
7c45ba29959e72ceece7bd3f48bcc0ce0a86ebce4677a50e9d95a46e172b5d3b
F�
7c4bcb2fae18cd595ec3e02100dba37726442206905efcc349d085f60cef45e3F�
7c5dcd2035ff3f4503debbaeecc9659798c5a4cc8626f9cb089451584f53fefc
�F�
7c67eafa7cee5c39a41ff1aeb7d5cd4d764c1967ad0cc0795ad34e1d63727f0e(F�
7c6aa8cfb40e021ce2fd6990bdd23916f3ceda1eb1455e49f09d1d0fb41d0f7aF�
7c74b103220013bb9c00f724937c12e143a5ce16e2b00ff71a37c5201ed308e03F�
7c759545a38cb6f7d1990533a397e63777b0f5056c0fdbb807b6d6972e8512ad�F�
7c7eaf7933e4baf3cf7625220da22e524fe3ed89a2e6b6796e753638c6af6de59F�
7c83aac8738db8a2cfb8c54ae4ea010d008959520d9078ac174ef677f712c83d
TF�
7cc5e8e7cd7fd7b33ddc2f01d6d1866e7073a0a2e8ec65d4a8b21009e3f67777�

ee��:��V��+r�F�
7cca95dd2bd890021e0f9bf2eaab7788beef2dbb9ef929b7da82f9d98d4b10fe�F�
7cf7e3e4798fd8a46b48e37fc7adc314491a938ee17b815dd3f5c0887cfb2f42�F�
7cf9167bef9413a9b392bca9faff3196f5c05d3ec73a6d3e2429936ca11db4a3�F�
7d006c10e1e850ab6583783df33de8d968fa27fd47068c159bb2bac55c7eeecaaF�
7d0c45c842a51eb4e14eecce16a8da906ea6668258c6fe279d9649645d4bd422�F�
7d33a7b50c3e3166f40ccd88712ae894914a62c9c8468f2b8145876e20f92bf9F�
7d3b3df85df3f1d47ab959aa42eea6f3302b166b9e37ef92779c1c8acedfd671�F�
7d3bfa9dc6bf0bfa9484b2f3613c4816e08534e247194ef466587ccf8938e69eF�
7d44f440dcfa707ff7ed627fb7b3fb3254742dcf60373b386105ea09f4e14293
F�
7d49e6164c17d7539dfdc7b2354026cb06b6ee0a32b0c9218ac3d8960f348534dF�
7d4cedf119f33ca8dc827b0f6f2be910119d492bf48ad4b4fd46ee45c6094800	|F�
7d51d69ba5aa33fd5b306518dd99095ba3f2ff1d6747f56936b992042029875a�F�
7d581bf8155fdcfdd7570ca3bd524e4ab64b42a8bcbfe776cc2d97ca9fd25264
�

ee��:��V��+r�F�
7d5e6120ec65accb2c5c369568085687a5c6a5b1b8a72db4eab223aeff60b971�F�
7d80d5c3223ee7166a1d09374bac557258cbea615497efbd575aaf673d58b321�F�
7d9adf9e27536faf7c726121ff0e58d8a0d0c473168713c55c95d74da74c2ebf�F�
7d9fd10906d65ff1e5f7dc8aed453f9fa04ddb34ca3a6622b45b15bbf2b7dc66	�F�
7dae50109a258ad6094999bad1cf8de9bc680b967fcb221cf9e38f896f8cbf93�F�
7db76247917b09c13f39c3f19f3ecbd478e5c46584b6d8ff68a51268b0251871
�F�
7dc75ff8c8c8c6b5a6b9fc8c0b75b9ddaaaff8045fabbd17663a334c27c8b9cb F�
7de0016fd49560394d1c4f5584dd396e5b41989957702068ef31979934c299dd_F�
7dfa4db17abc05d6bf097a9695e02d8f0889d219fe48c90d147cef40ee6a34e0]F�
7e0b3e536d03b5890007813734653bd6fbc40e2af79d298e9448d84e81ea4734	�F�
7e0f590ddcedeebdbcdd4b72907bb5cb9affb7ffdc5d55c89e57dfc3eae94eb32F�
7e3441543e04cea1f513eee2573e964910463f84549bdf1a6c50721b6528186a�F�
7e3d2b8310ef0375992c9db512db676147c1e9c655d571aff4a18539c7617b44#

ee��:��V��+r�F�
7e5b27fb6123ab5f0cdd5f923b6c4f144c4cff9c981c132969b3026427a32a17-F�
7e64442436c5c1978be36615d69bc4f59a79cef4c9a5819e922bc16f290cdc13F�
7e6cf4cf5a25112c185e8d9c2750ce650787af37ded646d8d3923984a1868673�F�
7e7bc2ad7bb400736ea42cfba2ef80b5d0a56bc7d73625f692b8597a92251297LF�
7e8e536933fb7b0d5a5fc7670bcd56337af338f221f564415328864f937088ad
�F�
7ea4c424cb331a1de27539fd790be4a991e6525f0d33035d854f2e66e0c2e274�F�
7ea68138245e021dc4dbaf9e1b990e5250e1b72ebca41352896a1b5dbceda2fbUF�
7eafe5ff654144eafe243a63bd26f5f8be857f9a6db277149949bba5f768b643
PF�
7ec2f032f1c9b576b66559472dbe5f59eff0b891da2e1c9a1794711b872c6cdbfF�
7ec31554c4d3119952f3384c6c4e611722a6b4069ee4f6de885660f933e49194�F�
7ed2c97dedcd344ca3d389d366a728d3d18c9b22b1f567b0d03394574fd4ba2c�F�
7ed3fc20ba01570a826ffa2af023ade0d8581765238cc534b73fe6e9508c4beb�F�
7eebede496a10ef7610a306704e8b7a5ad7104bef3763ae5d089c514d1656a99�

gg��<��V��+r�F�
7efe56d9bcad9ff6dc145a50baf931d2125888da4d984a84fd14a509862f3751�F�
7f007138d6b8afc352f1f7423577591e6c1dddd316b6bad15657662274470ad8eF�
7f18b428cb0449058380cba27d10eac85a6389b6c3393ef6454032f2dda04023DF�
7f1d9434068b1dab6eb2d4673f1f11fee7c197500b464616bdb606f4cb097f8eWF�
7f22cccc77b46b6d72fc3cd7f68664be248f5c21b739751c0122fc78466873069E�
7f2bca34d66595ea71392f8a9fe4f631679313d883bbc5d48d3d49e1ceb88d8bE�
7f3bdd324d9659e15f12b5165027a55a0cea71990ff77d978912c84bebe836338F�
7f4ef7b8732bcac3d9fd39fa13b53c8401e618cc64cf7e86b46a6a0bf9f5ae93�F�
7f527d338cce3e1cb86323b7257ae02c7e130d6c37bc6ff07f75a20ad82a2e25
�F�
7f5933636add693e7d9a57c9d29615c25c2163009b4d680b43a93c0f252fc3c4RF�
7f67e4364ed1e323c02f8bdeafb086bb8d6633c2da0a3139a1a54be82a87bdec�F�
7f699df3b1a5a03f46da8dc559615cdabf4c01094c12f89d7bbbbb93f3744af6�F�
7f6c1ee79dd230a85336204331bee68c57e6de3879ff35719632a2132c9d3c75N

ee��:��V��+r�F�
7f71841bd15ea189a3946e054f1c018051ce33de76170da0fa7a4ec172429517F�
7f851a8769285e3f9758a4eaf850aac198635f11095424df455837066af7c141iF�
7f8cb3fbedf15a4146ccc43a641071e7f99fbde04c72526476d5cd90545e4644�F�
7f98ddb94869395b5d09e7f387eb87ae1829dcd23a0e383391bf1b8f7b2a9dfb�F�
7fa5ad9d67b6a38b005e9e2a1e8217c78399fa4a6135965a3d32ed6d2ab0889cxF�
7fad090d109f3a2e81094996192b76c6a9c2f3dc5bdf9730d806f26705d9ec47�F�
7fceeee6972a71bd87c407e8be73b29da2cb7fdd6f2197b3e49fe3be552b0f0d�F�
7fd90181b9a3e062d087509d186c4ef8394aec39ce24e0670b0a4c7b21d8c381�F�
7fdb130eab949bc403e1c3601e83e6c3cbc7954955279ba1bea21124e1e5de38
�F�
7fde0881297ab193f65e33fd5c8b564df7735f25fdee512b44a93fc5919686e3�F�
7fe1420aaf46d2b3e38efd53645a2803c75ef85aa2e51400cf062745f1a1e9ca9F�
7feb97ca5ba81f62121c4d6fe734440acedc56ff87444880b72d989261a4148e�F�
7ffb232f1c8d11186c79f3208453ffcfe309aa5cb3a09181ea598fc82f582228$

ee��:��V��+r�F�
80196e9f5cfeb1b79fee9a0c7fdadd992ab7aa207db374333f67dbda5f2fd14e	aF�
801be54b282724d9d09516d698bc641c19471a40f11821cbf51804f40228e59a^F�
801c2058a333ace01ba2317b6297c530b615d43b97c7c076ab0842fec5a12dfb�F�
801e9bca39684a29a84c368956ed668beef392b230692274c32ffbc1cb714b73F�
802a7e88deb752607d0e6f0f44f099a1dfee4747bd86101389d25eccf2a9ebe8eF�
802ef81827f925a8e48e7eac8b4f0c0e44a7873cc15a96c696316840d6541191F�
80390bf3a08ba0f650c404d34722110ba6e30e0aa373d82bb1bc2d8d2d7d31bapF�
8043266fac97f3c92dfeaa8fad590469ad37ab990d86e9ece87829bdd9e0c8aeF�
80476ff98812cbbcef61bbadab92341dfb34cec67d6654aa104495f4469a5e98�F�
804cbacad84b958748331da1bcd0479ae493f31fb8564a84104a6573e7aa7c81	�F�
8050b0ef335b05d786d15521243cec669562d6625e4d80db07c84aec1e66d0a3tF�
805b144f9365a51694ca9ecf28482dd714b37f78fa08e3a4a7a5aa22da4216de F�
808073e5962f5fd81e0f89ce66bccad77dea549a509cf522580257f973f2dbe4Z

gg��;��W��+r�F�
8087b4408319998ae1d6b166c84ecab64a54cea6ca23c0fa10d0108446ac99c1nF�
8089409b82d6904e6a2853e0d520b54e8935468e99ddd4cec8394dcee0e731d7fE�
808bc13d124b864d8dd90f80437bc5d919d6dcdca1ebbd9efcd56e575fbfb500'F�
8090afe9c1843d71bfe8d10d6b4076aea3559e86d8fa4c232dee54817c5b76fblF�
809f841a5c44ddbe609d0827d1562e3515efe0f58ca9a5b5495789e578e2f7cf�F�
80ae1fdd564cfbaee7f977fca0a23cb7bb35f9a6955a26b716894f379759d7d0UF�
80b0aaff62516f728ee4d1972185e7b7b5f5d15ea67da82dd19429fac70a5b23-F�
80b89881a4e050f35e7e02a7da9f7eeb5a152b057a835557cd8472b6f91d182aF�
80b9e73c5db5a194278ac3415303dcf5c49c780dae020e15b55a65a9e02f2a56BE�
80bdac5815e2cb87ffd8f9a1347f373f9a9ced0b8d2fe36ed814bd54f4ef39fawF�
80bfd0e65eafbe59f9079ccbd7a8c303269a333e10aaddfce933c3cc81907c66aF�
80ce6a4a15f013d38eba7effe54a0be427263f17ea3cccd5f299625962e17ef3�F�
80e8a702983be224224c674404dfed4b8a89aa2c699a0bb3c32dc8c20f0219c9+

ee��:��V��+r�F�
80f69ad6b79f4c708720c43f742e85b81d91b383f247fed78bd4d579dc9c3358�F�
80f7c4d43325e0eaf5c03d461abdecaa270e288f97e98c48b11ef953ac3c2ad7�F�
80fba5d63f2251d74b40f2d94f3fa1ea15c4abee2772339081238b1d17a44eb3�F�
811548ea9fa1b1fd4ba32a27977ce75a08bd90e1f90d50bbdfaabe36480c3f46lF�
8126411e939ed28c342373246930b21454d5af2651f4d36c56e7d17b279978ff�F�
8127547ec74cf787276b994c2f00085304d697481622d6712560f5c1fde57dd1�F�
8129ad43222a6a88ffa26b7ed5f36d10b1edede7d67aa145c0880eb6d3058828�F�
8134bb4793d96d74f2db411ef17a6b86bcdf3847073ba2f4a8d8e89bc0d849c6_F�
815665d02d2dd24faf81af70e9152d3a62a47d616ae070372b69b3ce7b0c1e95F�
81673643543357b7e306b0565d82bcd642537fefb2eb0244c2dc8b1dbe481c2b�F�
816c816facf8421458376b99f244ef91c147063ed4f4955fd0e8dae62eccaeb8�F�
816ca6511f010052482e88ab2a3bafd3be37b7f6544e98aa51c2e521eea8ab265F�
8180d23815951b3c5be397846577728116502dad35bbc2dd67b7c4188244e465~

gg��;��W��,s�E�
8185f310e186803f0af31262808f321254090fced72ee96c77a5b4ecea2ab08cF�
81962e4767ff3bdd232b266847805d5a9914ba7ee1f405ee6212d3e9a2ea45d09F�
81a303d0e2c1f786e5921377bd64c30c8d1daa75fda45c1e17c45ef28b02c568F�
81b2e85bd83c8dc868290121adb4b8821c2da304dd04a69ec5ea65031c46d351

F�
81b4e4f401d2402736ceba4627eaafd5b615c2cc45aa4d4f941ea79562045139
LF�
81b502f5e282e58db43c00894f89f50523953165c64a408ef983aa2829145c7a�F�
81bcb4324bc25258c6e46c0bdc146842422c22344fda2af0164660b98db7c0dc
�F�
81c248f72126ea7b1e33a7f47a8133ab505675f4db87438422eb0a47bb6f2bf0�F�
81c536f389863d868ed8bc21eae1b2225ce8631429c5df133d0e769c3f340f77�F�
81ccbdfa61dd66d66bcfc3a8b2aa34c860aeeca888655db0c4a47cfc4855210c�F�
81d6abea697da32a4834b6bbe7be764845468cc2ee8e089861fd0eb80c2466c6�F�
81df5804e78ba7e49ce4ceb11f4b7c514d4f06d0ad146b950993c6cb77e58dfaE�
81e77a0ae807ac0a5e4579c4ac44dde54b30b6b5c6ab31d335b8c1bd1836ecb27
1N/1|�]��>��j�N!F�
81ec5721e33cf86aa5a19edb4af8269a95b79b41d2afc6f593319894b7fd8cf4�N#F�
823e82a094d45f0cabd438920e6e33584712ea5e4c9e767ad9d3d1a34b4ee0e2
ON$F�
82a28484b658942b7c372b985b9758e0960b5693341a8ede58595d4285be2863�N%F�
82f169e42c36e9579026a6d56d46f2cbe59221a611192fe96b613ff527e57a1c
�N&F�
836c3fcced9a9357e2eead69c55ef322cb19c6fed119b1eae1877c6b2bd51169?N'F�
83d237d121542e1a8974ca5404efc06ebabca5aa5ab1f7f036ed16f3396c2445�N(F�
843def5f9cabf23dde3a6c7cc1d52f68406f3af88c42d2d84dfe7a35cca79197
CN)F�
84b71cd28250d68d8dd0c9a9da4983782f0ef2c5888c5734b7d12841ff61313b�N*F�
851583dc78e98a516586667fe472405624392dbb850b366aac5e87fde83e922e�N+F�
85cd5123793aa450727948cc2dc0222838b43e3ba8e5301199710b0f897a9f21�N,F�
86754c49d208af8b291d53143af752244a68d88e0b4ccbd4efb6811386339d4caN-F�
8739cf31df198902b5c4e96ff918fdcbce1f988373e266baf0f5836a83776919�N.F�
8799ebab64d83170ce71b98732944e96f18743f83950b9452d4ca10c21d7455a�

ee��:��V��+r�F�
81f4f035197f26565bfc9caddcd8374921d1e73e9c89c65d4769e9daf437a158�F�
81fe53c540c2219cdfff5019d61db2306219389015797fa7f76cb1b9d772482a	QF�
820151304111db2bd87d6e5ae6446b11a958a081a44feb85b88cf0ec6c550aed
HF�
820567529a85b68ae8094f0be50f5116b0622ed1c526afa0e239f84b9bcb0860pF�
820ba4ad8ead8e86f08c52f1683fb89e78daca198b5a3d010ccbda6eeb6afeed
#F�
821164fdb3e807716631102ab1778e4736d70fc13bfc34bebdebe03bcfc8510f@F�
82146c665ec6adb6b5a44f5163ac78834431f9d37ddbeee4cc990634d979481b
�F�
821ad7280fd9322e235862f73d1cb6c433fe48e14911cbc39141b2df2732bc01�F�
821d095b31cdbab402488cd14bacefa75cb451e7fbd956f61a6bc92a68d59f68F�
821df7321c6fd01dc77f9435ba556d7b08cfdfdb262113c4223883e34adeedf3�F�
82269d23d95a9f1e1e213464701f07feb1fb5233bc66364a7b39d1a25b4a7a72
F�
822adbeedf758cb1febec29ff177d207923b6e3c24749077ca4f3a684d593d1c�F�
82386943e7fd9af89f6c5d8dcb1845c1484cf6a8e11a055c062e3c11deb5110c#

ff��;��V��+r�F�
824340802392135f9a064de630acd55a619c7b8240b3aa7ae13f664637c0f023-F�
8244566af4a36c890bd6abe69ab5f9fd27a7847a32c6063c2ec5fb6de40b84fe�F�
8246ba658ab0a84cdf2b467c142701ec560b9ced3db90dfd04a7275cb2636566F�
8251d9d6d6785ae0ed2231e5acd6b3d6b86a215d008b16ed8f78ea929cfc9c4d
JF�
82615b5f75a4fb89fd8a9662bc57f478e82e61656145912b4cf6dc7349a9b42d
�F�
826c87462956fa022a02326f271d542600fd73a7be32feb4eb7108cbc8b45eee{E�
82770f241e9bdc035784ea9189503fbe592d5c29147b6f0860949963afbefbe1hF�
82822855575f68931a78cb69d0b2b66a872fb63e31213c05cb77147946c29c41F�
828e5f8c216c003561b21fac3ee1c2a2c2d556fe14b7f7eb5cecff383dcdcdde
�F�
828fe4eb26915648840d50ea3daa571c3735822ed66eced81dd20b12dff3e10e$F�
829050a62694fea5287076cdabeec66b15fe994809fcdd5931ebb992d47fecd4�F�
82932d0635147c1a6bbad3358a167d3e6f1a59a1ee3cce64d41ef8729a3f2993tF�
82943aa98d57823fabd6521b0364b533551b4f5b299febc13bc41d5342b5583c/

ee��:��V��+r�F�
82a64c4e305a429be421cace128685a29a5971da0cb54ac1d883f150b1f92460�F�
82af7be38d0c8eb49df265c4c0138bdc35cb7ac26a1b6e3a4d0f0a47d293dc93
F�
82b1d1dfa51bb5a8958691fdfa3bcacef757cb4afe47f1a082dab853cf9650d3uF�
82b2eaccefb7228d0de8dd9a88417b5a3b5cd4911bacf3931b092c0c35f16e7a|F�
82bf486bffe227eaa4681fdcf6cb4c2225d25b5dbdad8b4009f3da4a506834ef�F�
82c766a327f786b1d8e1cf34a5ed50e63b48ed813b1e42b1cdf8bdbe7d349866$F�
82cc32e8088438f5d4fc7f78b91aff778d193cc5d296a1afeec04f69ee1134a3�F�
82d5ee0b6f067209f21584e5acc7fc2bea3ab64f1d41f52bbe4bddc612f4670dF�
82d73a39a7efd415652fcfc12d6bf4b9c9213db0f32c9c81ec5b93e7020c715f�F�
82d9617a439490782837e05a5e05310b0748f064a0556d264fbc615afd85671b�F�
82e182e512caa6c722313fe432c89e81a61b1c021c5fa0e223a163e77c95ce6e	mF�
82e901dcdc6ecc6088013e726925ea0a208b449014b09f844465ad5d7b305805�F�
82eb45d206c4798cbb97d743814081a5b2e5621151b5d0be9cb94ebcdb32447a,

ee��:��V��+r�F�
82f985084dd4473e97f352c4919005eac36a824d8c9490c80095912a2f94e3c5
�F�
82fcde3856cc70e10a4bd10d93452cca394045a7afa452b0880881752f2c6b56�F�
8300c30550c66d4567d56de5063d79d5818aea066707cfcf6638dd2811bd74fc�F�
830680293bf892ad9b57630cd1fd50d4415343677c361c32b8b849c399daeb14
F�
830b3c9f628ae0632f8a286c53dd687d6d9700525aa381704ed8d5f152ff43d5�F�
8317594c4733bc6fd9c13e0001d962d14e7bffb83ed66e6337f6b8a490067ea9�F�
8319e904c4b86f6892579492778456a31dcdbb29d4f7b62060dba26486be2a85	+F�
832470ee4b64e39723111ada3304a733f57c404fb89c7383123a52f33bbde6d6�F�
83282159f5c6971ea89b738532ec3620b616c1b9d90ff2a62527714e210cad05	�F�
833dc73a5ec23e1c5d73db93091846da2a990c4c750e903a4a09f3a61282dab0\F�
8359e9ef711ab7df3dd2ff2d776303381cb9569b28010fc635d1dc38c63d0a3c
�F�
835e86766eabc1d9ae0e8b151d9721a415b5dfdc6b9dc31497b790dc7f51e60d�F�
836ae43529ca6681c98238726bad12871f01ac8436aa3e19605c87ec7aded177�

ff��:��V��+r�F�
836e44d1bc907b9e41d6d905730da4fdf18d002f62676006795789a1aaa6084cE�
8376cfa512fe6b2ff76656a962eb9991e84736e4a697d521ce94ef01b76d8224~F�
83798801595394e9798351e90ce24993027044de3f66b95c7da60059c1e8b1e1�F�
838de1ef14179e1a8bb9c6a1bab3b688e72d7571e8442fa520294f469817484ekF�
838f9c1a4495b9f9bd85ed4019e8c2dc8ac645f72e221541ed03338c1cea45bd�F�
839520c8f5c973a577f0bb417d4afcf5cee1ae5ae2f72e64134b38bae1468c0cF�
8398bd6b079096f5128dc71162f6fb902418319a1f157c08cd55e55ea7b42815
�F�
839aadc2fbe0a7a4b708e39eb1e3e9359bbbad64641fd674e425f561de5d004aF�
83b0eba9581758f02b5754034154c3a6a53b89674d90775b537b093b6d1abebf'F�
83b3cec745768f57ddcdabe20c4c848fee7126552012cc9fa7a1be366825f4ad{F�
83b8bc9adb407e5d032b0b7036ab81ae352bb583870b195e840ac2f094c2cde6`F�
83c007c9ec430e38dbcdce8b868daa1718da2090b7ef60980dfaeff2c633aa2f�F�
83c818ad04bf6b2bffa2f694713b5cf4daf9cb03a8d10c5c5bf31c984bf9fd5b�

ee��:��V��+r�F�
83d5e8fcf034f22af47eccbbd1c693274a94cfc7afdec007e5cebcb5d3ed2a73�F�
83d61057ed2eda189f751ce319a8369da48465187416f37a4dbc5db0b9df35a8]F�
83da2d9387fb7b54637b838d32f6027693e46e5eaa5f85a337fda688683830f5�F�
83e709af69a954f17415b836c06c639e57234896cfbc5a9d849530590fd960efF�
83e71037aa03cb56d8e5d9d0d2f0e410673cb723d0cf4f81dff15ea65830fd59�F�
83e83351bd9f8e17bb928673f2236a6035cf3a335789585a60a5d5068c2c8b23�F�
8408d0aca2bfcaaac96c7f2344996a46fdebe107dd0cb02f4af7dbdca094e232�F�
840f1eeb8f5f65eb3e144edba32348ee678812d22065a6e75c237879369172b36F�
841781e279649ca9fced8e74583d9a30e6d5e96023b689f339cd0c6814f8a746<F�
841d060e918275386a6f0807073b7dfbf1d8b8ef4e46c4ac35317a6f61457d8e
pF�
842133034fea3edd8842d20f2ab2a87bc76f467525d1a38c9db15fab32ad4a5a�F�
84217b8ac653dfecde5e7761d967ffab45d9ea928e22a4a2cd5a502719a1a0b2F�
84338ef31ca6974b5061ab6de6f266737dfa9cd9bfd5636c91498adb8d422130o

ee��:��V��+r�F�
843fb795c9bf323f16859c41219123409abcc114812537da012befe15091fbc3F�
84429c34c87f336378bdb26019944d56abac80c14e6c4ee130584e9a6b1042d3�F�
844cd40a498923147207285c6be1f1005d82c0c81ce3d61538110f24c99a8732�F�
84515e054cf47fee3e466382e25e19eb92f6f9947741105ea5f6071f7fe18185F�
84534b4e8a9f57e1d6cedeafa786721a479e210dc0b2bc07dd005e62c961e69e$F�
8453856c66fc79e7ec946e471ab4cddd8112886e40b99a72093c616592b2258f�F�
8468dd2d01e7228ce1d031241b5387d85911912180e2b91324d509c7631724ae�F�
8477e56cf835d806a8f5345ebff218dfbceb351c7bca81b9aa806a2fa8930f02	F�
847a5e41805b10521ebc6aff29431992c0a22a8d17c634a1e13970158fa1af9c�F�
8480c9c162030638d7e1aeafac122629e6446c5a5c93910cdd0ea2bdc51c5597�F�
849380b5dd59adac484f86c0be1242d6fe1a44e5e1ad0f83c18bf6a82a4f531f�F�
84a70ceb4fc3a611fb4f2317063db48a3627bf5b481b3c89956e1f1e9fa9f5fc
�F�
84b67246d4b4d43e8127de0275d0f6e2904295a58a879e7d64b8a9d7890561e9/

ee��:��V��+r�F�
84b8b611d8300bcaa1b8a5f55f2a12f6469df74e32e649b9b505e76925339810
�F�
84e0987f67e674a41976b9cd147cec00e6c57db8a4feeb9b141b7fb607b890ef�F�
84ea46ab16a2d8ddddcb890ba2ccf11b3c873260b9756f1ed64d7aa1a779ac5e�F�
84eacac2027d38ab8ac05edb1c4325c192f14bb386175f2256239f2d4d9d32b8�F�
84eb961185970d439cbddea77f57986510cc0e948d47a65f64173b75fa19949bF�
84ee79c0b96353a8ac5b4d46b6624e17ed80e67fe48583aac6c73b9b4deea759=F�
84f175bef4d2561cae46398abd9317955cdbe6a2c0352227323da35cedc29948�F�
84fb40705d6f0704a0543373e2e266ea3565b3125d70e1cf4d3a2ef8497670a0DF�
84ff86ac505c0857bbf75916d7ef4b6be65454e5dd5ec6ed67ec662a819c10e0
aF�
850766245b53884b841d001909aa89898b167cf79a244d26c44c42dd775019c3;F�
8509c76026145b29ba6f1b8ae37a82d1ed82aae0b7d56716d065d753c42837f3
�F�
8509fe4641cb16b24f3aced3e8cb56ef28648055b03221b4d4cb4017259e1995�F�
850be6d438290af4b3c31805a40c2f8a88e4e751bafa1bb02b6b884736f80ef2�

ee��:��V��+r�F�
8519d3cb6d82e68f50832778a44e1f676b5fbb85f891a07751e7f2c0767112bc�F�
8528777e2d5d089f809fd37c5c722627e07d23a1c4a116c83e8ff648c57058b9�F�
852bab23cc3bdff5b4cdf1f101f36a4d1fd4e8d3e570d399b4ef0b06e0e29536�F�
85419f90d3d3f07662a30384cc8ac45f87402b540d725dd0f8c9705d2c814733
F�
85452769364c8efbb31876c1f6d55993159c1055188c65ea7c17556d78ea87adgF�
8547960e747f135c2514a024771cf2225c649ca891512c2dd1069a06138796a8�F�
854eda8da3ba3e3e7ccc94e40250bb1351aa11df12f57ddce1e307ae0bf448e9PF�
8552fe474d6c38b9a301d6273b81897005c2a518b97ad149df81dca168a8bdc6F�
85883036219c6afb70af3efeedd40855b4513b05e5a5134abc56c4b95841a125
hF�
858c36d8de6e26caf93ad7dc07224b2b333fcf1617a211b7303e44cdd15a6f3d�F�
85ac0468355fd6847c79849e947fd3b5d88f606ad3aa6fd06cb4aca3fe3c9fc8JF�
85b37a5fd5787e7ba6d0b814f2b7c0de2df1e314d12a9e9ec3fd2cd80e7dbf28>F�
85c0d75554f340d99942609a8488c0ad5b2e4ddc0e40c1192056ab8ab8395492�

ff��;��V��+r�F�
85d24ca3ceecf07ce09d89a8ea7abcb5f605c7de3bd556f87b0654c517fd5759F�
85de1b747c97e7d16a742f3f0789c4d8761e3b44c28ff437bc8b47499a9132adF�
86101a94927cf01319d801575aa4ea26e63efa577a5431856e0329f06a994596F�
86216059235592e65e7652d91f110d715907836ae9f6759187c8cf877a851e69�F�
862a87260cad27824364c01e25cd821b1fc2a084f3522fee0b5654d684839796�F�
8634b9087fce679a0f75d56b47ee7f5bab818bafc65af5c3bbf22d74b7807c3c;E�
8638584ccb7fcde8b4799f13f6a58ef2c129baba95c41aeb504453c5262416a1F�
8649585113a6705fe59be338b82b0ec406c0c3351b940dbebdffabd40fbc2eb5]F�
864bee28e84214e17a2569dc4782fe389e64424fc470fc80157b86f2bdf0df03FF�
865bb89dcd4d8816e485ab34a083b55c7d4056ac265766974695a87da62d8aee�F�
86614c497d063d072a270460ce1367ee6647bfa57eb10ec1f02b27e267bfff67�F�
8667cee91ed1aa014f71555f076cfab5dd62a042d3dc7ea1d86ef30655b038ddF�
8670eed5135654aa066965442ce0915cbf933f4742d0a6dab8b6dfc7ecc2f773;

ee��:��V��+r�F�
8682aa231a96b16cfd29d6bcb965dc552b13f5ce5e91dc71b4cb0725eb72bf7bF�
868a84b5cfeae8a5e75edd91fc853a5ed3490b4de3805f6ff0020f5483875122|F�
86993bde440204eca01ab08264c50ea2e67b216b8b0460a9abd7ed1e48864926�F�
86b3087af0b5a421efcfc192824973fcedcaee28a0e78bdb52d9101ffee96ebcF�
86b8329276455f1ab7137f0bfbed2c18288a75bb75932393695583ae82613063
�F�
86b9d3e949b76b70e8c793f03ef07004f125e978056735b094814e3c282208a6�F�
86cef284a27c740098bf41032dcb527c08c5847589bc56cd6dda05d37f714bdc�F�
86d0b148abfa317696a046ac187cb479b242ea3f9ec769e6891130395ea172a9�F�
86d37b5ad18b07654ecb4a92153db1f1929859e2e00c1a74b0455e6a33a22949F�
86f47f4e0ba937bd5cc3e11936092ae2624f85a10417a53a3620844161158224F�
8717e76e453ff6da56721f14fb3f66a602f200c27eb0d7730ad11ad9f0e696c4
�F�
8724fc26052010a537fbffaecee3413ede14b44646e26a456c4c8695f5f259c0�F�
8737c27147724574d3a8eca1a97c42dbd392c654e638efa67e05c34316dbefa8h

ee��:��V��+r�F�
87421442fb8dc3f0b7025e35dcc33c47b33e35e6cff668106fc871a7fdc443b7�F�
8747532845b7b53c68c46cbd4ae380333a36f007a086d57f8e04ec356181bc5d
�F�
874d8d26f7b80bc0f9296f56fd0bce77ced84db38f8562499930d8c065c0c040�F�
8764032443efee4dc7bfb0ee1a11749205880cd86b230ad538346b697120c5e7	�F�
87690efabf1c1904d1640276e18c4a1568f33f6688bfde4c8352defdd62b25d4�F�
87818b04247bfad1a3a5ad6b7d4ba90f571e7df0d267da4a66fd5e1e17409c65UF�
87841863f56822350511aa76203106e84213cbf0f0d73dbadb356aac7fe91054�F�
878572277531168e4e6b34f6078224450001b713981b2781b0ccb572c1db7c3aF�
878bd3f432c1a1de0ae5f44ae295f84e0ba2eb10d8864b4c35eb61a0a324b21e�F�
878c505e878a659e3fe83b051ba1014e223ab1130afed6d39765703c451945b3
F�
878d2dbcd884adb9e2de690242d04710df89bee67b51aa86e9468e01de78341b�F�
878e4a65ea92ff450fd8d2bd226c5bc9e55bcd148895af1d80aec4ad27528da7�F�
879103353158ba94017ff99828895da2eeec60fae6276746aa90627aa3867891�

ee��:��V��+r�F�
87aee3a9528b247730a778c50eab6e97da58d331049a063fa5f651d993db29d5
�F�
87b4bf85d74acb5f568e2cb39c5b3f1c972eba5db5f0219021c385fcf2d297327F�
87b930e9a82a5887d60c5bf35a95284a59744832eca1423a916a46ac5dc807a3�F�
87bd7b630c33f8be6348fd87af02cdb167d891fac4dc956b41cfd5911def169a�F�
87c1a04fd7037d13c6be98a8a975ef7a41eec66aa9031b781b61eabe9107ce9b�F�
87c30f42a079f461de618eaafd1eeb3225bf684cb0b4fe11da401f0550be3c80�F�
87d2bce399fdc13d6471dbc90583d7e69c82b39679f9b844bea1a2f3051c3d10�F�
87d3a6a27aa6179e43d778cec0765e166b68510a391d6eea5236b2e70d6d746b�F�
87db2fe7caa5472a08068b5229089b79f46799961c76df49341071e86736a23e�F�
87e7e547e429b8f05895e13d2852cf0bb18f91a4aba2a1bddc445c950284fc3a�F�
87fc214b49a5aba9c5d113e739d9654287b4a0272123ff8eead1a12b7c845ec3OF�
87fe3fb7cde1d8eee7a0811446e9f57ce979666bc9e6e29ac3cc9efc60d86d02
�F�
880ff35253177a36cd35ad8763cde4cb91281f1e945561e8856f21de6d706dbb

ee��:��V��+r�F�
88400b854d053822b230b8e0402132b7559ddccd811a7abcedeb1406f7bd8cbdlF�
88425ec1660289732da5de1bf61433d763b6a1dd261bd1f618a21bbad1e482eb�F�
8862347f9d7582ff00f24363fe2ec9973c30d8b3a4bb2acbaffe35de8e6b6dc0`F�
8862c2d66552b96db725de231e282bb308785e3aceaa1a3373dd4a21a3279f14�F�
8864cd46b197d894c0037ac70b483f8091d39212b9cf6ace09e8c117d76a1c12�F�
88829e504b63e6f7b3b0f74d257ab87d6d2ac4c04e4220a90e33576fdc11d02f>F�
888ebbd06b84707dedf11dfd38f8932aad6140dc08932e3e14ac9591d14843c5�F�
889cf274fa9d2dc353f72daefeafeef0bab8bbc22a11e69f5009602f524dfc5f_F�
88ab2f3a84ae0b670762548a3b07213bc1a96a8249ebb3ac49b9d659b4187823�F�
88ac00911754d4623eae65cfa475ed5082d7d2b0f2ed678b1b27991079abf58c
3F�
88ac66f78b2cf64dc6ea2d02f58193bd752cb598be4fa33a9328f2bf4d42de00�F�
88bc32f0b32b7bb8891d9dd012f0481bd2103ca60cadb3ebc387b8645c331524�F�
88cbca784ae7af25ab7e769129e7fd6d1e91281dc714e9bc35a46dfde2da5624V
1N>1|�]��>��j�N0F�
88d0132317540d77db005b570d44a340644516f643914b0a811161f3f3f83a7fcN2F�
895038cbd6764ef3eb9ee3cd61f7aeb95255a9dab0f3a8da8ecf81d235a2abc1�N3F�
89fe97926c4d82b3dbe9d1b08249e01972849f4771aa0ffff539f310b5c68178�N4F�
8aac2519f49dcdc64ce5554ba02dde6b31912d07ee75f879d789a0439eeb22ec�N5F�
8b7baa93242958102343838092c3c8f2c9699b186e25f62b224a2810946a81d4jN6F�
8be164f0d67b7adb4850c664fc43b933559317a3a400aea58cb4c0f28d317ff3N7F�
8c51f1c38ad47d554e10f738e37c0bf122f76f4859f755e0449895448111fdfb	�N8F�
8d0c9dc0f9481cf8541a333911be9aaa997c3a44c8cccd0692a6c28d7a5cc0af�N9F�
8dbad9b74358ef443eacae1628f33b8cf52128bfd4a1e2ad38ef0ec9549a22c4PN:F�
8e736c3e7e6197e2f51879707a4e058e188e3e707c7a986b9cfb7846c920b11b}N;F�
8f33285bb25298291523ef6f04cb95fa5815d34f7b05d4efa5f5308614c6a8db�N<F�
8ffaad6b295a49f6f99b79f05ff9da300f9ed61b1611dbc6384efd5e0d7384d0JN=F�
9094f634e973446d22eec7485aece9a4f3294db660812abe442e6d174a51ee34T

ee��:��V��+r�F�
88e20a1e34cd524371d77d54b3e1c9679b5fc0a76238556241eba29703e64e10&F�
88e796afa3934d3cefb09a6a575714bdc8aede8ee6a3c6b7be0bb59a130d5efd�F�
88e98b9e84008f81960ec7ef7833a591eded866cb407e6fef47c13d1ecb21d53{F�
88ebbac297f77c53cd09a2f137fda3254023224d3da2a351b153770a4ada109f~F�
88ec95b43c8491db9c18162f1e7fba8a23bdd4c936af58ebbc5e3ca5294bfb53
jF�
88ee54419e99f4dacae891d93199c6fed6512d9a534c7d923a9477877d953d6a�F�
8901005d391fcf6247d95caeaae9763898d0d5a0e8da308e73380bbdefdbbb1c>F�
8908f58fb71fd39056da9b792dd69e358735856d43352a085ffea8b4b8f2039e�F�
891dab92096ecafec7121bace38c5d802443f838cef21422beb6a451c0e0892dYF�
89218a788c99c93aaa563b09b3f7b71ed061025bda32116e0f5ad78d034e5d949F�
892bbb9cf85d74f25b2bd5cf3702f0da63f86e4093b201704e571b7d86a65f14JF�
892fa4df2150169a5c8680af75e4e63f2ffbf5ca0f9dafb19d1928769a5769b9�F�
894926755bf0b5caaf2195043acd56dcc5dc992c1c51411a5e923a6e2e1d55cb?

ee��:��V��+r�F�
89508e57764f6439d8043a9ae25c798163d3dc7e1ea5019bab2063d6eaafb9c3
dF�
89663c4870645c61c09aa110191348cb2ce24502cea8c4fffd24cf917b5e31b9�F�
89818b9dde137228b185c849e8eec7f90bed6867be5b294a8b8121f52776af6agF�
898a07f35eaa8781f7f96ee6666297c5864472115945d11efcee3bfabc801e33KF�
898a882b2bfc15fc532825fa940804005432ab222c1efaacec472c1c18aa8c66iF�
898e4f478919925f999cecc6d8765d5ca6196494ad8200b1c02607de58303982�F�
89988277f04bdfb0831030270ba38286c5de52d83e5c015250fa99a89d9f5a47�F�
89a42b57b8107e340a51b81c28d25743fa831b6a86f64bbbe3b811eba4226e53�F�
89b015eb0d04659b187b7cae8d68fd38cdfd6ebc31ef6a4cc9432e777fe5c452�F�
89ba59bcc18f02cf622a16a2b4485ddbebf2c0e577d2b9cc5b891f7f18b2b729yF�
89bf5b84dc71e5ad5f0d9d9867283539d89d67b1aa0c88f54a59c8766c3d2351�F�
89c58d30f7f1b409bf2172a4eb140ffdd938bbe72118610420ec4abc9c64eff6�F�
89fc26f9b9704d242bcd1974e846283609f11bf4dc47d614efae548b2b836ec9	�

ee��:��V��+r�F�
8a0bacc73339833881bc5ae7fa62eafa7a9c0011b40065f3a69fb02d298f29d6�F�
8a1a847b55b0f0c7eb4ee01caaddbacba34459dac20fbc69bf3e33941d234f40	F�
8a3167ab075b7b5fb344b2c1a8b338bb5fe197f76d476082cb8f2c3ab6e464d3�F�
8a45d170c2b696356237faac6e20f84a8fe83b9b0d0990de4c51df8c043ae548�F�
8a462bdff8ebc77ce5f8cf6eb1d98625e34218cd0b64485d9b9e6e7837d422f7�F�
8a5fd0b970dc3eb282790ae8ea380ab02a73599a63846085865e041e8624d19b�F�
8a6c2691d1645347df9eff452b78fb18042623b1204c96aafae8161528c51327
F�
8a6cef14e08d6e8b37d66e40c1ac1a7bedf36720f015c5cf16ef968d5bd61eb9�F�
8a6f4b746d5edf5cd1a9c83d8f03ddbe3050f70230be328aa88328d12100ea4b�F�
8a7f53c7e5c8a77fc603887cb200d840cb724658ff8f2439c41293131f94be82F�
8a874d1a0c3f0dce30ef48f0095dafcb59e864b2b89528a61ee1b1d0a5dcfb7fOF�
8a8a993d640a917f86f781a7b6f422fb2bc8f0cdeafa9a8b16d5205c76f2a164�F�
8aa95e78921113508fef7b52fbf20b5c2731cc1b9798d653a482bf00087462c1�

ff��:��V��+r�F�
8ab724702b39a664d2114819b5f3c29149c945a1f5443d7e7e4672d694b15c90F�
8ace9615be81aa1aef785201bea8d1d530ab9d51947834eb409d60ec032e56d0�E�
8ad876dd83b3d0a6435b5decb5ebce5c58c33e7d6fe1fd43a96a9f7e6afcb5625F�
8ada58179dcbbef50383829ff646e8482d88b3597602d1e89527ff2801adc78bEF�
8afb8e27332a8489152d37ca03c25098d73ea51e0982b87f6a7bb7d35104b927F�
8b0d31d3b3732537ed9539107e868dbb4725488aa14e7a5070bee4b31e133318�F�
8b27ff2d6ae464c9929368b71564984ac614007abaed4abfb490c301cdd341de�F�
8b2f892532b5441db04bb9a1d3ad5ae901202de8ca4725355c38b6ac842c3f60�F�
8b331529abc56930e532f91b8634eaa719301817f62a7a7fbbc720594baf85da	F�
8b49fbdabac5e8dd32d8de8826af7fee4b0eeab0828f5ad71004efba08ce1b40YF�
8b57170fd0541d89c862ecea52f823ede947a5b16983a9646cf0c6e4970996b4JF�
8b60c6a9194e57ad101ad2a28015f644b915aa5c958a5f8b0e68def14394fa13
F�
8b700371dc8370c8630ae79ceb9e1fea3cdcdc691595db63eb30d8a874968077�

ff��:��V��+r�E�
8b82511897f48ce484e303fe650c32ea1191e71ee0cbd9aff580743fa4f9067cAF�
8b93611a7e50ab8b817c59d6ef504cf63f14b1ba210b4da69add3f3176898478{F�
8b9983515bad07afac7d8a923e4244430a10f0e33fb043f5940c02b4b63188b7�F�
8ba208735c422fc7201d30c4eee2567d7d1db7cfe28590c93e563015db58818b�F�
8ba45a2931417326f5988ff2fa9db54c083bfab2f5fe260ea31072a26b0d9adb�F�
8baa36fb50bc4850b5ac66dac93cb27812550ac6f755518bb37973c3a49e25e0[F�
8bad0cae9095a9462eee405070201f5aa90c8754e0b955a3e7e3599af9f81ffbF�
8bad4d40202c32d3b92c589f87621067f44ac2cd0793dc3c8ca85d82dc069603NF�
8bb27e3133d87750b1501993b54e0bc9006242f30c7f46e98b7e0bc0a450cf2f�F�
8bb3427e24cc96d1a03b8501420a96372b0121baf87a18de170d70b0423f324e�F�
8bc7d7a6d1b39eee668c11eb933d1cb38ebd708d11b2c0b2b1a7891e74af0cfb�F�
8bcc89f7bef113e056e226e9e5c3e3be2396e0d1fa312a4a061ee85ad8c52a3aAF�
8bdb42f75a635ac45d5c4a26f945cec79c82329639357232a0aad25797148f95�

ee��:��V��+r�F�
8bebe621091a0ae4cea699aab647472b02128fdedc6cd35f7a87166bd62ed233yF�
8beccf052a2dbefb6d4d3598f864bc4c75f6f3a8b74ae1959275af52a7a8f4c0,F�
8bf0a6fa452bb777d2800beaf0ba2e84f3dd1b17964e1b1bb26b099bcd5ba413�F�
8c0250c573335738373e9064ccc227bb57bf3a3ce5d859aa2fe9f129bbc28592hF�
8c0e209a9b3e465d9d43e1e9e5585d8222d61a73748d1a2e8ce486e8b2b25715XF�
8c0eff6015d46baf10cb337069eb8d7100741d665dddd559e9e053509293cad7,F�
8c178f2dd6153d2d3dcfef1a3398ac4285de7accb9561c9a03366def1b7c2aa3
�F�
8c1a2436bb9993077d1787d888e9de96eb7d1ce37e361e8ed8f64c131ab0b58e0F�
8c1afba082bedaba9392d11b613759a65431711c73e71af2ca4c1d2710b71ac5
�F�
8c2a340bb8e3487639e7851ddf9b80b263ca137dee7948eceddfd372f4b80882�F�
8c2b3aa763d6d464e67be783b62d083cadc0aa9caf7fd24997ebcb514c44a4b2	=F�
8c2f38d98708ff0e8889fa8f45f759f08f4ec491e20d77dfbd8b7ad4a6bc79b2FF�
8c4048ad0a30efd78b835e73ee590a52730bf658e4ee011dd963e908a4dbad81<

ee��:��V��+r�F�
8c61ae91b0b15370cc12465214b2a97e5f414aec4feb6af550ac11024416aaa4�F�
8c62263350421e7c3081b4a531f8e15ef5bfb5e410a34687ca4a799ff23362efF�
8c78bd9be20532927c0a937e33b0befaa0f49afcab1f09654f5004054cf179b0�F�
8c834bac2f30be752f112c1cc6098fa621dd2400df835b51ee13e22bd5c05807>F�
8c8b857999a32f70ec103af37b684d4c2eb482a3f8d75f62cec86acb6c10e940cF�
8c8d68b411cf4b1553f6d61ec9e5e792aab640f1b6ce5645df2f4da01896ad23�F�
8c9ca7fef03b651b6cf4439fc8f4e9406e901baac07b1d86a9d94eedeb2b84cc<F�
8cab4a117a1efc20543417ed7f4d69f0626329800f58029dc586d0a2bdadea33�F�
8ccfeff30f33569622e94d656bd899c28dec3d943fe48b0140ff2230c98cf112�F�
8cd2d58f528256baddd73bebea799773f83bd54624d090696d0c2ca0cac8656d	�F�
8cddf6415beefe785c3a074c6907be271292411506ead04f691c5b753a40fb9c*F�
8cdf3d0ccf31842dffcd39b5f3b05819fc442a375c03a3212e7b51db17f53e29	}F�
8ce3c00b5ddec20bc2e8b9298da33c7143687fe46bc2765f98f31a35a820ac4d�

ee��:��V��+r�F�
8d2234f4b3652ffa6caf553d843f040d43d53c10ec6156b8de9fbd3efb4aef2c
�F�
8d3bcb06b72e062aa3717dc899aa7260d669eb53ff0fc27e1090f66617498a96F�
8d43d74f369183dc4073b21eb34b054828ea394433bb870f7b75b636e1135b24uF�
8d5c171c9ce6a333fe8241291edf73b4b6bbed0df2258efac8cfac13210aba97F�
8d6cfc5c9cef32a028f7938e7be7de7b81bde37d434b23891fb9c2f0583c18df�F�
8d73e99ddd2060604e1a2bddc4b10b1b92cf6f81b0d2a05a103cebd6d052a316
F�
8d7b3ce7f953eba64eb5ea6f0a0fd7b8a9e05c1d43bd8fa681d19fe3a735e568�F�
8d89498cb8dcf0209edf2265d251f9c645f540e964d455d6554b04f5f5f6edd8�F�
8d8b3cb385da57417205c3d9356d8976758920c3bc55610e49f55d64121a248e�F�
8d8f18480a50ae9e2993b7bee4e3a0d583f2b6288ec60e32b2b42a5b4256456aF�
8d95806a7fbf5e875e27f1dac6cd557d87cc508a301218b36c67eb9012718b1a�F�
8d96cac84dd7d2d8bf80953662039db4ad42350b6281599a0f5b97a679b9c4b2�F�
8db5b248a66cb5ad1ed9c3264fe68eb2d2de4e9b3a5c7cc07f61bde703d26938	\

ee��:��V��+r�F�
8dbf315b824ef3ed709ed82b3c42515cc6137b6f4eaf95ccff91f5d362b86985hF�
8dc48d5e4e60131ad36fe3003497d6d355365e66c85a79b791c2245839838f72F�
8dce1ab16065eccc2ffb9c5d0e51f15c77fa6e7e03bae26aa3ebbd9092a330a2�F�
8dd767740e6b6382366fcbecc18ee6a8aa1e5cd856ce2b54b3611960dc3c297e~F�
8debaae538b7c7704b4ad782c4f0a725f3c0977f97d9cde4eb6a1546e54f02e7
�F�
8dedf2da6f27ca502253716ed29c2de2e1c11c34463b46e12d9e88053e48796c�F�
8df89d78d785928efa5b8d059e96ce33ffe0c9356663c9acb50ce3ec8c660d92�F�
8e01728503e8663cde52ff2eb87bcbcd9a04b60fa17e1729dc2658f1cce309dc�F�
8e0d749ba5b5f6a9925903f7cb854321aba39a3bc393c295fbbff22c33feb07c�F�
8e35267d29e2ee8a7d9678927b89dd4a07137e32a7f920844428b1f94aaf2c97F�
8e6103f5bc92eabbe008d9d10cd7ea86a1fd82eed882657037c36f9c0dd9ef59%F�
8e64b7d56dda27658b854cd7ae4711c43c6b16b97ee01075b4c86e7bea44f202�F�
8e6626556734c046cef5124024bb71c2d64d98b0563d3b93b4769c8f47380342�

ee��:��V��+r�F�
8e85466eac6dba299f3f8211333d50827e103a67a8296884c3d1d1a87ce8a828HF�
8e8d757181381eff83e8b40078f2dd69e053551b72a94cd397d0ddcad18a61ee
2F�
8e8d874e43fcfca807986a24918c2f7b0c82f04d8a0ca32bc0d9523000380ae8�F�
8eb970d9067e83d78cc7fabc26ab7bd356ac7bdd924f37cc65f1880942065026F�
8ece8095faf9fc05572d63b861d8bc795ed3d56a7c3235a44d3ee07d1403cde5�F�
8ed81fb816e95c0feb27e37fdf7922b9999dfc31e8e871d968bf849bd8858bc9lF�
8edd67ec853916a9acaf2fddad8db6c86590d7e4c9f7039a7a22270cf6eba4a4�F�
8ee9327d2fb76742bd611491c6f916eebd397da0976737f7b48eec36a25080b9zF�
8ef9940c8eab06db4d162a8e62feb96b91bf5674ca74e3d18247cbacdb1fedd1F�
8f01b6b2a6ce4e4129d3b25510ee332c113e0f671df54f56ad2dff8e711a11b8HF�
8f060c38fbe87356d18b29d60da5dae1ab1bb783fbe9d75c1738ca0ab27b8ec6�F�
8f21403b3615c8a3c67833bcb49d11b4c3b80d768a6bdba42abe5d2b299d9cb3	*F�
8f22a24548ec519571fd7dcc4779339bb29955be70e289533d286d4069cdfe23�

ee��:��V��+r�F�
8f47718dafddfb7d6dc1a738692f3af308d282de65b923b319975a317ee602d3�F�
8f4946bea37ca0505511d6afe2aeaedbca2a9b61c752de65d10866dcea00fad4�F�
8f4f01e9c17c3579c8a8e8757582b5911c301c9f5219d0fa56b868db7964640f,F�
8f596e23215f48c31a9bb115c327431b21431ac93d7279b39dc998ca0bdfc6b8F�
8f63c53cfad328c376db111c9f46d7f6c7de014b98eb16dd9bbcf62583303adb�F�
8f6430d25a368ef161d771713f41a8108fe1562d0f2f53e1a94254edcc76e656�F�
8f8cfe9eb61a9f25ca7e0e1a0141cb8189a5465ea0cb8dd6c524a2ef72866ea8F�
8f9c62b62ee309f73ecbf3c62a51cb3d3b553a7505e51047083926355d41e0cdjF�
8faaf8f128a420775ca80ce1a715e9558ae61ebfead1106052e080d3192d7162
,F�
8fab540ec8ac058e28cb3e62a08c210f00ce22695ad5a2b0412d48e0f77c285asF�
8fbe338dd8adc0ef568214985a4b86d964a490b7b5eb963f88ed406169b64c43�F�
8fefb0595d7ec2b0969e86042785c698809542ecd2b793434519146c6285a65e*F�
8ff288d2044bc096fa50399fcc642f5cb7c09ba23f131fb8b2386f6228076ff1�

ee��:��V��+r�F�
9006cdd20e1088f1fdd49320df4c8447cf22d2feb90151205e9288920768b599<F�
9006d58c6ebd992f1413230a4531d1584921f01326a875a717363abde71d6b03�F�
902507007b4e5ee04bd47f98345b605b7cce177b0569460eb0efb299a91918e5]F�
90290c5f2092315060a14a82b7d692c91c1f7a1b307ffd574420dbe3936b6177CF�
9030c370aec5edcb0723952a2989c5012de7aea238458f7f55ec1a6b9a24962anF�
903dd1548295c69291a624080d2c82e710a22a8ff376f018d6fd3a0f4d907c85�F�
903e1d0ede27725fa4cc5c201b48de10f5cbd5f90594a9cb1c3a7e06037b2fe0-F�
904bf015b9ebdad14b887224bff8f4c245ea3f185ebc64c0a9446b250f5ddcd2F�
905b3f686bda411e8b1469cccabec8ed3ae99a60153880597dd656cabc81a501
F�
905c6cb39018d44fe1113513cbf517b142fbc537206ae23c0ce00c299f5e39a4EF�
906005c50af3c97fba3c5a02b14b7ce32f662a5eafb00675e8750675b8323966�F�
90862c0f721b1d5b253c6c69c26a15f9b8e4f492615fda39d9aa26a36263853dF�
908fa60367f005eeb06ef2422874df47c562ea782942062b68547373fdaa4040�

ee��:��V��+r�F�
9096f48c5db56f9f48a681b03c82afe3ed04a3f10af7b37ad132a68062fdc34bF�
90add33a3f4cc834b9be91c4ccc12114abeee16aab262829030db0c9ce27fafe	�F�
90b4df9d1f42ba4c9d6ed5a171805bd3aa1ab73ca030c78d62b088ffd716ff81=F�
90b70e89b675963abcce8494de690686f885b273dc190de89560db7345231837	F�
90d24b11f08fa24d41c2102a917044b252760ee28a2d70c68a1ff4f9043c7464UF�
90ee404ae7f217e125818a3a078d8727a3d722574a1fe488df803a8e74e702b8�F�
90f1c235b87123f7d8a5ed0f7a6b6a246999326ece8c0c87c4412e41a67e4990�F�
90f9bcfc03ace81b54541dfb0892bbacaabcc873c597d5c78bd3e56e91a2cd80�F�
911c67bf8be2e9d6a8d64cffde6ace72707962e5ee3df52066dc91049cea2aa1AF�
9124221e268619f8424d72980a7b256e0e00ba0639fcf0be1387712d145c7416F�
91265a7a7ea601e581e1e9d0927369baa2509184619fcbfe483ba909db979caa&F�
912bd6993c1df63e3c9381201d80fe8178c75ff27aeb3b45999e28983222ff86F�
912ce11b5c1438a25af1e1961d891e6421717a57685de5add6d528d3ff3bdf42�

ee��:��V��+r�F�
91353b8f07e3454295bdcd3066dd865de2413f8c9940caa28844124b3ccc2e2c�F�
9160f97ee226a06b3da3e93f37a538bc89b639fbbfac6c152018d42532d6799b�F�
917535cc1bccdcfa4383143cc52d13f8fd161a5ec8f1037f606123737f818acf�F�
917745f55091ed42757a3d445e0f98ebd8e84ff75ab716acbdd8f6e1c584a8fdOF�
9183798963f96d58d5fcaf70beb6047196f8bc9b1b7767de2b59e133fe27c94bLF�
9194142e9ca71c44cbdedac14b2fbe14b54b0a0893096cf32b9783f204b7da87�F�
919e733f2ea0f03322ddd4ac6824dcb44dd6d5fcaabb66ccb9afee48b8b78718�F�
91b3059cb08a4f72259c6d15febbed4bf315c966b9b48ef63e56b900babbfcbcF�
91c532ed3ffc0c3a3ff8c2e0c2f2eea28b1497fd586422e4640ae48504011029?F�
91c597c3c15155bea7576d423bb897ce5644669e24f2b918fb694fe845700c49*F�
91d045022efb0cd2e147b359f329cbd083f5efa2e778b5a35adf22874dba15e2HF�
91d2cf4d7a40fe66ba14583d4d5f045850fefc8b26b7e0adc2634f5ec9f9a775	fF�
91de6d1a2c900bf6a030d637e635ba8bed416176970159ef63c61ba70f93a275�
1NM1|�]��>��j�N?F�
91e11d6d33aef2e3286d36cad20e968159d1995461d24cfd238bc15aa535639c�NAF�
92cbd8f4ae37e782c4571e81f3d13e76955fa6b037771d881242a1ec17cc5490UNBF�
932effd782396fd543e9119dfb730e5009b85100c4e34c453d8c4079975172a7
8NCF�
938bb9ba7be38a8654b48fbbb34f5d8a3a6db6e2453cbe54b8b837c099acb52cNDF�
94003135dce2fc46854f2202251cb46b096bbabd25f6b98e55704280bf4d77d8NEF�
94aaf8d6f0db1300c892d45a1a8334173bca651326cfadf717623f714460fe61�NFF�
956c25bea6f5a263d7233838769732e4650583ff222b531bdab7067f4a6a0b6f�NGF�
9653063ff86adaa3cf63420a5d68c5ebb55e16a3bbe27a79314e37a1bf604fdf�NHF�
96e8afde7554bf087d7015345cb62d8833fcecf0f4165e71ec3a77681591973dDNIF�
97708bdbb05e028158319a2bcc0079feb219bc2cbe8d1b3c5b3861d43afd818f	�NJF�
980d1c1b856c308eb7fb1dc1f32d4d5d9828a5ac152037e4fcb99050874e9506UNKF�
98cb7a80b5609722e12d6cd1a4562d0177f0672359013887fde3560ec9647c8f�NLF�
995ede74f9ad67d498e9de6c2936cb1589f9d0f6316193c57d226d30e41b59ea

ee��:��V��+r�F�
91edff8a7e3788908e55759660855db2ac6a6ef999858dac7faafbcc6b62cb99�F�
91fc50b78a1f5d50c4f2a592996c690be37c4d7e9724a2dbd625eba57e9d607b�F�
920dd1baf1fd31b9436ff47d0be39b0142c33dfb36ef0255aaf0e2c529756a9bqF�
922e0899bd8cf38bf10d752a0549435a450f968969520194880a2484c23f16df�F�
92338eb8dc8e5df6c7042a8d6f53cefa02c604ac421e41331a9b6a496e4b7dd6iF�
925078e3fe326e7212b074bf495287d0fafc0395d9657b439a01b27d1539037e�F�
9253408f51b5e89b9beb8bfd7b35383d55a86420ea8834e2d54d161be9d81233�F�
9277a339164ce4554d7e44a5274d72e8acdef0f65c7e2f5ae1558953312edbfcvF�
928ac4b150a768535d5d82dad1f8f4549ff8ef568798b62c65debe00f659767dbF�
92a1308d201f7d1061b56b28ce70c44b58e1f876568a1cd1ce0d04d71b4e616f�F�
92aef4b8e3ee011c2535abd3662b5231c16dfc9b45c3e7649a1a6b3355518f1bF�
92b1ec3eeccc76ef95cbdf3336b545c2ded469e9d6ebaa81b98312b0ef0cc80a�F�
92b645cab65928cc0f32fe9883d7068564a4040ac0faf35c3ee1790142b461a1"

ee��:��V��+r�F�
92d0aa22a8ae445d70ea7fb4531c9e4056b5c852123fd61e665f8a3007539408/F�
92d0bc0edf07e6a5b24d5dcbe83924f7438ff5eaa170034fbde75f52fbbde969�F�
92d5b94aea2121671cd099763736607349b3607d2d2e2e681811cd2f4c86ba88KF�
92d8d566c14d02ab87f59d48e5f011678c4d1ad1effce954445cfff6e2186ac9�F�
92dc223c986a6952b0510b50be70d54b8def042975f883b9a1ecb8d0f62a138b�F�
92e24421bd43dc1bc206b56f3d63452a3bffc509e64e9b541086b542c48c40de�F�
92f5cebdb6aa43fe3966ec42e66aa71cfa74ff2c65896eb315d447b773ceeffa�F�
92fe5e925dcbbf773a6a9a67725a97c2ee05ba99988b7c569d34ea5485b8e2ca�F�
9308a731a1aba4b9209f5cc4ee3e7f8bd57be5fa213ed219fd59941fb9b092cbAF�
9311ccab42970f1272cfc018419932b0fb8fe37ba50649863fba7a09fcb64c4b"F�
9313b35402e85897b582429f4df8f344b42d30cec4731079c2c5f5a680fcc839�F�
931e68ffcae787d5ccc19e02105ea41bb97387921e3e0e7bfa8402118570759dF�
932e0ad4e24e0525ba464544c1e8e10938e5fe172b6f926e51a12e6e2874b3ed�

ee��:��V��+r�F�
933451069f9fdd66cf5110ba003ce53bcfcee82260f53a69105373c07f77d5f0
NF�
9337c05672cf9bfec36d4f07ea3e1ff83103684578d98cb0b7c93d90c03620dc?F�
9339296f633515808554bf8032f56569d2f34d4c9a34b1d71f968cd560dfc9e2nF�
9339fa8d6974fa8dfc8e28dbe75760c7c49d355183c0f71b2e5d7d7ea2db67dcTF�
9349658aa8b7d4b836a718f62cdaf519b05370897881d1661e16c4ca039a4fcfhF�
93506197bcd7012844761bc83df82a2fa27d417449b0cc8377a4f2fa84277d60�F�
935642d829064a30780cd84c8e1ca654486d06cc675f9a06e246d6b366d333c5�F�
9359973256508b24175ed9887851616fac8f922f2e55231ced8c44ff757ef828pF�
935c4a6b750a10f3954948c3fdc3d3d3fc914b613533a75f0b3f087222591c52�F�
93736c157e6c574d78df16b0ccdcb3d5d5bc0856fb66a7d43da85bfe6d0149a69F�
938086442b2d90233bb54c18a12a65965685e408b96dafa4e36c18a4179676df�F�
9384178dce07e0ac299086cce68e4bb80df8f3f7a7fbb3157138f9c5959fefa1DF�
9384630d77721b9cf0583684ad152790662a117c211334438628621a8b12dec7C

ee��:��V��+r�F�
938bca67aabbf5f68ed289ef571582f9e1c3c144f27c0cc38dc3b60c03bb184e
F�
938d5007ce1dff2b3235913a2a5efe8141b51ff690ea6d5b59b6289df55ab4f8�F�
93a29cb8a20d95092bbb437ad52a8901fb2b1e4d84591469dd4975622609cbee�F�
93a4cbbbc8b5c4b31b05ac687761f0f8f9699c2b5691192ad0f370b70ad1a30fmF�
93a54cb9f013c14a0d42bbb9abed4ec7186612d1288e74148ff8fa20ccc973a6�F�
93b059a3da417ccc61646327c6d1ed94b3a83a59eea67aeb8419f44ebb5522d3�F�
93ba9f06a5d98fa7404897fad897da748076dbca3329d102d3792d9b20bf8c4dF�
93d3b99f0fd9bf0940325c81b2d8cadba8f402c03b3b36117a666eb53a39d4aeF�
93d59adb2af4416388006f622bdf8c0f758944b16c04ac683b05b66a90cd48c7�F�
93e5893e2543f24cc6076a35548745fc96be00bd8f9960f8645d41100dcf0c3aVF�
93e83a7482939b72a1377200f3ba36de2f5a593ed72db969095bca9b712022f4
�F�
93f5058bbfe57b3134debfc599214a91d401380ef38ec57336a0d995704d9c26	hF�
93ffdd88323d633406fd4f495ae9b81a2e9022740ce9b398b77bb2fad9f8c6eeu

ee��:��V��+r�F�
9408ed4cf3bb74bfe932474193ada99007d34cf9c767bbc2acddae99d4db12fe/F�
940d3c647a6731e9ac3db41e0ac29dd98c5646b2f3d6559663e1ef5e309d5a77>F�
9440248086b43cdef2b59af7d4689cf4358b9549a0e882439813dcc84f72e359�F�
9454700c32cd463eb0cc88eb843acc8c9da791accd71ed786c92357f2403b784
�F�
94640be31162fbff22a0573cb0d7212f9516ed92f67a3553e720fa125d332b1f
F�
946b8442c4a0e72fe683a8d2c6b3ab7143aa27670b547b3ff7849aa236ae494b4F�
946bfad55d48fe614e3519a074265c4e7c6b21d160e933e697f3ed783a7214c0�F�
946e0d4202b53b3b065d23a43e6a5a0a32f61836c1b7305ec2a65d63b2fa48d0xF�
94700baa2330493c2173bb7d59f922ff0cf174e02a7abbada312d73458b2870f
�F�
948dadcdb6a107784d457eb7291106200038a0a93fe476580a9a43cd45652b477F�
948dd58b9aa2d3fe20747516b2640cf6b85bdabed1557859baee0cec0fa8a25c�F�
94956f35cf998fadb6818b03bda0abd42d6bb6eaef56f6c880f239607a6b876a
VF�
94a821399c6834a9613024e8e79095fed47945651c6f3043fb698f645b47ea98
�

ee��:��V��+r�F�
94b92924f85680ecbc45ab163f775966e4511c2f9885c4c80f5e90d414a6b7edF�
94cc4c729c9fc12e3385fb74c8004acc5ebf27eed73cae3facf775403d14109ejF�
94d47b782d9d01f589874cfe848688d584d291d216cca5e37b467e4d747dd75e�F�
94d6c80d9b08af719fa8a5e007bf753a3f13406d99bcd8411d914c6115c3b571�F�
94e1c0f560a6748a67411c8d4a86f1e3f8f7528cf1614061076e85844e120007
>F�
94f2a00b93b3f897df457012da67dd3358c6c280b2c7b40b81b965f4420ce5b1.F�
9512843f182c5c1950953d11669afc9c97394a90e3b4ebda1834fab7b5a97d88TF�
951d300e30de3f44fa83fea5bff378fb53589245060530b325e00fa9f6c7f5d3|F�
952a5dbe4255ec430a5d16b0eaadd30ef55d670c83a068d7b76ddc39ab2fd146�F�
95328dc6ff974a63f71a020d2f75e367ec10635e3db3ece1c6894c07d22f40cd
F�
9550ba6de8671ca79fa26dead08e944ef94706fde1c73e99c2c59e595b752061BF�
95534a4322ef4fc7dfa9b623b1de5cd5d0d72c43f81f18b07d085100fc928858�F�
955704fe8de0bbcec645e44f2b204e4b12ce8b7bd2c8bfaba5e8968ee76f0568�

ee��:��V��+r�F�
95793f42b845d0ea4f32a235ac9b117b776a44e3f656a26633a3012f93a31bfe|F�
958d635feece68e98a7942fb734aa2b1c79c887db56e57df5884c0a90afa291f�F�
9592f2b746e7ef4c2e4fd13ac3fad913504fb720911df981e24b63bf2011a6e6	(F�
95abbd8b6931c04aa8fdca6df2600bc37b23414c8395a75a4ef0a54d57357161	�F�
95c0d1a3ba0c09becb41fdca9e7a82ee4f169e2c6bd810f7883f9414d007e4c3
F�
95ca57f8286ce2eaacee848405bb95f1e3ae571def5526f34c8d1abdb873b30c�F�
95cd2150c007f035eadda039e10d251a6fba3aab09685ce25fd54a2cf296e7b5F�
95d76c0c65f9a62fc846a490f4d2b19a993d7bfe3b29c8f5435e619d31f10fe5�F�
95e6995373810d5b756222856d1b5d2f7d82bcb15022cc12282cbc282404516fF�
960bfdc3d9c1208a97afc3a7f003cb7b1890daa08e77d317bc572d4b563e272eF�
961c48cd798bb2acb18bcb4bd7ebd24f8752f021a87363745131dc5e83535165	�F�
9640c5a912cb29c8938076ba00b4a29313f55ccd7e684dbbc133c330b71ec3aa�F�
964701bf20ea9285610ce775b493e6d79bf2f27999d29ccbdc6ac91eb4261ce9_

gg��;��W��,s�F�
966ec9754e2cc3fe39729998dcef6f877a9061b02c36cada54ff696eb4dd98c6�E�
96954d570d0d25ab837bbc471057f6a90d46ffff9195b1391abb3cbc708c7684NF�
969eab9ba9b8ec436addf7c0e053780ff8e9fcafc51ae2195eee7d809f21dc64`F�
96abc02747879aa68bd335dadad5f1e2d5ea64c519db929820194757e80af933�F�
96abdf65e00da59857928e4d3001835a9e548fe6b84ef391015153d2fcd5ca97
F�
96ad2d995fd1cb55307d12d5cba4b02f11fe423d353b3a4e1479ccc4a628163d=F�
96b2891b2db1ae3878909b85454b12d4f3bf98634a199e8944cd81886d37e424fF�
96c48318b9e9154def4e98ffc6c16ef9c9663b6dd5fd0a35de6a541ab73ea684F�
96d0ea79b3da11f9b3d85598dae3187e501c54728cd8509492569f9dc2c1670fZF�
96d4abfe67bd7a9d955276cf0a4e0987e05c018e86c09903e0f0417e753e77acoF�
96d562d6852e65228f853d36aee7193ca56da0031cf09991e2d16e15f55f69ff�E�
96e5936275322903cfbb6baf53a0c7b17d256a8f32f01311f863e027c6f7d955}F�
96e84480f4e5f3ed973231a88b1834dd30e01f9cb98655b8551b7d1f382b024f�

ee��:��V��+r�F�
96f852d003908ae51e7c33a2d18e329760dd559b5ca3c8a594e3d2a5ebf41ce5�F�
96fa85d78505fae4e97f91bb1f42605707a0acaa501c968c075924348581046fLF�
97077fe95c5fd7927b97fea9e945e2065d9ef3dd5ca4eb757666fdc5b42ad749�F�
970a62a2a5e145cc2c8fa7e55e770b427abb4943c6d8e85bb81c928a192bb407dF�
970bcc7ec1c59c73d7a05a3364494e66e1a3bc0882edd7eb63d85aebcd8c059f
�F�
9711433d3deaee69fd66f5b86d352d4250222cc0624b6a64b1cab5215d69348b(F�
973367a3a9c98b25bdcff626cce24fd23fe78725e3f446889ec5a9091fc9c005�F�
973cf0ccc163c9374db09502b1e69f3323abc0960eca2ad66bfae874ac23d131�F�
9744361dc7129978289b5a40fcacd9f52369b57774ec2256bc3c078d4d6e8f03�F�
97484ec3860cbfbbd5c2af0639469ee8d66a3f43238adbf11b9b14a0c86c978a�F�
9750748b6d2332b552e8a31ec27de32bd9783d10d32bb22d09b4a112c4f25e2c F�
975ab2772de42fecf4ee5854a33ecf17992227d28f7a91eec834e9caac12e7fe[F�
976cd3979b04d952ae4511353b7a157eff7733234abb279a441ad447656af9fe�

ee��:��V��+r�F�
9771150045d3b5b33795e4accade6fa6112614b65b0ea938a0ee0cae6cc23ce9�F�
977e49aa36e447c99e215e9eeb2628e0e19cafb64eca4dbe1affffcfe2ad2c6f�F�
979c4dddfa5465daad9544c21ea318624da5d9cd9873a573d52cbdeaaa74d14d�F�
97afe94345fd3c005c2618f3f48fcbae76e8b91619f9bfe40ec51d70d2b90c75'F�
97b7678d75ee215e9c9c2485e486af9ec549e3cc4a432b3c7070cd8b737ab439�F�
97b86b131c407c89d83051cf1a4f98e0807a3198b30346ee90104748242d3bc2
YF�
97ca74d50cef86200eaedf11cbb46855b4d2c943de9de770a9b024fbbf90ce3d
�F�
97cdaffa439041e92b0a8642fd10637591e412ee471c5dd1572dd88e2d6decc7�F�
97de078974c76f22114377981f82fac9312b4ce5e781ef81172b4cf2d22a8cf2?F�
97de1dacbcdab0e2e4fb05e8ddc0616aa314dfa320e4635133391b3491d7cc95�F�
97eec08dd36b082c41af38fa508339931bbf380795208dfcf82213afc0e5486d�F�
97f2d1ab20836c94cc0c8fb0f450e8d93261f964058478270e2b309a246e35c0CF�
97f2f474f7e410b8f477b1e905b6207ab4497c4def5fa6005eca7739687d0fca�

ee��:��V��+r�F�
981af71f35ff127f9a818e70105e8d4597de1eae244d22caa97ea246a29deee1�F�
9827101cf4d8dcc1d15f1fb432105b7bb92fc32f4674ff6e1b053110b96810c5F�
982b829b97c5eb8400e883ee7e5cd1199ec463fe88265cc6be5560667a3366eeHF�
9840fc5d69627a908ae29e24dc640f83ad9be6b88a9779079293c46cd56d1fa55F�
9848ba3b7d2dcbf53d06c6dcd18ead76a0a0048e2222d60c5027b037fdd628a5"F�
985cd3c30e1357c60af6a5b4425c5d16eca3e6970da5871aca65ecca4c468cd1hF�
9869383533db8674f9c9ae37eddb0b159acdfe01aa0d5ad7dfc0fbd06b550883~F�
9880e1f05df5dfa26e6a6348cf66b755758a4196fc03d93df208e7b2351e07d9�F�
98887262492c65c2f5769777ce9b0419c04f0f6dbf264e6ea58451ec3eb69bd67F�
9888e1c7e5a6ba68fcb281294fab022f976b2e122801da77461f2029f281517b�F�
98918dc25b41bec2b5ac51e8782f6207f2389722d5bceec6f30c41eaeb02e336;F�
989f890ca6fa4ad9fb01ed7adf6b4b450bbb4b99745d1462d7fbb610298b96bb�F�
98c4c14b7a0910ce624cb7b36dfb871441e4dc7f083e2dc7b39b52dfce97238f�

ff��;��W��,s�F�
98d431e1523dbb3f7b2df74717a2e41dc1d70f15e80c7fdb07bb88cc13a58c4dF�
98dba21e88ff7d380ddbbdde2d2aa47ccf7bc6da63c4ae460dab25788449a87e�F�
98f19e1b800783ce86112ad1cabb55fccc84a4979bb77d07ffceab8d38da6f2a F�
98f3b8342ce89b923c57a4b705d3efa4f050f19a729aee47d0a57f765db515e0`F�
98f975d1354a7cc4711afccd61e1974d67622fdcd82305c34e00b404ab02ea8a�F�
98fa7e7c32572003a415282278a680123f7896108aa35e2ddad608cf9a8bf1b6�F�
98fb1fad0191aec5d51055b0a98b319339dfdb3295a687465da5a1122d7998b7�F�
990637f443055506d031e7c48d1973aa08e372a46ffffec43207a9c00ff8e8c4F�
9937fd1ce7c6e05f160cf8f1d278aaa79cfe89f767f8122c9d3a05bf197f736f?F�
993ebb29f0261ce55c92629ffd652f5fd4b867dbb41765fad94a00716ec5e8b1�F�
9952c1ad9640539f832b2907ecca1438442f4d21c5b1159a6b061b54d0245407[E�
99549f1842c7801ff61d826ce12f1351ce7f60f836b2dcf51fb46da34c4b3d1e,F�
995c318e872c57fa7ce17355320c34d3fdd0774343e691cc23d9e9215ad53931�

ee��:��V��+r�F�
995f1138e1de2ec2b063d80c34f72c7c9580839633287baad40f5b5b23f9e258
�F�
996c2919ed070ff29e27f8c9e3ec7f7ce69e1eea9e9da6d559423f84983ba41cF�
996ee55268c9971d07d38c3217e0fb813a202d1b838963b6db16217069d193db	cF�
996fe95f2ff819a29dac70f925ca8ea28c9dd6245d7ec72ffd1ea497c1ac2225
F�
997876dc6dace25c6299e9ca1dc76b8112d4862b054ac67c11bcfa1e81c637efF�
9980a8413abfc3a1135efb5094b967176ab339e1f12d5eca6b6bab8d981b0391!F�
99812ac04e29b031870c5675a4888ceb7ec75a205bace3fe8e9339e91f0e8109IF�
9984ba09f2a5bb2165cfe6589c4861a4ae3214b1932e9978e0648e075937b182�F�
9988a58fd1793b7bc5fef2c748a853a2c83650e825e9d524d12cccb139f1068cF�
998aeda730e4ca3c63ce73e2345ed6e97ec1682e90df490b0e96faff1ebf4665�F�
99b661c96e07cf126304451e9aa41291a49a8f3fc0d29d14dabcfb939072586f�F�
99b96b570fc91fa44db61365343ee81cb62330dcb8c0e0c74bc140c218e7c02a�F�
99d7ab7cf207e1519d1bc9faa0e9cce19f934bf8db21f3946902e8b76737c8a7�

ee��:��V��+r�F�
99f7afea90a0a26964c80545f90fd551c442f1fdcb3ccdd6be042506650e78d5�F�
99fafc8a49fe4f04b587c0c5dfb8876f9377969f4f143426ab749dc0f84a48a8�F�
99fbbb592c991c048c088d31d6dc60cef74de08cfb469bfc81e440dd3938c4d4:F�
9a14b340b2f3db002dcaa100cc68ebbcef4cd379500165da1b2fe3276e963ea6F�
9a1fd5f559898dbaf4d03b56d97b096c2b79fc34289877bfec44204cca9aa895
�F�
9a2538ebee1a09c61de1b04f3ce4e0727b75e499fc1cbe6df0a72d5507871c0e�F�
9a48d9a5c8ba240b00760f5cdc0080f6ea8fb38b0f044469b34b8ced3f0be6e9F�
9a5aad884099ccb669c4d020f69ddfec584bec4cb676f93818cd67346ee348d0�F�
9a5fa14360c626a157114ece6ad7b3186a9d13ffe35b54f68fab1678618a929d'F�
9a5fecf7eddf64da702208bc6b583307af8b3e3c8f80f0306e8eb58001ba5cdawF�
9a646552f12a087de4493fe8a4dfec0a5fb87521f568758c6136443c9644c22fgF�
9a67185543ce85b81ea0ba5ae659db50e1022125ba9f4e1bebe34933d399141b�F�
9a702b71630a1f6857d6968df97b744cb45fd56fec8f16edbef0148661381390
�
1N\1|�]��>��j�NNF�
9a717dd3b5eb02f5b812a44d5dde08db1964e2500b23bb7518df5c5083372f36�NPF�
9b205c9658e9caf5ecd6d928179b7e7b36aa629b18e33540805f21a0d0b9f939uNQF�
9bc8c09cfaaabcb254797b1579fccbbf5a7ac3febd8172c07ad6764c33c3270eNRF�
9c739eecd603856d78884d350c8dd6ede946fc361bbe142177f439da852cc952�NSF�
9d052bd282880b22a3fdd0e733ea2b915e29942748f9ccc7ea825a12f74d2f1bgNTF�
9d9440a2b4ed4979c7741c8ff246d32dd982cf24ff59fb679bee4516ab71f0d1yNUF�
9e499430d2fb2c6cb68c3ee8c7e80022d612bdba43e98c21c6cead204a19aee1�NVF�
9f2c5064a36e0190d1fb7f175cee62952c7e32951856a1ec5c9a427f2148aac2�NWF�
9fc8f4ae81c019b16a882823948eff561fe0f6ad38be509f514a5c287a60d121�NXF�
a01c3e5e0175a052f36e32e6cf907b5d7095df8c8df47790e64f8dd8c741aff0�NYF�
a0ea2fe57948c676dcf2c0fbdebfa53f6faf41c7af4de552c31411ddf372859d�NZF�
a1a79207d7fe88ceb95e5e7c1c63bd1c59cb5a98169680429a87fdd1ee285aba�N[F�
a2218b6da0ff7fbf1477f94aececde3dbb0c8dae25eaea7857803f8041d6f171�

ee��:��V��+r�F�
9a755fccab500090f9f294ce722c9245f42f0f67ffbc27667a08f8c94f0e706b�F�
9a83d7998a3864c74ef1b2bf4f61a19da0f4c226c45f7a70d50c9c0f75da1207�F�
9a8b2db0e1457c3d413a7d5db0d2a07fe70d2fe34918a818a9527c1bd851cf8e�F�
9a93379d2c2af5db3ccd19b3b12e93f6dee917f2156fc18048525a7a90b313caF�
9a949108d90656bc8587b16aed99265931bfd33e4912eebc815b4acd99d709f0�F�
9a97f6e2d20a2e98ad20844706c47bf2fc689c6975c67067aa46d4ab03c1e47aqF�
9aaf0e40133fe06566b60b7c5045d71204f986d2fb7aef8c6375d03c80b89120�F�
9acf4764f875271e9b8edf93cb0f5241361a82fe81d1381df235edd88ffa4981�F�
9b01dd0b8e02a853dbc19ea531e09d6c0d39b454023c90e0b36c94a8d8fdd356�F�
9b034f31b9d2ed3c7e58e6a93b911b9f49b07b0808de96a2e2e691263e14e0fa>F�
9b04004d36145ad375dfe9de28a7d55007514df412aad6adb55517e39c5d5a94�F�
9b0f357ea1eeba57c0d266260414871735cb04729cc62e43ab7bc3503538cb95�F�
9b1fd6f75c44990182608f11437d29610a09c14eef6cd15e358d8dc204c067a6Q

ff��;��W��+r�F�
9b3822948ac2fa18132b7f9d9a7d2a194615f396f5dc14dd0ecaa0ee2975470e	�F�
9b43305f54731049c328c1576f320912a045534f33373113f5ec315e63e8f094F�
9b49885bec503dbc2bbb82461da78b854568129c5ea70410fc3d5ba68dd1e97d�F�
9b4b4560b2485d70634ad393bde40d05f38c2ecce03135964bdc3876bf556570kF�
9b60f16bb0b8c4049fe3746ef82af738dea6d843c9a10278ae65a56e0f643543F�
9b6758993720f8e305448717bc270151ffeedba84a7961f0c5e110065eb6f188F�
9b69e41e187f8c3cd3d73d8a8b89d8ee3e0237dbf11ca2481d2bb26444e5ed32�E�
9b6de03afb9e2ed1eb1fe326e14a90ed08a67cee15e148db6d1d484cd4022e4cuF�
9b7811c33c17c0451385a23f2766da783639500821e5bdd7fbea74b07f73a5f0�F�
9b8eaf39c60cfcb55b3c1b2bca5d0dd535225e1dcedf7eeb80d3c1241b9c0478�F�
9ba71fe357dd09d1913b30b0bd83507588d8cb06eda6f2c15326f3f1384c6180�F�
9bb37ac3924384d007bdead158f96496ee81fe8eefecab3416f0f81800604648F�
9bbb081fdd6485184aa28dae8f3c1946680fdf0f31efe538dc75912939ac72ef�

ee��:��V��+r�F�
9bf2751a28e0695d59bf5c8e1ac8a371b4f65b45751daac5745c15803ecb05e8jF�
9bfa69b7940e4e41942fffc935239c974893faa573fe45c923cc53905317aad3�F�
9bfce694395b42428b130fade4131953efe8248a166cb9df74a2681d8de08ecb
�F�
9c006d26a3fc490337a403596c661c5f56ddf827bc6cbd0f2da8d9f0c325eeb9�F�
9c0edeaeecaf19ea413db53d573ef306f6f69adbc4a87d9e0c522e0a6385b8d6
AF�
9c1793d4db51f7f371d7e73208f169004d3aba5ed38b51d28f55cdcc8cb7f3c0
�F�
9c231e9b4e39bea78503148cf3642323271b9fdc99cef9271273ef16cfa78ef9�F�
9c36a1622791ce03d6ac94ea9fa499f523998938199fdd4b31677374da4a1118F�
9c3d41d6041f9bdd8e0938ed6e0638aa29653f13b1631dd40dfbcc0dce9adc28]F�
9c54883a611d1da210a5b0909cd7fd415b6c99473614fab81bae9df9cf8c6be2�F�
9c6296e27d68895aa9814be130a3a7bb16cd8fa2ec14d63699d1a6a1223dc662�F�
9c633fbd6673e42c90f906b0939d7603ab4b721859bff248db9a4cc0489b32a6F�
9c713d3f8c2da0e96f093a322cd54bca18ff323dd824b4a6cfa730232160f754�

ee��:��V��+r�F�
9c7aa04ec57ce07caa9cac6c9e1c323ac60dccf00396891f117caa96863e4bc8�F�
9c8552ce4b79fef3a8e7b55a85b91bd83e2f2765635056bc7064ab7d071c6e1a	�F�
9c872d363d18d15dca6ce6002298b5b4812a2ca3a8743939cc98972ed12f7051�F�
9c883d2d32a12c3f672b6e40119adf476d62ae4bacb40ce0a88634b864d19701F�
9c90fdb57f5b173c0200715d87a85083b5f8dd268a7aef1df7baddcd4f7ba0ad�F�
9c9453260d66b8957dc7fb411913d40ce90346035eda2b58c2f9c759b2125cf7tF�
9cbc0d51860b18d2d4dad73f8fcd78a82a9751a94316cae1b852109e078f1b33�F�
9cbd6eff83677c01360b1fef5a8c341cd87c5de0ad0732e7ac0d66ae86c24ef7F�
9cd2077252d68212f08dd81f3353a8d296b4983fd631071221ad12978b80e2d3^F�
9cda3404dd4c70ddebe5fc092534a2952e3c6f66ae3e9452bbdfded07730a7e5�F�
9cdcbe724241177f459023cb17fbe80d807010b1ab85f44514ed06b6a1a0abc3<F�
9ce18db0c7edcdf3961e7086a8438b700e7bb5f91d89a4bca5049729c6b02228�F�
9cfc662e7205b955336839340e91d244d4c1151e65f24d263b83a7284397aadc8

ee��:��V��+r�F�
9d07ac1bce7ef2c7b3f3df53bb8c04ddc9c17ab0cc6bc18d729ee1c7f97f800aF�
9d2caa5bdf17716a2d9e2503e5e5490dd97a317659eb35ed3ee294d10b9132be�F�
9d34ca3784c0b623e48bc95dca03187a3404a69dd41baa19138db561f25be0f9�F�
9d5c67e50f13bee074d4860c206d81b8461ec0b7593a7cf3b207abe9f1e6f815
�F�
9d64772c1a50450f231fb3e75179eecc94b9aa1ff2a18fe00a4322da5b873623QF�
9d6605784a491b25286fafef98f82226f7634b2197c483f0273690b3701d2853�F�
9d699056a31b7a651cd7680f41d92d78ae727215dd9dce336447373fd00a7bc6`F�
9d6c8bed9c4d8626f8fd6586301ec93617410de9408cd2b65fef37c2cea142c9�F�
9d6dba1f2b69d9a60186e25386f8b45c69cd3fc28e58774151905a0edfac5a82�F�
9d8090a78aa40baa54d3800a01ae8e374a61c7be5587eb90bc2cf279a1c29e2e
�F�
9d883529a429fd5676d5deb1bcbc66ddd6a9aebebfe215ea0436c33ff0387b2f8F�
9d8f6d50998e1ddcbcad83e5a929b89aebdccffb0d09afca0a5d451591034494BF�
9d8f852847d542b8ca3a8f7afddddd363dfd43bfa65cfbf6dfc8aa04498417da

ee��:��V��+r�F�
9db782d6307662cc280b48dbb9d5908c853c6f93c0175937ebbebb1942d0dbf1"F�
9db93e031838e2ddbd104024296a70bd847b8e704bfa2e92f767297158bf6b6c�F�
9dc6103c894580255acdaca6f10c631843d1f93573f2546118ae35826f597314	5F�
9ddb3989f547bec0175c3f866ce77a6ac4742203e5567fcd03af76e451568f49eF�
9deefb8ac4e6a1d43c4894b9e5daf58d70b43a9f12952164dc89a1d15e5a400c�F�
9df3dd0592a54ada722f373efb2ba882dada990b05e08814608a1d5fb236de64\F�
9e0249e756fa1e3dfb334a1acf42d322e19676dcef92227940e29b52a2972853�F�
9e05956f580c985a939dbd279aa13ca665ba62cb3985fe2751b38a299b82115d�F�
9e0df1a28efc20a09397d8fda7acd78003130bd6e24eaa47905a3a1c11b8fd1b�F�
9e2c495e6129261f090cea872f60243d9dc4dde47a1a16137f85ddc7bebce41b�F�
9e34155e9955877814c45bc4c249bf6c38112821f536ccc4baefe4ed42298b48
F�
9e3c7f90c42ce49e7b713d239d0814692a9206c40398c880f541a2a12d8aa210	xF�
9e472e05a5fca129f0efc2c81b7fc14f5daa96935b5c693cead447474422f17f�

ff��;��V��+r�F�
9e5cbf00ba9abdeb4b79e3b7688f06eb0cba3600861f6ba1b8e7589195f4cefe�F�
9e5e0690a1ca23a083173192c311f06da00d80fa4bc1fb9971a527571077eb0c5F�
9e6c9b4224affd5105ee5ffe4355eb2e09681fde2148ce946769e1c4583a360b�F�
9e77aa7192e0e6ca06b1a23c5e174410e0034b59dedc6cc1edf7458486f920ed�F�
9e8882a42b481017ad43c670ac8c75a3a878d804f43f7716f685798813397a3f[F�
9e951fe6f09cc5cf1402211e1232a2a92d029d66404daf66003bfc285052a41d�E�
9e9a8ce7cbf019108675746a5f67d8ff853fb0b97c72cbd0f4d38b6dad0c96b7$F�
9ea26fb857c06b7e275a794a125b7880359b3911861019696cd35074ee1063d3�F�
9eb8a6c91f46c6b191c972052582bf84913f5b8b77d733b9a22599022ce86a8b�F�
9ebd06e0dbe03a1b81d2bb45598fa8b2a8423c754eb01c2dc19009b37889af7dhF�
9ec3b65cf753a77c4da092b4e68ecba78c87b41489cc86c51a071e27221c1008YF�
9ed16457c6de56bbd64bcca2285bd78861c098822395446cc3a1c693ffb69c77�F�
9f0008a88260081411e863e41debfe8067b201353ea3a2182eb3f16e4267d6e5�

ee��:��V��+r�F�
9f3c7997d99823801fcaa63e46125569a1f11fcfe6050871f1260ac19a424cab�F�
9f4028fe73544b73e189e0028f1dae14bb0a141130988e21021ac4cef2074065tF�
9f4044376829fa18da40d132a93644d44691a5cb6c1af69c266fa8e7c7187cdd@F�
9f51218b8454129029c134ac7b8c3cfdae6f1bd1938cb010314534defd013717�F�
9f57641987fd36be4cd3915ab21939f74a4d1c79b1812b0469560179b445fb74RF�
9f70940adeedfa2ad404110adcb36a268faa97569dc2fc32c100eab4368a9c54�F�
9f794072765d2423d8dc156f9a676c6e2b29c90d2a6f4e58cb579073b02c4017	dF�
9f7d0b1438c902e19bff1151a338f2bc62e101701aa2cc4c684d09ef8a941fe7F�
9f8abcf48b89d3171a189ec5449a97b802ba649f300ad32218c8310d9ae89caa<F�
9f8bb077bbb9a1599bd7dfb6b7973517ca6a23674134edc3822c31d459a0fcf0
�F�
9fabfd6e48f2b62acf53b7c1041c0ca9cb1dc4ad4136784de7d73bae29b118c0!F�
9fbd7c60ba0ef653dfcf59169cc19e74805f8e102bab5c4d038d343782872528F�
9fc87325642e8e0a01c8a46507e124f43ad0d86942ddd1f2e5d1722588e7359c�

ee��:��V��+r�F�
9fd356bb83a32c07e83db458f3325d6bb9b9d294bf167987ff425f01ceec9bb3F�
9fd5c36a0b8c70c04630c8224b3fcace1a47b80691c908ee62b4bcabac65bf5f,F�
9fd94d3abf2eb974789a7462096058ddb3171ea77c08cd56496f956960a28322$F�
9fe30f8f94bda5cdd5390de29d8a6c4c8f6dbbb9aeec90fb2dbf9da761d3e515wF�
9fe65bb70a192bc16ad246fb03daefa211650e429f9834845e0a048fb42253d3�F�
9fe7f82ad271dad01797d8671e72b30eaa56799b8b56946e3a6091de48af5ea7SF�
9fe95cd53733c5ac4fb1ee1e907acf53ce9a1661cc2b2e83a473ca67ae9bfc46�F�
9ff1593a282c3d42607507ffbc763ae17f3ae2a5896b8152f03b1dd8d3bebe51�F�
9ff292253bb056d6533811af24502ff8e6b9f03d370e153698aff7cc1cb568b6�F�
9ffa36744512a13fc23ae4541bafd054b58dfcecb57c59e6cbe9575f74e20809�F�
9fff25a7253ba8afcc5b3c163312a1f8eb3150a5d840c690f898fdad96a16863�F�
a005198937d77a556b2d5c86b03b36028c5cdf485f869c8f661e5bdaeca48381�F�
a019256591b9ba5eafbd13f6202b604bb7a7441347110ad87f864f0f8d374298�

ee��:��V��+r�F�
a01dae3f1eb932f0bc862e5f5466508b803a3d1c7bbc6b989e42cef1534de0e3RF�
a03be94a199377cb1c5614368a415c0540f04e2d6bc74e7bfbe1a1dd0c525128^F�
a051479c689a04906459e0f87104834ea707b2ffeb1317695704b03edb4c8b2b	F�
a056997b96782b4b457a7404dada83836f46133ac10579459e04c22a64697b3f:F�
a06df499751c88597c0ff2c9e3571f888ef5f4c900179b21dd22799ec89b624a
7F�
a0725d3676ffa6a24b4686e544f68d9c21b869c274d28cebfafb3c70638c371elF�
a0771a63bfd2ad4fc5390775761741924acb2e2a6d6fea5e21306d97e0c181904F�
a07b8c2dfe81595e9e9b35a3f4a4c913496728d0ab4422f3a5e00e2c9d5174ad/F�
a09b59d166ae4f96e35aa50238b29f47cbf2e30ed154a83dd200b7627918a160�F�
a09beb8f5ef98b4539f6e145b9e6318297e4159b1e5234b77768dd9c5b344039F�
a0b60429c7fcd5fba41b9a28504facb63c1539487333911e73e7e2b166b38981�F�
a0b6efe5d9993351a08c5873bc1be89455d96a5535d9bf69e24384ab21850577�F�
a0c3a8dbbc209a90df3f8f2185925585b61c9809b9f26c087201f7c8d64a1f05�

ee��:��V��+r�F�
a100ffb8d2d8478959b6d515f8a57612af98cd23cd3f340be8fdc45b223ebd2b�F�
a1015ebe13614d40e027fbd95e9c012b121af65537d9fa42d84ae37bd4b3f77a�F�
a1186ec734eb9834a2715c84b38c55a5efc049d49063deb03d006c6cbc9dd48c�F�
a11deef2840f7fe80ce1b946609ec3aa04069da0557383edb2dd88107312e356�F�
a11e1ecb8f7034384a2138c08abe5aa5f4f9996c624112e951eb5a42353bc197	F�
a12a8a2185579f6577042b3b9876e89a3c3c99ff67c168c0388c79d64d4d9854�F�
a133fe2fda391e345abde6444e57c6fbfb5ebcfe7720bc5b1ae1c3313bd38aed
WF�
a14db656a37e716de6fd51d331dc591f90b663382f88a483d40e8c847e506676	�F�
a15acb72ee6adfbf7ace3b47300fda1914cad9d22e255326e32d3a93ce032670	�F�
a18aeb73905ede9c9bd2f5ab9736372813b7662678482ea5ad4990ce21b77ae9iF�
a18e979a837324a9730fc3e5b08e4f228f22d46c20c0a6445f7147444b8449c3�F�
a191bcc40fb33d21a6109e116756d8999e60adb5535583f65d05f51ff3047463�F�
a1970a5fc923219ddca4fa8d05e7f29ee858edf46448313a44734fb4d4c4149dg

ff��:��V��+r�E�
a1ac854d8e90e02d163b93f8f41c02c3b799b35db98f425c835e937468ad058bVF�
a1b2bb66bfc18162bd1422b81f7e29c65df69760c35e15b769b04c93743d3fd9
rF�
a1b74be1d5a4cc7822e76a9f4d891bbacc535194cb8b1f766c6b04f42b2e443aQF�
a1c2e9d4603673b1df8482afca3dab078eea9124690469ef6dee7f9d4e663b29�F�
a1c734e7a148f0540c34ece6fc172664f88cf275abd4199a642731dc9f9bf5abtF�
a1ca7e4977e1aa55e582537db75040c395105cb35ed1d15da80d8a11e4a3f662	PF�
a1d7425caccc9a966670aae472b941355eabfd2f097cd2e1f237f22cfe4a17abYF�
a1e667c441a340c5ac1f0544c4a3d934fde4bf968688af42f5d33e773f092b5b�F�
a1ec1d1affcf4fc30a5337ef7012e0b57d8288af74888ea3b40f8aa781fff212�F�
a20718245cbc3ce096de1da99acc9aadce7082881bcdc0b1576352b2959e8db8�F�
a219a29b75fdb33749412440d21f8b1ff92ad6616637e7e8cb818daf66fabe36�F�
a219dbccfdca9ac57c9b9064dffadc0044870709a425252ba874f86cfa15084c	�F�
a22140d2598b1d94d1cef9f4d960ba6d9726634bd9bec4682f6338583e5bedbeG

ee��:��V��+r�F�
a2241dadf6e520288ff5e0285cd20102eb24c34f0045337577928089b0ff4d79EF�
a2341873756b6756d7b18967c3dd2b6ce12fff550f0837ea9361171291c42397	�F�
a23725495610dce574aa0dd65ab70ebc49af45d253cb2c031fcb4f8050ef9174BF�
a24b7bc1700c9020bc5e2e066c84007538c58004033ee208ec22a6eaec755711�F�
a25ea7a2e7fdf9c96aa665fd1d337fa501a8be996a208eede238af6018d94012�F�
a271a288a9e5d486a7d0633c7bc2cacdc437a5653257949d7aea3b6090eebd74
F�
a2747777a7c3d1ef8019b71132c4a6eb6e5a8363b7b085140da95747f86c10af
�F�
a2766b83b6a876469856708425fef7119bad6779d4b9ed448fcb9ea454b97420vF�
a27a74e92715fbe40b9a7d67bedad0e62952307a43ea09eecd25aa1667294bd5�F�
a288bfc4e0cabe06d845847deb1b0bbdf10a01f9707476ebbf61f3bc2e99e2a0�F�
a28c0efdadc06bf5a7278211745c542df980210b991db1532357b48d09b0e233
;F�
a29e2e0a13cced40434f89b37fa93d3caf9d4d7726df5a200015fd9c03f045f6�F�
a2a0890a1bee535a6e50b46532778911b437fe971d72e228048964d8dd0f7550	

ee��:��V��+r�F�
a2b22dc88f61d0fa6de4fcb62e090f383e630fc264c56ad005c9c508b1c0fcb2=F�
a2cead9a7e5666819ec51f9e5c76ccde1eaf396651494f7020eb59615a2f9a17�F�
a2e16e3449f1d216456cce32c996514ef5ca92cbe8e4e01823b44edb2054748f
�F�
a2e3eec180d90a42cea830a8b5f0fa6890394a9b51d4349667c8010da5d2d418�F�
a2e99881f1afb105ba6355f4eef86e839d3ccf60d9543490c748c71e96cb2256F�
a2f2af622884bf98fdf41e5b0a6ddb5e6e8b63443f213bbaecd8e9e08096de98jF�
a2f70fbdd27181bcd656bbd6bb28222e80496a2d4cef2918f74b66e887b0ad68�F�
a2f8ab9e5767d2ec29dc6571b88d28e1d256bd0aaf2b7a447de4187709d699fa[F�
a2f9c00b20dcf7207991f467a8714eb3d7273d424ee4dd045d1a5232da5cd797�F�
a2fb51336df10bfeae88e811816e04967399b366dd70cde5a7202cbabb4d0a7f�F�
a300fb68037da47d07903271c1b04a1bf9b9ce2da5c1a0e56fcede7f6614fa62QF�
a33439122e1d6221585c619440d965d09ad0e9e2269f086ead9ef7cf4b84aaaa�F�
a33d9ecd05eaa2248f7384075877e78357534a302081fc03a9b5f0dcc71df48fC
3Nk3~�_��@�� k�N]F�
a3461547f0108720d6413695a5d1110d735d6a9359910eca40e788f625bab184�N_F�
a3f82abae1cfa7453d9b8553062e87caf6acf5fab2d57ec6ba1cd09335b548f8N`F�
a48861f8b0007e766c5886a948e293f97eb2f45c90d1afc5373722cf5a163b72XNaF�
a4f562d2bfa43893cbae16d48549de733cb308300b8e00392e586a0a8337ba28
kNbF�
a56dd9d75f85b76dd72f232aef6262710e4f66d7291c55f0e3467fa4c70855ee�NcF�
a663038e5d2fe0f26775744ace593a48c274a77a69c51d4592701ea604272ae1	�NdF�
a6fbfa63c8d1fd4dd8cfecfeb29858434215394a4e58af6c4ba12e2f82e2a61d*NeE�
a7b0d2e78f9226d952fd5d798225620b853fb2b0edd6abeda0fcca3095856f7aENfF�
a88474ca9c7184610d2381b4f56de6ecd823c02da9266a63a5ba57230c0ae64d�NgF�
a93a8dc3ff39c6f387f6ec4a439ce6ac3e94c0162375d5397c5b1d880d365031�NhF�
a9a7c7111b8132043c9c9351bdd7bf34051ae1eb9ab0c90e8e7582ca543c49d6
^NiE�
aa0fe451ab8753df55722f121169c9aca26ca19a8b763c4d7f831af3bf826a26NjF�
aaa6f5e10bb4f066d056589fbd2c2409c9e33e21cf5e6a20cf1c81c4de17ff57�

ff��;��V��+r�F�
a35e2c0d9f1e86c4ba70006c038141ae46bea796e4e9375fff2d525742bf85d76F�
a374981fe49487005f6b444803f5ee027e4f454271acd10934c5612a37320bf3�F�
a384513b0be353541f3730615409df1cd228cf1a4fef5a3c14bd1bfca576d8f93F�
a38a894774d443bd314d09acaa9ee6056116e25f757c9e76290fe30450b9ca95F�
a39b37b22a67c2fed32b45b2c75ceda293b7a59938dfb6d991ff59b639ae2aea�E�
a3a98ff12318616c1641d6e0d2dadf6e2f268b6bbc34e65924fe720f0ed2b498oF�
a3a9ea28c98e59589049fb7889c20c37771b190b44b92388c4e2aa7aafcb1a2e	XF�
a3ad033749fd54a7fd723f8b31abd4dea531eae66ff59e0f48a1e7412fd09051dF�
a3cd127f94e232f4ccaddd486ee240986e25b65c51ab664b49ec511d5310482c�F�
a3d1deaf9e376473910f9b57f2f2af63409cd1694461f15fa3888697f35dae99F�
a3db401db86968bf26b166686f43ca87a750990d0b9e46fad7c8f63e89052035�F�
a3ef423198831cced03969fcb478cb2a5ee78ec107a8600aa98854d428fa7a96
vF�
a3ef6e35d2238c250f6554c30556a80122488a92f64edf3c23c04158556120ec

ee��:��V��+r�F�
a40300c549d06a08cce3881d68a82db4bbd0d600667f58fd2017f98bd033fa4e9F�
a40e6f107134f5d7997968a9ddc2ce1e7beb8cec4d869d04add1181bbf1653fd	�F�
a4124d55ffe94d6e2682cb82eb1191d84b8b271f2950a8cbf86be4ade606a768�F�
a41884a9bea64c478434afa440f59ad7fb2b3251861261bfa51c4a6142be01f3!F�
a42f0d2d5c250a9f3a20b0d1766de040990c5ff04917d87601eb5ecaca50cc8b!F�
a43b680de14ef93acee1419d61cdc454bcfc9439bdacd573060f26937b5e2164�F�
a44afb9ad79ce59c97899e5be3660c4d4dbd20f0aa44417e9f820995db76c42b
�F�
a44f98ca0940978bcb90de24620d95a537a8c46a0e15d0c211db20d0afe091313F�
a450c1170181a3ff18ece403ab9cd454a3f2fbe440d5f9b595bd3f0de9b1dd08mF�
a4645f394179a96fed5377b5fe20f2357bcc3d4c57000c4f11b2bd1c6d05a2e7�F�
a46868c4f685242ca769589626c8729cd89edd8240128f8b329e42dbf0398598)F�
a48132ab5f5f42b2a741922bb5933c0f84e9994688313798505382288ac76453F�
a488570f9d11e747c97f57e3754398d4b317a95c8b12a89765afa51f7a8d5b3c�

ff��:��V��+r�F�
a4aa01b378a3f60ccb4500c7b55fd5e37fde220dcb3863302b729de23aefcf5a�F�
a4b2a180e6418f7810ccfa0cbf722ce37a6133dc60adeb0ef64356a61444a32b+E�
a4b372b0da7c95c62540dcfd5049d2b4cd05abf59cb373d2a9a94bcdce3472c3F�
a4b82389944cd83f755da0bd6b1b81d987f9dc5f28ee78bd23bde637a51321e2	EF�
a4c7433fc835c54d8bf366a26b4dc41534ab33b1bd9437ea1ba37c1150958611jF�
a4d1e02c406da42d667a511a3172beae376e11ced63bb428e16894a66b9145927F�
a4d493ddbcf031863d7df693b8bc739563ff7942f02210a63070f6e5f86aa7fc5F�
a4dd90b3a38f048451db9452be71e7a4b4d0cfa945c1fb18335881ddf88355f3�F�
a4e1b36b41fc592139af224d55fdf5ffecd2f6b528dd8ae73388911df76a9f026F�
a4e3cfe2ec39289ce4330038a8f3fa801449727c3b6173cf5ceabec99f36bf59�F�
a4e5c86a1cca9f1fc22a2b9ee7b057a8c3cf9a4e26ee74373e8878ad6288731alF�
a4ed3b8d30ed584009accf96a7436d098f14e555ae10c804f398816146a347e6TF�
a4f2dc5f488dc7bd53211931528d9c122391fbf1997e99e33a04a33c38c67995[

ee��:��V��+r�F�
a4f8b4717015fbf8177d95a8a84a98b233c1bb9171ffa261d3b9bfff69345e5d�F�
a513143acbf28366be9f3830ac06cb3468fbca694206826e572edafd38461ed0�F�
a5200800917686a6972452c153a94ec608f7f8111e13fd0ed1403eed10246930�F�
a529f2b782f1a8ac2c40f6c193c7b680debbe16131700642d20f5c3c7792165fiF�
a52b0985bc9791dee53f7a73f22051cc229824892249b53b748eaad81619a0bf#F�
a52c89128003d6c528346ece42b32f7126708399f05995deaa7aa1e7035625a9�F�
a52fbf59e2e7f8b7b912ee6fd5be7c84450b3ab1d4cb68690cfc3f306086b817�F�
a5344af6f4e55dc3241835e173e61da3faccff81e74b16a504ca025d311661990F�
a547520b96904888041cdae1529c93057c845c1215a8ac1a453c516eae9263a6�F�
a551edad1e9e549e9010c83ff60ebed361a870676f10b405c22b4a301de84699�F�
a5589b3ed616bfece0771799ef3774cb33d200e987dba38dc365b6df40958657�F�
a55f9423be083a88cde58065e6db2d37a2914f6a3c47d1e7691f1727476f4183�F�
a56bfb4be6763b8f94a45cd667d3d9e26cc48d8d10f46fa025a15f345484167b�

ee��:��V��+r�F�
a58a0b8408d78f804c67f0633541c402b9020555a4986e3fde782bf8544f5f06!F�
a58d0d4575abce242db65f08764359915f175bed5665391d68c8b0848ca043e5F�
a5909e444b1d27c443afbbb9a2c128c3ee271e86aed9bea120cceb657e7bc326�F�
a59b71df5f20f5b5cbdbc96ff9c1388cc6a2ae20c74c5c924f364b4150653748
�F�
a5a85314f27feb920e411ab6a9683cb3e8fd4b1ecc404906653cd728abed4bcbF�
a5af318efcf06316076e95b5e88893eb108d829611813c7fc493ba3ebc5a1e32F�
a5d07ef113639a1ab8da7c6d2429a8232e1a1dd44504eef67d44e146ca863729�F�
a5dc184a11c5ee57f55ab4b8abbcf391aa3b6bac3960c6f35615716c35d18da3�F�
a5f13a41cc54cc7e9bcaf76ee19fec24dd4c8b4f637c43a411f8fe4af310a88cnF�
a5f9b329bc1130ffe9bf6f2ced3317e2ad895c4559a82bdf804c8b85e4765b28	�F�
a6114fbcf7f5bf08c4c84d6d0e2551e1175af5cd5b08fe5fa1557b575e292d02
�F�
a6119606e76fc09a37585914c2063026064b1b979d9cffcf71712c2218b4c3c2F�
a64d622fd50cce3d3743013a5534e4fed4985139f60314ee23246e08601835cf

gg��<��X��+r�F�
a6776dea18957f42231f6c504897a29ef208e3c2b1f0ae2ca2b12d5f93fec583UF�
a679dce4cdf9324f44ec3dde672fc1978611c584f08c5d478d5091c78cbd8d27�F�
a6859e4664d6b26565182fc6c6f79171ac40e3aabb90299e00efc46e4acf5bc3F�
a68751d71e847954a2206eba95e8947850efa80cb938416951ff10e842a23580
UF�
a687b481be7d8b127fe830b2c0840854683d1ac18a2c1799d5caac56e8891e8fF�
a687f0ccd9e74160f22533e305c5bb77d33023ba63729183e338ad27461a5494�F�
a68ecf7a99623031de79e1da0b60b7029a5516edf54ccc1462cf363187b5fb3aqD�
	a6a35e6ed55e101d96fd0ed48dd8267a7e8e10917230172a9de28a796d39490eF�
a6aac81cd2d6ebe99abec53cff2653ecf43ba9a2c3087ea8406123927419b978�F�
a6bfb1c5831155f91a3bad78a1830d94fefc2a73404bac0d0cd1818419a2bd97�F�
a6c934448f1ad13c105abb9c4606317935bd853ff0ba1a80735013b194ee0643�F�
a6d9b567ef1b06e195132a506e27e02e6e7b6768d0d22c13cd692ffbbc8acec3|F�
a6fb96a295e675646b15c339c7b3d6070fefdec2a9d1b67402bcee35dc06bd72	i

ff��;��W��+r�F�
a6fc6ceec2ef96703e31fadfc56988518eb77de39ff4fd2e69fa98b88e033dd7F�
a7053f493f8ef154d0522e27764a50fa296c0f260992b84a51066efb0c8e8138F�
a706d40bf0fcf24324c24d5742ca54450b84792752d49ed7af95192bcd3e4527�F�
a714e0889c00122a44ccbbd66032e67123e1f75d8cdad594e32de4c09400de94�F�
a71605698db58a372ff02ab6d78041cca4507c94f4bdc16507ec30994e53892fWF�
a72dca1881f486beecebc91ccadda2fe934171b30a0aa1ecdeed9af74f7778d9�F�
a7333d8c99f660e6187ca76984c04c77a50d5b4767823ec52cc7f53fbdeb43bcRF�
a7388c34d0bff23da18ea8026b4ad61a7789dc2606148be90e9c8b6440e41fbd�E�
a746522986b0afca052c56bfe30e019392742f4feb4722768d2eb43b4babeac8F�
a746cbe3d7985ed9de3d8ea2565a0ba9d0e55c9e16d298d608b40797a31b231b�F�
a76f48da787342ed53a149870e65a5c17f6c5a2025f715b076686311a0255c64F�
a79594486e59ec5b826e79499c455a6d627baff4bdc3f3df763e5018309b5f9c�F�
a7a8c48658f7054decf6176a5bd02e2d560ad065376f79744ce3f8843e7b5f6f�

ee��:��V��+r�F�
a7bda59425c5271981f20e38206eeec1c614dac49d55e56b9e6f1d73803d442aF�
a7cb9faf1648281d26c03a5952b9c015a6e302f5018328fa99f1cd9aafbf89c4�F�
a7f79e36bdad845ee95ab0dcf81c2ac21d35da133b48c0cb448fbd6f1f3a5ceajF�
a7f93d258bd14e3d81be8c58b2998d78081d84b5f8f763c1bff64b3571ca321e�F�
a7fd672c3ffb0bf842870e9f89f527fa381c0095f942e64501bc861b9e8f3d67�F�
a8011f7c5d7ee7b597856c9c2ae5e2c6fc7ae896c60e16be78780dc6f09a5bab�F�
a80e94c28a71146376496e2e9902a431fca968386feb3bcfc1a8b876f55f48ce
F�
a83374c57cbdfe6fe09065ecf3df2781d4ed835b1b41143f2b4e74dde0e6a8cd�F�
a83c7d173d50416c52930bc2a1c8a136889066cddd068990b84f0ed6f341dfac�F�
a83eb350bcaf8f5bf58970e8c94bdcbdd5f690dc3d7e90d21bf5532d9a597c62qF�
a8405254acf23fb0843ab4e7c57f3684eb7ec1a6feb932b5dd00185927c7d7ad�F�
a8415679884139db5b73792b19bc658a4e15f201e4f2b05c40f0e3f88e5e9a96{F�
a85e9e7ec0cfd813ac23ae166540cb1ddbf0a4789afa4784dbb9d8f3c07ce5fe

ee��:��V��+r�F�
a890176b2aa7995cdcca42b0e17be87bb8aae92260d663aa371f764d1a042638F�
a8910c1e5eb6bae266e091a6d736d6d9cf6ee0d2019caf753c767a0798425bb4NF�
a895efeb08422b537678146fb9329ca6a9b3238f9291a15d091a5a70273cfab3	�F�
a8bf325bc65d56d5cd74d8b007f3b2f09f0d1f6deccd0c0d0f56f515423fe6eb)F�
a8c33d4ab95933b150aa784ba9bae1d03d59e6633afd229fc51bafff1df0e892MF�
a8c5b5cdea96dc06b0e2bfe64814361d7099d10d8c06277305f17129b0304233�F�
a8d4bf67c5aec05b8881b57f4ec80fbc832c77a1fabb65bb68b376c269b759d3F�
a8d6b71da3251c0921f8f1c9a527fe6468bab3f326f472567681e24f3f9bbd61>F�
a8df8c8e4de2b928926717150e1d011ee1c85226c1099e9ddabfe5b08e2d0d4e�F�
a8f1e3373e10bfb45af34690456fb06dbf9cf8022362cfda341212c6841271db�F�
a8f566d686a31517c6e1f0981aa8a7650ec4c8d5cea01c3500ae51e847966eeekF�
a90d954e0c0bebfc47ee93b810520648c177574c86546b7215d65bbd566e1850�F�
a919c9e3a766f98e15edfc8dde8b699f46753980aaf8f4b46d2831fcc01cf9b7�

ee��:��V��+r�F�
a93df30801aba8cea190c36d5bfa44f375fde46284080e1a7e93e5873bc75bb9�F�
a941b5ad075b2f47806bea28420794a24bc7fb5373b6712a5d0b500ee6118759�F�
a9491aa4d8fe481a24a189a9849cfe530d5eaeb3550b1364284bf6b8b7a5a76b�F�
a94b2b0e58abe148cf3859a7fc971e0d1a559ce796f9f47b7450164810d65dc5�F�
a94dd20cc4d6f36d4c0e6369c1184936c60dfd226e51525275cc137526e1f229zF�
a95af012a17347465a1f54e59f082ac490eff08433bede126e69f5fccf682f37ZF�
a95d1f4bc03b57d5bf45411152deb77c11b8f7e7eea468e1ac9786e41c70b339
�F�
a962654ff0fe134fdd88392c47a711e94bc84e08e27d0a7cb7d28e9150d2999aF�
a963852de3c08dce84508ca7b9b33ea8adeca40e1239dde2ce1a103e2fe560c2�F�
a9775c264bc9077729880ff223db6978a0ee4aae22b8fbdf9d5c6d935f6518a3aF�
a979b1653b72f0551faf8fa54eed42be4d51511d962ed09d02ece63f2402d5f7|F�
a979c38358d8c02e4590026e728a88db7c7b8f5f4eb9e080f77812bbe26a018b8F�
a99bb11d5187d473fbf1ceddf45f95459a860863d190605924743cdb4f34261b)

ee��:��V��+r�F�
a9a856900d5a29d9cf94b7fdac8c07e41ad87194e1b959095cdaa6019f30d4c6xF�
a9b3782c3c170d426ed6352d73a207121cb78d86ee04aff09e0065659d0cddb7�F�
a9b4ea25e0a41a0300195b07a478887cdc00b3c879db84a0cf5c31832d626194	F�
a9b560ad84f4c4da2302f2f1c1581df4d699c0e0f9cf0754e125b2bab6ea4795F�
a9ba907298e679306020035cb1d25f9afc4e33153f8395fbcfb0ce1578791a93�F�
a9bf1a1e052ad0142193049e1f988dbdbc601a8d37337ee06021e30f7eee7baf�F�
a9cc4d39a2d6ad848428798509620c583ee6ec0da4ca03fdc079133cea857364aF�
a9cdf7b1790648907c553d9bd3ea79400a2884d68c1cb870f1c3d0c0ef2af44d�F�
a9d0459586a325bd96baabc21fddbd37a71d0834a5f892c8ae85e543558e77f3�F�
a9e9be6b6ce553ec52656aeeb84a56fd9cc324c060fd83aeddc2a4881bd164ecF�
a9f17b1fddb696d9e462b1c59846a76dfba2d99b26bfd9a07e461bcae6c41834�F�
a9fe909da2403e47e2010f35a9f2d61ffe1808b042a987b503c7c7c86a4ca895�F�
aa0a9aa8e1958293d8bb429a513a459f4abafa838c9e217974640cfcd36c5e3a

ee��:��V��+r�F�
aa2c7472ee44f9db48646789dbda352a7399c0d9f9e2644db03345bfbf705395	�F�
aa2d737429489d52bcd0751bd1e48ba6c8f71eb071120236b9ab47a5ae3b3ebdhF�
aa3730bd40f0c5b60ded75b15d9a0b7f845a26219a0a739f877d6d2ac7161c6faF�
aa3af962872bcc364488d71c63463081dff2f68de76fd90b78d2d47d65c9f42a�F�
aa3dd48f76695ea199491a446126a20084e82d91243a36c7d1bc1bb4c386dde8�F�
aa4d5c25ee0ab0c6200041d7babcc2186123b17af2126662b27bed0013787faalF�
aa50cc92809002bfd1b3255057b176376353bd9a36274c4d200209a0ec0861d3.F�
aa52ec63113bfbe6468d7f69cefadbc170784e01175f841608614bc4443b6eb9�F�
aa74fc65a3e070d797d17ec1a51bec20f0c5a1f1ff74f20bd9459369a3b805683F�
aa775be36b0d57745dd1f04714358ec65cc663466eb081aaac7ad87e1fa83ddbAF�
aa8159ebe427848a84e44ec1263eb6e8467bd09994185803163c9501ede167ad�F�
aa8fbebb1b09f5d4b003e51cc7e4003474c19e82d8bc3d986af0b378eb4ee9b5sF�
aaa642c4d8ab309bd427dfe250bcf2154390e1fe39eeec98c816058e6da39c2f�

ee��:��V��+r�F�
aab72ef4b89bc4481b87f7aaf225cbdefb62073dddddc7fc7c2b94ab11a0a936�F�
aae99874c09826e7ffdc47307dc7fa4aa1ef9302e99a8432186772a7619d629d�F�
aafce5e4b381bbdcd56ca810cabc34fd9ffb40b7f49bd9cec0edce43d0f8596a�F�
ab078229f1b5a4b3faba2b28785c5ddc0ff1118b1a2b3480dd2d824f7201a9ce	DF�
ab0dfa386979e8d8bdf410b61199e02f3996a0cafa084450435d18e99a7d33d2TF�
ab13aa04aeb348258901773260b01891907dc2f1c189f183f4e44235a851f3af+F�
ab17047e6cd355e0a693ee5bd8cca6e51616257233f9e4991c609933559e5831
F�
ab2758dd1426e326fee61bd2598d1e3e1099478f8620ffce7bed64945dec78b0�F�
ab2e63b3fe04a633b718c47d41143f7ffa9fb32076d41cfdb01feaef74cd6158*F�
ab37b1d65a0c8a304dddc11c7c15156bfbf447331a7afdff3f2f1c4a7632a7ff�F�
ab37db3638f3d63077ca3270c6b587f0147ede183844f7fd95cc12babea8f8a8�F�
ab57b19bedc00d6be037859d8d8126fff6c0f4421a2b085376f188106987b7e2)F�
ab57e2a2afb31039c65c93e0ca3680f1377080ea7d39ce5ba84007dbe8770b6f�

ee��:��V��+r�F�
ab64f5672ee9bcce92e16118c4c13b43b53597bb1ec2a50445c04cb3b9eeef74�F�
ab74d7b998e9fec54c2357c857d922e433b311d8164291884b6b827aa2d9a8ef�F�
ab886e520cf674bfa8b5efe8355f7150140a6f67d313e60090bd36049cdc6983F�
ab9a79dcba43eba518e5c0bd8261fae155c1951f0d9f9de1194a57e26a1c43f4�F�
ab9cdb97c8451a96a6548a863ba8dbcf60034e7bf1ea6853b42a0451863a5ffd�F�
aba0487fc98846f969d23ad65f98b2fddc20c5a9ecbd166216fb523452d2cb47�F�
aba75d84977de2cd5e9da00e763912c5e72ba28b55b17e081014e97ca13ce809�F�
abb495131866830ec1e5474b69876de363e44c471e7221b10ce992f1f526f9669F�
abb8fad659ee9b374da07546268016023d98393401191ae5ac9ac40748aad0edF�
abf2f157e578b874738281a5fe3e278b9d6fe5f4a908e78a8a0786e24009222d�F�
ac054a6cb21fb80c8fa5d92b7cfe026640f5eb200f4e353fa4faf2ec2c2a0cf9sF�
ac082581e82346ea696427fe38a4a1ad08c1a2f428d21c026da32d80aa0c4cfegF�
ac1a64b7b78526de7991cf4af7c5df8f1b799a4c43b62277a17f7e6b5a8bb4e4�
1Nz1|�]��>��j�NlF�
ac303bf67828310850f24db08c7e288f5b122268f84782ca9efef694febcd6e3�NnF�
acbb0c34227bd9c7bba35cfa08b4942dd141ee4ccadd128d8acedaef5e31522c�NoF�
ad525efce24792177db9c59af54a5822206dc0ec6f5b18770062ca07e51ac4ca�NpF�
ae536957e133aeb89aaad21eb5caebf2070b33547c21e967a1d51cc8ab213be4
NqF�
aee634ff6dd524953bce90ba54a52b06711539a2df4b6da94cd10b418b71b0adHNrF�
af747123a2f728bd5d30f3f31cf5d5124a9fa4ba4105764cf89594dde7453727�NsF�
aff30e07efab7028b05be02c4bbb2921b2c5a2e7a4db5788137073e27ba4e2a7
�NtF�
b06da13bab5aee0690c6d98073ecafe702d73f53e8e1b9421e90fe7928ba1d17`NuF�
b0ddff8c5c64edbfff1b2f8f18cc330688586e6a01207ad39c6c30bbeffe82fb�NvF�
b16634b5890da4c94a654fa49d88e872174872df18ecfff9c897a547f2828abc�NwF�
b1ef52251919f4f18e97753ef2b6c690ce946d73749b031333749d21518f5096�NxF�
b29312cc96f964f3acb2be38bc13b4893aeb1766954bbb95a9d214498a2e4b48NyF�
b31b9cf432a59766c6b5f9c8b9dfb6791a76a37c136babc439b16abef4d2ae11
W

ee��:��V��+r�F�
ac3b19c2af6397ecfc8da1ca8a214b082e2537deb956d6f9ef387d52189be60a�F�
ac419246df9921713ed1c65bf7621fa6b5266999545f33a73aab328bcd38d3f0F�
ac4c10593aace7feb58b42351306016a0668d518b590587b3be6a1fabb94aabf	LF�
ac4c7414d6a7541a5319e863c261155019d2a35737e18e635bc5522b6971141a�F�
ac4d6d11bf69e5b905738e3547274f544c6780aad810056708d4cdb6ef2f2842�F�
ac61f136dfa8ec37083c4218f10c4b90438fde96c223895a6e3d08660c0652f3�F�
ac621916b414525cdb8e9a02b622a0b85c0f539979311abe60541cc0da534032CF�
ac76b51bd9f736a23ca9ba8c09321e9756cbe003031b58be353bdf21e4cc8f62ZF�
ac7d75cd25f6bfa86cdc28cc1059d66db9ae1f53bd0df0d2e026116587b508b0F�
ac89e7436d5ce48c8bfe654ce6d2c7aa605cdb568aaad5d7088f3e36ffc915e9�F�
aca23e962d5b30b4147e2f0e756d929facad88ca94e488463a87261a6a8c0302DF�
aca852521c8ca141634a0215e5e3383f36ca6fe54031a695fd5bae627b1891ec�F�
acb345f09856db7783a06a30026e252117dbee4274e86ea5b3c2959410f22b01X

ee��:��V��+r�F�
acd182fdbf43efaafafe21332a32ca669b688ad9760f5af2cbe33be296901606�F�
ace18d3c4c3acb71a8d4c5a6930f0ae58e655462938d91d3ef45aef7694df479F�
ace47954cb2fb4fba9ee4f0144a123a7fcd2343db0c8f16037bd3439f3b38736
NF�
acedb410f50fe7ddd7938fec4bc88806e9f316f2c58569efa76c504f5ef11916iF�
acf66eaf4814c700b8d03668188f2b09be1df06f54e8dfc7159e8377313b08d1�F�
ad0cdb4681378d6768d0ba8ff62f05cf6459eb32070c81c7d3eec65c844a8fa5F�
ad104810553a3472aab26eafb9b0384c21ec463559eb1a5c594cbbac5aa5cbc5zF�
ad182b2b1a28f50e4030294d1ad1de624300da1440a08ecc9180070cc3c2b076!F�
ad1b306ed16dae044e07261f88e7b3e1846b160926009eba1eb3b872ad1d6443{F�
ad1b644027e6c6f011f3ffcc714aa27825b548561a43f88debe325f3ed0dee5e�F�
ad24252031ea8c0e12e7acf23ebf80586b5162f12ce5e4eac8273966928e89d0�F�
ad3ed272a76cefffd6cfcbe64c326b1286965a0a1950072cb4a2337f839ca989rF�
ad45990c26c50265b45cd64260502befba1696f09e6e431e28ae011baab8f4ab

ee��:��V��+r�F�
ad66c6e64486ef32978fa8bc2e30651674507fed936596d70705e9e334965f98	F�
ad6e6798e24fe8a37ac1aed9a3116bcf96b19cb797d6e59a4cbc7979cc334522iF�
ad7bce9b915192b7b549afd2ed6063d2ada93cb004d25d42dc82dd3313d82a37	�F�
addcd00db9e64f493d8286287e758d561f51abb09ce1ba2dd73f4b708c60e866�F�
adf023be78972d5813085a5facdbea98c19687e2f35459fa6060b6c2fded31a9HF�
adf17c4b2070f73fe44e9fc11648947e83c86d37a4e3532c9d77d3d8e9ae50e5	�F�
adf453caa95445c3a99ca102ec42c7d67b44d897aee8925bb4a1da3f07940c49F�
ae1aa9868c275415bf9db1de0d9e270cf72ea7011a3c350bcb6efc29acb3b953�F�
ae2e332cb8ed86d6de74c580f47de47f6f0d33330807f898fad3b7a0b8ffa440F�
ae30c015a383c2eb423b88776090420304ae65174ef0ecf4eb34bd608148c79cgF�
ae3c48f21e37c807df89c63a1fa1216f44279908239b46e4dc5f7fc63160d0dd'F�
ae43349e074e7aa2c0178a464cfe5b1989f31fa0e61c787de99ec01e156ca556F�
ae4a37c25fe4cd0a6a91a2140530796b4b2c6059cf099f2bd2f65504b92e3742�

ee��:��V��+r�F�
ae5b869408794a434481ba8d5927690a56b9e2045b44efc1cca5b637285e435c�F�
ae5e89ffdb193ba77fff5f91338b3087497c816b899809d1d303e53d659e4ea3uF�
ae6ecf30bc0a1b8e2c0c2d8702e3eaf7db4864987e02a301446311ff1594d050�F�
ae71e0763354a3a81b14cb8bd4de22629e35e59b0045199ad6958323fac31e30�F�
ae7235d8eadd22bf19fca7e2a758e17a26c6d01caf6e81861e6bf603fe82cb51
%F�
ae74b02c469234e1874d6852f03edc12b68b262ee96a49590345a04f69d92c18 F�
ae963ab8fb2fa512c2b276337b4855a49a8b73abd938e0edfcda3ef8eea4db57,F�
aead54e95d1462dda834e3f40fcfcf9312670076f263f156c631a937038d3b00F�
aeadded2fd899332eca7c3d0d69c10f06ba09b988bbb0be751dfc6ea05b1a753GF�
aeb54137355c495d8cbda465df5347f7e0075a2330f89bc679ccd9d8f8d5b4f6�F�
aebed6c3e895ca3c142741fbc5d368ca8af370a2dcefaff98e3d2e596055f29e�F�
aed30d0de3bf0d71c9c9be43e3e4b5e8d6832a7e755e8cfd843a6bd7f735d310	�F�
aedb64f36af805dd8fb683d049561dd019fa2ef5e48b7562c0f91dbdb1fb951e*

gg��;��W��+r�F�
aee92b7dc0fa366fb7dc58ba38778eaa69c633a74ec730c35144be5c00ad5baeF�
aef77f3e427a8c93fb45d754ebe7752c844902b2b146a2e674ead9a54c577645.E�
af07229f94ef571d7d7fa63fd7b1e5c4feaf193b6302b4faf6e64302611433ceeF�
af1a3c42b3b93fdac07667c059dd206acf1333b397990288ff235aa9fb0d2feb�F�
af2767aa1b7983e412e5c57ff7c018c32283c328f7c297d91fde01ea5fc02e62�F�
af27db711b76e9af2239a13ace9776ebce5fd5642631930f1b9ad66c9bc391f0�F�
af4714a643e3d4a5fe7d6877aeec7cfc2047da0866e0c7feb3defa34e1c54b14	�F�
af4cb1545cd730fee8de02f39c8201ee8909319eb1b8d4e09b97227b67b961b8
@E�
af4f36c81584781e9a0b5038c6d887f8d9a95020701f12f3688519038ca47c156F�
af56985c8953b2fc45d7974249df068c6d8d965f223db2279293d3ff072df271�F�
af59395f80e4a8af28d6c6ccafe41de973b85b01eae99f978460cfe0198a5ee6�F�
af5e8ccb9d54f4f9b71774537a4c1e69aad8ae1b83815d24f5930bb72e20d0f8�F�
af6f8cc2f0f6c25b367a6731610bc84784ff7ff2b8355c606556d449c930b965

ee��:��V��+r�F�
af7e93ece536de48118743c25ba2dc36958cb213c049a71bf622da7992e28132@F�
af89fab6b1b6beba4655dab160a80e43f00d9a3eb59e3da5678d9caf8ca4b865�F�
af95b47579ae105bbe84721bd483e536b8a004d3301c4efd6dc43296bb5dc441�F�
af95baddeac54f485e8299cc7cd2301b5e659e0a3c22ea98291b012c8a427d49#F�
af9cf3acff909c4085ae929a3f5506bf2bed9dda37507802c11ad79e8d903390
DF�
afa6cc1c77134d47d632ccdb524207f5d3993077790a943141d1dbd8cf0b211c
SF�
afad00b6a6e0787361c27df8bba184168f6a8317833bb2188bd1f6c3ec7c9997F�
afb7e36e5aaec8646bbdfa039bbfe6972eb157211104d1286ea36f29c07af0fb]F�
afbb3b090c43e945d72c42562f98eaacc46b54087a8745127ab819b83c16c1d4�F�
afbd81a2f863df61c3490f215bc72bad2c81fb0e7772ce5f4bc736703c22f6dd�F�
afc40dc3937d9d41e9145c8c39744dfafffd80bb988b7e391d6d9deddaa9e317JF�
afda0e4a1bc46470df4a4993f659a23e39c688752ccd5958b18e448a2d51f8d1�F�
afe9a7933f4656cf6daa79231cf44e96244592acfd586b9fbefcbbd00dbfa129F

ee��:��V��+r�F�
b0179562abc1ff5d40c03661749ce4f7f4c7d58c428cecfc4a3711bfa98e6ec6F�
b021fb63d01712466969d8b248713efeb2085fedebff3f3d2e0f0500cd70ea471F�
b0239f1e155c51adc55198eac03bc51b27badae7390b0220ca96829e87c6c759�F�
b023cc7bb4beba93c1fa4b4ea3d00f85891637ae3f1692b51863007e799f93e4^F�
b03ee55965cce1d19f8f7a5b24672dccf097948e9345a8b8a66584397af9732e�F�
b045612fcdf478362a31afe42cbcbfa3696fd627cd7125c30615831a7f9c7831
�F�
b050823fb61726e8976cc72b306b33896e52a61ba34741aaaacac29f20a9d428zF�
b0526855331c1bb15a63cd3241270a0c0330c224d607dfbf6bc5f4b2bc92a167�F�
b0579fbf5f02ea45b706f77b73c1a248973966d8d1c97d2b3a5b63af1076dc30�F�
b05ac36a6c2c5fb2a3b34dee8aff347281f1ee28b49846b4add728a5cd69f06a�F�
b05cbfb8155501322d2372a41219a106a3f361ad36d86f1e9fcf2f235dd2e63c�F�
b063de6c9fdc361af76d98bb3d3b31fd5ee05e120f1dc64f9ddfe77217c012c6�F�
b067b77274a7e008ceafa9fe949f6649af4f291e1fe843cc01d5255b977ff6be�

ff��;��V��+r�F�
b06ece51d62eb4905a59da18d4a041ada4dc1d9541693245f60fa02f0ec302deF�
b08b52ab528346df18af0d47ce99984bb2bd02ac6801bb580534ff9d3274a0ab�F�
b08dd14ff4c9cde964c7eb832ae4496d321debc822b86b970f8051ca8589c6b3�E�
b095f7fcbb5d718e30c01471ddebc9eca7b0315ab21ba2c286f3e4c44b8bf2b1YF�
b09cfd3f84ca7ac6c285e49ce46e9ee51537af067b1965560dd41d5f82f50deeFF�
b09f1f08469f4eb7a40b74f2e3cd25fa408b93d9213c6bdbc7ef21b1ee1ac8a9�F�
b0a39d51fd2f8d6d5a8f011e24a249847065815606a7f38e2041f4b496cc0190mF�
b0a46bb86e33be0981c1f64d814536e0aa1b9fde2bf106fea068c4252e33e8a7DF�
b0a8eeea28a48870600033e3ed255b73b22ef84935f83e1d18f3bf72359b66d3�F�
b0d0a9428e29aa54f6cf8736a355da73553cc5c4e20f0795d6faf0e6cab0ce49pF�
b0d102765a6254ba3124a2f0696551cdf5095c030aa9fcee435cd4fa3f06d423:F�
b0d2ba1dfd6121490fde31684dfddf6d147c4889a36ef69028e8d42e1f5d7ee5�F�
b0d7b591888b6fd49b457c15fa981112edaa1d269c881960174a8676102cad81�

ff��;��W��,s�F�
b0e87fb6b83f2d417585b8e9d2ba138a98dc6fcb1f21ac5485ddcdd9076cc90b�F�
b0f845b17a6abdd7948335a2e03ef8bdbbf9e61bc00af3b2e543ed8708781374�F�
b0fbae2e0eb181380b19d158478bf7d42c9f4424384f6f24d8b1d95b7a9954b9�F�
b10e3c319490493ec81ce895694bf20ebddb48ec604b6a5d8d41cae60cbe4ada�F�
b1195f160b7732b069a76d55a22f0c4f5d8a7a92506dd8ec030b713507963ae7F�
b11d559c42557a76fa28ec310e056c9da6ea2279ff9e9d2550f053c95a60eb4c�F�
b126c7678a3e74f9a0dca6136f61a6fdd9471991c6ce22a72c08d8a8aa86f2e1�F�
b128da11799b79cddf1ef0419560127564929391ef662226704b79b39ab3bb98	VF�
b1355c30321cdcfe6f3fc6298e8e7995196ed2edc8127aa23cee6fb0def56d65MF�
b135e72f01c1154da5b9255ee65113d9a344cc450c24d8b9e7174a0b731939eb�F�
b1471a49f356e514174b94e92dfc8993323e25a2de938cda266f9cd7d5850665
�F�
b153786a744ee0f5ed2df73a98fd3332ceb25e5bd7615afa48574656dfca002f�E�
b15c5bd5d17c47937d82efe2f0ce115cd380671ef484581d4184399c840e2c35F

ee��:��V��+r�F�
b16a84b46233f40caa0d30fca524f23408cdf7301cecddbe17cc7b23be9336c9
!F�
b1723c845eb0bd0f6313d26f5ab756da789229567920d005fec0525735b110a0NF�
b181a29e8b480e5cdb16c69bd46f0085d124c0cf817f9faa339ebe447295beab
(F�
b18eeaf97c8e575f6c91cac0852221503010783f1b05f5c71ba0566e0569c473
�F�
b18f3f7901340c38120aa1a6fa30010d2c8689dacd4c2609ff225ceed2672899�F�
b1985dc9a05a3ffe2eac12dd0ba63fc7285e6ca29af03c0351ff2b6bcbd39822	�F�
b1a437d314e4c8a0e5d1e099a8fdbcdb1ff51d9795ce9c175c3bce0b7e4ca564nF�
b1b4503ca199a88ac8a81a7fa75f6487ef746fd58e4bf8d079e879b4ad3596cb-F�
b1b8c61d7f414e0bff5b987279a268865b3400e4618cc614c0e2852dd52aef50�F�
b1c8c2c11e1df4cb77d96713a2285d4a6059f60b0d4baf4e2122da1910d62f6f}F�
b1e13bff131933637fb9b843f0d5f4c6cb81232f5b53ac058376a71010948f6b�F�
b1e27eaa8378961d1d5aa1cfe6e8b864169425ac61e6881ca154a93ccff6d67a�F�
b1e85cc0f0d7b4783c129d2855d494d189e1974a9dfc0cafeac3f27cae0d79de
_

ee��:��V��+r�F�
b1efb67b99edebdc9042e5a1fc8376aaaf9c18620d6efda4ea95ea1b1ebc91c5�F�
b1f22640d57b95b5f307687ba9cae4a938f5332030e06b6e6ade62170f059a4f?F�
b1fa6d1fdf39dbf8d3397fcaa156e0402d827e1c451d262b62c3899c837fc47a�F�
b1fa72dca82442418098746eaa9881ac7e92678c41e6786a458c28d77235fd5e�F�
b1fc5ae8c9c372eb9d1971e1612aa3947e2c1b7fb9700813c9c66f35908dd4b3�F�
b2017332dfd84aebbbfe8b857c333da3eb192f27956aa48ab410bc0ea011ca72�F�
b20d6f1e46d161202c4ae45ba1ae9ed58e953a1d4ecbee1eb0acaf15da85fa78�F�
b218ab101b70c9d78787a08804e407030dfd24d15979db45116e871686e88c92�F�
b22820dc39c9c681f704d5e7b608b6d1aecc2fb1a4181df605e69e8a30e70237�F�
b22aa8999bea98b78e5fb8b2195a94bb82daa9f6c9469ec768b019d741e439db	)F�
b233baa0fb9d61676aea025d1f7b834810ad66467adee309673c302ed29261ee�F�
b23b467a1a7c8028c65449557a6f6a8354bf652726aadf062e125ab59dd4db0fF�
b278fb80905868e72a398c821811d157b927969735ff0b93fcd631121d772538

ee��:��V��+r�F�
b29691f0851773e177dbf1022fdd7407ebdb0329a1fb62e66ecd797a49de36de
"F�
b2a7339af908b8ee4bf1f85d0d58404c6e69e1311f16a5ce08f7c4e01629bac6XF�
b2ab719c45f136d393fa35fa34b5f7ce41406fba2c86e188fc3d3823aabe7688�F�
b2b420ac2c03b3a2e4cadd073857498446180ec51a863fe30335c9da3a963fde�F�
b2b7af7c6537a7e10965b0b999532c5684afc0b6d255efc2b50da0c38e3f168a�F�
b2c1cdb60ecdd165581074138534e1d9c89d29286cfae22235a53418e6994f26dF�
b2e43341cc469f66b5495139b62a419c0c671b19535efcdc79df055cc43686e5�F�
b2ef8a6d19b994c6cead1e1510c4b2f0abe8b34327fe6fbc1e106f3549ef5de9�F�
b2fbef479f23da380eafd4aa77e97d08cb7415937a751ac477c8dd39371379ba�F�
b3004d122d0a738cbff817b9531b9787dcd2e46f3ed06c59e99fd50749720806rF�
b301b3885fb4d5b57bd90b729ff75d74dc31e2f35a8ae3b5efa64901202f1497�F�
b30805264689335b37e185dca416f299366d9a6516f7c7a10cbafad4f800f432�F�
b31602d66dc65e0bd7a5dac4f9770030528982795cfb1eb49b0cc1eea4786f27	�

ee��:��V��+r�F�
b31cc50cbf74e369bada216975078737e5f701111fb2ea5d0c97c5979d5c4db4MF�
b3204ebd71ad924147ec931e26a4e2b1126596abc3c240218c3fa6304427d2898F�
b322d84f1b35af3ca899bf943ee67782b8ae449a4769e0b3d0b7f455085b669c	<F�
b32b8584f13412301461463bde85e0fdc2dde858c115cd5ff1e7c299096a8d77
kF�
b3306affa940e0e2ab3cd9caec8dda837e626fe8043ec669f8465d62b7b08ed5zF�
b3350c79767fa9a0a0ac49e9e26cb2d6f221c594bddb72ca5a870a8d7661e0f1�F�
b346f29da69c21241a449decf0f47b1117502c6f136b70a23a24f1438e919766�F�
b35155b1ceb01b0f1587514d282fbdc9fe8d837afdaf5f41c36043a5e5a43360F�
b351574a459bf47d5aed5e921e49e33fc565cab9b3d72ce5cd6fefba1b6f83c9F�
b3523f6bd479abca1bc4c70f870af2423e9747ad2cb185692334588138742f50pF�
b3587c7ba2e0d12bead8a84ad8d8aad31b6a2da64b0de946850e55afd3787193
ZF�
b3629bade8ef787d20012f38cc73971fd4d755469722b2aa65b093f247fe10ccdF�
b38d022364150a6b271f7303931e221b21fa89648ecf7b19689e3aff7f73b9dbZ

ee��:��V��+r�F�
b390b91a21665b3ff2a03ee9f7c6bdb30c06442a9b46e609048d87d28973909d4F�
b39d7efe820971e3e85469fa528f6b8608b9fc3e46fd50fbfb19bf2bd8ca1a0b8F�
b3bdc6e767be75bd2d9600181faa4ca87a0e88beb73a43bfc5fc4a5c8956a80f7F�
b3c269833837e02c07b59ed5f8a0595794f5ae6d92b3d90ba420bd82eed56ffcoF�
b3c76329ae932f3e67af5a1fe06c2e761c855d1039dd424d7c441f8c548f297e2F�
b3cd6ec6014704060af86c8caa9a9ecbd7c3c5c0ca064b886bda0a31117ad014
�F�
b3cdcec7059a05b036622e2b2326259602d28b19672e0fe8766f1b0c59537bc9
�F�
b3dbb953a4dc9b8b5ee95024d51d922488db5a0f0ec2ece9bf47d8d5cbbf24faF�
b3dcd6321521c266fd3fc743152c2fb5145426a5861f180609a075c9b1356d64�F�
b3e23051f12c034b848268c08321e17a519c484640546a3ae90e7f99b36e7174�F�
b3e690b11cafa64b176ad1733771549c822362e0515190949a20dd95d397be58
�F�
b3e7d51cd260028cee1b21b2d94a9e4694745e0e673f10a05aebb54a5a4928ab�F�
b3eb25f000c6f150675f527c9303e23ee9dffdf1666a7746fa5d502bb01276e5�
1N�1|�]��>��j�N{F�
b3ef87449f22bbc11d2c424b6a59ffecab688a083fb9da993f6d7f4994ad29f6�N}F�
b4a0638e6c66b83b32396e053b68f71ce9f9c0846f117e75c3223af733c923b9�N~F�
b54db851c807040a3e77a35898fb88a95a15258a38f47ec41a9657101b87a477�NF�
b5a460913216927a863650ccef6d332b05a92836c9647e73a369720e9156fe84
N�F�
b6d30937baeaab87a757d348cb7d1c880d0d7835e383cdd00aa3006f7b1a6cecVN�F�
b7958e30f90b1219e2202114385b2a92aa2271e3064f4b5e46ba9f99c2beeef9N�F�
b86b07e982db65a9de92fc9c7aa93f0d88b01391a29985f36ccf1ef735a3d904�N�F�
b8df7b9911c734e2423d1ebb0116de9bc8b43bfbad024df88e3441f422aa93ff
�N�F�
b96b6f75231c9bd50c073462605d9aa5494f79623d07db42df2d505c858be737
�N�F�
b9d806c4557aff349da1d626e32967c4202becbc72147a2c93ba8a440c08995c!N�F�
ba8057e4e0424cbc1521c650fa3a07edba34cbd8e90391f5273ce5c22d55e305FN�F�
bb264f253989b30cd12094f3d2e34773de2ffb9f77472b7bd12673eb092157ae}N�F�
bbc7199164da8d3b64fe85a385ca152120db612e702d3318ac67877b9c25e534�

ee��:��V��+r�F�
b40ba100ed5ee8ae86882af45ded185b07a11fcfe03cc9c0e8481bbe5a89278b�F�
b410c0490c2af4f7e5e57b126535f682c43747b4f65ab0c3b8b86259df169293F�
b41a681dfb0b8b82973c7815eeee4cc5e3fc5e27cb13f55d251186c29146a4f3�F�
b41d7b6dcc5a7a79787391b203c6f01ca8cc2b821d1918b71d1f1e0fd2182b3cF�
b436b196f3c2735dddfe5727a948d1a2e443bdebffd7018905aa2558baba56d9�F�
b438e03eb4776904a5d3eda9f71311951963cace861385cb395c161e85901444�F�
b444f8f9031836d93018190b4da5a39d69dff36187e399dfc8ea308d2398757ciF�
b4483eb8d3d6d68b68ad3e08c79385f43b0a40aa17c3681e16b53bdddfa10bef�F�
b44b031eb36308c5d95e0003f3cb129a5fec117dca9e4bca0e8448da97c03db7�F�
b465213867e16065d782ed8791eb493ef1e3a0260294e730ea9d4c86e4e7510f�F�
b46ce984b02b31bec731f80328c745600ec4e07a5c031e77dbb554e88ba7fcbb
�F�
b471f99ddcb78e386e77a4c7bf4a814b35fce51259b2f34d2daa9be4e09d6e98MF�
b47475049748725638cfe057a54b45b2386eb621ed65e7dc441b3f6dff971e60�

ee��:��V��+r�F�
b4a38f14218c431d03e34c26a134c609d688ef2c83f268f6867bfb1003efcf2b�F�
b4bb4d388af0708a559cf09c5a7fc75ab89a349115729620b72c790f28e7422eiF�
b4cbf615b36395073b874a9c133a8bf54fd76e3016b591c08aa9bb4e0bc70679(F�
b4ef197940e3c4fa8fa6153875480c974b0ffa36f4534e7c04d901e91440e53c�F�
b4f318de6ef0eb132e4123f8b5fe5520c45b79417dc124c993f2ae8570bd2ea4tF�
b4f762ba7ffb9fcb803ea8da5868bfe7d15e7777c60e6f0f4f2f4a4d3f90cb50�F�
b4fb6c1de92fa5a737add5cf91cb77255e46b3c6bd53cb56fb0440dba5b32f9d�F�
b5008882f07f8c6c00a0b544313ead5522d4d71ffce67d2a4c5c59a41e89e091FF�
b505b67a44068dde29102d451d6c870990ee335392b3e5328c79d22c00912870F�
b508e84aaf73a34f2d109602c78e906df8eb37fed7c853749929b1c52770464f�F�
b524427963041d0c49036598caa6da026b76085863c14fdbec1466146a3b137a�F�
b534be5ce2fdd42fba4271d4bfc8275f8788cc729ebeb59920e58209b92fbf2e^F�
b53a6924f3594abaaeaa39917b0114b7f6f7dcf8df0ffe03ab3a8957ae3405c4�

ff��;��W��,r�F�
b554c183bd7760a4c29b178039f5b3746c8549c6a6d40686cd8b4f7a5314ba26�F�
b554df264228a60d69e256e2f70f55d320abe544bb18085a944c35b983f83b21�F�
b55dbe4208bb3c90683449a91d2a51f9e672cea8adfe70dae659fe5f39549d2f�F�
b55dfb902c51c301e4075cc32658c8a11145de6ede53d43aeaf2057090a9bdcfTF�
b57c33a0b61dc0b3c7c8b1c2fc69d8106f19978caed12eb3547f80ac41328a7a�F�
b57dcb1aa6d049c9f0206c226dae51fc7047a9bd3a94dd60673d7d58d3e0a2d2OF�
b5816382d23e2c39a1010248b904a92618f9140583546a2750585d023b31a97fjF�
b58cede57828d0966881342f8638cc0309f8064b70437b0adf9d649bfe1ade45�F�
b58fd5d0fbbbaf80d3e0405749952cb4e46fea09ad96f495282995d6dc2f0a15�F�
b5962c01ec97042d7aa371253ae592a53b11214605721063be11027949cd9ee6�E�
b59dc7ffbf0ef066ff9a1cf076ed8bff6d49817bed656cf03853d4c14c19563fnF�
b59e577acfd79936a81667c77131d1327e4ad70bde597f697884a4eaf7e3a7ec
rF�
b5a2b6df0e41a71f9cfd396eaf57386bb3c21a06e22de723d7391c558e82402f�

ee��:��V��+r�F�
b5bacd96f28f126743bbc0807bcb665ff0c52ee4b0256b7bcffb9a10f8d18c68�F�
b5e1f251fa985a796daa60023e6589a2ba38ccb958e5fb09215538f676a01863F�
b6052b91db5ed4e063fd850d975d05689cc9b1996c06638c4d251659b128c9acFF�
b620f989048c7f2f276ae3cbc4a5217f51cff7aad191e75030d927f8022e7c5aKF�
b6282c4c1e703d703b92a52a9f3959b4a6412072b5923853674734d4920eb1eegF�
b629a630cf9bcbefa47414156640cb216d8f887d9dae33819d9e0461c4c0119eDF�
b62cc8d7fa7e89475ac858e1c622dd266841dcd23fd2841b274d435990854dde4F�
b64165d72cf869748c81b8e41581c93b8354747c22d548ae910ab54e118a90a5
�F�
b649840984828bb702a86f59b74053d9fb62a7d9512eed421f9ac6fd2c5e648a�F�
b64c66f5d35425a886b1afbcf898922915a06a253e4ec2f2efb169f42dea7125�F�
b65a283b2abdd24d3efe7491ad9fbe6bab445307ebf30070af80a0fd335b8560�F�
b66da86b2643b46bd5d193eebb6f236cfdf753506a9c50caf4ed52fc5bce7172�F�
b6bfd04cfc31afc2ac3f06d27918b98d44851172acf977da0dd12062ad342af4-

ff��;��W��+r�F�
b6d54a557b4be65879c789367443480c4c3cb12adfbb35c324b6786e2f8ba2a7�F�
b6db83391c36a0ea8bba99215ea32a1b0cbff013b8b497b6fbef6ecfd3e1d880�F�
b6e274e05ac34f9451986e5f375b66cef94037ebc8c2b402675b73d23033f6d4�F�
b6e908a5877e75ecf0c9f0d2e6230660232dc1176edac5fab3ea2fc7d9185753uF�
b6ef3e291bb25a5525d4b85ac8b4bad708a7f474d0baeb5ed6d75da8f0ff9c5e
RF�
b6fa4027fc4b1885bba1e19874919c93e8cbaa34816975d67e07e866d7a53bf3�F�
b6ff39e8375e47ff8d8c06f442a8b78add02677aa81e66db47255f6469357012'F�
b716a9548efd53a938625df1910ca436cae1cbf92940422987c01ae7cbb040e3�E�
b73a625e6724b514380e5393dc8ac1ff68137ee32e63057c82c80eb5439701baiF�
b7454eacf95c0a09d97a1463029b82bc777116a9ed468c5edd4c0e8ec75006e6F�
b750d9875369ddf78843edcdbe9053b4d4a7e6d7bc2ca858b563d14bf5a16e4b:F�
b772674f402708d7a9f5c7def69900c57b170e563c2d85cab68cb3c7dd011b4a�F�
b77480a5bbcbb658aa18aaa138438f5924d6978f45f40b09f5958c6479004c18
�

ee��:��V��+r�F�
b7a51c89deecc8235479935646047575b00838c8e74a15aa90fd3f04dbf38d1f�F�
b7b161ba7512043214d72f44fb3c9276bcc89dc678e4ff85292f3754b4a8eb45�F�
b7b726f83f6133f92e0037c54e043aa50a4cdcd0b17600cdcd827769833b0ae2F�
b7c575cffd422a15f77eaeb8f4a41cc6e965c486511f363df2d62887b7934eb0kF�
b7d834f2cc5aa84ce95931ece2e31ba36b1622f5cf8408527a2a75727e975348	�F�
b7e3524e3d408eca2c519e323f8b8841358c3ee89c7362d30b856ed807a0cad7
�F�
b7e366f21ddcc468fdf5911183613253aa34811a255f3ce61359b728e281b233�F�
b808a968c2ce3fd33503aecac4b0f640badeb9c4fc64b22515676fc26677bdba�F�
b822a9890f5063ab0234ba6cf91bd64b1adc0c4e2f854176b9b00a76b414ca7e&F�
b82ab048b9697892096528f61737d1713449b0dfdae049f4533ac7d1e469ad0e�F�
b83531fbbb21a612cb6bf9dd29ef1ba3afdeacd82de1d86b9949dac00d9edecb�F�
b843af350666656b6246dd355d5e90fac356a7c6b609118d69957fefcf9350b3�F�
b856dd2cc821e1fa2cbc89c6901577691af284f98280ef05cc1a7c3826acae41

ee��:��V��+r�F�
b87014ec721416e0cf97d51775ad4670f9e657f37f27c2287900efbdf9361423YF�
b87fbc79faea13909a981784d127aa69be3a440f342f46eb2f0ac3baa4c8fb1aUF�
b880a0b670e4d960e2f45b887ba9131d3fde1d7bb679f52407002490f974445bF�
b884e513e4fabc67d102225daf07a6948f3c7aba4eea99292cf5bbaa993d41e7^F�
b88c8339f9ad90d0855cda0072a67860549759e8870cc9abc61555e4d4ef4f61�F�
b8969d6cee16b77e095cb73262e74f3bea7aeaacc386fb96ed8274c2732c2893�F�
b89dfe0d8f7dd4115a1057dd176a0db69c4c6c947cd62369e8f6701a52c637ffVF�
b89f6284503fe622422027e205df72fde54169ba290d768ca1952506a29792cb
�F�
b8aa34987f1faadf2c76fb58239d11cf1222dba253fc175f21607f57bb0e908c�F�
b8af2291b240e6adee1241ffbbc596bcb08dc54cfa7eec97883a3840e21871ca�F�
b8b4286c072a6e2914a35c1f9d77c2d2f6fc910361424e0fd362363d7d5d74a7�F�
b8c980b0d2eaf56affe69fde8c004c91dde7d83277578de4cfc8c06aaa322858	bF�
b8d2de93054764674ee23673c18575b0b841cfa8e724e00499ab00ed583c6621�

ff��;��W��,r�F�
b8f63d0b7b046b2e21566cd9b7a99d818dc33c5c9b5f6176fcdeb296a99ad731�F�
b8f6f54bce094feadbc5ae893e955b1ec40d9dc16c1497c780f7215a7643291b>F�
b8fb9ea2d60a9b5cadcc413c18b5359c3c36bee78234865951f0d9441fcd344aF�
b909289acabf305cfeb8f77f4351ab4fa67c1a023c392ae4e326c32ba911376byF�
b918eb715248bdb46d8f49387310a25030a9f4fe192d5ee0f69fabde9b84d42d	�F�
b91c19d3211778e075a890f5366a6f8e279f0f8516238accd9f976e88ae5d259�F�
b922b23c5579da9d7a1a127a1d46f32b941981d9a61ac309ffa1ca688fda5a47
�F�
b929a42b8d0177a7813b33484e7fc53ee017c678c48081d067dcde010be775d9~F�
b9339ad70e81b9edbe99c176f811eaa3f6b5564cff528ff56f4f44d677623c02�F�
b93825bf103f570b5e1032748e404b0d685f2025279cdfd1efbd0506671dd269�E�
b957705e340403c636b68ab6ee9c49dd1552eb20220d0175dbbf84f042ac62c4&F�
b95af4b262010256013a4265ab61dfb37bf37e1d4ca12de8b007b315ae8a9b1c�F�
b960b52aab1348559908af3d4bae59cf32f1543cfd052b3e2d9fcd3edcfd2353�

ee��:��V��+r�F�
b970000edfe83918a60d36a58443e70febbc8053c3ced7c67732f55f07d0a976vF�
b97a0e1f72d3fb43f706975f8e02ff0c130ef35fc6b4763eb18db88980fcde25�F�
b97ca8437ca8ddd548433b4e5244b6b95c3c06fabebee6a67b64e0183ff83641KF�
b987f0cc8431b286cd14af878fe7d373d1fef790672495746f45a37477544b88GF�
b989926a63d032134a604af73945bec5d655b1f56d71ee89b60cdd36ad43db7b]F�
b98e50cb5344b27eeecb7c8f6a0bd8ae65ea51bfc626a744f6d64347692558a8�F�
b9b11e2c45c327237aea9d0fd84d0d41db9d2a4137822d95f71cedd3ae9145c2�F�
b9b371aa85a094ef9bf89ccec7f948b0f98488eac855ba41f5653f61941610e4	"F�
b9b66cac17e884fd31966a5fd2874494926a1a8d4408b6ceb84dd898b05ce3f9�F�
b9bc38488c309455bbf6f753ef1aaaa244614ec08a027b5ff58a7b234006eac1F�
b9c8fac8c6b10a87a024279c0ecef2ddf68ea3c55076d9478ee93b3ba8bfc5c0eF�
b9cbd1c4954833f2a8f3d68b1cc92407f3df064e044f0f7f335563bf1983963b�F�
b9cdab2c69719f6bbf7b533475859fb6f47e37976e9c3f8dc8235fb67f98c995
$

ee��:��V��+r�F�
b9e13a24be722461646243414da9fe3046ae65baec41a7aad1670103307a6921�F�
b9e5d765d9cdb4e753cc90c405374ae4f1e90a89b8969164455783fc60720afdRF�
b9f7953bb8ad08f44b13f7946b99015a8a305f7022e1575b7243c15e252d3cfd
hF�
ba087a07d4834f084f6c1c67dd0871b4faec0852cdda6a66f64c6203f78ef56c@F�
ba0ec772d06061df246b8969b37e4815a06dc47d41fc74a28df3a929e7acfd687F�
ba22fffa8b12afc9653dd3d202c1f25ea68005dc24e14085ecfbecab982605c8�F�
ba296a88e1432d771cd920109f74098580b81344ab27e869815dfaf5cd73b1bd�F�
ba3679dbdaf62ecae1a485bd198e4127a1c7605fffa6492fb32ed97c97eff892=F�
ba3bba99a83841a7ef214b159627a5734756196a37510565d94c55e374ab6dc9�F�
ba5a53ea9bd2aff2765fd9fc38a3f75ecd5d3e617e1c2cb85f6a9a793063506c	�F�
ba60b418779a0e59ca05c44a8a4e59cf92572aec1f631f59c0e2f6cdc8e7d1faF�
ba6f42672b28ba6a322e4daf6a3e3fc791a39cdd7e438b6d6954713e77022fa6	#F�
ba701cb5769f4b33298d989a3a2f322062b88774a949cc71f4d59c46e785f253
�

gg��<��X��-t�F�
ba86ad50d0caa853696fbf8bb669856b215fcf866bddf9a40a79e2097b6bdac7
�F�
baa1991d1849681ae5e74f8eeb2d213f69221f0c76cbe0018df32bd8f5ec1cb6�F�
babc2d4404f1281796b179a84267b81054e32776eea8769de35591c3971fe0fe�F�
bac160608046f1b8a53fee2478c1cf5eacbd98780405257d17db4aa0e88221e9F�
bacfb2cae8fa0a136505d13d9ba4f457a70110c92d232123563b0978aace5648F�
bad44aa372dd71ae7305ec77706bf7df2edd9e52a618230db1ac76a6fb0f5545F�
badc986837eca92a61c46a7beb9bd700e04af6d84681d4ca53417eb37b7eeac4�F�
badfc32e957614210eda392b71e458da964b3e66c2b8b1d7b457703c93fb8070�F�
bae6332ef212f5e4fe0b1eada2f87ebde9f8d0ae3bc2bf1231463bddc7837af2	�F�
baf17e426a993485d612c72f85e502e6494151b0c2a6581a932bb3bddd9a2d65
sF�
bb040f65e782eb45f2e750692dccebe3a40db82890f2982e835b5946fb8a3a13�E�
bb05359bb91eb56f0684f800012c621df3fb69caa61349ed4d20292998b1cb0b`E�
bb1ab36dd4c499189f1a463cc83793aa1e996879aa0fc39e43580add7837b7c9!

ee��:��V��+r�F�
bb3864015d5c6e8d0e5f6d4ad1683af99c0b275dcf2efcaee1e4aebf6d78082d�F�
bb408fa95bcf415eb2f22a47b9881db4b7939785d83fa16655c8dc2709c0e454sF�
bb4a0d5f27950f8712ba44e0d94dac84d24f409c0064a28dd7e64dab38dea9bcF�
bb4b4f96791149e67da2521bb1cfaefb082667ce11c33f3fb4daf083fc100c8diF�
bb549c96d2986def32a70c8f766e2a23ac2dd2f4c76e72e116fdc699bd0c6eb9eF�
bb6c4bb2a43504110b58abd968a896a9cb28e447e17abd926b4366f43bb50835iF�
bb6e90b56d4b253121d4d970d8427ccc31a51594a6631e598efd9c3a3c659156�F�
bb7eaa756f5d42c513cfe946f0f1ba45130c482c2f40200c3e68e01181b80fed�F�
bb889461e56e1855ace7437bb01465dd50bda036d71e6dc023139aefdb0ee98e1F�
bb99b24bb6932637a09babfa34970f02619096864977bef0bf48a0e701ea428a�F�
bb9d06747ab519acfbcb5813fc1980b1af09ff804dab7cf685cf77230153ea1a	�F�
bba4318d019ae161e780b129f85d5ab91b299e3b9745f99a659fc52dacdfb221kF�
bbc54477e470a694a3032e391624ba33b9753f81d283b60a19dca7c1c52b35c4

ee��:��V��+r�F�
bbc75e7ebe20ce9f9b3a0c5ed5ebce0ec757c6a71b928408b3219bb857294882eF�
bbcc65876a2808fc3b0866365675ccaee30c914a03af4a86bac11a13ac2192e1uF�
bbce7868f8e66ee5f69db6702fdb909d81b8c17bb4f7417dbf08a87ef2a26308�F�
bbd3efd923fc7315be5c5ab97b3a2459859dcca70068d448ba1d7a8aca4b9af0�F�
bbe6a456297232dde9056eadfd3e0082764eea1606419c384a0779b6951f9ae7�F�
bbe893457383d81228467a2e58df9d5f1d18cbfd30d4cd35b2c717dc660133b76F�
bbf2b7054c85cc8831c0ffba64a4cabdc3eb23c4d32ba5484b962d4c8f22ecde�F�
bbfa941de4ca08de5ac2912c49346b26f8b10f79c9dedcc1c73b7593d728b8d94F�
bbfb59fb0bbbee9e6941d7531aa54e1719671ed000cfb77426d6cc19506cebe1
/F�
bc009c7bfbbc8f4c90f5bb2715b2f88462acdb617db354d01214ce91bf2aab13�F�
bc124f709e0c7debfdda22b0a98dbce5ebc798a8c16477f0129128e573b3a65c^F�
bc12fc1a4e756efa8689dfeed9925dee6bea368e4e5e865c6972641a3d1f894dF�
bc1b8404e2707eba59addc78201595f614f7350f97cf87e924e6f6dbac90b3c3�

ee��:��V��+r�F�
bc347437d264c256ccfc842e7dd7fc5bfc2649f300c61c63b59dc2676631e404
gF�
bc3ad50d23ee3913b90b02ecb46fe4404d8bee5abbbce1bcd8310b15ba6abf16$F�
bc3fa21f1527e3d417bd20356fdc535325869f41a856887ba3fa0883c308713e�F�
bc42b202db19ddd70b5c8192eb30b148f6a3229d05aa0eaa7757cdfab321184e
VF�
bc430ed0cfd4a663b76358074912057f989f4af493a6909136e70731ba2358de�F�
bc48b6efaada693fbc4334eb4916585c339309ea27b400a73cdea90049477bf7F�
bc495afc92d333d543576431a1cfc03dccc3bda5282057211d2065d0032129f1�F�
bc5370995408c827ead95c7505c7c12bd393b513d4e6dcd996f4149eeda69686�F�
bc63c8bfc930293da3e922e892186113cc420688e28a4ef936bbae8372240055JF�
bc77febf9b5e706cc4d68361638309818761fa19dfe82ca91496f40a23d81bac�F�
bc8180bbf3602244c3a34b6a576fcd6db7b1b882332f6a22471bbdb479835f92�F�
bcabaf0d5da539b375bef6f5b408b4c4ec6fb3c207f79f771b9a4349431144f7�F�
bcaf6c4cc70c53cf9b6f0220af4a968ffc131c6372bbda67e1ad799972341b5do
1N�1|�]��>��j�N�F�
bccabcae0cba84cc84cbbe98ef845532c6d35b342a05aa650c421cfcecc269ac�N�F�
bd49c65cde81a93d80eed77c33ebfb093577ce199e9c182c9d77e73774072f37�N�F�
bdc9a186d8366629fb8cebd6f2da7e719bafe512cf237e1600cb799720208e34�N�F�
be8404b5ebae76ba968eb3364b0d41d94244b74d0af84bd6045d32cd88c42932N�F�
beeb913c932963a0d8888e51c12b07a6993454a38f7ef567a5a56da4208e5949rN�F�
bf742dc3dc34fd5e59a231bfb252573f70d7b5a840803d31e860e52fe35f902ewN�F�
c00c788573b1f8856547492b5c19c3b90b2452bcbf56003dee2b20426b79dab2N�F�
c0b12c0fdbe123567a7fdef5ac2588a2251ae9765f4962c97c73d4a897684662�N�F�
c1655691384373ba1d496ebdba513f6a4f1ad2c2e6ffd5b7985a6702890f6d58�N�F�
c1de6a4cb5385396b3e8ffd02b9cdbcb0a79b12b5db809d846de74cd4322d1a3"N�F�
c29c2680928459b5247e613db52774e62b9696ce64b4b85f878cdfd4775a8f05
ON�F�
c36162f22f8c779d80318cc08d286cb53edb4aefee5789af29a4838a219d9350<N�F�
c3df4151777a268106f45f068f7a6e09e974ef1222fd6ccbafd4fd2f7307e011�

ff��;��V��+r�F�
bccc059b870905bea5990608d411cde04cf06ed6d3bfa76015aa73439a38a8b6F�
bce31a77615b379250e7eba11be12018aecf44bf33cd3d92aba684b157074907�F�
bce793675eea8330ee5714f685ee6bf75de56dd9f106dbbe3149d9fa9d144416YF�
bcebc5d5ae20b6fbf0a5f35a2831414d8ad7aa1ea1720883560416fbd5db15b7mE�
bcf2e159d49fe0cc5b342fc05255f862141272c22ce694e38e0133129e1ca198zF�
bcfb391f7881055ca608ff7eb04d4957ec6829b99a6cf0fad156e59165558f0btF�
bd09647e7e930afde068aa13eae3a3f7166bcf0d4918c52f525b47c511c7b692nF�
bd09bb37e73e22a5b20339a2eafaa7a10698dd1ebf5a8bf4c187d59b68d06a60F�
bd0b8c4bd642bf2ddec4f60168cf63044086bf8e861160721a1ffb61a553229a�F�
bd0d1c4bba8882d3e5bbeb0d58b3e9677c33d9fcf22226207d7f43f0540af0d3�F�
bd2c5200554793773e752c3edacd8567d9f6db98bf2bc3399bb18086f6b771e8�F�
bd426d0e03bbd097435638bf127e0f1c2cd5e3fbaa1161378173491fadba6adb
QF�
bd48e9a406f3a105ecd028149cc4b8df348dc33f19ec4151daa74115a22b11fe

ee��:��V��+r�F�
bd4f5d655ba5a25030d453a042ac28a2d723812f5dde3bd8ab1a817e87237f97HF�
bd55b6e53bef2770d4702bf6fb6bcd13145e761a809da1a07423a7e1e3898f82�F�
bd606511a1c296702ecfd01d1fa8f5651c4c51d34d4f242cd3fe75de4b25c299F�
bd616a68bac2dba0c3050b8d3da7ce5d016fa05d03d2c3ca41e478309141d6d8]F�
bd868619b7086e2a7d7b78b6c2fc753b70a71567880be1bb5c40f85ca1a88875�F�
bd8a86b08520baae3c12fc08ce56e105878e1607594deb88f00c1675d75ef7d1�F�
bd8ba984e8b76d404b8422b2aeaf6d8ebee207f7fe92acda66e7ef0e2f94f312bF�
bd8c7fed84bd9c96c9070953fff9bc087ea7a8ba8cd56bfd5fc956ef76df0492wF�
bd9209ce7471aae3638a5d0464764e35ae7dd88dd1526747997c8bbec7ceb786�F�
bd945872965d8eeb4accc4fc087400341b7ecfd21918499fa21ff68810cb4194�F�
bd9b457e03a3e875a7f50a246490891ba2bf62f71e73613950b38d17f84d340dF�
bdbf6d455da867729477ffe919b5a9f8f2c11626c5047e6dfe129589a1d1ae99�F�
bdc8ab95aa96bf3f851a6cd97f2d9c878fe34101ff383e7ab7f2c5eb11a13d78,

ee��:��V��+r�F�
bddae66326cff2ad3bae20dfe8698be8546b0620b72acfdd23feb708989d5e53�F�
bdfe37339f1054699a6343f8d578f712a70a609276a9b8ed1eee991f37771614�F�
be04d6f2b74a87abab03f3e5db7bd69c9c3aba89bf5aeaf5464dfb3e90027fe0fF�
be0ce9e4ff4bdfae6a6868243b708bb09deb84a5401d6d59e749b0aa376ff432�F�
be1124e1f840cb866d332ff93aa0c138c358e7a5c45b54ab72d58a19da6c3a65@F�
be203dd4714182fcfeef395bb57d7d5e9f418c603b87d6a5eb1ddb4db5253163	?F�
be2825be40e44e47e533b1d6e13b3145e41e073086a22147b77532548436e30d	F�
be2cf27ae12e4ffcf8e8d79ef82ec36c4c7d67299d1b3bf9e1ceb0325e08de8bFF�
be4849e6f5efd2df57c2054a73f7edaf2b47ce5ce34a2819269e10158ee4d4601F�
be4cfd2a6f6ccca83e063fb2eccc0c3e16716ba370638be5de4deda72c80848a�F�
be582ab129bf0e7739face571fb544ef2d038667883f4d15867fa2c2c302f748�F�
be758c7001ddef751029603c28bb7e9f4c05b54b45fdf3ce79e59de8ae0d7426
�F�
be7ce57daa28ef35ce7974665112d6551b70b8c48b1c14c9fb067c8aae658533�

ee��:��V��+r�F�
be995dc375c67dc51acf2c699baca627283b58d86d70153bb13df3b2549662d4�F�
be9e5f7cee095463cb4d9b9f2109692cc190d7b3dd83fd149316ee244992293f�F�
bea336c1c8f050927b1a639ba83b0ad350d97d65f1c37c25a38e1418af07f9e4�F�
bea5901fa1364aca49ab785c08b8debad25fab28cdc3793bf3925cb1cd91f136rF�
bea9e14dd6778afded7cb4e5d5a5f3fa3b0fefe9bafbf913cd21dd494fc8a966F�
beaba5748ba50e7e5eb175940f2356990aa23d1176560268068ee630c38f3953�F�
beb197d7c2f90fd69f5bfa094f8d100c9477cf8f5bee05d5d87ab41cff92c6fe�F�
bebf3e1f9a460eb53ffa76825f7941c604da28361997c54fd39f0224ef015391kF�
bece87454982682fbdb7722fda453b231999ee186bb714b2151fb7a2f81a9897�F�
bede1b23de7ac03e2016ec4a2b4e29cd230b29837f427b14a2d8d9c06f385151�F�
bede65036dfee6105ded35adb1c299002018a1016e9efd4163446d8e6a92bfcc�F�
bee03f8565ac02484c05292876b9c0976e9334dad12bbf643dd9f59526e9eb6d
�F�
bee904f26bd404d9a8fbf3d71746543eca0b7761bcb562e0158d4282ef1ab8d4�

ee��:��V��+r�F�
beef6f9a15afb17e466001549c5ab96b1b00d12812239114ab0ee733cba615f3cF�
bf010b9168523d32bd2cae3bab71cda19cb9e2d00bbb861630c256f5c6b49d70rF�
bf08078851ef715022279479446f3e390e30bd92cb15b2aed42318fb677e40a0	�F�
bf168312334f60bf2d480510b014eddac0d80a449ec219c38682ae29ad20259d�F�
bf1f40d6279d065b649f886d586e1bc6bb518de89df420459f9ba36c8a3f403aRF�
bf1fe8afbf03b29de5f3eba68d356ac251478692658c6449b4cda08c73d4d4f8�F�
bf23abfbb52f27d2a18450e2bbc48bb65f02cee123b849b8e4fb9c07a0e91259	.F�
bf404adf3b74fc2e12fa6437b1abaaa8f327ed847a1b30602af13942c9bb57d7�F�
bf4623f90ace835b85614e7e022ffcb2427a5b8235c7dedd511d580ac0c878aagF�
bf547b98a8486311d474acce3d85c5eab20067359561488db6243baf1f10d389�F�
bf6158e17a81b9067714e7011f8111f3764aec96494c531e4518423d302b355bSF�
bf636c3d1c7371276e6fcf8c17bb54ad4a7b3adb5b7ac282711c4d8559a5996b
F�
bf6b711d995c2cfcd7c146204145b34ce97998804eb37c62306f383d81097962�

ff��;��W��+r�F�
bf786f7803813a8167ec504e8216dcf9372e8a7df9b4c38050d1db3b93509cd7F�
bf7de5cc417bd99213c10e8ad8c5772cf6317388fcd795f4c584548f0e6b9c7bF�
bf7e4ecac92c09b957b31c3b99fe5124cb6807feecce32ee6137fa893ce3daec4F�
bf842b8211bed6cacf365fa45198ae4376c511311e8e65daff8a87231424ed8f�F�
bfa63f078bde4ea375db5cc30abe54fca1f2adb2bd5da3b8160c848844e31770F�
bfbaa306ef62a274da0c3a7df6f2c28ed78243d6d6b8fc3c909b90fec19c16ba�F�
bfe191b783a11c70daf05fb86e81e2e36d80b7dec5eb2243fa223700ce330824F�
bfebf9b332bfdd37851d0e28304a7388d0da7c5c2ba905903d1294494041b80b�E�
bff0a6adc60eba913218bcccc836d732221469cd7650eb27d199e3f7780373a7*F�
bff2adfbc894a60df24055ab573b81c8128737c5d8b2530955f48d64f1c121b5�F�
bffa643f42fbf585a2b14d6c8bfb9d7ac804826cf20ad4d14bbdc3c996290615�F�
bffc06b208a2645d2beeed5ae0505ff7be55cec6055ed415ae076e3e74f9aa2e|F�
c0008274bc972c590974f8fd638093aa709f6a43093fe6fba3de63f4d87c0dc9�

ee��:��V��+r�F�
c017fccf387f4e86a1ff26de3d85c015ae1bdfc53bf1e30acf131d4aa4f5011fF�
c01bfc1d06b6e8d39a0bb038993a565a42a4f152542fec05d266098c4206140fvF�
c03292752990aca90663df6d79d0ced6a2ec2471fe674a726f6cb19f9a3d1044�F�
c03ba838a367a50725a5bad5793e263d9c1c7d7e962a29cd8e0b093cf5a0056dVF�
c03dc4d5e3cc2cadf7460b3f8fd8f02f0716c8e9ab44b6c38b6ac28113d2f65d
�F�
c041cb0f7c5becd34a9fa8c2693fe7723c0e561a13cee7ae61287bfc4ff2eb4d>F�
c053243ee1cb35d96150add59e7a1c0861276f5b2a3a9ca734501801a605c029F�
c0676678d1a3bcf8ce6a786607357db6145dd2dff6d685cc3e3b7312511343fc�F�
c072f12110aa95c982d941e51b30f703d3010b75f805ba9c70e921f74a87e54f�F�
c0938d8860cf5e93761458738a21c3f5f505e71d1669169693c88f8471d51381	,F�
c09c4232be25f378a871198874931161c40b1ce864dffbd95137c1d37205669c
�F�
c0a3bcd41e5beba5e539861177a8ed67f9626d4b21b11ab1b621770a53bf3137�F�
c0a963a27f23cc436b7364ce694e6afe9a0e8d26be17bc8dc816b46fc2e0f261�

gg��<��X��,r�F�
c0ba90dceb83ffcdd8192f4e130a324c73ac021f2a9b2ccdc98d58cdf26f727b�F�
c0c2b524cce50372b06ea8c7a4618f02d379ce6a9cbf9b2a7bbd6e21c4a80dd7yF�
c0cdfc6bfb60f09c2c483ee32a2e4b09104018a5e00d8f9d93e0c7532e31f72a
F�
c0e72c1dbf2c72f272577dc891736d1403dd928b5e9f236721ea261f99677b61�F�
c0eafbce155d39e1994ca8d23ba73f0a3e34259c7ce6e24278493c4f837c0075�F�
c0f34781687d2456cffd35d278bdf12469af28f83cafc51ead4a756ded452bdd�F�
c102608096eb8bfc89f563c1a82e55812f85dc764c578fc98b29fe740b014b88F�
c105b1034aff6f1bd9548d1cbb3a57a4f09c0231af2d0d033fcce3129be8f9beE�
c10b86b4a5c3b1385c04eab748fa24507011e241349fb530ab4df3fbb719f26e"F�
c10cbe426290ea35692c88e6f4393bef89f510b20d8587b123e03a419891e2a3�E�
c119aff62d5c0644926253cc760d84d4a8fbbb2124668b95f93468f578a85b04WF�
c13dc951f499e2d4af158a7e69ac636e75289d333b51e67cf3b6c1c3b573e7df<F�
c14a2c1aedcaa3d699f1c72757981d99ea27868828762056492a78d9705d6011�

ee��:��V��+r�F�
c16b5a1bf49c89cb3789f39c8dd6db6309830df4d3274cfa0ea3d38e38f0ebb8
F�
c174e242620aa57f9c880faa05975ab8a1b3a70f3d6ea6ec30f58cfd3a0c11f8�F�
c1769c3e3380140052696701ca6809cb191ea6c245caf1c658a1b8bc580f13ba�F�
c17c899c85f4bf07e0a3d27c864052d979465728527bfb0e23eee049af68e8da�F�
c18739f0ff30069eb1e908fc713e8ef1e7fa3a75c981a8b45cd1383597e8a1e9�F�
c19464cde9f5e6924a75e43dc5a5f2a6f67fe7b180bebf78fe28c2a9ea75b38aoF�
c1965ea7b6eac21676014e538803935d779938ef7971d74668df9e5d24b9f56d�F�
c19e37c8595f0a36840e5ffde24ba2022e36425cc814639db070930027e078ab�F�
c1a1ba3ae8f745008a0b7e5c0e4663241db1a386d16bd54eef846e125686ceba F�
c1a6b5c7d510c383e4cd61ceed4ca28f3f378bc0b62830d40f4fcb14f147b555
,F�
c1b656d07a2265aaad3c80a8e621f30eacc4d7131ecac7e66fade5608ce366e2�F�
c1cd4eb34426e59fd5e537c63a1cf87b0239c01779661465731ea826a0cbe7d8�F�
c1d7e786bf4c095d0ce6ba44863e3fa1e5626c2c14307901e7bcd56c8a589876P

ee��:��V��+r�F�
c1f39d4de68160899478e6a3a13d87ca0cbb510af261d0319a2c3f3690cf263f
F�
c1fb45bbf918990aa7c9459fcbcf058bc3b97c0e00ccf709693ef5cf9d26dd1dF�
c204a4ffd212c3a27c0afea8e7c43b386fac6da8dfb78049b8fff2cea01ea128�F�
c205e6c8f267b531e6cb7cdabe53c2b3cda12f1afd4735ece2a55f5c116d0159�F�
c20dbccc7c4cc73173c89b3632eb2dbf33e22faaaf1b317279ecad8e2b1fe49b	�F�
c21af136e37b18345d2d844866515fe9c44bedd736b4e98701ea2e6a2210c5a4�F�
c225d678d3f32eba7cf04174d8cf0eeb9ab41ca91d2b6ab7e323881eb77970d1^F�
c2282a789d3df8501b91543727d2c0b76e144991275bca82e8c75c83afbe05d7wF�
c24a69689734522bcd79de71a9857bfd1e1606898cc42344ee7b089da3406af0�F�
c24fe30d66c39a6dc7e1701a8503f46d3e747baaf032761258334310ad79e035\F�
c253a31b070bc89bcd355eeb3c549a299fb205b9c6badcc9d3e7254057f26ef3�F�
c2704f809e155e3001e594ac90307613511c21fe04bb1d9422c1476b935f42fa�F�
c2800a0089be75b093cde6c6c8289a71707f6b56b3e1e3655e237dd5229856efy

ee��:��V��+r�F�
c2a79994207490930e3a02bf699b03b7c209983a3342dc5e7c7ba2451f5355c7dF�
c2b42f750a619815728e53e19957decfbf5dc33eb529eebf3fb6b9ecf562e320�F�
c2b79101f730ccfa892ffdfdb7ce4d806f9960bc302581dc10991c7321dd4e24XF�
c2c9b259e70aede7a57ebe7fa8a93a475866d4cce68f6b903edb0875c829bc6c�F�
c2cdc7a6e9930a49880578ed60314a159c97e36dd96908f892d53e315b1c0895�F�
c2dee3fc80a476ec4b0960d8a193508056f424e74141e414c57914a3c8f07e86F�
c3063c4a546358bcf8640da753ea13f90ccbb18da78588f7c8a9b3011eccfd55�F�
c30d6ca286d3a7294da3e5596cf791d5c1314667173d02f21d751e689e05d52bUF�
c31f2747e3388b9d79c19442e86c3d4556be28b28509108ed5c494f7278e2a38AF�
c328c37ab19654e8c75410894318772e2ded988336a832db854b41d7fdb4f144�F�
c34ab6928f9fde2419804036a6bf4221cb2f3487c33bd131afad5e5573f289fe�F�
c355bbad46f478fe445b10f024dcf94c2baf4e0c856db5be8d2cb654bc37f559<F�
c3571b20ed80af5bcdad26c4ffded5902a413e69a9f36e66ea22eb7f0b7343be
~

ee��:��V��+r�F�
c3729b12ca4075c75da87d40054a8cd81d3a2be928846fec9b090f2282da0809�F�
c37c5f2481d02ad5543d7d4d2dbddb16eba4ee2deed077d977114cf608f12247nF�
c37e4471ce6ce9e562309ca353e9b1cd0725d1ec5d073e80ad7a9ba3f32732c1�F�
c382bcbdefe46cc6dfe4495a86577e964b1e6d8d445b5112c6f6224c1177b7eb�F�
c388ede56e4bc34aa4c415c55b4aacfaecac0e8ac63e3aafb72c8678c87d2b5e�F�
c38c420b6dbc3c61cd71784ca87f3a88f4a61d461e77b66508742c89d1d7e1fd	F�
c39c2b1f50d0ee1b0b3edd4f05c23ffa2f7d0cf847b1f78fc6f36f9f4bb83c8fzF�
c39f22a6884386aa2ab755116305a2ebdc6ae0a68f0992d56e87e8772c8dc240�F�
c3b0298c3bbfa69481b4841885e4c53580433e8d4610ea22939be12d797bd88aDF�
c3b133e5f06890f86c2c918c35177dfe1000500cfee3fc5ff248faab874324f1�F�
c3b34b85ae893b22977e8dfafa61a01dd6b4c787c7b37cab2e89df863cc94330fF�
c3bdafdc7b5df1eae10ff90840698573957b8409268bf2a94cf0a31564d3658cLF�
c3df19c15f8ddba5346c826fd07ba66f82958ff47801b4b8f2b8842525aec713�

ee��:��V��+r�F�
c3e8755371c95986d3d9b24ce2a85e7158f92f26160148570b73b95ab7cc341c
�F�
c403db828d16aa325941eddc93e7be599767dc0bb4ec3be436c20c8a9ad14744sF�
c40a3a99e0047693ac6789e2c35f28639c6c6c3dafcaa8083ab1f6aec4279cd6�F�
c40a42601b6e79bc8b02eba97fef14998961f2c034ebf3a2c9cf36acb94a8012�F�
c425b045fd266e2130faf0b97fe7cadc5218ad8cbb8e87ffbafe1d35b166ff43F�
c43c6671ab2d1c670d0abc37f1638ba2ea5bc99bfcf4092458d4f333b9d6e8a0�F�
c43cc5c86cdd41a4e686f3173df2eca34068dc56d75a5a468786fc13989bd5fd�F�
c43dc5cc0d5557e10da9f67c4460ea748ef4efdd5608a73b33c14113ebe7dd76
�F�
c441b3fe43905a4ba494377fd18f7afb8d59b3c95abfb93384cd0577b3568a5c�F�
c4456d3a9934c3fe90a0750649cc735745508843da43735b39aa5cdcaadb99a4�F�
c448f7707d3e7d90b0f7376b9e91d551448d8304a6b162d474c8cf243b7f11e57F�
c44b275bbc2e3ffe972b69236172d24d3e22046b3060cd4282021355c2777c8d"F�
c4697b0258943ed3a070f75ed2b1163ddeb2746108163a6b372318bfc419db74�

ee��:��V��+r�F�
c4776c0f7679c318248d6de58590eabf05cbf410c78eb952a8d259663745c806XF�
c480e3a1a9b563578db18be5b147c32561044872ed18447819bf430f2cde21c2&F�
c4848c6ee81a224b1eb505bb2bf5a9c8572e930973b92319a6e17e294d14310b	UF�
c48a58dcffbae76ac3c3c2d01d36951eb5a8df91ec715371c54637f6cdeb4f19
�F�
c48cdbee47b50246eeff421099d33fa4c714820624f898dd7b17a6940d7ea5b9�F�
c4a681b60727112a37ddcabfef6cfcafd36496fa1748cd9e419ad0d579eeb740|F�
c4ae76d7c6a23e9345f969ab95acd6dee04900b227f0de925cc539ffeb60c2e7
�F�
c4bb36e81ea1d28a9b054d4a06f11d8ff53cc6d3f1e8523504685e0998b38dd6�F�
c4bc426d70f27932111cdba1edd2eb69526aef608fccde2da51a6282a479270c	�F�
c4c001caa89f5bff6fb1c4dbee4050dbbb93bd7c79c16d2c309103992c0b7987gF�
c4cc0146e823c14ccfdfc6e0d5991b3b44a23d81a1bc4c2e84d9dd55bed96730�F�
c4dd18d9c01ea40a453a4a345bdb13d9ca5f3315e69e78ce7e1f9798972a5d47	�F�
c50443dc25797f6103ba04c6929511b3b0ddfbc2d0ba5c3b956094079715ca98/
1N�1|�]��>��j�N�F�
c515fb742f9fbf6e205c91df3d75b991bc0e87b359f64d944d2e6930b0b37ce8@N�F�
c57edeef8ad80c1218e8f3c5f03298b8e4c78de794ef89153d213f767d7e76e8�N�F�
c5f291e7ee7a541358f9f6a3957b58ba61670f95010f0fbfb4d6b94d30857d5c
�N�F�
c697cda85543d0498850f1a43781d8a7a9027a93e2d04cb19345ead2d9caab5c�N�F�
c756565e383627d473b483efbba85ad5704019846d85a5578c515082ff9cf44c�N�F�
c7826779aa132803da82be7ea0e99d8799ff4ebc7f93d26dee0731d8c1c9f25f�N�F�
c81589b411d434da5e3ce899b20f0ec5f0d89e805bb98654a0220574a6567a5eN�F�
c8f7c98bcb2f070e4421790cc39453b0046912b5c8325ad6660342177869da6e�N�F�
c99acfec136e15a54620f53419e266691c0a771c09aa286798ab5aa047dfc846�N�F�
ca36fb0f490cdd14f4ed8b6ecf0440998542eaeed3c3985f7357025964231df6�N�F�
cadd165d38724eb665db004d9c8b750aecb7c5d88cafaecac40cf6bd136bc3b9
�N�F�
cb5931215d156696cbe58219e39202ac72b87128adece13396ffa94ab6dad395�N�F�
cbca2af9e05f80103f7d418c99cb1e8808a0b5b2aeb348a19e6ec009ccfe7972
R

ee��:��V��+r�F�
c51cb2eba6f030cce0b81686cebf834e0aad1fb747875ef6fc8d06c6930fe18aF�
c5210f6bcc42e5949db2d2f133a369159d73a960cf7abe1a47a4248fe1d48491F�
c52c2ec344adb35fb699f72d9fab8082e82e08caea1e844a3afc83b4ff564820�F�
c538ef407bc0967b16f615b25eb59fae617d84051826819aa6837e85e7ff4db9�F�
c540f6cbef4a78a050fb751882916735d1bd6054d8c177140c200cf31eaf923f	�F�
c5512bfc8f5d17195d34252e20dd34ef75e390d9bb8a38b30ba8be4e5c0904adAF�
c55fbad2b511346ebf2a848c75861a87c98b38738226ac74429144324281ef52	F�
c560870127d4c5652e42c74ffbb3cf96a864ca994702fffd84bfe5a6b5275464
uF�
c5658a365bac1d6a010849f23983b9904b689b2d9191ee2bb6e12c828ec3855d�F�
c565a665dee8bff0a1df1f9e228b65e7935723b9a6e91ae26f4b30dc3b90452b�F�
c567a821a6580c7066f9d12f98b47ff92838fdd821cc89005118e82149703252F�
c5741b7e80a2b537f19292e12c2a7fc0a403f25be8a24c117ecec3e7b88a182a
F�
c57d7c3a751af63b1ff3aecc767463cb46fcfcea3212e2b6a04d39baa1975083	

ee��:��V��+r�F�
c5857421c619421bd4cd8ddb51736ad8d819352b2770078910fd43a33461df77�F�
c58619a42724ddd986279b0da66e4cf0f075d25cfbc11cc80a105c9c47f0cc1c&F�
c59613f8305583361be758cf7921fe48cedfaca536f354535c5dca03087c3798F�
c59ce9d5e2b28c278b947391fce0c591d912b04727d6141c27262cf98fb99844	�F�
c59d4299cbd7dc796fc38b8ac3ad9e4a8030d20ee8831940a24af8b28a84cca5�F�
c59e261df9c78880ac906231fc2cce51d269a2a4bdd58d5cccea75abe0465c0baF�
c5b3418463d5359ed0d1cfb6d42a2b588d5ee49a2fcee4755d55489ae9e78860�F�
c5b8ab0d8d7cb70f48d43af7b11ed34cd4a069ee3f243e0b5c1601adbbf3b7ba�F�
c5c83afc05bf26a4cc57f6113c9a03a1c709f35aca39423aa00a65cde5710234�F�
c5cb7460760e2885f04cef6e4c190e295bc38c25d8654fc325e8b08c5f835ffd
�F�
c5debfa2df24c434430b601b89c524d821308d5207f350610e556a17360391b5hF�
c5ef38f748c2f2a1c21e14d6274fec8b3391722d8c6c93cdd5f977075f798d88�F�
c5f0f07eae306ab7f2f7b4798fc0f577aa6584d592fcf290ae03ea28e66a9eba_

ee��:��V��+r�F�
c5f6d5239e70240eea7d64dfafd3bbd553f7681f7d2bec1a8ab1298d606ef9d2�F�
c5fc7f37feaeaf11068007f084d0a7046d1674006226de685b890730ee95e3c5DF�
c61d2053d483f06c16fe09b040f911571abd663498e0d24266d849b51fdb0479
UF�
c62386a6973d93798bd5a17ee72907932c0796c21589648ab5f313805f6ae46c�F�
c62e34aa51c1c89400b007376b014e42f551c284ffea7d077883fb2cf5673bd8�F�
c636f7b1ee487e382b84fc78e7079b3cdcbe8a18b64dbec20379bad79eb119dd�F�
c6531fa5a214fb87e4f247ba04ec04f2330a77311ac144e58229390092eac77c�F�
c653aaa3759f6c65e6ccf1dafa36096bf4821f315dbf756943730947258100efF�
c6578be082e094285bfff45773f10ef576902f4e6d7f9f5a58b810e7e4d8ab9a:F�
c6779b89961037e58b7567513d65d8d4840f1a7a23bade7e22a9b02e8b3af7b6�F�
c67a99f8d73138551a0d40218c32828b28c8df46641ed69f149aa858bfb4476c�F�
c67c4c4063b74aae72efd079229bf2ca2167a39844fe319e3e726d3df81c4767�F�
c6835fc2dc5e5741781c97f0dd76cd871e82a83dded531a6ca44d9a58abd9a2a�

ee��:��V��+r�F�
c6b55809244b010e1d1dc344b9add936f4598f2be100373d25749f6d2da8522d	�F�
c6c5c2f11ff4c5bdd22deb3a88852ae012482664acb196d328e4b290495979edGF�
c6d99f5b0af764bb805c8a25d287df1075775cac7560d92681c1956e45be1836�F�
c6ee2dc7f4859cf7e741172a64ed8a91fa20379d8b50ae273712fdc3b54f8d59�F�
c6f14dac0ec25c398840115e52a340353f02aaea3834f3a0eba9c59477ed29ac�F�
c6fc833a542f540c1edc0431e34f06b0cd121fc635294ae62ae5d48fab254ddfRF�
c72af8695184bcf71c7eb184fbd1f20bd8db5be9ccb44f698e3109b9ac66cb88F�
c72baaba3b68e23ad5857f22697380908c1ca9201e4bbe875f13601fc99a9465�F�
c72c2effb396db8fd12fe1bf50dc5ae0543a4d684cc6990bc2a8f8c1c707bd2a�F�
c72ec63e342428ba130a7b46db76c98e1bb002c13c208a1768a433c1cb1625f6�F�
c73295f51e8bcd58ab89943d676e27d4d7473a645904454667ae786d5b948bebyF�
c73585577567169544907d481ba9e354f44184d1e11e8bddbfc58e96334f4a21qF�
c7423e39173d9fe8056ef70f6214e1c4f4af271fa10cf07b321ec23fa5e89359^

ff��;��W��+r�F�
c75a27c33e9c743311271dde24228b03ec56642d945c2ce4bec9e63ef71d81a9�F�
c75b3f328720ad1b052e7621ddbf3ccfea04b35a21209225248e310d623b5644�F�
c75dd0b94b1e1300b04edfbfa5a3739573a6f83dc0737110d2f8cfedfc5ab7a2�F�
c7607cfa2a4a5dcba948ec0c8b744a7f05d5113920dcbe14a16acdc6a14166b7:F�
c7627b2a018e4b1db2b6131608528eae404bf3c43ab252995b1d5f7196ab97e1�F�
c763f6d47ed5f33b5810818fd094773ac77ca94070088529b832a5189debe293�F�
c76608ef79bd1a9fa553bc282e40bd895ee744ac0f6b7a570796bd2bef414ce2�E�
c7663ee5f2439075ade107aa7f0383f301032506d3673446ac4c84d046337418bF�
c76bb943b6a1a6711f5c6301f55730c1b173e983e6b7b095c9d0135c7b6a52f0bF�
c76cdef35908893f12eaa11205c3140dbd9f989ea6e01fd9bc00741c05bdb4c5F�
c77668ed49c6336ca11d1c0025def5d4583d666b6ee85808328364fc1fdd0a96�F�
c779ed4a8b7cd8df613f47c214050d61ac25927ab97381ffb59944fb998585ffFF�
c77e3e9c9f9cc48a40bb188838bad833e1ea361ee0ba3424abed546f3945d701�

ff��;��W��+r�F�
c791e843e2fbae086343a6654618fae6ea425f37e0816212e9805136c98a236c�F�
c7963550f0e18a7fdd4139bb7942c93b0a9cffc5bec4e5833552b722e442120fDF�
c79764e439db44bf5b1a2d07e42ed27562693784744a529c9d1f300ee54145d2F�
c799c7a9b990e36dedf9785fd1b300a75ffe77c3f8e0e9074d4279a3d1d85cd7VF�
c7a38de9170db3ea671c715e4f878f1c3731c4a067bcb77c2c9827c8cd02d694pF�
c7b50fc58609f6e4057703fe1bb83fe6a7c2c9ca068b534e97ac8c7a78e4c8f4/F�
c7b6417b605af3adcca501eb73c1898aa00b4691197c4567e74e721dcb034436�E�
c7c905b4d230c3305d7223c1efb2e2c29d90ee0fe667ec5973b84522b52f1b7cmF�
c7da8cb6d16db2f0182ecd0e22414d98692b3d8ff0b8cdf1e790afd09f8825b3�F�
c7dec18b5dff68e91dd42275e011d20aecbe60817c948f50fef7adfc8276ec34�F�
c7df39cc317144af8cab982c0134ec6182c78bfaafe8e47f94f33a0cd4991c97�F�
c7fd61c26b7aa8ef79e64d61f67cf2643bdfb67b8af8ac5993f3fe4e727d44e6�F�
c80cdecf0a4d4edc4e52f018171be3aaff999a6abe4579401f05dcf51a2e25866

ee��:��V��+r�F�
c81f90a03e1572c395b80f30a24efd34def63ec2a53550ae57b48380ded6bcd5�F�
c82b48182722e9c7204fcb4910d9aa25f350db17be47eea64e52281990462ea1pF�
c837dad26046c4672910508d3f90d5dca273c22c3503ded2f75eed49602908af�F�
c83b382761599c654c4924c45b614f3f44705f0072d35ce4e89a498f643de93c�F�
c846a72195e654b76f0ca3467ec6a0e034d1907a307e6d797b1e4238ab8e1949%F�
c8476e1d935321320f812a72c05a7442201d6f34050996100637f18917d65923*F�
c84bd4cd2d437d984953f25e00196fba34b6d1f25cb29da168b9469d4969236e�F�
c86aee9cf2e2da2f84035f7c561f1365eee34235321b9b4983b359b9f5cd8060�F�
c86d5aac322f831336236ac7648dc4aad9c1aba665e21ec635d36c1ca14d7092�F�
c8b6abc5626065638f17e289f7fb74fa496ecaff7832cc8ba0a863022187702f�F�
c8c0d6d376e5a026cccec4e8a7f10de5f58b0178fb266a8f627d285ea803e25c�F�
c8da0723eb57ace188d0bd03e37e8827a42913c10542cfa8bd6bd8817a724916�F�
c8dfb7c69048e40d89f055121f7bf399c85c51f08160824fe50d9434c253a4a3�

ee��:��V��+r�F�
c91dc3bbc7593fb7442fa9ec947f30d95bad094d5b4180e4669380d535253bb7
sF�
c92bf980488dff6128c5564f2f75712ccb2a9a0f859f4667af435f967eef4c45�F�
c9392783583e0597ccdfaf17dae6fee1b00c3d8da0cb91842328276045fb62a5EF�
c93c7d0870295039879e0541eba827c632e03b42a8662810fca06462a79987f1�F�
c942cd6a2b252aa88c37729e5753a20d63376cc0d329bdcbc5265806440a4f46oF�
c95477083d786f35fe049b4cf228df007b60410ff81fc37b0e6dd8bd2124cdcc	YF�
c9587fe47330c8c9650ddea3de6ed9574b7027a816ed5dc48c5f19783f043700�F�
c95a549af2d83400b97e70bcf7ebf1fbbb8b58bb768c6f7761edc982d7326504F�
c960158be24b783ab7fb4a317899b83f806692c1e48426fe46c6bee909357ee5�F�
c962e5dd6d3414983350e5da2de55b057477d165e891c9d963cb8eb49a7c6330�F�
c96966864df3d8f7e446dbab1aaaf13a2bc50887d2c246af4d21658831913c1c3F�
c97d7ef5a7b53916750b597fabf99dee5bcb2c1e382ef0e3d179ca285ccaefd7F�
c990d11d35716ef252caf3630273bd9502a4f8556105b0ee8005c3164ce118df�

ee��:��V��+r�F�
c9abea6a673cf74708122a7d0f1620be7008d59c4f0a60af39850105cb52adad�F�
c9bd64813e41abf55c807e7a4e61c62906d1c51817c09e583a7b4306568104a8	vF�
c9c2a62c7fb170cc9007afb571d8b9beab632b42aaef2f1461f8ba0a2c5f6d9a	�F�
c9dc78f6c0e94a26844ea7d1aa7fbde598ea704957ae7b657c4a63c822bd9f21�F�
c9e8e27be0763433d2342ad0573164a56176f17826d8830f39d0e08518d54127�F�
c9ec93a5f3a15917b5ceeb7e19b67519e6e4ed8b7b2df39dc7999cf6d9f4c5e5�F�
c9fd3024d128c4accf8a1b5a9b3207e10e714a336f6fe04b88a1d557e2bc7a24zF�
ca0dc93240a019ed96e9975ce1f61dee6b3765eb9bc098678f11bc9e92d8f8bc�F�
ca1ec435ed2ce96fee64276f36654333806f220fe770817ae10d14688f42be20
F�
ca2161cc3876646306f0db5c0e9ef5cbff21e55e209ba8bb3bea3329c4748d0a�F�
ca22627ed1921f923bf0d6590573bb115ae89ab16f2cd8439ca78680ac859464
�F�
ca2534fe257e28c069b648a161fddd50d841f1df267a98ca33d8ceea488d83c7}F�
ca324724b8cd304f2f0526d1276c77c5ee70b667d98887859d364faeda98e532X

ff��;��W��+r�F�
ca3865c7f4066896a26c6e00f973c8f6edbfb58dee7538f4795b8c102ec8dbf1LF�
ca42c81542be47ee686bcb3662bdb26e91f2fa0041534bf807e0b9294dcae15aGF�
ca4ba17177c7df277d3b1d022543b4bad6f9ceff842f9b3d18126d3f7bc73149�F�
ca59a355697c31c9ad51c2e64ca52833b18efc933c257e7d0dfe4f7509ec425b�F�
ca5ee1ff2a858d3eaf6bbed3a7c0421519183d99018689b9d2bfb4f8b2bdb122�F�
ca6596355a07541ba770e0a63ceee3a9117eed3bfcecff0d30b56b32bc0d60160F�
ca696a4355291a8491772d196b5e4adac8a368af8fdbace8e9c9f75724d2e4b4!F�
ca6edad606ed1ae0aad8a9ae177f501264d15718f85d304957942d0ed5768647/E�
ca73e4d1c2e57869c6e300075fa3bdd65118ee30910c0ed450532b3fd0d7976b#F�
ca7df206b32aa8f478b9a3751e1c7049c9f5302ca5417f2e0531f4bacadcf5dc
F�
ca86ae6d34c40dee72606cee1e52e0dc9ab807fce4ecf71c5fbd47ec447bfbc9
IF�
cab18530e297449d292d630ec6e205013f25a4889616836298778283e58c4646�F�
cad56706d665a1639372b33e26f5e8b2d45d262ba181a414599688a30272bffd0

ff��:��V��+r�E�
cae6bd3ac4c68910abe44b5f1d6e48b99b76914d3a6223b9511bde08f8a3e1cd?F�
caf6cf5af9791e8fd3e3612202b1fe3208956e0f50b7add46fc8761ba8265cc3
�F�
caf7f0adf042b63657e0610f87dbb3aa3334f9a81292aa836ddc648117954f9d
�F�
cafdbebcda7664e47d81f647d715249983cbe0bb4b063c1d56ab327a8766e2d0�F�
cb0dd1d2921d86e3d93f0eded02f6d9dd60ff0961589b65e59561cf10654d493F�
cb1bac17d8c7b1c7813cfbc4a050c0bd153b06a08874a369c55a1597e25d5a52
)F�
cb1bff3dcdabc1801553de1e4bae164ca1ca0aa473eebe3e7afd8360d53dcad7�F�
cb1e709d6fc4d17df3ff827f54f59d30c0e4cb11b30652b60e0f1087d387bdd9�F�
cb236ed8e588d128b8cdc78afdce6379dcd39b817725c547e7f06734476accd8�F�
cb353d5c74471de09be7e0fd09fe8cc300e96b28268cedc2c0c08e286daf5f95�F�
cb3a549fe050cd75184479500b542065e37366ce62d90769646352bf2d9798a2F�
cb3ea59253d078a2c7a60ff6f6c3f55bf94679248c132be8e27c534245acd6c8dF�
cb56c1afbb8da7034985bbc168d9be562e1692239a7ac99ac69557a2743af4cdO

ff��;��W��+r�F�
cb67d241eba9a27bbdc48cb45a7d59bf2fa393abbdd65778e51bb78396255ac4�F�
cb86afe6203e0e076f646a698b5f55cc194b2523e731d2af6fad43073fedcf79�F�
cb86f1399947fbb9131708d22997718ff926c00d9e0cdfa9ce37811fe7e47e4d
YF�
cb8ae6ec45ef9ce08ede28575bc163dd1337f4776778e13ebf08457f0470623bXF�
cb8ea18480b29a851f5294a367ac6b15344338149139ef7f7230a7888c960c7d
}F�
cb8f53283b6ea93d8c0582b7445551d68528dd0bc9eb4f0843b5026088dc7d1b�F�
cb993c6b41619d0b739c98a53cc2ca52430d470822dc5d7f74a0f2761581971b�E�
cbb13427dedac5cf271bc5a5113b736a34f96516510eb972cb3320ae396950fbxF�
cbb6af40c795f009b496be4951e5998ed66639496f46e7e7cff519014726e16c�F�
cbb9fd109a25fe1c52b74144b6c1416666fbfd38ad1fd70a31ad0f95e9ded252
�F�
cbbbf0c961b09325211c498b9b16d75a582a8a2c062653a5a8965090c1ea66ac�F�
cbc27f39937173e8134e59deb6baac91cea3e9497f76d2e139b4eb64bc1aade3�F�
cbc4ea12d67dbb0aec7f99363fd0094c3b67059cbe632d6140c54b02128a4520z

ee��:��V��+r�F�
cbdf552514fc3c8f3e787e174fe5b17897007c1d1e76bf0565f3c48969b03d86_F�
cbe559a32b73c61ade8a92a3d95bf1f0a39b70082feed6bbf79aaff46a5ddf19�F�
cc04b6fd7a53d6566cf64cd227d959dc95f522bc3b6e773b8a1346ff987aedd2
\F�
cc0d2cbf6bd6a4619b82b4666f297b6d0d894f6e665d587919aeb24e013118a5#F�
cc2af8b460ae945f1afdf5f03ea0b48e40aa3372a33d96e0408d1256c8c0294e�F�
cc45c070a71c4c4e81aafc430379ec90092af6bb68d3db667d3bc265f3e79eceEF�
cc499773d5b8e2ef0f1585f8f54cda5bdf26720005e766f1ad4fa13b420b5f7a
�F�
cc4f393f3dc8376ae20557ef6ef4666627e5e582ff7ecd121164659a24781cfd�F�
cc89949280e927133ec7bcd3f3d4e2b299ae223f458650d04bc324a015418f95^F�
cc9292399132346f75bd097e7ee2df57581d949a9ca4f74d5d800c7565f777ecF�
cc95d52dd6acca1790e3c4f0dd8c26d939c93423de333d2066dece7bf767d545�F�
cc98e7151dca218503a6d908ee58257a7e7958347117c435c93746255a841c89�F�
cc99796988903240582ca2234451a6b7eaa5f9534e910f4f9838cbd024cc7b0a	

ee��:��V��+r�F�
cc9eef61c95aebbc7a432d58f5f85fbab25f19ee777834f671bc23fa94964d57GF�
cca2c300e4d60c107c6754108edbc965f0f6e66119848ecaa71eff8b4c7e5961�F�
ccaed81377566681009e212ad6067bf7a462c3a7df25aa078d71854dc61496baIF�
ccca4bce0f9734afe3ffbbf8289dcde7d83df145008c78c72d9ab7affdddb8a3�F�
ccd6b1145000587fc43fbba493221eba1716a9183d64796c8e42beecbbad5afc
@F�
cce50d5874faecf4616bbc5ef77e0672efaef940a90870c5d652dbb07846408cF�
cce9b9d8e55d003cd7be906f5603d626c0f14b8e422e5123076eb85b9dab7694�F�
ccec65f2954ca1f6ef27f02d35bd7687f0c4b6e784e48233282a82c2e5f53b7a�F�
cd00145bb9ec1111aeeef6a3549e8186d773009d553f2c6ed0b608e4fbd9adcf
�F�
cd0ee0b99212979ff9dd5d920ddf6f8d82ee56bbc646f1e3c3b7e62a102b1186HF�
cd15c26fb1146a5e8fc006618f54a1857a651b59524ad0b43e2de55f2ecdf4ad�F�
cd2e66ab8554e43fed6cf3a6fe7067b925de6a4ebe0acd82af46e341ce011229oF�
cd38869a69886ec7014b529b0a5e2a8c6f5cb941544d083216de2f68d1db8abf�
1N�1|�]��>��j�N�F�
cd47da0bf7624d9af2d98aa4723dcdf7e0ce48932c9a21df223ff98c038a0e30N�F�
cdf297d87f9e31de2e54f1bf4d87339af059f5d4048b6160bee5114397b3fa21vN�F�
ce5ed6d89d8f493b333f990a74873904d861f5b520c9b0a8be3c6e2b614068f7qN�F�
cf170bfe59fb4723dcf9f79d8e4e924c16926a7fa50ee45988c38123421bfff3sN�F�
cfcfe9d9ae37170dc134b041696f09f451bb92f77ec37a8f19b080810bd0f006
�N�F�
d0502f4f4281f85dbdfa765998b7f3281933945c8291d40a49d1ba948c4c59c6�N�F�
d0da9dd8f5ac62ff338820e4c82cef86962fbebc7eac9dcbcddcf8b7b61036ba�N�F�
d161a8ffe0e1f9856548b6a48619295b25351949a76f0c3447034360be168304�N�F�
d1d5c6c9105983f9ee30842fcf4a13fb9df2c9ee2104e6df95600984d8d0c9ed�N�F�
d2642493abe4c602af8bd00a8d0954219b93cb84fabd9870230cad39d45b9ee7	�N�F�
d2df50179ec4ae53b3b02398bb8ed1d376fddb157a0b2c4996e0c09559793409yN�F�
d38a715f8c0b25a49a238ed3f75475a44586f7371a1cb8df82caad826f4dad72N�F�
d41f2ba7244ea561f95aae87e10fc0d097ee72ed2f5cf1cb1e7455374f1add83
c

ee��:��V��+r�F�
cd5dcd832d5dda7bea32dbdbe45ad8e13ef022b0a9d83e5b78427944aaab8f18�F�
cd61cf9c12e868cd95161567895609d82e39f45f923f851caab9d599ebecf0a6BF�
cd7a7f077489d8e2a9dd46b53fdf41995243a699f3fa2bbb47093c9bfd7d9266WF�
cd7ab4d402e24250450215dd316bc8db5cbabc2abdaf16110521f6e623589dea�F�
cd7d87fbf38e3d491a5a8b262d70dddd01ac00ec722b52c01b44e67f7d8c5a66	�F�
cd7ecade58c83774da56075ecbc93181d0299693efa4a31b09f39a234ea8c0d8�F�
cd951b49a8dc85630b344b12bc84af00fff22d713c5869528aabb40dc78fa0c0F�
cd9f701311cf726c8b434a5ee4f0f2cb6e0df53b5a843c3ce0633217921b81db�F�
cda402fcb291052201381d37c733af954d30e2e6e3f24e5b636ae67715e8c0d0
F�
cda41b361d863ac2471e67f30a37dfa1d776eb1ecdfd24b6d620d454ea726cf4�F�
cdc630a6947d25b54a576be1d51170f8ca7a920b446adaa54aece61b239e798d�F�
cddc3744f22b625662ab15986f90fc202f14ece03ac5fce4fbde2d656b5f38ddSF�
cde329dfeb5e14ef8d11d694202b0c974945910ba3f73f3790e665927fce7c52

ee��:��V��+r�F�
cdfa438ee0d5eaf9ebf066c879fea0ad0e14ef3381353d9d8a8f249ff220b2afhF�
ce07814a85fabc6115195714ab5d8670ba930a5369258eadf917f899881058b0
EF�
ce1575869a76eeb5a281f8df3980870380850f3aff9297f84f741f893b7244fd[F�
ce1840da43b758b433ff86f3ea7b59008e2d64a9f66fed798463409de17511c46F�
ce1ab686b3cc8d98f3fa3f3c27de632d04b3076d3a9573953d36d0cc337b62c3�F�
ce2818bc990e044731480c4212c5c16d899dd8492d225c3948f138e58c8031c5�F�
ce2b479d726968ea27bfbfd9dc3bf20a2ef62e6ab1f4d3b4a0e6d4230a9ef0ecXF�
ce32d3269966c385c52153f1c95ee8578b768a8b69a1d2937f50ab40dc45e380	F�
ce32f7bf96aa04670b34d8d775667ca1ef2afcc5c614f240767eb7ef1968722a�F�
ce3a408dfe9ac91c4e9fefe4168ef2cbd9d6d18a92f2dfd2e36b2b7af8c8b103F�
ce44bc6fbc305c3861c8d26e236f8872ccd1827001528bced75ea5a087db84d4�F�
ce4f5cfaaa8ee847baeaa1449c9bda07462f87ac1b32027dc3d2b1086d417890�F�
ce586e3bad67654fe73ef5a5f9ade5281e7611c7839e8ee28c76f1f48753cbfa4

ee��:��V��+r�F�
ce776b97b4d788033910fe00975ced115a86f293d3c25e4ef91029227b0d3a15�F�
ce7d925a850e5e2f13538931031755559aff5bd0677306a69a885cc9bdc20822�F�
ce80d24890bb555cc41eecc7ee95f5ff2de2c648c51eb9f4c10e2d48275a1c45�F�
ce893faa55582d8281001d9876f4ceaddca9de5adf25f32692196a6e85a1aa48YF�
ceb4699a86911fa2a032df43313a18847098f66921adb5fab1298f3791d1b144�F�
ceba479b3f7e61b1f98d50e4797543b538d563b420b419155fedeead08a06b2erF�
cebe503265c9efa9afa036f10cf99ab4d5eeabe4c13950dc76ba50fc4304f4fc&F�
cec370a7441899c3ffcd47f783a0437d9d649fd4a1252c6c317561f431e537c4�F�
cedf74bcc18ccfbbe277b033c31b3a65c6fae8135a0c90fadef65c35b5da0d1c�F�
cef38591d6d987235d823aca0105ccdf5c702a3c16a3ad8301d64d8cc9b6ef5d�F�
cef919b47e2ac46501512262000f8aa6f2804d306139f51f0a7eb8a4f8443bdaVF�
cefaa998452e2e34b3a59dbbf972dd1e45e2bf1e4bad5a8df4b34529aab350b6�F�
cf01690bbc873920b5a486d4d4e6b92160ae532f81d1ce1045c632c8c0c68aae�

gg��;��W��+r�E�
cf312b0640aa93a5701862f262416738887b1618922b58eaadfe16d281c1fa7dDF�
cf60217ce1218a1776d98ef45492d93967a6f10369810ef6bb833bbbc8bcb9a0�F�
cf61322c3e87c6c21ad8be1051fa2d235337e2a97a9a894828a70e5cd12a2254
�F�
cf6e5c1bef9ab5c56100beb91545140ecb2ffc878294ed3cb87ee4d53c82f799�F�
cf7edef3f54d6a2816515812d2f679ae21bbfb26767bf64e34b73d19a3bce3aeF�
cf810cc7447c597839d02d5738646b8afcdb25edddcbd9cfbd3173d5a01cf3a3�F�
cf83179c708ff22b53ddfb306e537749dfa4ac8e8f7f820be6740d1988c8ffc8�F�
cf8845ef810f6cf39ce19f2a986496e8ae2fed2fe5d711309d0e91b72b693e29E�
cf900656ad664e99d27fd815261164678b178f186d6fbadf440dbc7ab48fbbfe F�
cf9c2b5f9dfcab24dece292fa32fbddfd9d7101708606617b5bc07bcc4a15756F�
cfa48cdc2568095e4f3d0e92a8d3efdec6838bb0b3f6920c55320674e7a2a3e3�F�
cfb8fb181e4fcc069e88e40ad4838b6d53339b522603c2c188f4b7719a7547d1�F�
cfbce8f5d94f01a7ce8c1dc8545168b7c3c1c2a62bae89f00a69ebd439002ffa�

ee��:��V��+r�F�
cfdd7dc1c23cdb3468016785f9f50105c16d23f98222683011322bc94d444700�F�
cfde4230671763bf6a464de9ec8c191195c9ae864571afd92bc7bea8dfcbb11e	�F�
cfeadf715a776582bc168121a31f85069becc17f2556be2c3ea11c7d6040209d�F�
cfeef0c73c66033047dc4cf15b633dace6008e084cb069e2c95d1c60abffd496�F�
cffd614b0edc8b160d92daa7f3c4c4dffd5e33a66532c35ee32132d1b56e63b7�F�
d00284a41b68e575da476321841fba290849066dcd50949ee1f46e5984294f6a�F�
d008be734234764be6a4c1b2f1c97cad53b746ecc9d1086444715833c6eb8450�F�
d009248700d9e5dfb31d429a3fc4511bf6d988ab6276af506e8279a020138c9b�F�
d03be814a86828be3841393ebfa51e9a8c3907a53dbae5960d470f20fd79d04c[F�
d0428b24d84b75519bce64c115f13b151f065712ac094dcd035dc9b63bbdc664�F�
d042e5b60af5791405d9b06cced6de982519177eed1cee3e7edb8c9002315ac6	8F�
d048e9282e3eab42d5adfd632ef5cd029524100f32b305395da9da9a0371c460�F�
d04f4f2c802e659ebc50e30c425e08c36096ac47223dc795afdd8d19c31aeed9b

ee��:��V��+r�F�
d057cb97f19e0b7a6e8769b9407b59d09edac0f8548ba4137a65575461013ea6�F�
d062a6b1a3c9142376097e0924927205723ac2f41ee8c930c3758a81a1d31221+F�
d0654dfa758aa2f563a1f6f4f32f87d271d5f810da3218400fc7edc14c9af188HF�
d06a6708c5a849908340ed5c521556ec87aa647c040dfcefe01d9e5ef19ddcba&F�
d06dbbf76b8b169c1b023c46e3216cb5da8af23e885d61da4c9547057c30c45c�F�
d06eef6e09b25151ae88be0acd91ea6c0eebd9c3a619ef2de948701f44307288RF�
d06f004563a6bdeb574cc83ae16bbfda190879efa994a9182b24e45eafe5a039uF�
d093869ed5878283193de6a764e7847674976671131c829603d9981e56660bfb	�F�
d09bdd004c3fac87661119d619afb43d9ad9824ef8a2e58fa51c55f0211f12d9
F�
d0a250d18f4b89599438cfd448782db11f8012472af6df48eced91d60be23eb0�F�
d0b3530450134364f48fc2529fb28b6ba4924562e2743be8a4a9531df24ce934nF�
d0c3a21a7ae050cc88bb11365edee8ae76ce4656de55be60d371d691353d0a2a�F�
d0c60cdd0430a434420ef3cbcd3cd9ebd0e4089f8059b3a3b7bc427c158c0505'

ff��;��V��+r�F�
d0e13c7b2d8069a8e53ad1f052d37d201f037564f4a6b8c6165af57ea91234a3�F�
d0f3c1d37d812e6fbf2b4e853fb66fd0ffe2a908b0bd0749ea1f99b53198ad71
�F�
d0f42f7832c466e0318f15b6905f47d9e8977a198c140303463e8baf861f9983tE�
d10825f54b07b6022f065b39a4e37c8c89bfdc877a230746fbbc048f9659348aCF�
d1092d59f303a24817bad40a23bbaac2dcc1d56beef54c5d1c3d42e225090212�F�
d1270ff691bc97bc9a737c8556081408a04f2a325ffb0db2fb561a7add15d0e62F�
d12d34da150d926afed7f5810b9ebdc562f483d0100cdce78091fd464612301deF�
d12ea2121d6e19b9305bc2887e981903b907ef5b7969c1672e397a125e33f070�F�
d13238ab1217026e026ff8cdb5a027315b909e6962176287bb83b326f33c5f80�F�
d13a43c2f72be1aac5c18bee475d4bf325e04b8cc511f75df749c29fb616adc1=F�
d13e07cfe07df702ed4d93300184aab0f5cef8ffabf3d2182655dfd182050683F�
d14497105b68ae6076141f696ba00d9f42a831aa982b7bbacae503f429464e72aF�
d1505aaf07075307e949adfd5133dbffded6e90d371bddf5dd1e04c913a8a7b7�

ee��:��V��+r�F�
d16ae7c3c974cef652ff9b87037d3450587a3df6ff7e04c65cade8d7bdebe945
�F�
d16c70a8d4f77c28cd4ccea87c2c453deab255c95d8267f88c3be5f925f8defb|F�
d1779b88b2029c7b3cd102334127e7013a0a71479581fd2f04f0d23bbc8a0463EF�
d17c2ab42cfa6667afaac7434e92be20fd0330b7a2cf8ad897daec993049f5e9�F�
d17d23e9f3e2cd89c98f84ba07345a6c51f1dc3d67f5d52d483e6f2ed2d93751�F�
d1870d7298e93c62411f7b0b728df981e13f75ca9fdac1fb117b0e2d50d3b71f�F�
d1937f2c7485f2270affb2fae284834c2bfb13cad80964b9cd2717fed8279cbcsF�
d196c69e20dcc6a970af086c699d1d015396019ac8638386994deb8017fcc72b
�F�
d1a6eb397fc04c57428b2ed1f9e3077ed639a5877ef02b2312725fb99c17c807�F�
d1af2d4f355246306f9048649c71512ffc060b2884722d14e15d42ae54300524�F�
d1afd88393ffa5ac982a19f815f212f48fb963ea78add0832a9de497411e2322
�F�
d1b44c5bcb094399e0bce41de4218e28b8f69fb0c0a79c24411b5561978ec6b5	ZF�
d1d53660bffa4c0d03720470eba69755d1fe600ebcd13dc49a736237a10983eb�

ee��:��V��+r�F�
d1faf007d61466191ae5ad07935839a8673f5e51b6c24bd3465e5503da56f20b�F�
d20149409ae526dab742784b326a5dd70b37681effe645a6221fdfc0adcaf401�F�
d209fc6a50302b35ffe0a948bce5c2b144f66af599a404ffd4a6771e24896130
F�
d219bddd9ca9b61182ef38132b073da37b5c7b6727fe9ef79c35acfe7e1aca0e�F�
d21a1f7149813805ef3c6537ab7c9dee0567804a8f9983618aef692ed579f292�F�
d21ecbddef5ee619c1909b27a81f4793db8cbaca93baa944afe265fce0c076c8�F�
d222b43a6c9a83d63e9c529e8e528b248aa0f77b4b23e5e7256d32c1a64bee44�F�
d23dd2eb44577c74053a9b0d2df44d8fb4618ffcdc560bc60003b1393107baf1�F�
d247f05fd2f22a9dc59679f6c668b92c75b8f5beb481c99983a0b6d26d10bb08<F�
d24805d0f00f2158a082be3fd450a90be7ca614871fb70850db6aa028a020d87�F�
d2490b1f0f83f60017971858b0aa1f5aba0285093f3b53cdaa0e5a1dd65b282b�F�
d24b5e95b20420b1e37b28037c9bd5175c6fbfd17e6a78347fb26b2792a126efrF�
d2619ceca8fca7e9ee19cea2143fbd219429e9f9b06409934c366c8d6fb4cefb�

ee��:��V��+r�F�
d264ee805ecda49c30b17382368adfa7d60dde5fe60862b200ff3a5b11b02cfa�F�
d26cb8a2b0d5538a5634e8042449259bf4e95598e113a4edfad93ec1ac17e831F�
d297c29388bc4f582e226fb85070d6108bb21fb17acb88d7d2de900bfcc84423�F�
d2ad19a42ac73b25413d43fb03cf20d85cde9e294f4a5948192ea0c673669777F�
d2bc75a69afc2e940e2a933c55941d7c4f269ade992c161c681b9cd72ff158a4�F�
d2be459c9fddcb43bea87bad5b80c2656b90fede44f30c5bef1510d68feaef5b�F�
d2c498e78241cc2d36124d37d4771f877da25de95d6a31c1ad42e1287fdda746�F�
d2c7c9daa4378bb677e4fa893b6839ebef8009ea1e132569083c4a845ec60a22gF�
d2cc1f66c9ca4847924aa950f6bf6e884b94331ad97c0150bd241fccb76ae118F�
d2d500ea0189e3f9d7f6ce3102af96d24e0a9a06f89ce42f89346c33e7d48100PF�
d2d641c7cc9c03e9ca6482ca35b0c36b1e23ba7b853e1bdc6bec25eb9af46a6ePF�
d2d65f2dde15fdba0abf08f0eba0a75c42ca7a41d64da706060132398e03a472
 F�
d2db9132b158642ca3acdce95a3018565ff05f4497c6fa76140e7a98a3a959f3q

gg��<��W��+r�F�
d2e121f5577f678e6c3a8c113a90dec22cf3020128b6c0a00148ff5490889516F�
d2ee3c87b0f7cd858c02969d5c617afe7f2d92c540498c4ce94ecaf46e9f8f0d�F�
d3025de9185bb10743b56de3b1a535e26b438db0b43bb7d1b8859d2681a8a2c4
{E�
d309a7bec2af466981338b2729711aca0aac30101fc7b53822baf4eca6bf3bf3lF�
d30f35b56aec811e1b348312a8f58d2e793a4c89f8e25ac9155a5e74a0d04b90&F�
d315bb2c28ee908b28dcdf583c02c6e2135a1e2a504eab6b1b0b1ea2366cd38c�F�
d31bb4f7fa204fe5abb6eb2d32b3dbf61485358f507f608be3bec49ef46e3e5e
zF�
d31ed1bf33208a48c1659c4aa33c952c4a88624e0ef52fdda4e5cb196354ac40�E�
d3229cfb18563fc8a24139a13a8b266e417258f43d36a4a4ac3b372af35d59f8F�
d351a336b4df1a8014e1c30b9d39d008bb492694a7dd3a345cdad5b169a37692F�
d357914edfc5e38eb99a385b00d0fb43d1c581d9af1d12406c5dbae63542e08e*F�
d358a86339e24e16bfcc77c61f6f12dea5c1485847a4bd5eee6a6e06c3634ff2�F�
d382251ecdf030132bcf5b89fcc80c1ec3dfeb1e41cca0d840d735c44e371ed4�

ee��:��V��+r�F�
d38b342552cd6a20a2dfc066035f36eb0359a01a38100cddf5da31c8b7880c92�F�
d39bb4b8585a8c347658eb0e4b8c573ecb73f3bbb4c1b07af1b30a7d8cacce0c
�F�
d39ddef78717bb9c60b1a73d0b5bd7070471daf3610288379a07921135392492lF�
d39fb02417c772d1ee5c9eb6d9a3981e59719475b6865e25c7e431882fec497b
F�
d3aeeaf9aaede46280cce061abf9bec44b4dbe1a3fa01fd5d3ec75cf1be3ff14IF�
d3b825ecf0857cf7486c9085c1579cac88394eb38dbc27d654ff8a989aa9f4f2�F�
d3c2e1e27a400829f10a9833f70edf0886d63ded954c2aca900c1d63fd6cb984@F�
d3f83e6ec632331c1a4225feeaaf7c261512e7eb7a079d16b971c7c027fa3c0b
F�
d40393b60950d71a26774d9b1e266fd5bb089196ab92a7c1d63bc4e09f86640cF�
d407c748075b7355c9958eda5ff21771b816ee274b0d13adadeb34a3d3cb72ed	oF�
d413e9756d3b6aece12ea946151d51900d80c7fc73dbaac617ca6d4212d49e38MF�
d41b5d8b6192712bf36a8ca2a106db94ce0b4451ac3b212fd91ab7cb0ed75e82	�F�
d41ecaf1cea900f2c9354fc197197c80a88316766208fa264735e4153be0668e�

ff��;��V��+r�F�
d4212ad62f054bb8defbdd91f8b8be6d7cd36ab2c646d79f0ec7c7e36b8a2409�F�
d424fac47526dc6b037adfd66b2ff2ba1e1395086399d34a1b862222e961c079�F�
d434ab93e69642120974f37b28bf06b2fc55a8b51e2bb5b62b339413bcc1b605,F�
d43f51759f659c79abdf2a56831458fa8cf1af488cfda2fae914b1dd04bbaba0$F�
d4448c84868ba851628434b5cedc79248ebbc6aeda79ecb6339065c844d6d809�E�
d45776ea070dd01bfa5681b3d5be4cd2fdb7fe2baac5c1720ab216221ef7ddf8XF�
d4718c0bcf9365bfcd07e9c307952a12ae32802cbc6bde5707222c30c90cbb85�F�
d47daec1adb6903ec50993bb856136c6ca6c1d28610a211a0082c8b683162941ZF�
d48a4b2fd37317e4545a3515a2c3d39cc3c64505924570c14b14d2c06007e7a6�F�
d4c752f14b919fcec87f8f21c7401dc7c9b2ceb39af9d43b03be700c06316653MF�
d4c9bba0cf86d681a086b4238c954468eb5e278505324118d68938f5918c7a89�F�
d4ce276deccf36c3cdff38a52ff6f73bd2c271d8df45463c61cc66cdd8dd7e18
tF�
d4d33673f61182e94386c936d90db76b50dd75d08ee12591565c25dfe73cc1f7�

ee��:��V��+r�F�
d4f08989f469c8c654a2986c6fe6f0f1f7bb38bec3e1445f93c1df505f92d04a.F�
d4f34dceeada317c1daa9f144ef934ddb2e8268f3b1e5ea56ff174ca96919479
[F�
d4fd0adcfbd04fb5365175b9d356f5d3f697870607c655b2853cc010c8514ce7EF�
d512375bde1aef7ba436074db5e9c21e9baa01feef514ddc544ada6efd20aa7eYF�
d512882b1e6a2e0854dd99d20a3bdcbbfa71dd8002a9647e11460a803a49a486F�
d51829dbdacb88845a2597570d1a7102fbf961cce1be232b53e652c9e0877c17F�
d55b375f8c5f1486c544d95e93bbe9054f39c43705b029fc26b80f33c96e703b�F�
d561b43042ddb9d02a31ae81d1c4935a05988542719e259b277dfcc2995339cf
F�
d5660d632b89221fe127f4475df5c34071486cde5540e458836be4a6b5ab6bcd�F�
d56ae1d4e0d4b0be63156bddcdb2f72700d55124efafecb654bbb436fd36eca5�F�
d56af4f540372397f7f6ab93063de3ab226d756872e62f763f65d636a00b901c�F�
d56f208cb0a3f9404c7aa65a34d04ff637f76d4517d2f68c4c63ec940a0806a5+F�
d5777f8c7d443792e6a87299514e3e7da9cb0ffc7ebac5512e40867a84aa7427
1N�1|�]��>��j�N�F�
d5b31f13f3b46bf5b0b92ae49a2422fef7d5c0ecefccc27c7b96a0aae7f7ce31�N�F�
d63186e6cef38839b7dec9223b2e71fce4525a6125dbb201cab77ddcd29b6eb3�N�F�
d6af98392b986204b8b504202adcf13ec1eca355c819f9d4a1ee4d8448a14c55�N�F�
d761e44c332a8ff96d411a4c5c1f89e8dd4f879fdc8fcc876f24cd2683aea6aeoN�F�
d7d58e3708a957c3e2d7c60c347de4ffa8baf7169446426889d9fd0618af02c9N�F�
d84e36f29bdfc3258ea945056512bc5478db08e97bee521c8debc13bb0e514b1.N�F�
d8dd9b50628f10da8aacac180c1d67e558c1ea21f01087d813dcd0249e74edbd)N�F�
d95478aaa9369b4b49b219aa8aa09278b47ea7f04a2b46280915968e638d861b�N�F�
d9df089dfd6da09a0d335f5f7217eb49fb786af4bc6bdc86f8f5780e9588cb54mN�F�
da3a8c2abd8f7012e5d4bebd1103714f6d567dbd1f5281431b01ffd6d61025fb�N�F�
dac3bbae30e7a82b68413ff66cde2cd6f8ebd5f1c4af294556c60e63c0e4246e%N�F�
db87f894acc24775904c7b50e997fa12818c4c6368e17139307fd37433372e1e8N�F�
dc05a54d0cc4b8594a65cf6d4163952f2a15da4e0eb7775e31af36653653ed82�

ee��:��V��+r�F�
d5b8118e51ac12c714bac62344ad5e2f4caebfee78da0c525e284f1a1334bd7d5F�
d5ca3273956d3492b8666156d82f9217e75f2dc732b30d638dfba9f17f7cebd1�F�
d5d036f0277fc2ae76a968b607924ea30394398f7a0e5d8a355d14f7c35960f50F�
d5da28b2cc382844aa578c0eb19c23535d011518b699a177d00f377554f5c80a�F�
d5efe4a3fd7895b05dc1b8b045dc980999601e654844bd49e0d6400295ab6e81F�
d5f36384f01382169e35a68adc8feedd5a3f1bb1e38a45244efcf65320e8c633�F�
d5fa6533d980b7889d1404f6dda42ce2de80411d4079bd78b7ce3257cb36e5desF�
d6029c8033366f8fa025ecb16d28c0d7ebe9ff2aa2c4b0f27fd5af20a22fc2d0�F�
d6069d49f727f500878d2326ae170486edd57be2ead8d6aa3454e528b9d0cad7�F�
d60af5df8c01a193097c36e1ec5c7d66f470b5c9f4400ee4e1e714397de12e81�F�
d60ccb9327412f5e9b92a65ce3c4d3ec7c9cef9e0d21433888157b9758c62587�F�
d60d364eab2fcbe5b73378922674c904aa0843d27145c8b5ab2bc29462a3ddc0YF�
d62663db9bfe5188b678168ce54fbc9a25029291dad7f25e911dca2b4745ad8fn

ee��:��V��+r�F�
d63cfee88470e6abc2c1c016bfb5ec0aa462545cf7fb74bd3fb6432fde840057)F�
d64ab36b01ec9723eaab8170d2287e1ce9a08cb7098b0c0912d596f03dfbcbbd�F�
d64ee0696017c879c9cac304b66dad0523eafec9464a87a647d5b5c2a19e24669F�
d6562a8f4c336171a1c63516de07f7e1ff14168c67b6aa0b7065c624836896f7�F�
d65c68263d6673f69842bd0f97718ea1b27b0cfdef0dd093bccb847c4a9bdc14�F�
d65cdceba1822f154d19bc4845ed70da24d2b51bcaadb12af03fe2668101a3ea�F�
d666c7aa2c9af7b68e1d9bb3646d95b078ea804f6833a701a44fd99fac4c9ae2'F�
d66f8f50f89a80ba6132ad39773812f3a9b5d598db35a63de6e8465c3c7137d8�F�
d6778189c30093bfbf953888db850ae1d4f311e8b24b88bced9f2ec61bc84479�F�
d67f0639fb490343c9abcb00e2620e6b3adbccb1d2fe315924eefec088757c1d�F�
d67f32510e94c118c64283659db64d073108bebd5993b1c728d0d366e4aad1bd�F�
d684dd221be8f63b6422400e18992182df125fe9108dd93f3afba9a92561c1ec7F�
d69a242a1a58b858cffa727cb8193e2ccaf358421e81076cf5c96b4a5082d5f9

ee��:��V��+r�F�
d6beb9da905c4b24c2f8e52152046e20369cddd4a1f98e7babf6ac1658ced21b	MF�
d6c3d91ad22937af9a211a458f12e6b3d4f7bdc4b0d3241d7559e29615a2e379F�
d6ea0ca981efba600c4c9a961ef325d51932a90a277b9769a59c3a585824515d�F�
d7000378e73195f460b1df7dafb97183eefb63440b39636075973f460f0b141d�F�
d70d1392ce3021f70e51c4dc35c2fa251da70e2e0b7384fc3ca8003c9c2f59bf2F�
d71161880783b5c75a2c86c86ecd65a9b1c075f8f6ae57b1c22186db3a0e482b1F�
d7327ee1af7919fb77069b475af28300ad4c73d10e840a156a1105e5099f1885yF�
d7438560c82cb351cd0c021c2a6a0dc12a8235905b6ad52fac1aa4dfa0cb347fyF�
d7480f6ca0e1f89838274cae938826c82a1a691a1f3fa5dc9b3eda6662d64f7b�F�
d7513536c9026fa249a909d4498e9e94991fd98da6b1a4b02d60b054ce605018�F�
d755a7a0945f9ae0c99eaa26a96db5d9fcca41d6a1a533a895cad61a85f4e6d6	F�
d756103ebb5cdaa112e97017abdb37c31ccacc831f5042c1c0c423e446ab3b8f(F�
d75ace9160c666f8c11b19909fd788117c9134c9ec1c12c636f6a45ee642ed18�

ff��;��W��+r�F�
d76bb9d2f1d62a9fed452572a310fc87fca445e6330ebfd58bbedafcd6dc171bHF�
d770a9ddaeae868ed4fb99212c73d0d42e4532aa0842040000775c829f11459f�F�
d7742b51255b8d94dbac98ddda85c44af8fd3e086a9e97e34eaa931c19309558F�
d7798262e71fd5dd605dc0caee6bd51e2af8c6e1d8c23080eb215303d42d2c4f�F�
d787f263d801d560eb3933a597fbdb2f4eb89a55b5cd49730ab0dc795715c028^F�
d78b8165e29e10002bc50adceb4a01bd56deec94d12fc30d4f3479c5ece32e38hF�
d7991efb2314af20970eb2c8f5ccbf757b66f3b4443f904f07638d6729d87951�F�
d79bdff199cc5f9127f01f99ca4906b965b3c5fb198906c1ed16e725d5bbe25f
F�
d7aa835b93bc87305149d24877aa4eb93af26e9c534bda18564bb0727392139cTE�
d7b21ff17ce56f83ff2000fca6f369f4160b7c039d960862da62ff6aab5c8df3tF�
d7bfd9d26185d5c9bbb6d7f10f8dfc69f1ef41dccd5f719b912299bbc532252f
/F�
d7d05bd3b99401da823317bb7e6c1a90595816c4f9e5eb8c21d12f8f3f5ebf66�F�
d7d37b96a50496b4afbe1af4b21e18430fd0714fe31b3d770dbee2da882cb98a�

ee��:��V��+r�F�
d7e9e8eaabb6fc8e9c18b08b483a4a81d3edc3a4d0156c915353f0e5778870bc�F�
d7f65f5f9fa39de94807feafc132da13d35ac5d5d8864bf8bb7af2099bd8163e�F�
d80f9a89dac504f4ac37f8ea511d7ea892e9a02e191b8bf374506a66f6ff3395RF�
d815a590697b3df0167d56b28753612896111d06c6e033a0694f444261d23d09kF�
d81b0c0ebf60fb1b4d6ccb36f93b9d93064cf246ecff7f7c16b2ddbb61c57c91@F�
d81c62d59566998fb91a334f86a794e936a86dbd458bf3633b8ab3f2d471e581
0F�
d81caf81254734559eabc40be6eb6cddaeb393b4e93b64804cb596861d688776�F�
d81e6ad3a689839ef620ae3e5c932a9d0f5ef9bcd3f88d2e10f029ceb30a4f23F�
d81ef905a985548d803b0e6d1f1537c299d7d342e862ba4651ee9ccacb8b23eaSF�
d828d76b49cd8eef2060250c9dc6bd5cb60ff05970adf2e0352cdffb341700eb�F�
d8331a6dfd4b2d434a4ff55b8287d92617ce478e81f9d0efed00c4b7fea39196�F�
d837edc3c03b3b3e816e3578cfb0fb39a5018c0d8b79486829a91303a31fba95	SF�
d83df69f3f8696e0c3baee4eb2d4a692612706bad980d06d71759195aefe28a4
�

ff��;��V��+r�F�
d850176c0a4cdf0424b72ae4e068e7464ebcaba44a41850c646e0e7b0e8b2ac7oF�
d85313c82ec7673519a211411e459e2105de52fc4111ca7c8f5993153e516415QF�
d858f3c88588d0a0006133a7b6f5d5b77ff58e2705465cf0c43a798850d97b18�E�
d85c7c7044bb25d459d1d3377a16e6bc25cd16ea3a67985795886527085aca81kF�
d8752f8190b36bb9dd01e3568f7822c9a11fbce472408c4206c1a371ea109c53|F�
d877319028506f8c2fdc203339535f7dc588bc67e02079adf6bb0e73b4690c97WF�
d892760dbed5cfbe821c1f743b05a838bb1a8e646c36fc267a6ce003baac6d8b�F�
d893452495f6ed739d82236d307ce20f1ee7fb06ea522109fca58008ef041452�F�
d8993e0975c0634b18618194daf0bdb6dc0edc17cb7ba015d6a03e74436a21b9�F�
d8997cf26edabd8e589ab76bac92e5421bf78eb3fde42b9e071f81183dcc3b2b0F�
d8ad0a7ee2c7b587dabb291d73d00b779874822a850485d9db4e31f1e20bc562]F�
d8cc4f7ba48ecdc9de7b819650b043bff67e2a0f66f0100cff7b2021dfdb7019�F�
d8d9646b9eb2ea7556c1afe53b0eacb8fcacd861d66fc82fd1bcecaf2c47e41a�

ee��:��V��+r�F�
d8e476878a37bbc6056f5f2cfa3f1c9b9406ca06fd0c7ba1bb6e17b09a385ae9F�
d8e9e473880f01fe4af7cbd16870f030f0c4d3b35cd00bcd3813a8c472c2eea3QF�
d8f18b1da519f3d475ad00269e3908ecb8abedc91f0754a3a8a6aa8b624b04ddF�
d8f95fca6716286e91c7ab7b9be9bd359800c870cc0bdb90128bf93397e9352dF�
d90d150799643440c4a06c356693a216dd240f7c4b21d95255e233cae0b23fe0
�F�
d91245d56499e00006afb5caef9f595c26917df6d3112f9952a0e2b928994342JF�
d91a5237171093f889f2e37c55c5cbf4f02728ff2fb050c08f0547c1c7cf5f63QF�
d91d835f435d138d7db35fab1aba38aaba2d467d57ccdc15593e6e37665d9e9d_F�
d9305a12e977c57f2881d0d6b5d0a5c612d311bf062b22798ff09ce88469752c
xF�
d9319fe4e9861108bb5cec23bad9875cac3e057b9ed2a069db7213681942b7d1�F�
d93864058f944550d1b6bcace4755bf6917cc80f773596ac1296ac0c13f00336QF�
d9429a549658c0c14acf519f07d00e2c522ae9defd82f2d4466baf627173297a
F�
d94b31603d9a0603f9b8587d472ecc87593a0be74e3c99c956b06ed7a156102b@

ff��;��W��+r�F�
d95a1b973a2d9ba1396f6af5f28e140022664ee433c6719ad7033c59b8007afcjF�
d965d09a6d6db58488fc06f0a1f491c8769c8295f4e6dfaec5bf9e496cc72deb
F�
d96f6359c8daf94bb109d46c6f4da10422a428e3101b641458380f3246030c16F�
d977ef2c9e09f15898d44de8446c4e0984f357c637fa6b2194f05cf87e8abc29}F�
d97cce4820b6ef5656963548218f0d4ff9ef7c504f16623dd12d6b73c7cf2e2fWF�
d97cd106cf9572dc73237ecabf174c9e7fd63f1831ecd180582edfe2ee993409�F�
d9821c48f2918944061117f3ab8c87a78a29d2649124aeb7f47f886ec7903dd6�E�
d98a7567aa18df65a4b612f107387d6f50362fcef232a4c1fe5a246e2d477764>F�
d9a010b778f886239f2f727be22f6e054b2c499ecf8ad2846b7837ce3764547b
-F�
d9b6c849e3f7bb3fa602d5b17cbfbda40ae131b42cc00f3c522157a30999d010[F�
d9c05b12d02951ae6c67f270d0144e1db212577c99d87cbff4e1fbf63e9576cd�F�
d9c97d1412cfdb3b24b2aca08bec9bed63be4db9461f19ba0eef840ad48dc19eF�
d9de662df6b2d06baba19d02a89453bc264c7daa9c6fefb8214e3a084eca6e1b:

ee��:��V��+r�F�
d9ee541fc64d9aeaa99ba6171d9a8585ba8c37d8e288b3c6b029f4a1aa292beeF�
da01a171c185a98e0fc00bd31c919dcde123a4f0d7b42379acae4b7bd481a35a�F�
da05a8dcff76310419bb1fc12a7598dd9d24206d8f1a6db041a8900ce84de810�F�
da05fbb9b8450a92e98610e675aa2f6b8d363493edbf91cc645a281adce116ffIF�
da0ee7d0ba196b9b234e978896c8b7430980fc8e6df7cab9fabd870d89ab5bf0�F�
da13c76a95a624d2a68550bf3fcf6a40650e79fef0cb040d51e46aa293093fb8F�
da160f160c233fe77d6e2113aad1a189ed766c41fc8254b49f764306d9538dc9�F�
da19c51c2a6a05fd9cbc856b73aab1fda9c5974c9fd026652be8e555e60410ceF�
da19e809bc2749d2727d0bb85172cda681f9f2751137a52646ab7ebe32ebdf66�F�
da1dc98d83517de259389f28cb15535a0c5b895342f95881d9cdb88529401e7a}F�
da23c291f94eaf3fa1751e0812449824e582ca5853fa7e71e730f6f1fb2e0327
bF�
da2b0ffc968803d239f38444842e6792e85494901ff8d0075652f6c2d7aa1800�F�
da38341360f5d41b718df71ed8a4ab57fe1fb09ba331c4f1da5fd6729ab4d567%

ff��;��V��+r�F�
da4cd5b16857b9f434f773471d103d61dba9fbe99a3264cfce051444c342cf1bpF�
da5e7ca2931d95eff55acb5a19e8a5281ca44689ee64bfee2a30b12163c91f83�F�
da6113b8e3f60613882eeec8c8497c068bd46559042351e5cf030ec9ad382d41	NE�
da671c2234ad85d7898dc39cf7cbbe3f81c92f9de8153ed656a948fe022cc14bjF�
da833fcbf72323a7a85e0da6ba8c9336419447f7d6dab0d5107ab974425ae951eF�
da8588048a3618261c5ce040bd0a4053c3a59f68de23dae234a757305ef02c43	yF�
da8db8418933d315b0ed79893d80242ae95d51f00cabe099162d09d07124d15bqF�
daad2593294d57ecd2ba590f2b8292ca6c1a15ac312f2ce7da8dbb7128a21db5�F�
daae913efb6e4874bfa75dfcd0e5d7e7a5608566622349ab0a84cb1fb2583e70GF�
dab287aa189bc4e289c79998917467ba4a97037e00fe28be6d93e2537aed7bb7�F�
dab70d9c3e9d60e9a4331d2ccb0d2d3dacfe1d41e355572961045f2ce2c22a34	F�
dab8429bc58eb477c02d8eddb235455fe3be912176fb73b641187fb0ae7dfcee�F�
dabd6fc3fcccc9d794b28168afdd8fb94f2d78fda10a5751459cee469f8412d4�

ff��;��V��+r�F�
dacb7b788cec2e57fc23d0ff804942ec81a7a415eee8eca5a9a61540c86d896a�F�
daff96fd89f92832ea99fda83cf1b76e717202ee8aa4dbe27e75350ce028065f�F�
db00d954c05dbf5ebc5e47f7671980d64911b459229bc83c8dcd6c60c4ce0b90�F�
db07f94b0ea8f757e8c7e4e9ab64552d472d4baf724499628c1d7447b4ce574b�F�
db0b608c42aca3d5a6652b87d0c3bce10a8ae188cd758704c3f1f4b70ea42cbd�F�
db24348500eb9dbf5298596dfe2e37ca3bc54a7bacc1db758d4a433d37f486a4gE�
db29a04632a66bb63dd0b015dea1aadce0cd2e22371225ebfeec0ec5dec16c02F�
db3908bf5643d267bcfaa924ae478da8414a6179e1b83c3700e7f99f75d8164a�F�
db4dac1347f0a7c37ce54b990ae4be455c6c016e54d0a315f1e2cbefcefd3073�F�
db4ef1e0a6b2f44fef3fdb8ad686016dcfa25ae6374a3646a9c898f01668d499F�
db61bcfb079f0f252d5ffb4b3f3f8e5ecb7d0963e782c43dc2c33b98250903af�F�
db707f9fd1fe35154ab4047938dc0ffe4a07327789e176680886a697d796b61eF�
db7d1e186c2ae291d66b611f4323aa29b919d87a3e6ea1478b9cb9b642e60f17�

ee��:��V��+r�F�
db914ded5eb6eb9d8b435563ac6f54fc75c81cd4118ec39a25d1562f420c41f8F�
db91ac87e5096fe4cf5cd292f4692633d26bdafb9ceefc8288141677f62626ca�F�
dba6657dac2be85cbc8f4e111f952c8a9b31b95116671a599320b57503781a49
�F�
dba6df762c2a7b4df2011636555ed8910dd7c702ac1a8c2233d5bdc1752907dd�F�
dbab6f5f1c1f7222d48fde249b8f8b6ab3e0899028dd22c3a51b9c38eea6a20a�F�
dbbb88d9eb3b101dd3369a46793946b7cefc449cb1c00dab5affc0a3c6adfad7	�F�
dbbd36394253b7a5eeea86bfcbbe4f0ab7aa133c3e762b34f7a4b0e3d3b138f4~F�
dbc118d3ccfcbb7b3059ad8a684e25485e0745d8f682f5b8e2a16c1ab4a3100bF�
dbc4de07d0e60afa27428cc96344b4424c8cf8209e8961f014f4989de0ede96d�F�
dbd4fcb28f8cbfd9fb540e8d37c4b83f661fd5b856fa728606339a61f95f4513VF�
dbdc73fdef9098f3a36034a34baac0fea56523a9d5f32161ee961570387e2ab1
qF�
dbf4ca6d02e1dc4d99cd9b7dd3a4c943d4209115d0f33ec526d0e4338623bfe3?F�
dbfc7031b1cd09899c676d6ca513c824c52747913d402f85f2e22b0b8baac066+

ee��:��V��+r�F�
dc1039bae026e06f606e2a26e159743f3cf3ed19a75609cb5664372c17b4d90c�F�
dc1bf06608a791a1bc05682c7a5dd37ff4776553816b5359923260fb02f0c9e22F�
dc1cfb04b799c30dca02faae2f75f5cc94d83b63b11cf8e7acb33ed1b252117ffF�
dc1ec1c4e74af368428ce982615f87d7121b8baea33bec02313d1f3b501a036e�F�
dc3a05b48786ae7763cd0966fcd06703e3d056abc82ba14fd98bdd54152fb214�F�
dc47fdc3f4078f0e108d5906bf66ded4e5642cacf6309ac532e5e06c533878ba|F�
dc486f913960456b5d2e5d97371e0ea044e845fd7daad4a9405caee17252a41a�F�
dc4b5c4bfb6d4b6fd4006830469bd40d093d6938603f2fc413c3ff2d54ceaaacF�
dc5b0b3c78dcae2b3bf5f5c9dcbcf24534372b9e13c9464c300a0017948eaf99\F�
dc69ec026bc1c217d4ab702f2ab40cc5fe01355f2ba29351877fb7a58751e541'F�
dc71096c57fc06718137b2f317d123ac81f3c58557e1d9e42b1d0cceaeb95d38�F�
dc73b498dea020241c15f040008e6f96731b9a67cfa83b452c60a9d4510edd41�F�
dc77ee42e3378dfc1bde015704e9af335bd8e6829d547325da2fc62adc0db229
�

ee��:��V��+r�F�
dc829add4d45f5884e77bcd5570fa643f0a482815fe304ac97cf74eae7bf891dqF�
dc83e35a513a39a6511e6815dff7c318849b1e9ec3399ac8de14115dd8663f84
F�
dc90a5cca940b1f478ed520e28cd82492738bbb49889b2cd96a4cff2fbc503bc	�F�
dc916d8fb8fa71e2b3598fd5f5d1544cc54745b116f27a7ab2ecadf3df918a7f&F�
dc97c23964c8ec5ec9543fb0bb7c476a1deca4202929a65f43265b1ae8ccf0ad(F�
dca184c57d0913cdde1f9f39c446f2cad1f8daa197d290e0f0ee296dc3b345daNF�
dcac6f9cfc56c02c04c7a838dc97614858baaa53286986731947f8d1e57c98ac
9F�
dcccb19275e44c98b220ff45b313949c6d1e421f5326c9e3d8f568c1ae986c15@F�
dcd5ebbf96fa4b554ad2a5520ab76814b9eae044e649c9408139b2b07795d5f4	AF�
dd05b77f960a6b0aed0f034b93449043a31100aec1f59ed4819b5d1ad663b83d�F�
dd0e9de5630bcc248395482170c7a3b3d61876f1b93a950464ca6a1125b6dd53F�
dd1acce44324d0f78c3fefe9d62e4f6b967b6a1f192ce18c8c0336a4c8adabd0	TF�
dd26f40a18d45abe032d5e12209ca47ece3291fb0c9b2777688d685549c62407
n
1N�1|�]��>��j�N�F�
dd33037be3199f5576c54b56155a6558f0ffc24162964a2a3f1e2dd0be0681c8�N�F�
ddbc53b44a7ec6dd175840df4ba96e8440a167aca06195e38f9ce8e768f82f30N�F�
de133553b72273258b6a99609593572620371fffa43173a2338c8558bfa99e7eN�F�
de8317deebc44e01bffee751beab8a8a0e35efa4cccd2d3dd442f02026778754�N�F�
df3f0112c83d6ec1425240197c85476b62397067d6ac0c7e5040adae2a01ff93N�F�
dfe0da66e34f229040771968adc12e53f3ef8575433da409ecd46a284495677e�N�F�
e04dc4c0f21261a4b8f79045ccd056e8127d18e5487b1cb244df94daebd947ef^N�F�
e0d5c3c3503d52c16cbaa1ee54130af69d4b939561a49a2a1591e2049fd69279	0N�F�
e161fe668a338dbcc5fd4207138cf06b234756554c7b000fd5627366c98b5f3a
�N�F�
e1e1b8adc5317dafcd61f9374708c3ef7388ecd2591a47bb2dfdedc0eee9d389|N�F�
e2a10703222e1811d5a65784d7297dc8909810f2a89b78d6c78a402ba28e7a22uN�F�
e31ccbd3696503d01bf17eb08d66c852a75d233ea3040b15ee14477f72f2013d%N�F�
e3d2e4fe4672614c07f199cf8ea78ca12ec2e4c5bfee735cbffb6dca84ba91cd	

ee��:��V��+r�F�
dd3bfb74354db34116d2bb2b298b233f3d005acdb7709c1ea17dd9dede2e0566�F�
dd427ef9920f27966d5b507f154c88d80a03bc944b494a89f98eae387f25e950�F�
dd5402f5bb60ada1db63c1305e3650e8804adcacfb1557affb8623621fd83155�F�
dd6a74f8a692f2fe556164b50fc2c03bcb46f1e09f4aa5d99bc036cfaf80970f�F�
dd6b1ad5b433b7d1f74b7dd91b9b5cb0f241de67b3ac6e130a4577c5fcbfb7db�F�
dd83fab8ff66edc9c2eb4cce6304324d64c9a9f43b6f394c7886c2bbb9f6c689jF�
dd8b1af64f49b071bf8395d452ac0dd4a5272f3de913475a6e1158eba0bcf9a0	{F�
dd909825185de2980f63f3adca1ec98161c8737e440d1fdcae489d50885111a0�F�
dd911d44d893c09a124700634046d5e3c9936eb30f6d85537e2f2aca791b4349/F�
dd928d632917d65ac27ed05d45f342a550ac01430159ae99363d9a406701fe04�F�
dd98390ecb2875b55a18bb8ce2f4fe960e7d8f308cf206decddcbcf25c6638c0�F�
dda309e14f66aa1f8ced19d835b7e6ff04827b05e42baed38cfbde2ea01b3351�F�
ddafb1e92f08f922d622d8426b42ea6cd1ddf7090da44abf0678b4cfd67cd2d3&

ee��:��V��+r�F�
ddc9339c832234c2d2d9c946d96c23c6d1fe5ea3a34710694d2a8bd819d4b8f3)F�
ddcaa350e33d1c8dbffab5d04b8b98a223178542f0bbbc0bffdae33e41b18241
�F�
ddcdf775af5a3b6b701817a264a8052171cb2eeb71ee4ee1901bffcb91e5d74b>F�
ddd375eab5397ba731106d9d1a805e9a2c6aa4e504e7487eea4ff54190770885fF�
ddd64d000d677447dbb3a66637d5f9d9064439fbdd584fdad1f5aea0b47ef550PF�
ddd921add46e38c9947a1be713846fcb866f41a25bf6671f3a81e65cc5ae6906�F�
dddabe759540f01cb15424d35255ccfac26564331254e9757e3ad94869e2cf05lF�
ddf36ad1ce4578114e5a65661c1a8de7696ede0b51d5d3a2d8ac551164a4d7cc9F�
ddf90c0ec436cf18228ba0646f73776e9a121426e0c05038fb1f4378646ff646�F�
ddfdb301a369e390465e7fed07a523d49328f34568875ece4041374ce5341b09F�
de01b8c6bef6e8935094026fbbfa516daaf970a7e92df84e3705c559853ece19wF�
de0f021707bee4c5aaee236900b154d83bb1e1fb6cf13faf8ff2b8f68fd04dcb�F�
de11efb648c50dca4022b29c14b4bc06fdcb8f36be5009d20018c917583af9bc6

ee��:��V��+r�F�
de13d1a20b6a077c828b91d64b7be5abb1b5809f45b27d389afd2811ffa6f9c1}F�
de277490ec2359c7396f0b7c4d39dfa4426e563ea8cc9defdaad322dd0c42a48F�
de291c1622d5eebba6a97c0060a631087ecd9651815e7294c243b6f31e580508�F�
de3aeef4443f60aa6795ee64bd6c2d7bf33a2b82ff3b9119c255830faa49f4c4F�
de3b8490416a13143355e8684c271fdc9f605d2dbf6ff8553f500f049a96f027=F�
de55e1ddb71f75f5b701d57786cf4b70fee1d92f72205d32c353fe0e17602361F�
de56cf10dbbabd9a55f388bacf02eb1f5bb04b430bbad9a217d6dc57141aaeb5�F�
de58dba9cc8af79c110d13626931309529fa1a8782a121fbfc29dd03e58e58b6	F�
de628f3727cacb859cd8375cb35493f4ee9c74aeb3751c1ba0c049341d84eb2e�F�
de6d7edb575cf2c912b54349020bb0c64b19b18869c865f5da30ef088e3cad85�F�
de7c7cd5bd6465116843083e7515695b436a00a145d6c705355b3e74a55e2b6b�F�
de7cfbe962bd72bff05eb5b687355c2d1b4e53a0affdf86ce99149c64c2d5d6b�F�
de7f44e2c7986c23e352486d2894499d26f632330a153b346ea4363cdf0397cb	�

ee��:��V��+r�F�
de913afce451c42b905510d6c1260b853922e572f20edefc2488719a3c92770a�F�
de9c5a6a93ac35ebe471dd45b8186ff0a1ee0c2c80c9e122c072728aa4e603a7�F�
de9e4e230ed945c27a0bd1d2400e9562d9cfd0a8d54ca6d1bc09dda52211b3f1�F�
dea5908065b3f9a0fbb1fdc5cae84e7dd1e61e274eb25e8a1c1bf2881f5cecf1�F�
deca008ed0c50034daab0bb70b65cd418b3ae2a3bb46f2fb5b5d2c80f9cbe0e5F�
decf2a313c4d562a043eed4b9202d10b5c58750490b4d6db6e70c5a2bf2fe794�F�
dee28e194d7127f17697a1e4475e1ffb525b9887c34d90564152f147605360ac�F�
deefbf7dc62157f10bf35bfcceae5fb497403a6fbf86fef1e8cfd5636f7bad10�F�
defc20ca4fb42304e9222b189cd76864191e45eb95df7eb3cb3ba3efd335419f;F�
deff998718fe21f42d80a710db70d787a484e432b9c7bd0e6a27a4751d9bd70b�F�
df21a3fb768e603f322d9c16831a48f1a953dcc954f4b9b79e30a3e77107cd77�F�
df2ac268f02376356b5c4723b8c369c8593c63db05b25c52b9d0d0cfa7b0299b�F�
df2c03d36edd3da46dc78887ba0c21af48565b9a39893e1157cf83913aa1b361�

ee��:��V��+r�F�
df3f90935ef976e235c93ee9f86af7d2ce39b33df6bbfbd00b0187a2a6055b4f�F�
df41fca55a3d1bff5343ac8fd47f2dabaf9e5da86bb0851f46af715e74c7cd59�F�
df51484667e5b744416e438fadb87d6b7f90ebd7deb4e6682c6fb5544b4824d9
�F�
df6e614866add11969ca0b65851bfa71c6bc9f4844246ad53138cc6918480108XF�
df76a933cd54ed2e60e4eacb34639d343d8e273926033d63c3e9f0090215673eEF�
df7a357bd7450087019d5bb9f1bb2a2fb80ae9a9ee7a1a2a6117f7d9bbf995e77F�
df82dbee56b4fa877e8f7aef9b9d8dbc81c598816135c2ccea24f43af66790f7F�
df8d2506c03d24e1a590d6879a32d25fc08c64674c5b3363908407344377e1ddBF�
dfa0087b709a643d5c0cd08f474c7f4e2246be49e0ed748ef007f5903a31b544�F�
dfa6a2ee9076eba358c12de54d5d936a15a282109538f6772bdb75582afd0584�F�
dfbc0cbaf5fb588c23fcfdacafa9024ed6efd13bfbb1cf69316269cbaee79463�F�
dfc95bdd8057839d4b45153318acb4e09f4da257afee1c57c07781870a68ecef{F�
dfcf30fce1599be0699955042c34db80273d1dc14cc38af5a8f91b02ab70060b�

ee��:��V��+r�F�
dfe2f972771603f046f22e69e38741bf6dc94baeaec867665169bb3e9b9b8eac�F�
dfe4993ac8d4d097c4e5e97fc006d27039a6a3d4cc79f87f4d56c9e79afd3a86F�
dfe598bbcefc64fd6bb542cf6d1966fef6a3995e68fa2b6cc2ed34220ca65ee8�F�
dfee136c3e1717a2003cc2ab23a101250a304de173d85ce35e611d5481bc08efF�
dff37a0add22b38eab5365de428508592ec00dc762e1cb45853495efb7c80c04F�
e0016f8f138d66a274153a7698e46c96dcb464b183d398ffed1911d528dbf7bdIF�
e00e4e27e76a7ce874a947e6df6282be03c80787552e9101d00197dc467c0182�F�
e024eb4fe098b64e9e4de794efbaffc32240faa47afbd2335907c1f6f78cb52bF�
e027d56a8d05e8044b59f1f1d0ff564fabaec69db38c5a78c6eedad992bd0ca0�F�
e02972fac05c3f064d850d48bd37730bdc682a15ee48e9df9f51ad3d023e5115�F�
e033e09baf35ab533a503e8e87c8e01aae28de712da982f5371673bf0567fa4aF�
e0386a64a095ddfdf29e498080b5d77f7bb681d49c55cf461188e3263c1ab429F�
e03fb473c4111b34ab231b026b46e185aba267a54abad312d1fc4be2fe1a79ba:

ee��:��V��+r�F�
e063c651b9c19f3ff44c19dafd53594a57c6c58f609c5e0e419a4b724c4b5f87%F�
e07580dc20cee29ddae2c26b7d4782a6e7671477d7f4ae210d2cef6cc71555cbF�
e07e25a4f64939f2fc2c8dfbcd0358561025cfc19d01318d054b161d02e76a80�F�
e08149c8f4894437d1cb9d2b60f6771c7922cc3b83c5f92705e75f509b0481154F�
e083624285f3f8668aeebe5e4297e96c9e4ea9ed3cece7a3318166272f0fe11aF�
e085961e3f16d1265f8327c5a41bf5ca2eea0419c2b09b20092466009a492983lF�
e08f5391f6f27a9c77207532b12000e6771dbbab3411de893ea6640343d7c557
�F�
e0907ae58b30e07ab32bd9786cb264f46806e15e1e41ca13375f1a8601a9e2833F�
e09b5f3555e23622b184571a63391c9f149a33111cf6ec9a07616cecca01c1c3F�
e0a4a368252a2466ddc2b35c58646282829e8b14ff12d3237645aab8609ca5c2*F�
e0a695f230a608e0bfdeba85a6146080546349b0d23836b272a5c44012b9fa09
F�
e0a86a5b4129921e13dc76157dee997faa829d4d9a825ace7a0a53f87b4846d9-F�
e0b87fa8a61f451d3299d6569707241d3342eab4af1de892fd6bf8e03d5551d8�

ee��:��V��+r�F�
e0d62271ecc1d123dd2dfe6e63131923215ed05f9f87bb42cbe1c713b4cfec5d�F�
e0e135c635d6d7b7cc130fbb412e09c42992d3447f2a5ee0356a07ef5d6489a9F�
e0fb73f01affcb06ca29acf2c378ce6d3035f42a90552ed157bd34ccf137226f�F�
e107c061dd44f2966524c0a39c675a112e3f712a7f1b891c19bc27ddadc6d91b
`F�
e10f54c5d580e560b5d4611357d17fabf744c685d0597c57f65096c26149632c�F�
e1163c5b5240558b24ddea7085492d62d63dd722ce6b4775724583c2ebcffdf2�F�
e1197686e2dde2402bf2c97fffaafc2a53e90a49b640a6fa6272c09b15d1bcb7�F�
e12fcfca359b3c38140cf59ead8a267ef1c024a4ed16d4250b7d14c94300a665�F�
e14abc4dfd161e931b9099dce439db26a29175c166b124a14167a664a0d5a600�F�
e14e58cd6c0a61d873c99c10de7e5a36ec844b84147e4656a784e33c1b0715b4�F�
e1558062e338ec19488115a645f60559e370f1ddbf06a4b6e522b9803ac21304 F�
e1558a4ef78a248b5c220ba56ed44d6ebb4fc90cf62cd3efcf72e602bc088eb0	F�
e15ae7c19afb196a228163866e632f1a6dcc877a8490009959707d354bf833c5�

ee��:��V��+r�F�
e17a8027f3820da82d6b20358ef0d2e8fb3c334ec7632d5262a93004b4cf2fbf-F�
e185e29258de4ab6f27caaedc2002626f5e10ca9ec0c4c0d9b98007fb617fa6f�F�
e18ea59775bba4c1bd311fdb9225cf287d5862c29e8b3199c4ad3bf57a00b83ekF�
e19244daf20ce87cf283cadda5ea9d45bb6c17bfdb674dfeef35d29825c62af2�F�
e1931c2c08f74962ec1d742c785c518f1942b86d552b9e27d9cb776d4c555f8aYF�
e19a3d190b4be2dfd6bf0e58eb5017d6235b6dc0bc5b12d4b5d07c5dfdf34eec�F�
e1b83152038966e7b6a720ab0871b052fb0dc4df9c843243ac9f34f68ff8a58f�F�
e1c638e35cb4c885aeeee8317465b9424dc26e85b3d95b1a84601727366a7baf�F�
e1d065bfaef705d407c6134352d1afc64ecf26a5970a0e5282f6dda745483db8�F�
e1d60b061557e368c20da15e4517376a49df65648636bd09fa3baa81f162391d	�F�
e1da241785b81fa88a78902772f84fe8352a55fdf1c3e24e75f1489f0ed6c85eEF�
e1db7a00d2204d116b7e75f87e236094c6578a2ebf4a48a7af11edd3618ebce3�F�
e1dd38dc66a44126b420260a1c8cbd7fc5a5e66fca9097fbacb6645b53215ec9M

ee��:��V��+r�F�
e1e650013a118dcd257d99f632eaaa7d97ca8ff95832c08b76f5f19daaa2c8300F�
e1f96091d25298a2ba6942bf99057752361acd85a35af09192241146d47a7a08	:F�
e204c387125736b5126202b4d99222db286a7d676c022fc50ccfe99a1a8ed302�F�
e2176587ba77f1d2a38ee9ec89781028cc33042f069dc103523ebee850d6b68f�F�
e23ad6387e0d97dd5a8214f1c20a8112b68c12124bedabc0dd60ef5e8397681a�F�
e248caabcf1382b1871901dc2504fe1b16e85e748d76553c646487a5ac907f1f�F�
e251fe0d7ffbb8b51c6644310756c5ea0a0ea8d5282cb0ecda819c8ff161dfecOF�
e256274cc5f1a6f7f97af45288258ffc553c2f425401d35928622845d32c4465�F�
e26a698ca51f4049464d83df1c17062a826cf136c188c2d3994ed01f90974ab6�F�
e27571469712e3c2e9c26aebde7261eee92c600cc19e6d3f6b1bc172f0234ab4�F�
e28f306d4893ec7a68589345b053be93e9d807543f263f0bbfd81eacefbc4c10�F�
e291f44f4466940d2b21380d3d68e50016685dad9868bd9563a304233da7eca0�F�
e29dd1c6d36379f2cd4d51b34af58306f6334f7eef664b48361f0e5833bb90a7�

ee��:��V��+r�F�
e2a3860deceb4f2f2ddc8390def1eb021196fee5ef075702ec1588374818efa60F�
e2b80fc90e80e10166a785ab1c718ed12380055d955ab295c5363ad6405fe815	�F�
e2c51db626a29271a596a4998c57628cb1a37278b0c06566729c4f36ebe12ebf�F�
e2c654e3afba7eae27baf8ba94d32ce0d7b64ee9e4d712f07c55fe5511ac0e78�F�
e2d9e1fc46982332f4c50e35b6e51f62edc6bd78156642b63e2553d404909efa	
F�
e2dd0c67f3d88a9506f72fcc21ec0af786a377befabac8e1670d3e012d844b06�F�
e2dd1e90386216ad54e0f6e9509f96a4314819f96abc9b8ea88ffbb03f05dd03F�
e2e263c938ce2c5090d810688c04ec6cd001741c076f39d1466a32d13305f123vF�
e2f69cb9ce06dc6e440ee55d4de796bbf6daa032c04f11a93e33ceae0d79eb9c�F�
e2febf7854a5223cbd8ac5101e3cb5cc8a2a9ac22a6ed7712ad25b139199fee2<F�
e3048df9af89b5496455f0ad788ff0b492712c8c06683cf6f908894638139c9f�F�
e311decc49b7ee2360283ef4b0704bc4c8dc2c2628d70e47cfff25b1e8583f72/F�
e319773b66bb4f0227b1608807845710d392639797e4f0e6714024b71cb7b1f7�

ee��:��V��+r�F�
e329f4af5a2d9e0b4ba62a957f0696c7fa7fd5a4fb911f99a4f9f7fc965b46b8�F�
e32d8d85dca546b68def9a0c2f007a2e17b1c0a6759ec1917fbd3848b1afdaf0�F�
e33353c1f5c8cd09778ece298733e91964fae61ddc04af20b7b6eec95035236c�F�
e34c0ad20744217c96add514c92d0cbc2a8b8784c76ab519306475684082bc7b�F�
e357af06726c5602fad5542ef0502f94391737c732c9fbf6706f80fb6757f197	�F�
e35ecb4beea182f7288644cabd57114e698301a9bc0577e0b71c41956b316426
F�
e36b9d803bc4c2cac122e737759eaaf8944848895c016d80232d05a405a97587LF�
e377bae670c12638d474197ef518748c1e088342df7e30d7b48305b688397f86
�F�
e3787987f77c2d6216bcd7f8b59f521fa32928443f39660b17f98be3f0a684a0[F�
e3969bb97655724f00a321057ffa1c3761259a7544eb9024a813c22c09309f89�F�
e3a12de0d6fa0c1cb65f6e6311428c947041d9751905ca6825693129f0d1e5a5�F�
e3a24b7d3f533aea4ed0f3d9388b2f7d72febbb435d58e7be4020cdbc47107e6,F�
e3c6ac455f3f655e70629ab69610a70ab4f4e55490536ec08dc32ec06031f28b�

ff��;��V��+r�F�
e3d2e5a0802cde0d09552d1bd3102383e1851a9aecf88fd83a5fb81baae6d53c	�F�
e3d6fe10b5be6ef1037244968642c245659e0a8f0dce997e92167e26158779cf�F�
e3da9cf446dbbd5a2b65cf4a7f59080bf53067a5b3c1c938582a6c2e7874a819bF�
e3e0d812a13816d47ae085d4f88c2d0f4d8affad6568434ab0f720442981017bAE�
e3f5a839e2e8acc1d26bf39b94c2d5f01d99b4c9f59926532da730dd0cc33feaF�
e3fe1238b3aefa061d1f4c2e420e93639cafe3a21ce171d5f4a80fbe6aa7e5558F�
e40e9974b84165100cfd49afdff81253e38049ca2ba3d57dcdf352538fe84014�F�
e41dee63d125e890be93881d99ae457aaebbcaa795e8a90597fa3babf9dd5a67
F�
e43708faf11f54060a6b8d9ee565f6c43fdf9b7c1d5537257443dcfe58320462F�
e438b29905ef5550f7c5d07e807e9f7f882272fce7c62fc02d8dd31abdf3e759�F�
e4434d6372a44237428f390b21eaa263d38ebe585fcde7c9b6d093bd6a53f942F�
e446b1822c2b1f232e747d463041aa38f581221d371740705042a6966578d818�F�
e450e9d5bc1c7f5f5f4f8b5d7ce575e0a5756a4bab5ed98be38ec59c1ffb0276�

ee��:��V��+r�F�
e4950b148639895cb3ed78b8a00c0708abe4685bd380e0003ebeb947ea1edc42�F�
e4982c6de18a9fd5a9baa26a2ae8d32a5e2474516998095e06a900fc16cecb18�F�
e49bddae5537553d4d5a78524aa8b60eccbdcb546e79e3e046c946ef9da09ef0�F�
e4b6df13c59f0686bb12ef575deeaeb4ba581e4d0dd1d2595bf0d7ed9ad2e65f F�
e4bb7031f520b296dbe56b80bca148b9f8409329cef2007dd5a06e4548e780d3\F�
e4d444d844a4cafb1f7e4fa1a67562e38078b7cbb3816a7216492e9a2d40c822�F�
e4d4ae004f1e33c3542d967b6301d6307f9a848be51a7008ff5726259a3e5a5d�F�
e4d97a37a80e7bde04e338c95d54a5872ecd63949d6cf626c567ad3c7a83b5b66F�
e4e12b73d5732eaf8ad672f5c847ce8d4099eb0f3f222ea7785a84bbb5c28f75�F�
e51d2de57b856312d8eb1bbf6ee6b7ac8f910ebf5d7e0b516012d5d9c31c7853�F�
e528ea9bec7db57fa568791758764da431303a54e6189e0449c7b1f92756f230F�
e53316518deaff6343f609e95cac017e8bde5012d97256307e5dfb033e102c0fUF�
e55f24cd7b3be8300c44b260f1159a66b99a1775ff2fe6134024d8c234f14559�
1N�1|�]��>��j�N�F�
e55f9021fa118e217df9db527f05fb35638c68975d0977584ac974b8c6a6bddf�N�F�
e5bed7d18f1cb03d90274c85c7eb780577a158e85aa2ac2af3e174486ae52f9d�N�F�
e638dd51d9159ae8157653edb26aaf106eb560ae53f15fb80efa319e41e729b6�N�F�
e68322c77301aa109da2791f2c544f5933ba77ca4eb36116ea02fcc3d83c6209oN�F�
e72e7e5054cec7dd0b5f52acc7183ddfcb107875c50ad6ef52f07a3785689966WN�F�
e7be65394477619c3bc276a472efa4a7f642dce66c5dee203826d0391223391aKN�F�
e84cbc56cc8d3cad5fbc8fdb06739cfdecf9f15a7df56f7d2af53fbc4308d0c3
�N�F�
e8c8f15154fb4dc69d8a6ed87e54bf5e6b084aa0153827e82cd2471889908402�N�F�
e9972fdb7ca4cc3ff44e4f3ed37bfc724bfa5d7006592b775660808adeaacd37�N�F�
ea4070c75f7c99de5202445cbf44e188a168785685b3ee3a524f47abd2e476b2	uN�F�
eac7d9685870a65836a4ca60f270d56cb0278fbdcef6be718d7aae558eeab78d�N�F�
eb48815ca014d65a115c0ac9dba6f0c28dc765fbc161fc9ac11d3573786c6b4a'N�F�
ebd82b5546583e76abeafb233879f04f1488a96c1f1823eac177889b8218328d
Oj�N�F�
ec526953368001477a55a50c3cc2a5d51c651ebf782ccc4a61d9c0cd7dd37eda
�N�F�
f4b81bba6d36049eb10ff5bb2d20310de20be1048a6d3e39a65a860939563c6fGN�F�
fbdd5b5415f56af9b9ab84c65d8ccf11fa14c3f554904f46a117fa7e039d2a92�

ff��;��V��+r�F�
e55fe3806bd7c427b2a99d06f4cd6144b05e9c389c33efc7071369f9a633b952�F�
e5654c00b989b0595c553eaf073114c219aec1d06fb9571ebdcebbdfef5a90d5JF�
e5677937bcb75d7acb7f08f429bf9a0f982b23101f1c089b063117be1a84ccb1�F�
e568d73cd1ea3df0a67fb17bceeae36b33a91af90d651ab33c4ae492f208ff32�E�
e56a5b95dac0bbc46dff9f5743926a4f4bf4883bf7b515cdcd6310771c36a4a8ZF�
e56d1ffa341be20d595bbecff5b341080ab023c5d8420ce4a03813df47621344�F�
e58be69903032ce19789e8066ac18b837e6cf4b67db9460c5dbac4897f678352;F�
e58d4578833550c574d220588395dd2ff7fdabaa1bd5e48a04c31911a6caca8a�F�
e59f39966b86233054daea322ee01721e6f8f1148e751fbc8fe36aa7381a0c3aF�
e5a0b645a5f31d68cab7845d9767b0fa6efa5b4d5b70698b58c9ce1f62421820,F�
e5b4fe58bfeb115113e7edd7fb472941f60801137b90d42e57b06b22865ac47d�F�
e5b7423528cbf9cc19e9723b53e3944ec1bccf375eed6cd5d975ed01325ecce3�F�
e5bbff1b2c6d054cc79f530eb0647fb1a04ec02c79c456548c0d9082b4d41037y

gg��;��W��+r�F�
e5bf29d89efc9dcdf73e8e8b84b8aa41793d043e3bf944a0c3659d666a13bb4b	E�
e5c8dac0c01ec10e911180046ed350bf3dafcb9bd06121d746055d20b4d55586F�
e5da7feab326c7d54715dd536bcd5dfd2fb186f7fb2c524d033599095a696f93�F�
e5f363f81639b222cd478b35c882cd06eecb2b8e8876f3e80dd3d85c8a6198a2�F�
e5f5632841ed822338ddb9d3ea6e1bf7785e6b1ba1d354993db1a5a47209507e�F�
e5f76a4c5b41b3334ed3da7aa9bf17480ddf89e174661aaa2d61a1fe4efc7ad4
F�
e5f77930d5fc1f574da19410b3b247527067731d9fcb73c1449994d5079c56cbUF�
e601bbdfd361d5089be7cec55d69d6cc4b85d1c52963c2f8d004de14bd0ccde1	IE�
e614cee98b3c2a67c0a489a233ca9a7a574ea6bc8dd166f835f26bca8d3d5f7cTF�
e61584e7d9905cb45027e741b94c7b54f6b883091b652d2e13a682d244a0d9c9�F�
e6273ad14c1f319502c24fe2004a6765421589ad83742d12e87a81b3c84c6d08�F�
e6275a113df1d4b0f258355e75adebd1cc562e086cb9229721d17bdf2efe7547�F�
e63709673c8670886d3e9e2205785adba63f0186853bcf74298fcce168c18f0d

ee��:��V��+r�F�
e648ee67624dc2ef09455b433a6f9e43ed3a673d6a32275422c2cd824c5d2e025F�
e649737e5bf6a5d2b0bb6c20cbdfd046ba295e9f79765fec2800f61f3d408ac0�F�
e651cd64c12f15c06125f138481787d6ec5290b1c58e9c8b7898b52c10c8441aWF�
e653897f2dd6f84ab92a95f869a1a8b62ee9ab93e65633bab0f315f3b744c72a:F�
e6594c28667d65623967ed4dcb33fb0e473593cd3c65b2b17b0828490986f908	F�
e65c76e2da0feca843e2f481d8447767d71a1f723ceeca4f9720896b896a6e7e:F�
e65e62f1a74d176259823a76ae7741ded81383eefe67562563e90a903f05c86cIF�
e65eedfb0130d1f3e59f5a4547b25b0e1994042c06fb9833816fdb384c062165�F�
e668a6070cd6a22b4de750baa84e146e8e064e1a05849a958600f9b2d6b51c0d
F�
e6771230fa6e197c3187538f6fa13d73b7350fb996824194127c1ad59a8fee30\F�
e6780d4f50b1f42151e1c147e42bdba85660cca20eb7f459aa271886818f9058"F�
e67c1938cd59583e0619d2d7e8c5830ae4585c3509d473ef7f73fac3a559c82f�F�
e67d6b84ad7acb2955ee72b7ee68979e8e001bb2a5d5cd54e752f6d78ee327d9�

ee��:��V��+r�F�
e69d6d87e87eca926adc10baf1eeb4125ba0103b79977c638b305b870f7d2110�F�
e6abdcee27c8de20b83368d087e14b888bef04262eb07ab80e58e528334e1a1c�F�
e6b35740952d21b92b5fd63b78ed0f5a4649c9aeb22cf9cb5af2d6c5c8a86dc3�F�
e6b656e21f27f47b357f21b2071ae59b0a85a6c23d1e221ddaa30e32116bf9e2IF�
e6bb8a9138e3246eedff3c7522b5bdd6a006e9d47913ff4c10817c6036530510
<F�
e6bd9014923fd5db4edcfc633f2800d2d9eda0bd0b416f22bfe615c9c8abf000F�
e6d47a4c88646ebb1f6ff54dd92d1dda1c8abb10bc8530e1cfe498c70ff1db87�F�
e6e6ba69197bfc243b1960a9622d4e657bb927c0f6bd1e8cc8ee4f1cbc2162e3�F�
e6f4e61f30e26ae0718f9ae0753c408d47f937201175fa1753774f9139b55f1c�F�
e6ffa74bab49f49dde242d6ce151c85a071ed9f55bbfe61e19f182d53a82496c�F�
e70fc2d0e61c7e1f8c65da239c406fae5141f1efae29ff4e2ded90e4f2271ac7
�F�
e71a307c1ef8b62e83a97e331815cedb4e6c75a9c53468d64a42013fc4038c08�F�
e7250202a7c16893d5954675d11df0fab80808b7c4c5c285328f1c4315027ceem

ee��:��V��+r�F�
e73e80ff6eb4ad13c6cbb061fbc0b000631cf8e49449db648db76556adee995e
F�
e73f1115eaf8a0021df6047f5efc221b536a0cd13fdd292d1f38a1f658589414_F�
e73fb6987d2e8000602d878eae68fcb1f8b4dce3a67fe1e988767ef5a8c5677cF�
e75e5f7dc4aac557d9b274de60d58b81f3549dd86073ed6505512e434de72884
`F�
e769db0a6566751d86087f44601cb2aedbda527c4a514beaa8e8a1f4a9d2d02enF�
e76b18f34fbbf2a1e7810ed95efd446420bc4ee561f16434445b97b5a0d466c4	F�
e783291d5ab16df4900451958335994c05de05b904aa33cf87682f106e2baf20uF�
e786b3b03097afeace07b7db363528e3c435b3fe280d06c8e864a93b15a8448faF�
e78824bc6d2ccd3f5942b851ce6c3323367ca0cfa615dc8c95158aee19c123fe�F�
e7909f526d0702267a79ed10cb3c92dbaf4f95ac7cfc1fed8313c4c13a955925�F�
e79f036d785295613332bcd3cf90576996a5ccf4caf4279ccd2519d51ec04845EF�
e7aab445dd74ec3ddd4f7504b5e00f8b2f7024c95448fb6ee6de759e0517cac4�F�
e7ad03734c0fc0d4d420d177cc82478f12f8c7fcb1b49294d3f686e186915e9bP

ee��:��V��+r�F�
e7c1b560ac8edc237347234d58d014ac60737500c37066f24b7f254871ccb2cd�F�
e7dd086b27d2e2fb6eeac4d5032cfb52149916c6c88f31b59a12c5bc48c71672�F�
e7dfe1246a7bc34d021885e09adac136307a97c7a0acc867665ed6f71b091d48
�F�
e7e24cc31f3c532de3376ea95f7fa6356ead993a563d11fdc5f66f22f5c565ffGF�
e7e90b3e6ae85deb749d4071a5467a5a718a12808213ecd6657a9d70d12129ce	�F�
e7f2bf03392856717c1588ee1a77010b1537d1a678ed7dd1dad5ad7391cd4147	nF�
e813e31fc27015fa715af1d13ab9191ba9af31d93085ac2e76e58359305bc66aF�
e818d4e04d72d3014d26343beb92384fad7a4c394dde4f7dc2a541d0416f569fDF�
e81e2d49de42c4084b831416da43610e82111f1e2bf57b09c2cfecdedc32e6d9~F�
e826d4748706ca4acec7f8adad39873fcd390f7a0086ace767fbf32cfc28d3b0�F�
e841a2a32725b0c2d0447c0dda8ba50326219acf4722bc6f864e23dd416cd272^F�
e8468f3515b06d1ca7bf5b19ef2db35762b8397bb1d841f2a9e8409ad97af8fa�F�
e84733a2c4b6d0f60e70451f27a7c82164f2fa899abad53af1c69553175d5411k

ee��:��V��+r�F�
e85016af12ca079ec7dcd10cfe41ca3eb0ae74f337e7db981ea8289ce132cc0b�F�
e855f087b1b23b7efc6503e87350c4cca1ef6881dc97c31f1512bcda747a478b
�F�
e861c291ad02f4c05f77bcae1e8fdba63ab7eff4dbc48957941c33985baa04e1�F�
e86b714d0c1f2ae4a38a0244f16cb28ce588dd6802d4a4341ea79e52e3cd5799�F�
e87677e240924426b72cfef3f1ea5a1e88a7a4f5e9fd2f778a2cc3fa1a10069a�F�
e87be7552176482fd5e981021e62d2dab6c7950108f44af47af3d68b9fa442a8F�
e8843e39d98b4c77a9cab62b23793b825c2c78175ae84da344250acedf05778eF�
e888a6e4abc3928d95ec0b18f8a42febb63ba70ba0371c23615b8823209d9317	�F�
e88c137e89be1334bc4b12c371f5d7a2513ff468e6b5530a069c0f42a2d803eaF�
e899e4be36103040ff23d743f3f3ec0eaf8bddfc2604aee19b9ab12e587d87e8,F�
e8b67a41970fcee6a5eee5fa362a4648b27e47a04ae221fba0de5f5bc2c64e37F�
e8c196f4e751026825afd99f7aaf6ab5d3234a2fba46b51b585338b80c837da0
TF�
e8c1f68569cc209cc9fa2df02ad4b7b0845192e6e74e5167c8cf3400acdc4c2b
7

ee��:��V��+r�F�
e8d290b951820742ddb84f040482ef781da092f44db1523ea7d4b25d3674bd2baF�
e8fcf04ec6289d6ed5e26623877c40ac8ff5d22653e6acfb45465877e4ff0dc5�F�
e9036e2b707bcda2cefdab377479ae65cfc1d4f0da25dc54312d9786b65eb947�F�
e90d3b7f1beb833473709255affdf6f47d5b2f24def150c5ba2db2d65edf7dae(F�
e912503786155640b2280491e5de73ce270fcfcaf9fc882663359bec6597f790F�
e91975b3209890c97303eaf69e0732753a849373370d3f3db3d54eaa5d7a540dF�
e931e9fe49a9a7c21e0cc3baa18262e5603d94fb11d0284564ceefad2eac5d87zF�
e9370bcf27554400437736d6d3c4091baa10166592baf0f0a1912084c024255d�F�
e940311272fea2057047e571496ef2c682d234a1b3e10e8c505258a1cc20ae6b	WF�
e95162c5ce19bdda8897921e19c340bcc15ab18c2627b6d8915c79b8754c1505	JF�
e95f299b4e1d9a775808bed9298856196169c363ce0d077bfc1bda79e4c4d4f4VF�
e964887b330c27510a0b5b1eb8c31a8c5eda05bde74e42a145bea54bb240d3354F�
e96f88c3dd68cba08085ab79ac4207e040e7c65ade70b55699f2e7ff5fa8e7bf
d

ee��:��V��+r�F�
e9c3f41aecb56447424691a9aedff1c7449cb17f5a1e759c6f7c7c089b2d1adf0F�
e9c57b29838349dee4d11ec1d130cd0d7b3fb5df669721f178440fd42a507752�F�
e9ccc19a3fa831005a0f5568fdabe7c13acd32de915df5fe49983a0214fb34d3NF�
e9cf08af12886825c6d69d18bf973a365efea2397256411d55daa08c561f2b04F�
e9db6345b34c115b15bd297bcda0f0680ee1a37cf51adeb1477e16e232d6f289F�
e9ee7e077912afbee46d9de1440f905a3150a783ca98d2999145e7f0d4946b00�F�
e9f64d411062686481236a557581f3593d4706cf5f1fd5f942dc86a107e85be4�F�
e9fa16cde65d0d202fe417fb0585d64a534cd25d39e715a1fb32a75e6620e475F�
ea09355eb6ee209c2b42e898475fc5462249ee3f27b0dd881ee2fd0db8245464F�
ea213c63260f95219614321b7530531b4a081af5c6ae3749a8ed600ba0507ddbLF�
ea320050b773b3095645df0c61516e8030958f578d9daf62822c281104949a7cNF�
ea32b047fba7fd327bf943da2a18413a1ed3e245cc1b077f34d1c8f6048d9813�F�
ea3f0bb12ce7b5c386ca301b0f16f7dddafa4ed5f63b2ab2cd2fe297d066f387@

ee��:��V��+r�F�
ea41aafc4258682847158cad9b72b66d86e801649ba22dfbbb766d88ea1addaf�F�
ea43fb93ee5477ce7a096f94c4c69775bd338911a252668b833ecc7ffe9f4452�F�
ea48b9fb3553584f758b7a3b5b3689740e4d04e82eb6d0359b8fecbde72b9b23
�F�
ea590d364a03624b219bdbcff4119983ab7a1bd31a6a7146afb0d4e684761056	�F�
ea5bee404d5fc3e07b6c6c946b4663fdc9b4befd89d89e5fd0c57da7b27800ec�F�
ea62e68511b809f9becc99bd815384ecd8f52c7abded5c1a0a143ce0c6f07f1evF�
ea6f1a1a7c98ce44e3489a64d9fcac1d1df66d5e27e509bf3c0413c0d2f01be2
F�
ea73cbefe91a8c86fea9a227d19b9f36d68daa5f9e640d6d6acf7a6ad65c4297	�F�
ea9c2c4f4cd124e0cdbfbb60888f7eea8cf1e397c7c5596b9b262f491182efda_F�
ea9dcf09763ae93b161230c20f7c1a05f3a8854c5c164594f7bcfbeefb4c4ffd�F�
eaa6538f84c57debe1e4e618a3bc6f27c19d7cf0cec59ad717f487b978c10409�F�
eabc52b09196e354f58fd80ffdc7a2ac038da61c3a8d783f6064cc3031bc9fcc&F�
eabf42cd353ef8d1bad1431cc770d9f360563c64237198926aaa475aab327c3d�

ee��:��V��+r�F�
eacae6ba8f4fa9d2b666e28bad819c383c5eb197aa1aa5f5979c415530cf3376
F�
eace35203de4fbc64ea081a27197877a56615d25b23b30e79f559209ff736310�F�
ead119fe47b9382012e61124387aa69dfe644f344ccdfad3b91a64e1ab35f467�F�
eade03c2757a3c0b0151aabbf535e1647f2a3c18eae55a5a975327c4c8027a4c�F�
eae7a2d2bc9f6058c113c27e6bdea6677a865df0f7924ed51165a2653c2d2175�F�
eaffff0c99bd293104ff77f035145a5872da50599d8f1b26609f145f305e2df4XF�
eb01e604d2abe850e31d2092b9db3c5b0df3ee2c53ee80d31ea248c0962ea297�F�
eb03c3bd51b0bec375b458b8d72953391f35f59d1ffa7969433da6b1fecf8867
vF�
eb1886e298af82bc97e979491381fe23e271aabb79f09bef435b84c876817fbdsF�
eb18e0e118e44349b3d8917b223e6ca7e2331d41d2e49ec2e8a65f091985bfb7F�
eb29338fad95f41a0a8ae1941a0bf623792e7b35ba434c87283f68788f25817d�F�
eb2b61c0a574c0e3c540083c4f4f8009c0832616ae48554fa6f402b145b77bb0aF�
eb2e226e824b06855d4cf867531fb5f3409412d883d6e56543603660748ecfbb�

ee��:��V��+r�F�
eb5d1459a1ed3b55d3a45f58f61633509ffca8700fc3dc3f1935cde74eb204c0�F�
eb5ebcc220cbcdd1df7a8fd9b4c1dcc27b611af10741997070d522208153e79beF�
eb68b066fac31ef1d13db384711879546250d149147a9bfbe0a62bd5f62d0bca9F�
eb68e76343740b950f6fb531ed5af6afc884e16c3ca61bdb35b1d2115d73f0c4�F�
eb7bebdbd517434195d041324099366ce234dfd58929430224320ff59b866c8eGF�
eb89964d5fd40ec94ee8db97a5a14cc8dd6329b83d82ab29ee1a595653ce5223�F�
eb952f256def8d9b5c0ecaab67593927376bd7ec33819298399c3542e974f47b
F�
eb9adb9f6d4141d4d82fd9f2740d41d0ed32fde5148d9e4a3d952f1aedb10a52F�
eba7c5a667e7db88684d709d6c7106aa972e55a41d27a79736afb8d0eec1de6dkF�
ebbfadfcdd945e3b5ae40adb51fb4d444facc09bdd9f9cc989542bfed2cdee60�F�
ebc3f9be0c742cb29c3852f630ce1ed5605f07849ea71b3f6dcad16424055700�F�
ebce0b46fb13981f4746adf603b6f96c83356c88ae4ed0053fdb5b506fbb97b1sF�
ebcf9402d4327c9a14ef951bf3262aefce60b172528292bf1c628e54a7055235�

ee��:��V��+r�F�
ebe9101eafa195e97d5191257396d826d54a03212851b56130c2502068cb8f4c
�F�
ebf604edce00a3a3778207eeaac06a3de226dbf62bfb987ed00584aa8d736ea1F�
ebf6108e3363c7e97a710010b034bcd8756cb06bdb7dcad7f1cfd7b5d5b94925�F�
ebf8758838f5dc246c98cc6f76706eafa07a5083df17f4fbfa2489df5db984586F�
ebfa2d89f68f1f01852d54bde30581583c8843675d4c7bd6d2d5474a0d29fc5a
�F�
ec1b22bbbd65cf0d8ac4abc748b4d4e1721149c816440d123ce3d707e25059a8�F�
ec1f41bbc53f78290aa486eef749003264f457b41442f93d5ea5e629c64bbe1fPF�
ec2503de79ebe13134bfc568d71d9a2c99d9f6d109eb2f80a8198fb2e331bb9fF�
ec25d05d782c32b42db9e24ba4c9449d7fc9c689e3d0fa711ce8f94c261ce6b7�F�
ec3383b51ed106826513f9c2945df6ff25b528b122a9b848b069c9e8d6cb5e46F�
ec41eab909a34c37394e1bd1e2d8c1f86ed4342eb3aec006e4dce9be59094696�F�
ec4cb2d5a569d854ac525bd458045223e598500765770d860e5bf0b84a41767b�F�
ec4e31145b2bd5c37f07b12786ef3f1a7f747d2b7545a8f2deb7ca4a1dee6692	G

ee��:��V��+r�F�
ec5c24d5377fe314137f22aa6ce809acee1e0231e7772cd10fcb69dfd3c4bb00XF�
ec5ec6e21071682dfbc3c256617c810c886af178cfc7f21a96104cf10ee6cb25�F�
ec694ed3c68742fc4ff18e183f1eb03790bcac0cf47880b2b25ad5ac15c207f6~F�
ec7d4d6f34f218c71ac4c95b8ae162cfa554d6f3285e389a230c52898b5df662;F�
ec825c7e726b4f918e38b5d16c4713c4f73534bac35c94b116810482f92134c3iF�
ecac7aae69f045e6bb94ecf2521d78d9f8f856a67352b6d877799477a31afa6bfF�
ecb37964581de31750352b4a0c77e2efd6f71b55d33d488cc7d2460a0a00d744�F�
ecb4654a5f2ad2d8e3539f0b0076eee523a54eda425ef270ec5cb0394fa1ea8c�F�
ecb7f8d19fb659a35a4a25d22a891cfd89fd55cc12d791df222c33eba1c9dbdb�F�
ecbcdfc04b53ea64ad8edb3e42271b75385cb3a6087173d58c0d0e9ac5074c56-F�
ecbe95651dc59d12d773005ad0f00df91c1b689c1ad0402467603a9ab799c2fb�F�
ecd28bfd8a7f97d111587dec88746bdc8143ed9ea22a73f2c05141e5361dc7c2uF�
ece1ae02259706cdcec7364ec892760537f5ace9a72c3942a8fe38bc4c185099
1N�1|�]��>��j�N�F�
ecf00639a05e5928c699eb7451b91c04ef62ea4e3ada1c96ee6c9ba35c065f28\N�F�
edcb7daa302df852d996cca8fd843525c686219264ba83f606c7566c191682c4=N�F�
ee580eaecadcceeb9560a23a48c376d9c012f5fee8623d0f10419c273b744065�N�F�
ef07f2b266e0d616931d672568f5c39d7789f51adb7332df77df77b19e7882a4N�F�
ef84b3d3c085de9b3168fe830f5afbe609ea6253e83c2174f7a07ed4efa94889�N�F�
eff160acd2825b382858cba77f4f60a433755fd1621b6510f0a8a57dae54a512�N�F�
f062b9d33e6eee164c17233ffc747844edad4fb3865de2b1c409d81837aff544TN�F�
f136bc0eecf5d5320db54998eac1c4599ab87a312d5ce7a2cefc841ab054b1ea
�N�F�
f19ae45fcb7a758368a349bdd8244b1029ea8e22cd16b83c2fd74bcfa32253b6EN�F�
f24dce379d6c501f95ff094a43c786cc4932cecf9af4ed5ad162b4159d5a2007>N�F�
f2cbc4c0d7d808554f9689174450c43f80db727c186bd3a1980494886a25212a�N�F�
f37f01eec61a287a1271577470666ad9b985aa271aa8eec00beb21627c77dd76#N�F�
f41e3da0ff09a0dfcee4669524a544896ae845227cd61f6da9cf4fac362b2c63�

ee��:��V��+r�F�
ecf0213aa5f1df68903633d6e37f83ba74657dcdfef00998680e1d13d4107e9b�F�
ecf6cae26af65369af3f9a5e154c7224e8c19a7f2b087e7e89cde5eec6f6000d�F�
ecfb16cf527793f6ec8118a181cf88df17babbdd3805563e4cd5e75bfa4846d1�F�
ed293f56a8fa1ff864e007c158a2833d672efa0618a2cd57b24f8ee570b7df80�F�
ed2d48ef1a3e3a6e64fd20780277157eee5875df3e41cf640f9569e3437be284kF�
ed34b500e7e1951b8208f45e26b323c12c4fe5f89a8823445ddeeb1f28d5e93e7F�
ed4172e7f07f89851711d81ae9ac691552500f1359efcfa1a0312b3c42b1e171F�
ed62288ee271d53bb3c81742a33a6fe77f2edda3206814cfbd782ea0e9a2983b�F�
ed6e07b307de61a56b4041aaba7661b6fcdeb599402390671b3db4d8c0b4cdfcIF�
ed85063f79df4dd6522878618ebc5308ad2d764ce401220c527ff0cca6d5f7d0F�
eda7c72438a02feaa87b0471bad982e64322ca96392f353cea98f6fac51c34ceF�
edc0594488f23ae7a46857065d3cd4d74e61a711b96dd5b99713419b033816a4
�F�
edc739d70b417881fba0df26ea94231e859c67a681a92b7a79ac1c97f5bba817�

ee��:��V��+r�F�
ede6fc896f82acb407c88ed425d1c7fa8420645aae77c5aaea694f1c692cbc45�F�
edf5824c7caaf50e97ae8b83f252bc9a7263368eef75626da3749913eb217eda~F�
edfa799d5c426dea0808d52912a4ed39b1534c8e7a5d3dc0a96937be66990f1c�F�
ee029bb52291786cac00074d77fa338a3cdf2968607a5e85ffd05a69b46ebcdd
BF�
ee0b6ee143ba37c13abc5858fef0725d5b30992afdcaff90babcd5af1ac812c8�F�
ee16939ba598d58caca0f792ce6324cd0251c779d1d37874af442d8cba4c2f23F�
ee179dac3f97636a2f35955ae764b090dd0723607221b2ff12cbd42907440344�F�
ee225d31e25d3fd9c6524bed27748c75c0944037288a89578e3005fb2eedea8fYF�
ee2c790a3cd22b1261a5cde580d44da4c93c567104a3688cf2369009abb5d332F�
ee52c09ab7dca8a8e11fe87c0855b1ce38df1fdaef899e8ce50d80b72009b62b�F�
ee53408fcafec1e4615b6bf7b7991d0eacea72066fe43c1f01e49800d46bebce�F�
ee54ecaecccdbbb8de156e19a27d770e04d61778a19ef2dc30478b7fcfe65865xF�
ee561a3f0dd8945edec3478e8426cc324bdf6fc5fe6a31d762cfae60d3e14830�

ff��;��W��,r�F�
ee6eb3ef29eea0165c0b0ffc82aba7958b58d0abbb0174433821699be8a41789�F�
ee75c5b0a2710a2f96753bcdc8e8b106f33c7eb00f1997b39950eff703900bf2�F�
ee831a9a421c3f86e21ee19ee0a9cf5254cfb534d32e86d6e52c61dba58a55f3�F�
ee8a7377ed0c955a55eec8ea39cbb91e5c2b99a4b050e0f4136075e5c7c87796�F�
eeb0a2f82f3dc57694d35b3eaf181212193a3ecdcce63837ee1d869a138901d0dF�
eeb0ed8d5fd30d98e3bef225ead945fafb2e3dbd8cea8e4b45565671473073d7	�F�
eecc80d13fe486baa625924789eb5a656a1d00ebf4d3802de276c8d8c56dcb47�F�
eed9c32dd42309910cb6b2852ea885380fc1241a6f30a2cfe2b358fb417a433a�F�
eee4cb71588d025d63ac9b8c966fe2a49c4d9ab89f23553fcb7e360eb7ef2343~F�
eeec2b53758cdbb0b3f3402b7117dddcf34c40e99612fc0ec69bb799b2a7b6beE�
eef2f7ac436c0d23750d0d428880ec5d58260342fcb7de2587122eea70893429-F�
eeff2dd2126e05da5903de0991d891313049be87f35dda8f67c383779761163f�F�
ef051c1a4e1bb137134383ae56882cf3cd061c02e00abb7c467c618029133545�

ee��:��V��+r�F�
ef0aa34944c10f3dbe1446cc6ead8acf304187b1c4cc41baa0b1780ae54410188F�
ef23d81c590cbf657f32525eaf60a72a65cac4272b7cfa37677546ee5204deb1sF�
ef26f87d833891a36ec1eeac1cbd5de9be6729295a8243544f11a26a7e28373a F�
ef279f239f0fe62929c62165d00a4076c51667ba82c640a3790df88dfa67ffa1cF�
ef2da07e17ad85947c0e573c1504b7566d8f242eb7bd44c2113d1acbb0e78a607F�
ef3258341d0c757014a17a4cc94207f623282b6190b470f1517c29d8bb42218f	�F�
ef450f18a4cbb4b3e2590e06da308d71a68963d41ea453f5a033f04eeb3d6af2F�
ef4964d104e49faae860fc6c639d7d643ba1785fc33508588d20d8486431c33f�F�
ef535692955e3b9dc14a633b487f86ba36720866a39c354e86275b7f23d6adba(F�
ef66a09a84348d5622f0a06d5b40c4c3a826cd62cc050713646da3398248d3bc�F�
ef6b1d6ee31b3645952263c7292d83ff8479a7e1fa07238da2994be9d38f266b�F�
ef7f2a44b28fe81a03c9c1d9ff9899b216bc95ee9f93b7647a5a07a655a990c2tF�
ef82a93c26a7db64bb635cb373e0bf00ab1038b8e42c02b37a970cc41e97ef34Y

ff��;��V��+r�F�
ef867ce0d361ef3e0350fa0128a70e322998b6b6c0ed8efaf0a06ff011e132c8uF�
ef8ede3695ebb9829a9403065f243ab8acef8f14316aabcc9b26c4255ee93bbe
+F�
ef91b432545f513294a7b3949519656a6cd8b9d3ee0fc8217364537cfefde363NE�
ef9ae19900dd432de99370f4bb886c82cc0f4b68367dc2be63113d3f3cbd48d1BF�
efa06b2642e8d158f0e16bbaaa5d8d454be1db364722a3321c4cf61727e988d8F�
efa403ad1b6d2564bce0ec54cef3ee401c15f4282733a928d75bb703119161b5iF�
efa7cbf450462d4d95389173c50afbb6786eb202258fbc8ba90ef57e2459561a�F�
efd5c472cec8f06ea30eaa8cef287b401fcdf4b0a30e6b2531888ea03f1f9549F�
efd9d7f9ca4a7ab583fb075ecf7b7abda7fa92b4657a5d14c6e3ea7f67c30608F�
efe004dfc7fcd0160427a7f637f2cab140b7a315eee7143e1894e834e4a70487	F�
efe7ae6b25e582508f3ba41e0017ca4b0ffbec80692919abd79c1b54bbb43465�F�
efe92dccaf584ac534e20c985a62a2b2030dbbc1cac6586eb9de81ac5dcc7acdF�
efeaab4045eee3dabd94e6ae1b90d46bc4bc41180b4e0b8ceec3e018edace11d�

ee��:��V��+r�F�
f009c9c18a2c60a9c998051c6c0a08500ac08b6f4d0b3e130aec02f0bac6afe5�F�
f00c1a71ef838f6972f7559129c30772cf908879baef300c1d4d8fe9b449c0a9?F�
f01aa14c280b18ae6d80cc559938fa75c648eb1537499db7841129684e2be5d9DF�
f01ff7e1c5e53cb4a291d2d25285e11895191ae658824d9c05669907941f4c34�F�
f020458306c1798b97bbe293da7347160996bd9a1e89d548f4012bde28cc4a52�F�
f023965895ca396ee7837ef741c80807f3fcd4e941fe9b021ef6476083832b31�F�
f0254a038a74be08cf548424dccbe986696e47e0e50cd52cf8f1ecdf5cf432b0�F�
f0264bd6f2bbb5db07d005243d60a13920c116e9e1b122e88fab4886f3ff1bc8+F�
f0308f6cab8d1b2a831f455e5c9950062be00908841b0a04d0555377c61e49ca	�F�
f03348b00055f767dc054a8e674751bceb513c92df57c9bdfdd52dbc987da25a�F�
f035504bb52e167428211e66d8d1e6057ea84e13f5eb03edf9c7d58b26a52b99qF�
f037f86f203b3b15569c8b08388aeeeba9eda00ceac6945410b851d91563d688xF�
f057ce5463bca14d6bab2c699782e32341b1b37571dc5466905db2fca2c1b392}

ee��:��V��+r�F�
f066c4d77c32004d1843615beab2f59dce9664e5e79aaf6f5453d44d0d9e02fe	�F�
f07e21fd43e16c0797d167891e1f8dd87c7bcf4ac4177307aec21e25a55ece03dF�
f086e1ae057782a612a9146ab15a673cb1fc1c351507f164527a1561fe1017e1EF�
f08e9ea6985102fff682040f9282a64d08ae60b52a53ac25a2ae2d14b381049e
�F�
f09a628b0ae728f1bafc53c158926f284c0273e95363412bc951888d30e73e36�F�
f0af2e9f5541fb785da048e6b6711cfb336457efd4dbe07344c3ed34aaacbea7�F�
f0b50f270ec1c14903fbb91ed28d0134d984399e67c5cab7709b5de27479c361oF�
f0c0b3f210497c3d560f42df97307f09afe0cd687c2e08ebc1cb7b03e28b8319�F�
f0c9b7b923d47df8b92aa0c427d4754da9c2d22e9eb87e436c06305406998a3c[F�
f1014b0e635f3231b9775aea6acf589330dd8192d714a231b5392dff24ffc861�F�
f10fadd67898b87e6a2cff2133bfc00f51855894a26aec2b6bbd530aec018cc2�F�
f111af81b1171cde02cdf42152cd2cf0b250c9a755cff39952df38908f7a55f8:F�
f12b43b7660d30cf43f854e59aded17e8167850a81e00bc36ff1f71c6366769e�

ee��:��V��+r�F�
f138db80a257cdee37382222b7317f2f922c13efffd8d47716c4daff0fb11d68$F�
f13bbe4b18a80136adc1b2b02ef61c69686b5b4b0437ee77f9ae29ee64542d8c�F�
f13d571f41792afa9d08465580b23f08ff7dd564e51f40e42a9b9f3a0ff77b62^F�
f13d76a0cbcea5bf7f05f28bbb2ad0ca59d71e977f1c3f3c544f403d4f947794RF�
f1402f59f4309e9a2ad497a9699c098b61381170de7f600a6a7636db589400d5mF�
f1543bd7c42d040f29b768234c950b37aba8c48f0e6347079bc3d83cd152f2b5�F�
f154f7fbe4285c64fd5d8032253657798d0717ac258ce5a8ece9b6e798df388c�F�
f175256e0db000797ef4332af954004e00e6e2e00f33db843eee3edb4eddc61e]F�
f17b58dd383483f1592c8c3c0bf814ed80d208d19a254620ec541a14c9f5f144�F�
f17e881111b5bdf792e8c6c4ebf56c864fe82ead7236e9d1714054bb3577b4c1�F�
f181f4bc3868b84eb350197aee4e79d0466d5aaac0e0a70a37eb58aa7533e228	gF�
f1844144d5a3c42025f3ef1788373858de7187d6dd96e9bcddac4b3fd027e5c9	F�
f1896e8ffe63eff76d82b6ef313c62631fce45258dee3c4ac0e2ffe4b8e841e6�

ee��:��V��+r�F�
f19ef75ad99fd28a32063032985acd16eed69a49de7940fe80fe25a45d7b20d5RF�
f1aac8f28d7b09a95684a3721602f0d75b800ec4446164425cbe36568cb5d9e6�F�
f1ba2741b87027c8c0f29b9262bb396c142986c3ad3c68f88e90f34cb028b6deF�
f1f8e68da43d3543c537c23e696bea84b8c7e225d2a8e638f1d3e6b4c768f286�F�
f1fbcc04902985414df518ea977cb39390df37dc9fc617aeab23437cf6fe80e5
SF�
f204489e33ce1fbb9eeba9986ed191914338380781d4fef1e6cb0b7256570389lF�
f2136014ff193c8527ea2351651b413e5c8cb5eeb1687c98dd2e6d544c6813bd�F�
f21d363926810e31889a7fa98205382c0b8de58aa4f45928c27d9e67046b9482
.F�
f2241666af94fe720a9238c276f97db47b1cb8737b678465e84924e2d3a8d6e1vF�
f22ced6e5193aa0b22495fa95e9de588c04f9afa2d6070faf801306fc7e68363zF�
f2365b1ca47b98315778026ca1ce13fb99b6db32a6919f3686b8ecf3a457b96e{F�
f23ad28777ef3020a0b4c72141bc0d367c9a60a8eca144eafcef471df349d126.F�
f23cd99f65fe05afff0761b481a6ae707428f006a7f8e5dc7c8c2f1c8a92a6e7�

ff��;��V��+r�F�
f24ecb14a77ec32e37ced96fada59ef24d4cd88eb3684963738eff6c0f73f73cOF�
f24fba7955a7d873bfbd39bae28a5c850f2c27928e1cd98d54264fe51a7d4befPF�
f251e57808a6960518cf05f98f4bed5c0b006b5a01550a68ebb9141c79f0a2dd	 F�
f261f44a0301705f4e2b2a56556cdb340ae2487517c8ca12013301b3a983bd58F�
f26c9b240bf171505aca04c2bee6244c21da11124c5c4e9424507df05251fc9d�F�
f26eeb8cccc9c113330f61096bc1da10e3aa2798e3da03526928f761d77785ec�E�
f27e3d167e8d7cfb2c448d400f034b7443c2e076e94b38a67fddd951a9bf745eaF�
f281eb4ce184ac0156ea4bb4999c5ac0071da44c1cb72f33d1fa6cfd57c1b932F�
f292ac03827b0d517e0873201d36bd5f7899da820fe99fba7955de328d3e2773:F�
f2a450757e610e9d7a49050e04cab12edad074ddca95fd92a67972bd61fcbabafF�
f2a56e1e7ae1606a974d68a45c31824b05cfcb8ff28d94b4d090080e6e76c3a7�F�
f2bf2828a9c0dfda573e370c7710e37259fb9041de3d51ef97b7cd65188789a9!F�
f2c9f87c9483b4181bdafd6a1753e97a9f5dcfc18ea6c72e9295ea06d7048933

ee��:��V��+r�F�
f2dc09932d5afec99bdc35c39f858385a06e600f3b989133d348ed00959ba429F�
f2e6529205d5d5cda9ea3d5996514f86afdf1ddacc087c47d9f80362b885b94d=F�
f2ec86971a1091e0bfe181b4363faea8e87a9b3e3559bb53f97966d8f02e97d2	�F�
f2ef03a6ec5037c50e7f13a6a7c2465e14b247e48ec9b158e91bbf86094e3dd1yF�
f2fa340f24195c35a86b3ed5c2f4ca5405ba1e6482aab26dd1e8d7ce339a73fb�F�
f30bed050378d0ff2aec7c2fe523d1b6505bc116cce61a59687efe5e1d2a0014�F�
f313883838c79487308bec6209cc25ea688f77759c6bbdb331c4237999334033dF�
f317e5b0fc8e8e40046f6893b5e1dc36e8b5cf17a92069152dccb27c1ff6c45dF�
f31fd03961b259ff05fa33eb46e64b8dfb29cd1193b459d1721e424ea9616d10�F�
f3232baca2103d254d79671daddcba0c012aa020484304adc85d7cceaa00fab4�F�
f3480d9490430ccdec35a8db1fdcd4f48fc92476fd17dea7b616fd9995372e88uF�
f34c8bb09dee906565117017407530b10c48ef7eb3ccb89860689de03b8e4118F�
f359b38fcffcd9d7ae7daab258f4fd7abea1c839790269254b9b1fbebcb55ba1

ee��:��V��+r�F�
f3a22e24901cdfdb4cde6e3e1d5b92db9632edc9ae10810d0634340ae334a5fdhF�
f3a76eebff774f1e84066ca2ae1e4c12833ebcff375ee7d2d50547214c4f9d1bMF�
f3aa08ddf57c680c2b4642a22c261e11569a25f83c746d38afc1173fef7580f0
�F�
f3aaf1422d162735cb3147c5876e2d569c5ab751c3e355d4f973d16250916a4cYF�
f3c1504a0f9e8be3e261212092e89009d8b01f3fe0f1804ed10e767846e87d26�F�
f3cd33690b0532fcbb6ef97043d3026fa11e0d5e3583d070659675619ccd31b3PF�
f3cd69f130263e2bd4ccca5ef76054432d3c23432298df1d0aeed37eda7db3f4/F�
f3d62a8cb0a97c76e6a8d6432f16d9b3f9040d5289f63d709f50a3776efaa8b4\F�
f3dc3c542749f94c4e3a601842a9a8d6311fb735a5d6ee8d3845ce5b137c43ee!F�
f3e24a8285c55480cfef6e63c976be0f143c1010b3511cdb0c8f2bc86dd82ef4"F�
f3ebae8493971694208c96d6d6286e660e797bed742700585d403ce9fd145072�F�
f3f69f58e04b244b740beae57319f782363f8a8bfaacea37bca6ed2cb7d1cd2eAF�
f3feee0430c1446d861e17d9a043a72cc0690f3c3618ae27a60610bfc197c499�

ee��:��V��+r�F�
f424072382650daa052fcb9ac01eb3fc0209eb1d8f2bc0d18f3bf1bebd42dc39
�F�
f42f1e28a26e049582540bf27d99e95a1b241c2fc2e9faf3b2165ac8dbdd35e8F�
f43e7c1792d357cd5fb1ac5a13e744a5ba50e7309444d7ab7d0149227755b575�F�
f44cd6beef0e0285e87ceddb589f3ce6b36f4340a280ed674cc37aa7141b8397ZF�
f455772710a92ccc156759199ca532b9536d567cda99884613c0d4ec6f35ed4cF�
f45ad8b56aec3746c319fed77321ec80808dbcf5aba0a01712c29bf922951edb�F�
f465238db8cffd5b22112d022c74977b69d65ca1b414ece5ec29ff7b1f1c209a�F�
f46d473dfbe5a0b5d02b3be921a86e5638354a09914341da2a7329751ea9632a�F�
f47163cfd1c460c07d781e489622d1befb7dde8116948f80289c8bc685eef102~F�
f48caf62db65a846a2e5bf134e7e6a5aa0bcc81a67c9995255a33f3f18ab9f65�F�
f48ce4d917bdd2d6d5ec5a6aa18216b99e980b86d7308d6e535eafb38aa0fbfcSF�
f48d75115ac638576d608849a173ace6a70c2430a2e0226487652befdf004b27�F�
f4a5bde79d6cee985d2f0ff8727b2428ec15fbdd03adaa9733b09f7b173c01c7�

ee��:��V��+r�F�
f4c0956c54c55adea5769904bb460f6ab64b017d31e9a73f0a047345be6dd6afF�
f4deeab3c5a75216ce3af70b11f8d415b9ca7db8bbbabd522ec02ba360b945c4�F�
f4df6c727e6e445ddca7fe286fc32ec9aed6c8a3fddf42faf905580926d1117a+F�
f5037b5658870caf9db57fef7e511d690b1959170ab11cfda5aa83f814633ba2DF�
f51bb9d1fa63c5bb467fc5024de79c68a580bffb93e0ee00dad4ffd1edfb0dc6
�F�
f530a65c0efca53f618f63e02801129283b12266fbf21ac221e35617a45b0d4b
�F�
f5394565fcf1a20382bcdd1f64e77e587e222a4e135860c31a6a2b4f012e4691	�F�
f53aa25a58a78740dad5a5777ccec426834c3455b4a323c3cd264c877f39e567�F�
f53cc1052d30f24f16353f3b8289baea8f6b5784241e361ca528cc3a0eaa3777
mF�
f53d0c4b2718fb2cccc1cce0666cef6323bd6fdb7b789f34a3fa3a744c3892ec�F�
f53f33bb25947de42ac961faa1b3edbf1207b3e8028e8c283c139b943b66ed73F�
f5431ddb3fa8ee6d51952c046b560ee5619c84a6216a417156f99dd392045d24�F�
f544bc64d6a690d2e5853b042cb5a8c7eb50879dacd1acf3c3eca69966d25370	
1O1|�]��>��j�N�F�
f547d5c45db4604dbe0d39eae1befa3f083f7d65e124d7458ba4032e3ab8a287
�N�F�
f5e02cd3cf204b648c7dd511674fd8b54070efe7521303ff43080cfcb8b074a3�N�F�
f65aabbd9e294d13896f966d93142b9e462abc508dc124cbced08758d3d9247ayN�F�
f6c5c1dd3e31927fa431f3f886053e4f234ec506a168fc28c7d537f9e6f5e4c9_N�F�
f72c4452b5c2bc0bf8146118cc495dcd56c62624ab38dedb3ae6ba2a0abd7a9cN�F�
f7db305710a65de9955170c92aeba72e62fb979802464b4239b0b607d6adc2a07N�F�
f83a9cc23d159877dba95b62d685edf3a6968d8d968732049c688fe7d49777d42N�F�
f86fdc6c605d339bf653d5faa2de82748934dd460074eeb49f6832f2870c1190QN�F�
f8d95a99893e9265f3f6125f684c56c23afa3834653a04d0e9dbe9360a6aaf5d�N�F�
f97dd6a530e0dc37dde8d1e71e04e877196e4f36ac6754904cd6a5e8e0e4990fUN�F�
fa07de67ceb878410ad9f1e78b5368935921fefc6de60e009128f1c94f70de52�OF�
facd76c3134bc61acc238804781421a124627264ef3476cf551ab5fdf5edf584#OF�
fb3f399c2cd3a00d11861039ba16df58c2d041ebce64824acdef0563df4d8ed8�

ee��:��V��+r�F�
f563d696d882905f6633fed7a3fe77d0876a29170b14175715b53e21a84887b1F�
f566582c4354cf859dbaad8604aeac5c8344f7e81c02de69fe4124ea1537501c�F�
f5670dae0add00bdfd492611247f9503be7281552df1cc745f5b359269462efd�F�
f57d7074e8e50a23c9a10a230c6edbd1f48bc3130046704525be72e10c371656�F�
f583bf56ffb7c05d556141a0b44a90d47787543323e3780b29177cbad9e84c99+F�
f595ada1902e66bf4b5ae1c8ad3bf1f1092dee59bd392f2519b518dd24fc8e33
	F�
f59ceed71d088a420b5ecc67bc4a13df798f7d3d12556a27285fb4dfd594850e�F�
f59dc733e2e61cc262d571504ef9b62561aab27935f5cc432e2109e165936dac�F�
f5a544c1c54d159d63ecf02b66555411db8230d7164937c969ee12412a7b3426�F�
f5c53c037a56c4f01f26c5e6d1a0011da7c9f759cf87074bf864708e6ce19828�F�
f5d02c79227db8a83ef923f005bb223131cc21a7d230cd462aa73916b2da8a5aYF�
f5d06a0438f7a24578bc611af20cbc9e52844b6cfbb52579826da412b7050eaf�F�
f5d9885773ed21397aa08232737d51af6803c1358395a2168b6820ce496d927f�

ff��;��V��+r�F�
f5e54963c8d3735251b4501639c3af99731c36ad7de1884a62f8086d7546d5b1�F�
f5e6524f1f2a9dcc72ebf9399a52dc24da1e60c30002c88d69c630e49623aac1�F�
f5ed6de364527262c7c94c0a93639ae14e4a1137b79f84385dfd331a2a78b7f4lF�
f5ee3ffceb6d3dc9e61ef0f7f67a18dcd1934d4331e74fa1ae157538a284020d.F�
f6017656fae735dfc5831c4b635cb2dda2cae8615a1d0a4b66898f7a6b9f168b�E�
f613394ac503882a78ac261fc0ddce0cd6b033530342f31d88f080b4b99f51b0UF�
f61c338504f42e88dbef95a448e0e1aa1c04a89586134610472f384c31966981VF�
f6274f5c3cd73beb54d94229fd5b93b99b525f50921dae06b852ca0ada18b5b9�F�
f63528cfd40b5a5fb0d1e92cd4b91403bab6d49b9bd38ad0aef9e293a98a4b2a�F�
f636e55dd0ac87d64782eab7493353a4a5210c1b1178a67593b356a1a82b9180�F�
f63a8f468eb357e3dd612d59f718c35eb2605df94684b551b1a984c732862fbe�F�
f646388701bda1badf96a2fb3864cff8cec8c983277a87af8b050a51147a03af5F�
f659cc4a3ded31fe85ee2123860696b26f1983182f66c76b6a76d0e5dc5f3d2fi

ff��;��V��+r�F�
f6645c7cbc24d07e153f2c8892cf815d6c7edf416985b8afe81d4a7af9562adcGF�
f66887fb1f33b96e1102061d623623d7d06c2f8b951e00a16b5c6b4d260f7a75	rF�
f676e5412e87446863b10f16b82807f5a4324279353554edb7aeb3cfa9143061DF�
f689ef5286607afcfe9eb7c26a9d7f07776b7313883081a2f3da3e14867271b4�F�
f69f263757a6c7fcfc52b278211fe2c2f78f053dfb157200b4e1e1a874b400c2 E�
f6a237d150654379162b6b0cb9396c65ec4227bf24e4b01d1dbb5180dc3b28beMF�
f6a468589dc2d68540fefdc5fe28df4e741f1d5c46a396376cd5787d8170a88a�F�
f6a7307b2019d7d0e915192006d8ef7f56bbd11efafed60f9a5cb5f67f74db72�F�
f6b017a1e5d505f7794845950a247b12ba961e8bd6ea366098a0ca5e83e7acec
*F�
f6b2698566260a93a03d412c81d071599637c1e75b05da8cabdcc3de0e4591ea�F�
f6b64e5a20d4a11fbbe440a1ef9cc7566bba9bb10dcf6852b1d53148fdcf01b6�F�
f6b96a84dad57397afdccb0873c1927936c50a3c80b0b8e632763ea46c6bd495
F�
f6c41df4e2079f35e9de7d6585897bf99e364b1eb18aa9ec79d9e20b9766f5e4a

ee��:��V��+r�F�
f6c854fef6008f3f063c3ed1c4f6a2e51821b5fe057282702dfcd15b7783bd41�F�
f6c9684def9cd5c7f66fcd886ee8773d2b2f5ae9bdb6dfb6f71d2377b140d30d
F�
f6d493768ae9d25baa9e023ca6cee4fb1666c5cbd53f8c18631342dc3e38f221
�F�
f6db1b3fb1c1f752662a489c152e531a9bb3841011827eb8aa03225e7521e058�F�
f6e16caafd938158d5d693a73fc21601fae109452acfff7e3b9ed72d940a89b7�F�
f6eec5c1e694fd7e8232482c537de9cd0baf38de7afc7c99fee2ddf4b248488d
�F�
f6f4af57d47fdebdd0de45acce2777a89181f31063e8511ded23c672de57fe992F�
f6fbb6525d675cb023750b0e38502f6e9d30cb7ce70f98d75a7bc6a76d175598�F�
f707cfc509f1fd8d7d482b5937245f4dbfc078d16c4defb7fef772d41daac079�F�
f7211e59a025b27356cfb06417188c0dd5e275b865c332da16611d69cbc3addb
�F�
f725b54a5b7f5170fe4100a72816877759353b4ed7786387970c66d43de05d9drF�
f7291bdf6020187d7cf5369c95f16faeef861f866ffc8c46c03116ea2adf9092
�F�
f72a7e95336d9380f37c46d2de0b736c876a15b4c1e7dbb4c351ca2552bbc411

ee��:��V��+r�F�
f74a68159214f1426d96de0733bdacb896eb4589d3e21a7f2e703f6256d709bc�F�
f74b0b973f9171904ea286136bf82b4154a2d8121fb7508c2e3a8285485f2f48OF�
f74f11e10a148e5f0fa3445db786553e080cb5d020e255c3b688dfd528ab6f2cEF�
f7501b0cdc7eb8f83b56ce263d1a1408914f103af339c893bd31a587ad345cd3�F�
f759508ca587ecc4ba720b9a7958780468e4b3259069514d52bbb9963d29f17e2F�
f7789c32ac34827df4b6c180e845361bb70aa1fcbc165a6c2a533559f2bc3f76�F�
f7945628e8e698e802ec8e5135e5523626b0540472b6dbc6921ff39095ca55d1�F�
f7adf614ea3e894e205363b2127216f22ee9c39ca71d8e74850d8e335e75be47�F�
f7bd069d04d994e785e1883f97be7c9af76091600cb13d99b634f878bb79c5e0
MF�
f7c28e4b2e40bd7978b5bd740987494914a4fb3430ca45bea2cc9a5f94c01b50�F�
f7c83637d8468e19213b90ac92d161c309fd5941a55567c16d8598b7ff66e882�F�
f7d0605e20c9b7a067014b7687865aa1141217958d73b9b8d83a71b4da504daf�F�
f7db225b7e95f311ff6f6b1334882841ae105198666b212f6c134f496b5c2ea76

ee��:��V��+r�F�
f7e3acc601ed8b9698fbc58cf297b2ad5a49ead168e515f329e2d95f3cd8083d�F�
f7f083c13947185b5768e1f009aec9585e1938f2f714b6fe2248b509babb5dbdF�
f7f4d9e5559f8b130d55ce0048a0976d08ca48b1e818df7319c89d168e26c14e
!F�
f7f969b6625cce5d7207b8a291d03841700e7b868361f6f98ce61bb3cc624622�F�
f7faa6dc9e93209b28d0cf6a0ef6f0697ece6387cbb402f2554016b1db3192a5�F�
f807177c77f5b66e10ff872d87a5651796c519c8d3b788ad034ec80c6c71e89fxF�
f80cd4881b32dd129ece7202403ba656b6cabbaebccce97cfcacaf448e2d221f�F�
f818d743b3ac159c87610d03230aad3b70743afe5fc38d30a3aac4ab50db977e�F�
f81e7c1a0f24f7ca56cedc1938c0e1bba78c74ad082589529118fe1d795d6748TF�
f82689a8168490ea030790e836a9ce025ac23d19836b5ef4eb2d441b7d99d8a0�F�
f8276a4628fde1b9537d7805763e64371f666ae7c100b439e3e89016471525d9
�F�
f82ec6b5a321f21916898763958f2f66aa27af989f717611ee77da7475cd01db�F�
f8321c847bc9b5ba2834eb175db280c4c1ab904ea8bbe5ce080e0e4a7f8e9536
e

ee��:��V��+r�F�
f83ec3658d72831d5deeee66d0ec75ae458c847847184396c345cb664bbe8d43�F�
f83ef096b0d758bfec621ecd1c7467134e6ea814c4941955dcba2bb7e59529a7GF�
f84205da14142e8d12abc39e3d5796ac7bb70e93f90df0226c6de1e7ee119da1&F�
f84f146908408a42a5ca58fda595d715329febfea19773c4ce12227022c0a0fe/F�
f854a25eb972d3b371b5576e432a9a20947bb7be07e83253e98bd2b39025d16a�F�
f857d70721c9f191d7cebc1993d75fc3dbb29bc7c08b3b8e0044ba4d2205446aMF�
f85bf7e8f01a89ac772fea257536fa49cc0e71b925cccbf45c5bac62a6c37058�F�
f85c959b9b36039c3d4707a5c1e73243be76f1191f9b467bae50a18a9612af31PF�
f85fb2606d67d58d19d4784aa765bd6d383b85945372625ef606ddc20559702d�F�
f8613e068693df3d5e08f956697ae0b595071f7b8c8bbed307faf9dbadef2a8a	lF�
f864e79dfe36d75d7556fb743ec1038d71b3a2297a830d51c78853475c425d76hF�
f868ce40374cc82b06433374fe4cf3bba215a30f1d27cc97037f1c1d746e0c33
F�
f86c6c90299668354041eda67783846766ed3c5050562845c55de4a2ebe33c85�

ff��;��W��+r�F�
f878599f24a0292058a13dbc96e35533360c55c1e4616d4db0cce5da1e4ed0e3�F�
f878ae8eff1fab58c570c743d050866a386253258cd06a481221516b31ab7bc9F�
f87c2dd925c9d1309b2c16ad21f5c84cb1b2789d322aefb90bd02179185c3c04F�
f87dbce0436b2de45c2927d892e89fb44340ab9ee675d27c648fbe5c6ae4fdeb�F�
f87df491c22e76385180845739c13ba05724afcded006f1e0f2114ff956460e9HF�
f88c4bed9b2d9000b18a7505809eaf38777fe41fd6aeed9b928493c204e4783fF�
f89d39e2f15a5f9de6ac154edd1ca68886b384c0e12ef5657eb722c92e9c0788
�F�
f89e78370bd25ce90933cc003b71d1a2bcb2d53f73c8919389825731abc978072E�
f8c005d77b5c2074f8f5ecf019407c406d423acd0fddbce4ac8b4efa1be0f808F�
f8c57e980b49a9dd5b43aabb9b590741efe9dc8ac4e8fe1955f4ffa5f0bb2399@F�
f8d118dd0c38e6be586da71c24bb8639d30d388d9b57e276ec52b9ac2f649ead�F�
f8d5011b3c0674720d0b3957a9b73860210ff186379452e0225431f7619a349f
�F�
f8d72ec48ec0e1f77e42f4f2a5c6dbeabe6e13e680771e35008c6865faee59f6B

ee��:��V��+r�F�
f901d903838a840af4b07b7405171f08944a919391efff75f782b9d2c5a6a8a7
�F�
f9112352a12b79f2772b0d357f993f93cfbadb96eb79b1c1b7ea2072dad1e32a,F�
f9138cc0c8bd84737691daa9f6f8f6914ee52bef60ec7862c2921c8d8743faa70F�
f9157874165a2f0bfd45d4225d6b6665f3447d99d8b0b7c31b884b462c45218e�F�
f91b2363933aa9f88629048ee0d497b9541689ada66a07709b03177f3d709470CF�
f926be88eca8a48d3a20210809bb3b3034814e0660e27737f39f9db9589b332d�F�
f92fde3f97c0034135796baa7cd55f87c0550a88ac79adbdcc9c7f64c595614bF�
f93d558436474dcf26feea265313045cb98abbe57849c1f0f07a622d83612eb1�F�
f94a030f57e0305ea48372f1b189a3297e92fb634475062f758ad5de5eec967e
�F�
f94ef4ce18a021edb2b5a72fc87092d88e8c7b4aac3c605213fea20cdeefb002F�
f95f722b442bc9d91784e68a17b61860bc39197eaa93b49c63ee4572dd5a1007{F�
f9676ddcb0d16744e15c0dea1da0d19db48f65f8b002b815347953e2a4f2bed8�F�
f97d96977b7b2e8e4ab1dfcae63bf6275503575c3a994ebfdf713ecee262b899Q

ff��;��V��+r�F�
f97f8b49e1c67b65e3bc3821a5542f91cff1d9241f858a36d041fae368a1f2fc2F�
f985f476bdedc2f9a31dcd4fddfea63520d50b7d0201272e1df3ec06366409a3{F�
f9905c0c94b3cb7db5412f3ffcce1c6b2b13d3d3d679ba948bd55a6d413c8944F�
f9934db5cc1113b572f8e7b163ba8385a71464f8594e0a39efcdf885afab2e39YF�
f9a5378694573063ecf61c516d27731ba3a515cc1b91bfced9a7057634a8d54c�E�
f9a690e8aa496786b4e27818af37b20bb17b3805bd626de662a2647c04ea6bb1(F�
f9a6ea022ebc4cdade8272e421cc47f8c54d66a2ad1efefff8e7486fa6802399F�
f9b5b8e607b0475317be118a94288240012fe680504fba887596246d7173029f�F�
f9c8ee59079e1a20cac32e3fe1b20f6f94b271c132efb4de7f5f0ebad73c632d�F�
f9d23d9aa39fc06d77ca52634c5687043798a77e8d556e2e1acc0ec503af693d�F�
f9e0e769bfa29d7f3fba358e5524c7245c425336886a47e1697aaa57c199fd16�F�
f9e741d7af4fbcb102cf759697c858701bf8839ced08a5f62c9415ac5de9dda3cF�
f9eddb4d96fec5e873cef47d5028d8ef2534235e25948f0010a17f3da79f7835�

ee��:��V��+r�F�
fa096ffba3dc527395eaeb5d48dee9df05e4ddb693f382a610b5b0527eb217d4�F�
fa1ad496790644bccab3140b7f585dd72d55f3d0b242ec69cf7c2939b91b468bmF�
fa23e5ba8d9b56049a550f17e94cd3178b35786e85c7098ea8f409f9cd1bd8c2�F�
fa313558117870b2ad9b85826be67b6ecce53baa6ddcbf99024428840d38fba7!F�
fa3eac9fbdec92e915947210c7b62dd3bc17f62bd80edc537b07d378a58418d5TF�
fa40075494cdb791de80bb9dd16a60c61c5e4200559523fc4cb22ded671eda5a]F�
fa6421de2c15921a2e6fedbf4185a77ea6ccb46658a05d2002f389b7e2a8b60eyF�
fa679cc7ff7900d485618ebb16638390e1b2e4a43f1278263dc8722680e307ab�F�
fa80c361dec771feb54951286af7bb8032aef89cd8ded021b942b091ad431e5d�F�
fa816cfd764e59f3d6af36d6fe658eaf2ad7d0af0472a9bef2ab112995965b1f�F�
faa6d60940c2b7406116f4f0516e03526f4e692a662e39080ecd2196b0b55f9b�F�
faacc67629472caf8377dc9a0bf33c24bb238dbcb391edf62435e70baf591d97yF�
fabce6473ab9dd2d36533444066b3b09b7055e6949844f6b7b52531e3d42f914�

ff��;��W��+r�F�
fad06e13ad887025495d47068294bf443e6c6209bbb16324fa1b3eb9ef5a885epF�
fad6c8c1ae7000eeba2040a8163e5cc4920ac0d48ff08d1634dbe24df69b112d�F�
fae889b06ab0ce312053475d9327bbc3ab774b5205f23a802574f40fb6dd1621�F�
faea0d6adefaa474577c184f31a44469d13846a44412ea382dafc9f9ea6a3a77F�
faf0e74d26792022e70a474776f33b0d995899e1d6150d742af9199b9cce5376
�F�
faf10a9ee4a6a84d4d3e47e83fc9b5e9820bc013e514a117737d79a517e0386a	tF�
faf21678af2663e54fcc8f5016f8bcab54c797e4a2817cccba232b0e673d3370>E�
fb00ca97e06f7da066e8d05cafb17b9f9680e39f50979090e489d8a1720bb4d4QF�
fb019a858ec470c37fb4514a9c501552516bfe09f3c57ab59409c560d2a46ca9F�
fb054f7e2c4002421c1a192b728bcaf7b397d066ecfefa67cb8fef0e35bc581c�F�
fb0edda86631e065ab929a5645c3c5c9573ef194bf8813617457f152c46177e3�F�
fb317c790c7775a8cd2becc6286e6028a33743078585cef6e150d0614e34aa17yF�
fb38f857551fb354a5eed747d7a1167588232589a2bfc88abc3f695d37b7e705�

ee��:��V��+r�F�
fb53f898a944ec236a811663325ceef801af9d4d3e2c11522ee1bd7a77d9da79	F�
fb54396129c15361020a0307c4dd42f46da87f1c0a0841e0d0ee3ee404ce59bdtF�
fb633afcbec86339bf68947e27f45d0baba732bf9a5f35de6dd47472c02091a8
F�
fb649db85a7fa03afc98ca05e61011b3c7d2d0ddfa11c9e025af979339542a81
�F�
fba2b7f38bb5d3e71e06753d36856e49f231e20be3c06505b414184bd656d595cF�
fbae91cfe9ae73876a8eeb3b715dacaef2f15103aae6c0a6040a7aec6578cc0d�F�
fbb00aafe5d8bd8b4ce85814f2d529e893f31e915c6393c651859d9dd4be56ab F�
fbc2fabe0f2dd520e1af93518f0669fbb0c91b469d7508a7402404cbbea73b6d
�F�
fbc75db0004b4f2ffa063eb646e4714cfa1fa34ce927f4cdac02ed19920adcc8
�F�
fbc77f001aab9462525aa44d833841b0d3687718322240a9c0df2ea113689697�F�
fbcc3e564c6dca446a39edd03f346e88b9881d9d18050e89024d0ff48b46240adF�
fbd39d1a8897fa30ac649d4e1c6652bada403accff15f98abb244507a91a8494[F�
fbdc480b9ba57d0d9e0972e4e60bb2e1de36296f91b120ddcc7d7abcbd955f94�

ee��:��V��+r�F�
fbdf0d211089d0219b49949e4bac45457c7c0de563ac494e01584ec1c65eb69d(F�
fbfc27e8e45f88c94b069c77e301bd007e2e4c2d7e71b268fcaa0c9bee8f84a6�F�
fc069c671947a77de565e36b545682f1a73f32c53725d79715125c1c12e518d07F�
fc095d80f336de3930ba83232f8684e5f27e20a6a90348f9746f9d4c65940aa4�F�
fc0d3c5609c739acc6d67bf0bff0c3ce7d1a05383836701bcb21e55aea34acef6F�
fc23786485123d8fc0e167c65ecee809b1c1047c61cea465e243cf4b64b2a78e�F�
fc2d6ed7481cb42c62b4bd75126fc4237093c74ba7e87908a90815f672bdf45dF�
fc3bab612213d15e8f3305d921a6c746a042fa8d06b3e8b75aa25f4eeced3dae�F�
fc45ecc53eafb78138b2291907fb4463e871868f19476b0d29e6c42b9e2f42a3�F�
fc48a72a9a0a8898553b10f1e151b5cb865e23d1ae5200c58cf22572c71ff6acF�
fc626afc893b85c55f51d292c8bb06d0f31d54e62391e473e9fd5d070392c64c�F�
fc6296617d74745ac75f51e708264f5e77144e1a594d2ddfaadc84e9d9d9624dHF�
fc6444986c7f47167fd58aa8888952344750766901c89c5c31b69ed13631e92d�?O
� k��?O	F�
ff7e64392cb0525eb93067fe372af5efaf9fe58c81b8b7441f540801c817f214�OF�
fee2103b6ba68f134bc8d706313e6d873b9ef2d803cbcb27234da184bd579eb1�OF�
fc6cceaef55bd37f4fcdef13e567e0f496246d1ef59bd1803f1d77af60ef774a{OF�
fd5c2fb9ea8fe33dda81b2c13693c8901313964b621a4845172a14c12df1439a"OF�
fdbe2525e655b8cf975f2027191bcc9231946f75aa3196dd6bc68d144b98da20
�OE�
fe57c2235944b61957f96287d962dc8a6f63af33aa9a45b6bff9fc30a34862f53

ff��;��W��+r�F�
fc7476815d3e884a39b6216376b5758e79de7e6fa1e0d85ad7c4923a963f6e0d�F�
fc779dd3d8c318abfbcddbc7accbbfc6b6690b7989ac005f12a76ade071b6d13bF�
fc8271b385663f8ee5b7718d56371ca3af96ca4df7b25c4f38ff59ce2e327270�F�
fc8c80035602313a7b83027140e8b3e5895c85d6fbce04b2d73a53976a616e73MF�
fc910dd4afd1311d8be1bdce2147613448f4162c19797bb345c5b725efff1d08
�F�
fc93fa73ee589349b26030b1fd56173975859786d624ddeaf826606e99c8b4f3JF�
fce2a6c0ec49c42d5100944108bbb85b8a3e2685de9b583b1b4627e6f66b330e�E�
fce742e752f83c91c4d9e2dc4fad5ff1b7affb7363270b752a793df36c00754f=F�
fcfcf89049ecf9f09cbf47f552ddb936bf74e4cd3537825f1c463ce4d4d50c66�F�
fd17cae7a3075f2ad58ed62ad9a2bb016b9d0ecbda3ed31b464e395e00f4dcb9~F�
fd2db008a8253afbc54436a251251bbe5b6346f3c7a12892e6fe0b2aeb947358NF�
fd358c591bdefefe4f8f4b730734f8e570c3f50680413739ef8785c99d73fddd	F�
fd4d10950f499e8ff12b7354df494a29bc6c5c88db808bb7245d05a900fc6dbf)

ee��:��V��+r�F�
fd5d1ca9a11a3575a3c34f7dbcd30cc924d2b41a0a004c3a793506098be60bcaoF�
fd61faa3534a72b2293194c7decb752ff356a8de561e126459a7e8d55d0c96eb2F�
fd640f5804c8bb45a16b7f00fef1ce4a1ec58f5ce9fb6650e9d98fa6c316fcd7pF�
fd72ad4e19f26b5ab55c6b53a5824234f78c29cf3c20aca13156acea64a3346c
oF�
fd7b7df51401985176a27907f57d0a616ead620f53c6855fee58b0ca86fe83945F�
fd7c147bd421d47e6afa077b39fee3edde95b7c1ad7a4371b4271f0aaea8ca13�F�
fd8b80ddbac39b51ec642889d4f7007835aa7e1d353569778d00ad7dfdb85326�F�
fd8e59feae40f80e38ab4a8de84b96325cd6b29832ce967fca67cb83405b1342	�F�
fd9eac77800954e912c795b1baa2897a1255e8c44f1dcbe7f154da4bbb690fcd0F�
fdad65275349657bbcdf47559eea430b65c4e7b72549cbc6960987457bc53c5b�F�
fdb3d033e3ca54175fbc3432d0eaabe73a06e7062247eadf1c8f79411c315081�F�
fdb600cfe62d10fb9b78089a4daae03dd3010232a321c952510faa95723d5a60�F�
fdb87f18d9c02219b23bb7f3233d128374d7e17e958892065ed687a59f5aad38
�

ee��:��V��+r�F�
fdbf4bfe28188e74649c64f6a210cdce1aec37dafe82324cc4a7403e012e4c4f�F�
fdc3d5723bc3c1ed88713853d0c264f40ff05adf61533cdf99fc13598c015d19�F�
fdcabd5524523efc4fa2f438cdb2f40de42b6606b73bbff9e8f65e21ea81f437VF�
fdd43196e4073342f9366aaa990c71e1f5ed36c633b8c6bc935da0a5d6fd8dd6�F�
fde70f28b5a0ce727403a12e9a6a39a8f953d1975000b7be4be8c5434c4d3556F�
fdec48655b5d576de07b5788ee9206ab7b71c6fb8374b3e7fa47f3b65bfea9f3�F�
fdff2f1a1756e0f2d41cfa80f3b32907c40bd0172a470e140d1cb91e3b1dbeca�F�
fe01de01f7bcb863a54f276394f9ab097a0d29db56661a42eb33d27e4bef27f8	�F�
fe20198b1c59cd2bd81f50412b770ffdbe657e59f816450e2235e0863704f4d5�F�
fe31962a7aaae275d7dcbf9efe7364a94ada762b968513d3d783f9e763f8441bNF�
fe35603b7abe8e1540b93b5c81f16503aa0704fb2bffed7d863b738cf0cf67b4	�F�
fe463cbf93e98cd763c89bf55103a9c84e8d48e998eb06542fe3e3fb72a10dd9�F�
fe536bc26d329494e0702e1ea45051bf8d51d2c5bd6f3d8f4810b32b738f7d54�

ff��;��V��+r�F�
fe59e0e08fdd30fac03b78e5e5afd3169677c15d89d0797bddd5d5e796f2e43a�F�
fe5bfef21df5d0e8252e7ac8804794d70a0db68230a14972077289f7d05e21e8	�F�
fe63730a873042e3f6763ad2922d8d1c714e93fe81d223bc2ae7454b4803f1fd�E�
fe65f8c1104a49b25deba3a5dd771fe3ef37e4b8efeb398644007101e18a44734F�
fe81316791b5a33fb6e458bc981914e5a5c7d16da0e818f6b455b94fd257fbd8�F�
fe9ddea76d491834446326906a81c67139192d20db46b613104c60028b90693b�F�
feaa19dbb1f49048b7c247b0f07eca95e4c1ec3e3553221a73e356227d399654
�F�
feb6b437532dab8f5310701ed22fb3134f9e87f87fd7786802bcadba0cdeb3d6�F�
fec7ec65b7db46bf359cb0e984f68dfa1d760320e274306052a510c5d288ed1a2F�
fed1a25dff437173e5198969384d287e1c91872362d72445cda5bf8bc78201f5	F�
fed7b567e393c86119acb36d69b38b769bcb51e24ddcf415141d81230fdc54a8IF�
fede7faa428def30a78d440b2dfd020e0a972bca7601dbd552274dc2f98434c9WF�
fee0270ebb6d96079cd62a8292ee140622ec167fe229396b49b1691c2d2d6e74�

ee��:��V��+r�F�
fee8dc3a19870d83d686d8f123acfabb5dcca85f4ee2450ffe3dbd5f3b132a54�F�
feeaaecf67702b0e5815ef109a94fbdbbce95e0e6228db0f8c286f9f61a845dd�F�
fefe08dca680fa571c295cf0d51d266aa3aa3a357dc1bdb87dd804e1fe5179fd F�
ff0af5a6e3acbbdec8607cb8aa6f258edbb87c22d9e2e162b476d366c16a6372
�F�
ff13cc6851b7555532b91dc5f8a9c7b73fb8f47f0f39be06ad101f6250c679c5OF�
ff32b3ca928a0d84d11d5efe9433ba05d661f2a1df648fe6eee586eb09c24ac6�F�
ff3b468571e583e09e30108bb68b5b52e5aa7c6c634076708aa4dbbf6d6a6c7eOF�
ff451f91104128c99b259625e000b9cbae52cee36db749f5b2e5291742d7ecc29F�
ff4671dfa3a8f95a13b8ba51b2a558742445e61b30cbb1cf07788364ca2bb076�F�
ff496670decb17b290f032a8854f0420ac2848d6b92e9e0df99491a13901a396�F�
ff6ddec249d0b0ae7fe315e3626507ee4cbcf1c98b1ef5a0b571846cfa67ac37�F�
ff72d842591430311c483b93233f526b1dd34e953a34c084885d68d786f0aebaBF�
ff7bd67ed63db8e85a6f69944e947f3a58d239a5e418b671d1eea3c8271d0777

ee��:��V��+r�F�
ff8272f92c772a5d757bacb85570f4468e0c2c40956746d49494f1daa5041086F�
ff9511b80fc18b09e37c9c11c984d322a95ec84172a9fafabc4b068d7d854bc4�F�
ffa04ef798ab2e5815f659306b1ff16a316bf5e5501788e7e0bdda2800e8afd0\F�
ffa522d1a8d77788b084a92a321a67dd3087522b4c665f5b59ff0576763efcd2�F�
ffb599a2b9c5f8a8a237f321581e0fdbab30bb4d57604ff0a504dd1222938ebfF�
ffbadd5995846ef0be55a84dee1a668513bc703e46ee467cb84a4e847415cbe4
F�
ffc1d3cbc957771182427d3972e83824283b43b4272f105619d32ec0195171ce�F�
ffcf7016d990141a16d89aca74ebc89f797e93581bb8c97a08c83f5bf4ae47e4�F�
ffd9abc7bf1c18a5121be12799691f3e50e09ec00e67de327db03a1cf7a29d6c�F�
ffdb0e908ca8cc9013d59da38b6a5d9d04ea15e6af25a38508bc92e04af68500�F�
ffe6c8fe6239af5ba9b802d1110485c57c37832e367d2ff85fa1252c920e1193�F�
fffcdd496e8017e9a7bb4fdc0e4a0d7e1b98c54d5f9dabf43b01870bbb14d79e�F�
fffeb3e36d81e735ea56a95e6ac78d23c78c3ac7e4afb27bcdf91a835d7cb3b6
[ Avaa Bypassed ]

Upload:

Command:

Filemanager

Server Info

System Info

Name	Type	Size	Permission
filelists_db.sqlite	File	148.53 MB	0644
other_db.sqlite	File	19.76 MB	0644
primary_db.sqlite	File	155.77 MB	0644